$ rpki-client -vvf rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft File: tJhXdJtDHfMjL417C4OVpy_9GEk.mft (raw, json) Hash identifier: GRK6bIVV7PKL8yoovVDLbo0P3gSCfC29cGUatBSvW6g= Subject key identifier: DA:92:09:57:8A:EE:62:81:48:46:57:ED:C0:1C:69:14:0E:07:D0:0D Authority key identifier: B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 Certificate issuer: /CN=A918E293/serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft Manifest number: 0157 Signing time: Fri 25 Apr 2025 03:13:45 +0000 Manifest this update: Fri 25 Apr 2025 03:13:44 +0000 Manifest next update: Fri 02 May 2025 03:13:44 +0000 Files and hashes: 1: tJhXdJtDHfMjL417C4OVpy_9GEk.crl (hash: c3L6RNBg1SYvNh7k5DZkE/UXK4R+9mvyzntJ3MJ6Gec=) 2: D865F69A233111EE813C5D26C4F9AE02.roa (hash: Lb0hJu9MZe6wLWtHrKtqcwpP08rypBWIlAZybLR4Lp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E293, serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Validity Not Before: Apr 25 03:13:44 2025 GMT Not After : May 2 03:13:44 2025 GMT Subject: CN=680afde8-aa3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:91:f1:d4:16:c5:39:d0:28:6a:de:6e:43: 80:a1:2a:11:e3:30:f5:59:c4:96:fc:40:0c:b4:de: e4:cc:13:3c:b2:09:7f:c2:a1:a3:03:09:59:fd:ee: 40:8a:66:c2:26:b1:fb:cc:22:02:cf:43:f4:1d:4d: e8:fb:ba:22:c2:14:ea:88:f3:13:3d:0c:1a:69:ad: 01:31:df:d8:73:be:9a:92:6e:98:9d:ea:6c:f1:fb: 9e:1d:31:fa:65:59:c8:d4:85:df:fd:c9:27:b6:84: 0c:bc:38:e4:21:32:20:db:ba:af:49:92:a7:c8:ce: 5e:56:50:fb:85:1d:91:55:c0:f9:66:82:c9:50:5c: 62:a0:ed:3f:b2:b7:4a:84:78:8b:ce:58:dd:cd:c5: 75:7b:0f:c0:10:90:8e:d3:92:95:7d:44:29:cb:dd: 0f:20:44:e3:b8:91:fc:6f:b9:e3:ee:54:53:23:ee: 0c:71:5b:c3:c8:8f:f8:f1:be:1c:22:e0:b6:b7:82: 81:74:bc:7c:57:a1:fb:ba:b2:11:0e:0f:d5:ce:0b: 8f:75:38:a1:5e:73:71:89:c2:57:33:be:8a:6c:75: b2:99:a2:4e:e9:ee:61:fb:e7:8c:25:d1:8a:1a:cc: 6e:88:17:ca:d1:6a:c1:26:8d:38:96:64:08:33:f6: 30:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:92:09:57:8A:EE:62:81:48:46:57:ED:C0:1C:69:14:0E:07:D0:0D X509v3 Authority Key Identifier: keyid:B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:31:4b:b6:1f:da:95:0a:da:7a:fd:a6:3a:d6:84:07:eb:3c: 98:9e:91:dd:dc:2e:04:3c:d8:54:45:88:40:61:31:4f:02:9f: 5f:8e:6e:a7:cd:36:4b:3d:7c:be:e0:ad:3d:74:55:6f:86:c9: f7:a5:73:2b:53:58:0d:ba:73:38:cb:e6:58:f1:ba:3a:0e:f7: 55:a0:cd:ee:e6:f7:f3:39:9a:03:cf:99:fe:f5:1e:87:65:4e: 64:ec:e8:f9:fd:55:84:27:52:df:7c:c9:8d:84:83:41:19:6d: 7b:75:01:bf:69:b2:52:c8:87:97:8e:d7:58:cb:cd:39:29:21: 8e:04:f4:78:97:56:ca:41:90:a7:43:78:aa:50:d6:01:28:40: 00:7b:f7:5c:06:45:0d:64:b8:ec:36:48:36:4d:f2:4d:ee:8f: 11:bf:d4:c3:96:36:33:9c:28:d4:68:9b:37:67:5a:c6:0f:77: 8a:2a:f0:90:31:2e:de:24:b5:bd:50:c2:7a:aa:7d:f2:4e:70: 25:13:cc:d1:8b:c8:1a:3c:6c:4a:f6:1f:08:6e:4b:87:ba:b8: 14:49:34:42:bf:23:5c:d1:78:f4:29:c4:3c:d3:ca:55:9a:c9: 17:fe:f7:eb:9f:b1:a5:80:95:91:ec:67:a5:b5:ae:1b:df:89: b9:80:8d:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOTMxMTAvBgNVBAUTKEI0OTg1Nzc0OUI0MzFERjMyMzJGOEQ3QjBCODM5NUE3 MkZGRDE4NDkwHhcNMjUwNDI1MDMxMzQ0WhcNMjUwNTAyMDMxMzQ0WjAYMRYwFAYD VQQDEw02ODBhZmRlOC1hYTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/6R8dQWxTnQKGrebkOAoSoR4zD1WcSW/EAMtN7kzBM8sgl/wqGjAwlZ/e5A imbCJrH7zCICz0P0HU3o+7oiwhTqiPMTPQwaaa0BMd/Yc76akm6Yneps8fueHTH6 ZVnI1IXf/ckntoQMvDjkITIg27qvSZKnyM5eVlD7hR2RVcD5ZoLJUFxioO0/srdK hHiLzljdzcV1ew/AEJCO05KVfUQpy90PIETjuJH8b7nj7lRTI+4McVvDyI/48b4c IuC2t4KBdLx8V6H7urIRDg/VzguPdTihXnNxicJXM76KbHWymaJO6e5h++eMJdGK GsxuiBfK0WrBJo04lmQIM/YwiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqSCVeK 7mKBSEZX7cAcaRQOB9ANMB8GA1UdIwQYMBaAFLSYV3SbQx3zIy+NewuDlacv/RhJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI5My8yODQxRDkyRTE3 REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhmTWpMNDE3QzRPVnB5XzlH RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKaFhkSnRESGZNakw0MTdDNE9WcHlfOUdFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI5My8yODQxRDkyRTE3REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhm TWpMNDE3QzRPVnB5XzlHRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhMUu2H9qVCtp6/aY61oQH6zyYnpHd3C4EPNhURYhAYTFPAp9fjm6n zTZLPXy+4K09dFVvhsn3pXMrU1gNunM4y+ZY8bo6DvdVoM3u5vfzOZoDz5n+9R6H ZU5k7Oj5/VWEJ1LffMmNhINBGW17dQG/abJSyIeXjtdYy805KSGOBPR4l1bKQZCn Q3iqUNYBKEAAe/dcBkUNZLjsNkg2TfJN7o8Rv9TDljYznCjUaJs3Z1rGD3eKKvCQ MS7eJLW9UMJ6qn3yTnAlE8zRi8gaPGxK9h8IbkuHurgUSTRCvyNc0Xj0KcQ808pV mskX/vfrn7GlgJWR7Gelta4b34m5gI39 -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:09 2025 by rpki-client