$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: D+jcSjbCfmPOiOlddmyLrURe3pv4V4Xask9QsRi32XU= Subject key identifier: 27:09:22:AD:65:0F:6D:77:59:0D:05:D2:A8:B2:FD:FD:4D:97:FA:D0 Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: 83 Signing time: Fri 25 Apr 2025 05:36:59 +0000 Manifest this update: Fri 25 Apr 2025 05:36:59 +0000 Manifest next update: Fri 02 May 2025 05:36:59 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: SoRu9uRwZLBcv5arltGC202+mHWClNSZ4uA7z4tNWDU=) 2: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (hash: HnEUHlw9gil+mYxp63GxFhUGPoOAuwCoKZnzCLBninA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Apr 25 05:36:59 2025 GMT Not After : May 2 05:36:59 2025 GMT Subject: CN=680b1f7b-360f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:8e:6e:50:77:5f:34:7c:91:b3:7c:2d:14: 0d:04:e1:15:23:f5:0c:cd:a1:58:b0:69:96:21:2a: 3c:3b:e2:aa:2a:4a:aa:cd:3c:78:44:72:eb:66:be: 99:88:95:23:eb:b1:60:5d:18:4e:d3:a1:ff:a0:79: 27:b5:73:e2:70:f1:7e:41:1f:fd:3d:70:04:6f:fc: e5:c0:6d:fe:8d:f1:72:a6:7b:23:08:50:ea:7a:32: 42:8a:ba:63:63:97:34:d7:a3:b5:b0:b4:c2:c5:06: c8:29:f3:c7:b4:fc:51:9f:7b:59:d5:2d:c0:78:51: 0d:d9:b2:55:f9:fb:1a:40:eb:38:48:13:62:da:44: 96:f6:cc:17:90:4d:be:bf:53:bd:44:74:9d:d4:51: 10:18:8f:18:46:23:aa:1c:d9:37:f9:bc:3d:1f:cb: 75:9e:65:44:79:38:3b:9f:df:7e:fa:7b:a0:19:63: ef:5a:69:cc:ac:48:98:e4:2b:22:14:ff:01:bb:de: 94:f7:bf:08:21:ca:52:c1:12:38:90:1e:39:8b:35: b4:8b:91:a9:3f:f7:65:f5:31:d8:09:a0:38:47:dd: 63:96:f4:8d:3c:73:b4:09:a6:1a:84:70:71:96:e8: 02:0d:28:03:4d:d3:67:c1:2d:fb:69:7e:a9:e6:98: 20:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:09:22:AD:65:0F:6D:77:59:0D:05:D2:A8:B2:FD:FD:4D:97:FA:D0 X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:70:2a:9a:f1:b9:82:de:99:77:67:97:b8:fa:82:20:e8:3a: 43:0d:ef:83:ea:e6:fd:8b:fc:14:94:9e:c2:ad:ef:38:e3:4f: 09:46:ff:f0:1b:e0:e5:15:8a:74:19:ef:ef:2c:a0:ff:75:e5: 16:9d:14:5c:1a:4c:a1:9e:32:f4:99:e9:5a:0a:64:df:be:fe: b8:2e:b2:e1:40:18:1e:cc:d1:64:19:c7:0f:b1:05:87:be:f4: 9f:47:ae:22:1e:07:4f:2c:8e:3d:8b:f5:d8:82:07:d0:99:05: 06:7f:81:99:a2:05:e4:37:74:6a:60:c7:7b:b4:ea:57:68:d8: 4b:ff:78:f6:7a:70:73:66:58:30:83:af:02:83:0b:2e:90:b5: 9f:98:7f:3d:d2:2a:37:9d:73:9c:df:81:3c:11:3a:82:f7:4d: 63:c5:49:55:49:5b:64:5d:b5:09:ef:9c:40:e2:54:df:77:26: c4:5c:95:43:86:5a:0c:cd:c5:b4:62:03:b2:44:54:00:62:e8: cf:9b:92:78:3b:c1:a0:6c:e2:8a:cc:0c:61:10:da:f0:13:0a: b4:26:3f:28:d2:81:78:a4:ea:60:e1:bf:6c:02:63:9e:f6:49: 1d:ff:a9:6d:a5:ef:4b:9e:d3:08:e3:2f:45:4d:bf:3d:e8:47: 0c:7d:09:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUwNDI1MDUzNjU5WhcNMjUwNTAyMDUzNjU5WjAYMRYwFAYD VQQDEw02ODBiMWY3Yi0zNjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto+OblB3XzR8kbN8LRQNBOEVI/UMzaFYsGmWISo8O+KqKkqqzTx4RHLrZr6Z iJUj67FgXRhO06H/oHkntXPicPF+QR/9PXAEb/zlwG3+jfFypnsjCFDqejJCirpj Y5c016O1sLTCxQbIKfPHtPxRn3tZ1S3AeFEN2bJV+fsaQOs4SBNi2kSW9swXkE2+ v1O9RHSd1FEQGI8YRiOqHNk3+bw9H8t1nmVEeTg7n99++nugGWPvWmnMrEiY5Csi FP8Bu96U978IIcpSwRI4kB45izW0i5GpP/dl9THYCaA4R91jlvSNPHO0CaYahHBx lugCDSgDTdNnwS37aX6p5pgghQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcJIq1l D213WQ0F0qiy/f1Nl/rQMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1cCqa8bmC3pl3Z5e4+oIg6DpDDe+D6ub9i/wUlJ7Cre84408JRv/w G+DlFYp0Ge/vLKD/deUWnRRcGkyhnjL0melaCmTfvv64LrLhQBgezNFkGccPsQWH vvSfR64iHgdPLI49i/XYggfQmQUGf4GZogXkN3RqYMd7tOpXaNhL/3j2enBzZlgw g68CgwsukLWfmH890io3nXOc34E8ETqC901jxUlVSVtkXbUJ75xA4lTfdybEXJVD hloMzcW0YgOyRFQAYujPm5J4O8GgbOKKzAxhENrwEwq0Jj8o0oF4pOpg4b9sAmOe 9kkd/6ltpe9LntMI4y9FTb896EcMfQnf -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:26 2025 by rpki-client