$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: hovX95APRuUx7DaXzJSaQQh57J7XVGVvMMIlqezP8ZY= Subject key identifier: 42:17:F7:AD:DF:F0:C8:79:5A:80:8B:54:43:00:8F:6A:70:AA:34:C7 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 010D Signing time: Fri 25 Apr 2025 04:01:48 +0000 Manifest this update: Fri 25 Apr 2025 04:01:48 +0000 Manifest next update: Fri 02 May 2025 04:01:48 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: xplfKi5+1N7VnbmBOp6z3xSpy2ZeqN9EYchy25EmuQ0=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: wXMGwG7lxViwNnrJDB749sBIiL2piUFxteIQBHCkVTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Apr 25 04:01:48 2025 GMT Not After : May 2 04:01:48 2025 GMT Subject: CN=680b092c-db7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:72:b0:4f:14:12:ce:31:f4:19:84:1d:86:5e: 12:0d:0c:df:55:17:cb:0c:02:06:3f:e1:71:5d:c7: 78:36:41:a0:5a:b2:83:ef:64:74:14:b6:8b:b9:71: dc:18:e5:a3:61:99:4c:f8:14:40:6b:34:c5:ae:31: cf:30:d6:dd:ef:6a:38:00:f7:fa:aa:da:01:1a:31: 97:1b:21:a0:ce:78:26:94:60:bc:4d:cb:01:33:43: 22:8e:cb:58:eb:b2:3c:72:11:b2:26:17:0f:cf:26: 7f:dd:52:40:10:fd:d3:02:a4:07:54:3c:86:d7:b9: 79:bc:42:f7:02:eb:38:9d:f5:8d:3c:10:66:d0:be: 55:97:9f:7f:c4:ee:43:d0:dc:87:9a:f3:84:98:e3: b2:5f:f7:53:c3:f7:8d:d3:64:80:99:13:f0:66:79: 6b:93:ed:81:7e:97:0f:9f:a3:02:26:78:27:a3:3c: be:cc:26:2c:53:1f:6b:e6:98:42:16:0c:f3:af:62: 6a:e0:9e:53:7c:72:c7:02:60:0d:72:2b:39:b2:26: 46:12:63:c0:c1:9a:01:fe:73:35:3a:e6:e6:3f:db: c4:ba:a0:1e:e1:1d:5a:f9:a5:82:37:31:9d:01:ce: 9e:8e:ea:81:c6:ac:f6:76:98:1f:25:64:5f:00:00: 25:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:17:F7:AD:DF:F0:C8:79:5A:80:8B:54:43:00:8F:6A:70:AA:34:C7 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:f0:ad:a7:72:a2:2e:39:0e:89:11:5c:e8:4a:cd:50:51:4f: 57:6e:9f:a9:72:28:87:5a:60:dd:c5:4c:8a:f6:97:c7:ab:e3: f4:38:35:ca:3c:47:47:af:03:f9:bd:5e:75:95:21:f2:7f:2d: 61:96:06:10:ac:ff:3d:5c:49:83:fc:b0:c6:f6:ae:34:82:83: 83:34:d5:65:d5:85:0c:15:8f:b4:07:de:71:36:2b:2a:07:52: 06:b9:94:4a:90:b4:b7:91:37:40:7c:f7:c3:2e:c2:0c:fa:a7: ab:18:b9:48:0f:74:a1:8b:6a:40:73:48:fd:e6:24:1f:08:4d: ba:d3:35:0a:e1:7f:61:79:18:d2:a7:b2:49:1e:84:29:8e:e9: fd:38:eb:55:75:46:fe:67:d2:e2:77:4f:ef:d3:d9:68:8e:56: 1c:35:17:db:8d:d0:18:97:27:a9:e3:d9:c7:24:79:1b:87:4c: 4e:e3:b9:99:95:e6:d1:18:f3:42:c2:a1:07:f1:8c:80:ec:32: 41:d2:c8:24:ae:f8:9e:8c:f2:bb:b5:21:d5:26:4d:e5:f8:91: 01:2d:bc:32:36:d1:44:c9:6e:fc:b2:ec:c0:49:cb:66:07:e4: 38:c3:e2:1e:88:07:d6:42:d4:df:3d:78:5e:43:21:fd:c9:e5: 9c:65:55:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUwNDI1MDQwMTQ4WhcNMjUwNTAyMDQwMTQ4WjAYMRYwFAYD VQQDEw02ODBiMDkyYy1kYjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3KwTxQSzjH0GYQdhl4SDQzfVRfLDAIGP+FxXcd4NkGgWrKD72R0FLaLuXHc GOWjYZlM+BRAazTFrjHPMNbd72o4APf6qtoBGjGXGyGgzngmlGC8TcsBM0MijstY 67I8chGyJhcPzyZ/3VJAEP3TAqQHVDyG17l5vEL3Aus4nfWNPBBm0L5Vl59/xO5D 0NyHmvOEmOOyX/dTw/eN02SAmRPwZnlrk+2BfpcPn6MCJngnozy+zCYsUx9r5phC Fgzzr2Jq4J5TfHLHAmANcis5siZGEmPAwZoB/nM1OubmP9vEuqAe4R1a+aWCNzGd Ac6ejuqBxqz2dpgfJWRfAAAlbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIX963f 8Mh5WoCLVEMAj2pwqjTHMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe8K2ncqIuOQ6JEVzoSs1QUU9Xbp+pciiHWmDdxUyK9pfHq+P0ODXK PEdHrwP5vV51lSHyfy1hlgYQrP89XEmD/LDG9q40goODNNVl1YUMFY+0B95xNisq B1IGuZRKkLS3kTdAfPfDLsIM+qerGLlID3Shi2pAc0j95iQfCE260zUK4X9heRjS p7JJHoQpjun9OOtVdUb+Z9Lid0/v09lojlYcNRfbjdAYlyep49nHJHkbh0xO47mZ lebRGPNCwqEH8YyA7DJB0sgkrviejPK7tSHVJk3l+JEBLbwyNtFEyW78suzASctm B+Q4w+IeiAfWQtTfPXheQyH9yeWcZVUA -----END CERTIFICATE-----Generated at Sat Apr 26 03:45:26 2025 by rpki-client