$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: OzZ68c0HnRAFd1xq7vsQMJeWXCvR5/g2dt2A0rnJOTQ= Subject key identifier: 19:29:A4:3E:78:AD:46:FE:7C:4F:38:59:EA:7A:B5:7F:B5:F0:5D:B6 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 0179 Signing time: Fri 25 Apr 2025 03:02:41 +0000 Manifest this update: Fri 25 Apr 2025 03:02:40 +0000 Manifest next update: Fri 02 May 2025 03:02:40 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: oqQ2/x0iqE/desnB1aEYvfmkK2i7UQik6Mi9PdURUQQ=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: mfE8FVHaGAKjd3z9L57ng4sztMrGr2OeILKa3QTIK7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Apr 25 03:02:40 2025 GMT Not After : May 2 03:02:40 2025 GMT Subject: CN=680afb50-8380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4a:fc:19:11:15:13:98:16:8d:32:db:a2:4e: 1b:b8:83:3f:f6:90:83:fc:0d:80:a9:ed:4b:5b:79: 08:d1:9a:88:6e:3e:12:8e:9f:4f:04:8e:00:96:45: 9a:84:c7:bf:d8:60:fa:32:30:52:65:9b:56:40:0f: a6:e8:32:2e:c3:ed:23:5f:1f:10:c7:6c:7e:7e:0f: c6:38:e7:a4:be:ff:fe:00:59:14:86:cc:e4:1c:4f: 95:04:9e:5e:96:ea:50:a8:5e:16:14:f3:a7:67:7b: ac:c7:f0:28:17:5d:c6:a3:e1:7d:99:ab:aa:ad:3f: f5:4a:e5:10:8d:66:34:eb:d2:1f:85:f2:73:17:c8: a7:40:38:46:a2:5b:96:13:93:ae:c1:ec:fe:24:4b: 68:9c:06:e9:0b:3c:c4:c4:53:6e:e0:8b:9e:3d:fa: 33:3a:7d:ea:61:d1:97:15:de:ee:33:a5:96:7a:cb: 29:de:7d:dd:2b:c5:e3:e2:cb:fb:8b:79:e8:c4:64: 0b:9b:cd:3f:fc:c8:d6:fd:2e:62:56:0b:de:ef:44: 81:90:0e:78:d2:45:35:41:f3:75:c7:d1:11:f1:23: 65:fd:da:51:97:a1:e0:93:dc:6a:10:f3:bf:5f:b0: 00:4b:8e:49:90:4d:96:fc:e4:c3:fb:d4:96:bf:d7: 8e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:29:A4:3E:78:AD:46:FE:7C:4F:38:59:EA:7A:B5:7F:B5:F0:5D:B6 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:62:dd:95:e7:5a:e4:b8:db:9d:c7:fc:1e:d6:6c:77:22:66: 79:6f:a5:1b:a6:17:47:0e:9b:c1:d2:46:5a:de:b7:53:53:4a: 06:6a:44:cf:0d:36:5b:2a:ee:f5:af:b7:e9:ae:d7:99:55:b1: 99:ab:ce:bf:38:15:0a:61:37:88:f1:73:b3:65:9a:b2:5f:f1: 0c:33:36:35:a2:96:97:54:ad:42:91:03:a7:17:19:78:e3:ee: 3e:78:14:ac:66:d1:84:1e:2c:55:c1:b0:bc:6d:77:11:96:be: 2b:37:84:f8:1c:82:6f:5a:ac:08:f9:3f:b3:29:d2:b2:e9:22: 29:17:23:c5:24:83:f3:a8:62:bb:ca:6e:ec:05:fb:08:5a:64: b1:a2:ce:d5:13:7a:27:cc:ad:63:f3:8c:d5:76:cb:3b:73:6c: 19:a3:cd:87:5a:f9:59:6b:86:1a:36:0e:9a:81:ee:13:8c:4f: 03:9b:04:e2:a3:04:70:f0:7d:64:20:c6:06:d2:c1:21:fc:92: 99:3f:76:54:29:54:7b:d8:cb:bb:ad:0b:b4:10:0f:a8:0d:d7: 9f:11:c9:6e:5f:5b:5e:d6:ee:52:52:93:25:1d:a8:71:3d:27: a8:d7:c5:24:dc:82:d5:42:31:a0:65:9a:14:f3:ed:20:33:80: d0:d9:0d:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUwNDI1MDMwMjQwWhcNMjUwNTAyMDMwMjQwWjAYMRYwFAYD VQQDEw02ODBhZmI1MC04MzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0r8GREVE5gWjTLbok4buIM/9pCD/A2Aqe1LW3kI0ZqIbj4Sjp9PBI4AlkWa hMe/2GD6MjBSZZtWQA+m6DIuw+0jXx8Qx2x+fg/GOOekvv/+AFkUhszkHE+VBJ5e lupQqF4WFPOnZ3usx/AoF13Go+F9mauqrT/1SuUQjWY069IfhfJzF8inQDhGoluW E5Ouwez+JEtonAbpCzzExFNu4IuePfozOn3qYdGXFd7uM6WWessp3n3dK8Xj4sv7 i3noxGQLm80//MjW/S5iVgve70SBkA540kU1QfN1x9ER8SNl/dpRl6Hgk9xqEPO/ X7AAS45JkE2W/OTD+9SWv9eOWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkppD54 rUb+fE84Wep6tX+18F22MB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyYt2V51rkuNudx/we1mx3ImZ5b6UbphdHDpvB0kZa3rdTU0oGakTP DTZbKu71r7fprteZVbGZq86/OBUKYTeI8XOzZZqyX/EMMzY1opaXVK1CkQOnFxl4 4+4+eBSsZtGEHixVwbC8bXcRlr4rN4T4HIJvWqwI+T+zKdKy6SIpFyPFJIPzqGK7 ym7sBfsIWmSxos7VE3onzK1j84zVdss7c2wZo82HWvlZa4YaNg6age4TjE8DmwTi owRw8H1kIMYG0sEh/JKZP3ZUKVR72Mu7rQu0EA+oDdefEcluX1te1u5SUpMlHahx PSeo18Uk3ILVQjGgZZoU8+0gM4DQ2Q2o -----END CERTIFICATE-----Generated at Sat Apr 26 14:01:57 2025 by rpki-client