$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: VKcFlIyX0oebsmOf+62WslCMURkNtq81Gf9ifI15kvI= Subject key identifier: 2D:65:E5:1A:14:3F:FE:55:5D:CF:24:1A:D9:75:63:A7:72:49:EC:3B Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 20D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 20C4 Signing time: Thu 24 Apr 2025 15:58:16 +0000 Manifest this update: Thu 24 Apr 2025 15:58:15 +0000 Manifest next update: Thu 01 May 2025 15:58:15 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: 4unlcno9l/Hg4XvAL9w0B/5yuLIcKH3RHKJXwhbWH2A=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8406 (0x20d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Apr 24 15:58:15 2025 GMT Not After : May 1 15:58:15 2025 GMT Subject: CN=680a5f98-aca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b4:35:d2:bd:6a:0e:a5:bc:0f:2d:29:e5:d3: d1:6f:97:0f:dd:eb:c7:d6:41:ec:9e:b1:3e:a5:88: 53:c8:f5:b5:28:5d:33:8f:d6:5b:9b:c0:52:b9:f5: 93:78:02:8e:79:0d:20:64:5e:44:b1:4b:f6:cf:e9: 0b:35:24:a0:9a:e6:3e:00:05:03:24:ae:bb:0c:0b: c0:2c:9d:e0:60:b3:f2:42:6a:54:ea:92:27:f4:c5: ea:ca:2d:64:65:7e:e2:47:1e:ea:b3:3f:65:48:62: 4b:7e:69:bb:9b:8c:1f:62:ed:58:8c:a6:91:34:cc: c4:5c:cc:99:08:76:5d:07:f7:6f:6a:48:40:11:5e: cd:4d:d3:7e:14:cc:a7:5f:87:9d:8c:1c:10:50:c6: 39:f7:3b:76:48:59:66:da:4b:15:af:cd:7a:0c:82: a9:2c:c2:0a:47:32:69:71:d9:22:e2:24:d9:cd:fb: fc:dc:03:6b:df:aa:a0:30:c3:bb:e9:c0:60:b9:3a: db:5d:16:a1:54:79:1f:f6:1c:ab:39:16:78:b5:c5: bb:75:03:65:37:5c:cf:56:b1:85:e6:8e:6b:a5:a4: 29:6a:b6:5f:d7:8b:ad:5f:12:b3:6b:b2:bd:32:d8: 31:63:a2:43:df:65:24:ed:8f:0d:ea:96:aa:7f:a6: 2f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:65:E5:1A:14:3F:FE:55:5D:CF:24:1A:D9:75:63:A7:72:49:EC:3B X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:5b:d1:a3:9c:66:1b:3a:5f:5b:69:a8:46:18:df:31:27:a7: 4d:a0:1d:0c:2a:6a:18:58:02:30:b5:e9:76:ab:be:eb:94:af: cf:e2:24:3b:c2:7a:7e:5d:f5:bc:aa:3f:b4:77:6a:74:d8:e9: f0:7a:af:73:f7:43:e6:91:6a:23:99:96:be:9e:22:9e:02:f3: 67:99:93:d6:19:42:07:bd:fc:42:26:f5:c2:07:d4:35:2c:f7: 52:3c:a3:1b:3a:5d:fe:1d:61:21:eb:06:9c:a5:f4:19:1b:01: 23:a1:a0:bf:ad:d9:76:9c:65:17:44:e1:24:6e:7f:99:50:05: 26:66:af:e1:96:99:3e:59:04:ac:13:f3:1d:fe:27:4f:0e:a8: f6:4e:94:9c:d9:79:0a:b2:1f:25:ff:bc:29:f2:84:79:b3:b3: dc:d9:b0:82:28:b7:2e:d7:aa:a7:2f:64:13:72:07:f7:cb:a6: 64:15:1b:e4:27:fb:28:c5:6b:cf:be:a5:18:c7:91:a4:f6:40: a9:3c:da:91:3c:54:7d:b8:49:bf:99:b3:06:f3:3a:ee:64:f6: 0a:57:76:56:5e:29:92:41:c4:9f:b0:93:52:6f:99:77:53:44: af:0d:c7:b7:37:2d:5f:fa:0e:51:4f:4f:26:72:4d:ee:fb:67: 6c:e4:08:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICINYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUwNDI0MTU1ODE1WhcNMjUwNTAxMTU1ODE1WjAYMRYwFAYD VQQDEw02ODBhNWY5OC1hY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLQ10r1qDqW8Dy0p5dPRb5cP3evH1kHsnrE+pYhTyPW1KF0zj9Zbm8BSufWT eAKOeQ0gZF5EsUv2z+kLNSSgmuY+AAUDJK67DAvALJ3gYLPyQmpU6pIn9MXqyi1k ZX7iRx7qsz9lSGJLfmm7m4wfYu1YjKaRNMzEXMyZCHZdB/dvakhAEV7NTdN+FMyn X4edjBwQUMY59zt2SFlm2ksVr816DIKpLMIKRzJpcdki4iTZzfv83ANr36qgMMO7 6cBguTrbXRahVHkf9hyrORZ4tcW7dQNlN1zPVrGF5o5rpaQparZf14utXxKza7K9 MtgxY6JD32Uk7Y8N6paqf6Yv2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1l5RoU P/5VXc8kGtl1Y6dySew7MB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuW9GjnGYbOl9baahGGN8xJ6dNoB0MKmoYWAIwtel2q77rlK/P4iQ7 wnp+XfW8qj+0d2p02Onweq9z90PmkWojmZa+niKeAvNnmZPWGUIHvfxCJvXCB9Q1 LPdSPKMbOl3+HWEh6wacpfQZGwEjoaC/rdl2nGUXROEkbn+ZUAUmZq/hlpk+WQSs E/Md/idPDqj2TpSc2XkKsh8l/7wp8oR5s7Pc2bCCKLcu16qnL2QTcgf3y6ZkFRvk J/soxWvPvqUYx5Gk9kCpPNqRPFR9uEm/mbMG8zruZPYKV3ZWXimSQcSfsJNSb5l3 U0SvDce3Ny1f+g5RT08mck3u+2ds5Ag5 -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:22 2025 by rpki-client