$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: 7aMI0xNBz0RZ3mGY4eKvGMz0y/ZAKLAb510eYA/83II= Subject key identifier: FA:AD:D5:96:5F:71:92:CF:78:12:9E:DF:96:CE:95:43:26:E0:08:47 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 011A Signing time: Tue 13 May 2025 04:03:49 +0000 Manifest this update: Tue 13 May 2025 04:03:49 +0000 Manifest next update: Tue 20 May 2025 04:03:49 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: B2wOo/UJBPmvbnxQogRmrP9Yjoq0S5vUt0NvpC82iVA=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: vfKxgRyaFVDrpAYeeSphpPYjXOMfsg5HY/hQjECiMtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: May 13 04:03:49 2025 GMT Not After : May 20 04:03:49 2025 GMT Subject: CN=6822c4a5-32e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:03:76:7e:7c:a0:68:b7:46:8a:4c:50:e0:2a: dc:89:e9:13:0b:d9:ee:ff:a4:4c:1c:ae:c3:0f:fa: 7c:55:d4:e8:5c:70:5f:f7:3c:bc:aa:3a:d2:ab:71: 49:b7:ee:c5:e4:af:34:05:32:df:0f:7e:3c:a3:34: e4:11:78:d6:81:4d:c2:f7:32:48:5e:5f:9c:d1:41: fa:55:3b:d4:87:4d:bc:71:ed:e5:3f:de:1c:ef:c2: 94:53:6c:3c:ac:31:80:86:0a:4d:26:03:0d:3e:26: 39:87:56:20:a9:86:f8:af:78:13:a0:8c:2d:e4:31: bf:ea:01:df:a1:53:33:f7:1c:f0:ee:ee:59:74:88: 7d:04:95:7d:25:c7:1e:b6:12:7d:3b:51:b0:ae:4f: d2:ed:3b:db:5b:af:77:4c:67:ea:09:91:7c:d6:e1: ae:cf:96:be:3d:70:98:87:58:5e:63:88:b1:03:7f: 5c:85:1d:fc:4f:fa:cd:78:d7:c3:32:e8:20:48:ed: f9:9f:7e:4a:25:49:c6:55:0c:a9:71:38:d2:58:6d: 3b:b8:1a:f1:43:cf:22:a7:c3:62:8e:f0:02:e1:23: 2c:1e:f6:54:45:c8:c2:f7:f9:00:8d:fb:02:f0:1e: 97:03:e7:b8:f7:be:3f:63:ce:2b:cf:37:84:92:31: 7a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AD:D5:96:5F:71:92:CF:78:12:9E:DF:96:CE:95:43:26:E0:08:47 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e3:3c:68:b7:c4:6b:63:3c:f7:fb:35:e0:eb:95:7f:7d:55: 2b:49:bf:74:de:f7:d5:7b:c3:5f:11:be:0f:31:0b:43:00:fb: b8:70:ff:43:af:c8:30:87:08:af:b7:41:e1:77:81:c6:9c:a9: 9e:5f:a4:84:43:44:1c:48:5f:98:ba:c7:d3:28:26:99:13:7f: 5d:64:ef:be:2e:7a:32:27:46:0e:92:8f:e6:17:47:5d:cf:52: 24:bd:f2:dc:18:30:0c:81:c4:4f:8a:c3:25:94:17:e9:16:ff: be:7e:44:79:f2:86:66:4d:e8:f4:e7:d2:6c:0f:24:5d:a1:63: dc:48:e1:13:37:44:af:d8:b4:54:89:e2:da:51:40:8f:4f:e6: 3d:f2:62:a3:3c:ca:86:15:62:6b:a9:82:7a:b3:4e:cf:0b:d5: 0a:44:6c:cd:43:3d:3b:3c:65:ab:8c:e9:2c:2a:e1:23:94:88: ba:52:b6:2c:64:cf:dc:6b:c3:d5:5d:9d:6b:9c:1f:45:af:2f: f6:30:16:fa:82:29:56:d5:90:32:e1:00:c2:2f:29:de:ae:ef: e3:59:8e:86:5e:4b:60:55:49:4d:64:88:50:ac:30:c2:d9:bd: cc:fc:66:57:bc:d0:5c:51:7a:fd:70:e0:81:79:0d:c0:10:c1: 15:b3:e7:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjUwNTEzMDQwMzQ5WhcNMjUwNTIwMDQwMzQ5WjAYMRYwFAYD VQQDEw02ODIyYzRhNS0zMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowN2fnygaLdGikxQ4CrciekTC9nu/6RMHK7DD/p8VdToXHBf9zy8qjrSq3FJ t+7F5K80BTLfD348ozTkEXjWgU3C9zJIXl+c0UH6VTvUh028ce3lP94c78KUU2w8 rDGAhgpNJgMNPiY5h1YgqYb4r3gToIwt5DG/6gHfoVMz9xzw7u5ZdIh9BJV9Jcce thJ9O1Gwrk/S7TvbW693TGfqCZF81uGuz5a+PXCYh1heY4ixA39chR38T/rNeNfD MuggSO35n35KJUnGVQypcTjSWG07uBrxQ88ip8NijvAC4SMsHvZURcjC9/kAjfsC 8B6XA+e4974/Y84rzzeEkjF6jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqt1ZZf cZLPeBKe35bOlUMm4AhHMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR4zxot8RrYzz3+zXg65V/fVUrSb903vfVe8NfEb4PMQtDAPu4cP9D r8gwhwivt0Hhd4HGnKmeX6SEQ0QcSF+YusfTKCaZE39dZO++LnoyJ0YOko/mF0dd z1IkvfLcGDAMgcRPisMllBfpFv++fkR58oZmTej059JsDyRdoWPcSOETN0Sv2LRU ieLaUUCPT+Y98mKjPMqGFWJrqYJ6s07PC9UKRGzNQz07PGWrjOksKuEjlIi6UrYs ZM/ca8PVXZ1rnB9Fry/2MBb6gilW1ZAy4QDCLyneru/jWY6GXktgVUlNZIhQrDDC 2b3M/GZXvNBcUXr9cOCBeQ3AEMEVs+dP -----END CERTIFICATE-----Generated at Tue May 13 11:48:02 2025 by rpki-client