$ rpki-client -vvf rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft File: h1thdAzTcL1LSk9q6gqGCDiNuoo.mft (raw, json) Hash identifier: SHA2pOonnSl1h5dMXdly/q5BjenG1r9My+D1I0jyGWY= Subject key identifier: 41:AB:9D:8B:91:04:A0:9D:F9:9F:E5:73:1F:6C:67:36:FC:F5:14:EB Authority key identifier: 87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A Certificate issuer: /CN=A9125852/serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft Manifest number: 10 Signing time: Sun 11 May 2025 06:48:38 +0000 Manifest this update: Sun 11 May 2025 06:48:38 +0000 Manifest next update: Sun 18 May 2025 06:48:38 +0000 Files and hashes: 1: h1thdAzTcL1LSk9q6gqGCDiNuoo.crl (hash: 3wZiOLXfgHgr+Qgadsuz9WeeKgPZOOAnQLmVfNRuNzI=) 2: 36E3783A1BA311F0985A7C2DC4F9AE02.roa (hash: sfbcZk8SAWuxMbwQPAGFt07XT5Nj4mSWLUAB6k9yQMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125852, serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Validity Not Before: May 11 06:48:38 2025 GMT Not After : May 18 06:48:38 2025 GMT Subject: CN=68204846-5cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:89:26:0b:22:6d:93:95:74:1a:fc:26:66: ab:54:46:80:26:b9:49:0a:3c:cd:b2:d1:3e:f8:c9: 4a:b5:92:fa:5b:22:c4:11:b7:f9:e9:c4:ab:18:3f: e2:6c:97:13:b2:6b:17:d5:40:c1:43:33:3b:ab:99: f5:b3:8e:08:e0:49:20:3f:2c:e9:45:bd:9c:9d:b1: 64:ce:93:00:8e:e7:4d:0c:4f:84:64:37:97:ea:bb: 7f:f7:ed:b6:fd:26:4a:0a:19:5c:12:75:46:5b:f4: 32:c9:cc:7c:cb:00:46:cb:bd:64:24:5b:ab:f7:d7: 70:33:e7:ee:0f:8b:dd:cb:50:fc:53:32:9b:f2:db: c3:96:40:6c:2a:35:70:69:b8:da:d3:9e:72:67:4d: ab:30:8c:e1:bd:86:fd:7e:87:88:b7:4f:ce:86:cd: 54:2e:79:41:d8:12:25:ec:92:d5:4c:20:fc:18:26: 36:81:a4:f9:a4:df:e7:b5:a2:2d:7a:a1:cf:ce:ce: b8:f5:b0:af:3f:9b:a6:ec:60:9d:d6:b4:be:9e:45: 2a:34:72:40:7c:57:f4:21:54:7a:3e:e1:e6:fb:53: a7:8b:3c:65:24:d0:cb:3b:dd:71:13:91:ce:54:89: 53:84:5d:be:1d:6c:8b:0d:c6:22:0a:0e:0d:f9:c1: 1f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AB:9D:8B:91:04:A0:9D:F9:9F:E5:73:1F:6C:67:36:FC:F5:14:EB X509v3 Authority Key Identifier: keyid:87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:cc:24:6b:d4:33:63:b8:5a:69:cd:51:05:c1:c8:18:91:6a: 83:e9:85:8b:61:e2:d6:69:48:bc:79:a4:a2:83:4f:8e:c1:e5: 37:4d:0e:37:fb:35:ea:e4:b0:ec:23:07:76:8d:83:cc:9b:5d: a9:ad:64:6b:fd:0b:e0:7a:a9:bc:ac:a6:69:78:70:e8:b0:e4: 28:d8:cd:c1:c1:26:03:7a:86:2d:72:76:84:07:cc:73:3e:79: 3b:96:1c:76:ed:d1:c9:29:22:61:ee:74:a4:d2:82:de:14:23: ab:3d:15:c8:89:2f:07:bc:68:a9:04:ca:6f:b8:9b:2a:09:c8: 22:5f:9a:1b:d1:66:63:ff:f4:40:32:28:00:92:18:0c:33:d3: 12:d6:69:51:a5:d2:d5:cb:3c:a1:ba:67:e9:97:f8:cc:c7:be: c4:b5:3a:15:c1:fa:72:aa:4d:47:f6:fa:a9:f5:9f:6d:bc:22: ba:7c:4e:f6:1e:4d:9c:fa:9e:ae:a5:3a:73:15:52:5d:97:ed: 90:ff:3e:c8:bb:5b:cd:7d:42:a6:3a:be:e3:9f:4c:85:d8:7c: 3e:dd:6d:f1:fe:5f:aa:e6:54:e3:4d:3e:da:55:89:44:a0:23: f3:b3:f0:a6:78:13:6b:24:b1:7d:3a:1c:08:4f:8f:e4:79:39: 74:fd:09:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTg1MjExMC8GA1UEBRMoODc1QjYxNzQwQ0QzNzBCRDRCNEE0RjZBRUEwQTg2MDgz ODhEQkE4QTAeFw0yNTA1MTEwNjQ4MzhaFw0yNTA1MTgwNjQ4MzhaMBgxFjAUBgNV BAMTDTY4MjA0ODQ2LTVjZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9F4kmCyJtk5V0GvwmZqtURoAmuUkKPM2y0T74yUq1kvpbIsQRt/npxKsYP+Js lxOyaxfVQMFDMzurmfWzjgjgSSA/LOlFvZydsWTOkwCO500MT4RkN5fqu3/37bb9 JkoKGVwSdUZb9DLJzHzLAEbLvWQkW6v313Az5+4Pi93LUPxTMpvy28OWQGwqNXBp uNrTnnJnTaswjOG9hv1+h4i3T86GzVQueUHYEiXsktVMIPwYJjaBpPmk3+e1oi16 oc/Ozrj1sK8/m6bsYJ3WtL6eRSo0ckB8V/QhVHo+4eb7U6eLPGUk0Ms73XETkc5U iVOEXb4dbIsNxiIKDg35wR8JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQaudi5EE oJ35n+VzH2xnNvz1FOswHwYDVR0jBBgwFoAUh1thdAzTcL1LSk9q6gqGCDiNuoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1ODUyL0U5NTRGRDc4MUJB MjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wxTFNrOXE2Z3FHQ0RpTnVv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDF0aGRBelRjTDFMU2s5cTZncUdDRGlOdW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 ODUyL0U5NTRGRDc4MUJBMjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wx TFNrOXE2Z3FHQ0RpTnVvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEbMJGvUM2O4WmnNUQXByBiRaoPphYth4tZpSLx5pKKDT47B5TdNDjf7 NerksOwjB3aNg8ybXamtZGv9C+B6qbyspml4cOiw5CjYzcHBJgN6hi1ydoQHzHM+ eTuWHHbt0ckpImHudKTSgt4UI6s9FciJLwe8aKkEym+4myoJyCJfmhvRZmP/9EAy KACSGAwz0xLWaVGl0tXLPKG6Z+mX+MzHvsS1OhXB+nKqTUf2+qn1n228Irp8TvYe TZz6nq6lOnMVUl2X7ZD/Psi7W819QqY6vuOfTIXYfD7dbfH+X6rmVONNPtpViUSg I/Oz8KZ4E2sksX06HAhPj+R5OXT9CV0= -----END CERTIFICATE-----Generated at Mon May 12 18:35:15 2025 by rpki-client