$ rpki-client -vvf rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft File: haOfEGRko23KJ0v8d_uvewMDh24.mft (raw, json) Hash identifier: UL8gJcXWsF5oSjWfX/6h77M57TTZAqIqU3E3yxaf0GQ= Subject key identifier: 82:D5:AF:86:32:47:1C:66:D8:06:32:84:28:6B:59:AD:BE:13:AD:4A Authority key identifier: 85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E Certificate issuer: /CN=A9131181/serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft Manifest number: 1A Signing time: Tue 13 May 2025 07:12:25 +0000 Manifest this update: Tue 13 May 2025 07:12:25 +0000 Manifest next update: Tue 20 May 2025 07:12:25 +0000 Files and hashes: 1: haOfEGRko23KJ0v8d_uvewMDh24.crl (hash: Qm3IuhLN4KfTxPwvDQBE6KrSsBo2YjvP52gD6kcmD9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131181, serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Validity Not Before: May 13 07:12:25 2025 GMT Not After : May 20 07:12:25 2025 GMT Subject: CN=6822f0d9-873d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:38:58:fa:95:46:2c:0f:d3:9b:78:26:cb: a4:9c:2e:ff:c7:68:c1:9a:02:53:6e:41:56:d0:35: 56:1b:cc:26:f6:b6:b7:a3:38:d7:e5:de:5d:4e:d4: 82:a9:5a:12:c6:8b:52:a0:1e:eb:44:8d:5d:87:98: 36:37:83:0f:bb:f8:07:a7:72:01:40:a6:90:41:d3: 64:46:ab:10:4c:7f:35:be:ac:70:9a:b6:20:bb:73: 38:9d:fa:9f:8c:8d:6e:0d:6f:df:40:ee:2f:07:8b: 2c:65:0d:8f:3c:9a:6c:8d:0a:5a:64:0a:cd:97:0c: 18:e0:e2:38:fc:be:1a:fa:0e:28:a0:b1:fd:7b:70: 1d:e3:f0:2a:29:cf:10:16:89:b2:5c:5a:8e:4d:ea: 33:ca:a0:d1:d7:d3:8a:08:77:31:b1:c8:83:f0:bd: c0:48:90:f1:d0:f1:6a:a2:b6:52:eb:ee:e3:95:a3: 76:f6:5f:31:ff:f0:ce:d1:b8:4b:bb:0f:94:b4:0d: 0d:bc:c4:4c:03:10:be:24:45:46:db:bb:af:fc:f6: 83:2b:94:1f:cf:b3:af:57:cb:14:e3:01:b5:38:e9: 99:f5:9d:69:0e:07:83:38:dd:04:c0:e3:99:73:25: b6:15:88:d1:60:4b:b2:93:6c:90:54:a8:6c:80:81: 6a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D5:AF:86:32:47:1C:66:D8:06:32:84:28:6B:59:AD:BE:13:AD:4A X509v3 Authority Key Identifier: keyid:85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:66:27:32:ec:f5:e7:65:2d:fa:a0:2f:b4:c9:e1:86:50:db: 1a:de:a7:b8:db:79:21:37:16:a1:ec:fe:fb:d5:e9:5d:16:ed: 14:b6:ca:97:ca:f8:a8:99:01:91:91:b6:37:d7:89:61:82:9e: f5:96:0e:9c:c4:af:09:04:67:f8:05:7a:c0:c0:0f:23:d6:16: a8:82:ba:43:b2:69:bf:22:9b:c4:b2:21:af:91:7d:cb:26:fa: e8:7b:d3:02:2c:d4:c1:3f:8e:30:ef:2f:de:be:cf:87:48:c2: a4:f5:e2:ec:29:e1:a5:c1:15:f4:f9:7c:37:a9:a9:8c:6f:df: 70:07:5b:75:ba:b5:de:5b:1d:cd:e7:50:b0:b8:88:20:ef:e4: 80:61:fa:45:e0:61:bc:aa:55:de:4c:80:0c:00:75:8c:5c:78: 6c:a9:d0:e3:a8:7a:b7:d3:88:ef:d9:86:42:a0:cf:0c:fe:c2: bd:ca:9f:5a:b1:b3:e4:42:ef:ea:c0:c0:d2:91:fa:63:0b:84: ab:2f:44:51:f8:5c:e5:43:cd:b8:5c:4c:5d:72:0b:eb:9c:95: f8:78:e6:74:0b:da:89:d2:91:ae:1b:f4:83:dd:6b:6e:ae:87: 38:5e:4c:35:5b:a9:35:e5:7f:d2:d4:ad:88:3d:e4:7e:b6:28: 52:14:d1:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE4MTExMC8GA1UEBRMoODVBMzlGMTA2NDY0QTM2RENBMjc0QkZDNzdGQkFGN0Iw MzAzODc2RTAeFw0yNTA1MTMwNzEyMjVaFw0yNTA1MjAwNzEyMjVaMBgxFjAUBgNV BAMTDTY4MjJmMGQ5LTg3M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8LDhY+pVGLA/Tm3gmy6ScLv/HaMGaAlNuQVbQNVYbzCb2trejONfl3l1O1IKp WhLGi1KgHutEjV2HmDY3gw+7+AencgFAppBB02RGqxBMfzW+rHCatiC7czid+p+M jW4Nb99A7i8HiyxlDY88mmyNClpkCs2XDBjg4jj8vhr6Diigsf17cB3j8CopzxAW ibJcWo5N6jPKoNHX04oIdzGxyIPwvcBIkPHQ8WqitlLr7uOVo3b2XzH/8M7RuEu7 D5S0DQ28xEwDEL4kRUbbu6/89oMrlB/Ps69XyxTjAbU46Zn1nWkOB4M43QTA45lz JbYViNFgS7KTbJBUqGyAgWp/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgtWvhjJH HGbYBjKEKGtZrb4TrUowHwYDVR0jBBgwFoAUhaOfEGRko23KJ0v8d/uvewMDh24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTgxL0IyRTcxNDYyMEI3 OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIzS0owdjhkX3V2ZXdNRGgy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGFPZkVHUmtvMjNLSjB2OGRfdXZld01EaDI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx MTgxL0IyRTcxNDYyMEI3OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIz S0owdjhkX3V2ZXdNRGgyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB1mJzLs9edlLfqgL7TJ4YZQ2xrep7jbeSE3FqHs/vvV6V0W7RS2ypfK +KiZAZGRtjfXiWGCnvWWDpzErwkEZ/gFesDADyPWFqiCukOyab8im8SyIa+Rfcsm +uh70wIs1ME/jjDvL96+z4dIwqT14uwp4aXBFfT5fDepqYxv33AHW3W6td5bHc3n ULC4iCDv5IBh+kXgYbyqVd5MgAwAdYxceGyp0OOoerfTiO/ZhkKgzwz+wr3Kn1qx s+RC7+rAwNKR+mMLhKsvRFH4XOVDzbhcTF1yC+uclfh45nQL2onSka4b9IPda26u hzheTDVbqTXlf9LUrYg95H62KFIU0Zs= -----END CERTIFICATE-----Generated at Tue May 13 19:47:43 2025 by rpki-client