$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: KqoI4+efRm8Pm9Awd7N+Subh5383oS8lclze3b3XN5Y= Subject key identifier: B9:66:23:9A:82:A7:3B:ED:00:53:C0:14:81:E5:3B:CA:D6:FA:C8:BF Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 07C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 07AB Signing time: Thu 08 May 2025 21:12:00 +0000 Manifest this update: Thu 08 May 2025 21:11:59 +0000 Manifest next update: Thu 15 May 2025 21:11:59 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: 4h4sg4RsWRKBwxTaeELC/kz0HPiJ/e3wJIYDQTCm/jI=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 21:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1986 (0x7c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: May 8 21:11:59 2025 GMT Not After : May 15 21:11:59 2025 GMT Subject: CN=681d1e20-e528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:63:f7:ce:19:49:65:26:e0:d9:70:f5:20:ed: 86:1a:17:df:c2:3d:ce:d3:43:fc:c1:09:7d:5b:f8: 1b:a9:46:6b:5a:8f:24:ab:0b:29:da:9c:95:6d:57: 61:94:b2:97:b6:61:22:94:3d:71:f9:4e:82:2f:ee: 03:b1:d7:47:7d:90:d4:fd:41:18:57:65:51:48:1f: fc:3c:7a:e6:f4:da:23:8b:ba:55:cd:2a:ce:78:4c: 8b:2b:40:1a:3f:63:03:38:01:41:74:2e:aa:9c:b8: 92:34:4c:1a:b9:c3:b9:3f:61:35:c1:1f:5a:05:2e: ef:75:2e:91:d7:2f:4e:88:07:94:7f:c4:80:01:9b: 28:16:c8:0f:32:d0:40:55:ca:ac:8b:c0:d3:f0:8c: a6:89:38:80:bb:74:f6:dc:70:a6:46:e9:09:29:ae: 87:86:46:c1:cc:bf:e0:71:d9:8e:ff:b7:42:3a:2c: 7f:2d:09:df:bd:ef:5d:84:57:da:c1:6d:53:2b:c0: 23:71:41:f9:6f:dc:5e:6e:b5:88:fb:ed:b3:3f:da: 1a:14:40:a7:45:3e:c7:28:5f:07:58:70:0d:b5:cd: 19:73:09:95:92:31:4e:d6:36:50:12:ff:9a:8d:f6: b4:3b:e4:57:95:be:32:56:cb:c7:b3:8b:93:a7:26: ed:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:66:23:9A:82:A7:3B:ED:00:53:C0:14:81:E5:3B:CA:D6:FA:C8:BF X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:cc:0c:e6:5c:a4:28:99:c5:a5:79:74:0e:ec:af:76:2f:de: d1:ae:ef:ea:44:04:f9:8e:53:32:39:d7:bd:ec:2b:0d:57:69: c3:31:e2:3b:cd:24:52:f6:e8:3a:2a:e8:e6:62:9e:f6:67:be: 6e:2f:ce:65:a7:44:c5:5b:5d:5d:ed:c7:f0:6f:45:75:0a:c6: fc:f2:60:25:24:cb:25:de:ea:a6:a5:12:26:d1:3a:bd:cb:44: ad:a6:c7:99:15:a1:01:9d:12:53:7e:44:93:9e:81:1b:96:d2: b8:ad:d3:7e:93:45:aa:7f:a6:28:2a:86:74:a1:a9:8e:a2:23: d3:6d:1c:07:7b:ca:75:66:c5:f4:75:49:70:db:27:7b:8b:9c: 7c:83:d8:02:dc:b1:a4:26:87:bc:eb:8f:53:44:2c:58:92:39: 2e:a0:02:7f:80:bb:d8:f2:1e:d8:db:5a:45:b1:ce:aa:4c:b1: d8:ce:9f:37:8b:4e:01:78:e9:07:27:56:f2:f2:03:d9:0e:87: 32:f5:04:98:82:e8:ec:6f:f6:46:70:17:58:3e:ca:5d:c2:f4: 60:55:e1:7f:67:ed:d8:91:9d:5a:65:a7:1b:72:89:d8:77:df: b4:72:3e:3c:53:a2:0d:8a:96:42:44:c0:9e:fb:e6:1c:74:f4: 16:c0:c4:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUwNTA4MjExMTU5WhcNMjUwNTE1MjExMTU5WjAYMRYwFAYD VQQDEw02ODFkMWUyMC1lNTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GP3zhlJZSbg2XD1IO2GGhffwj3O00P8wQl9W/gbqUZrWo8kqwsp2pyVbVdh lLKXtmEilD1x+U6CL+4DsddHfZDU/UEYV2VRSB/8PHrm9Noji7pVzSrOeEyLK0Aa P2MDOAFBdC6qnLiSNEwaucO5P2E1wR9aBS7vdS6R1y9OiAeUf8SAAZsoFsgPMtBA Vcqsi8DT8IymiTiAu3T23HCmRukJKa6HhkbBzL/gcdmO/7dCOix/LQnfve9dhFfa wW1TK8AjcUH5b9xebrWI++2zP9oaFECnRT7HKF8HWHANtc0ZcwmVkjFO1jZQEv+a jfa0O+RXlb4yVsvHs4uTpybtmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlmI5qC pzvtAFPAFIHlO8rW+si/MB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqzAzmXKQomcWleXQO7K92L97Rru/qRAT5jlMyOde97CsNV2nDMeI7 zSRS9ug6KujmYp72Z75uL85lp0TFW11d7cfwb0V1Csb88mAlJMsl3uqmpRIm0Tq9 y0StpseZFaEBnRJTfkSTnoEbltK4rdN+k0Wqf6YoKoZ0oamOoiPTbRwHe8p1ZsX0 dUlw2yd7i5x8g9gC3LGkJoe8649TRCxYkjkuoAJ/gLvY8h7Y21pFsc6qTLHYzp83 i04BeOkHJ1by8gPZDocy9QSYgujsb/ZGcBdYPspdwvRgVeF/Z+3YkZ1aZacbconY d9+0cj48U6INipZCRMCe++YcdPQWwMRY -----END CERTIFICATE-----Generated at Fri May 9 23:52:07 2025 by rpki-client