$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: /lIez/LuzBq8kYXCsA5KJyc02UImEjQDIm1Y9ec18gA= Subject key identifier: 64:F0:94:16:53:51:EF:BA:F3:18:91:7B:12:DD:F0:AE:18:9D:D7:A6 Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 079D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 0798 Signing time: Mon 12 May 2025 21:05:18 +0000 Manifest this update: Mon 12 May 2025 21:05:18 +0000 Manifest next update: Mon 19 May 2025 21:05:18 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: NjcnQeeEHtMa3DUa3SHptoyVHTub/KZGZve/lAP4A+8=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: 0iyvzLFIUAJQiOyEvH+MRt0xVeTfFziku8Yy3Ho4c+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1949 (0x79d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1, serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: May 12 21:05:18 2025 GMT Not After : May 19 21:05:18 2025 GMT Subject: CN=6822628e-67e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9a:90:c9:ac:27:7b:81:16:4f:04:9a:93:6f: e7:fa:bb:76:ff:dc:d0:b5:e6:14:a1:30:74:3b:d7: f9:bd:0c:75:a3:a7:e3:06:ac:ec:a6:9a:0b:df:cd: 12:11:46:e8:50:74:7e:98:e7:b7:09:6e:91:6a:56: dc:7a:a1:31:87:29:54:89:b9:a9:9d:17:63:dd:ef: e9:df:81:44:d3:0c:59:e4:9f:b5:49:8b:6c:f6:9c: 5b:ff:a5:ce:9d:9b:ca:dd:37:94:77:d9:57:3d:aa: 18:79:78:5a:3a:77:60:ff:58:d7:f0:52:f5:fa:50: fd:a5:01:b6:40:2b:f6:32:23:51:43:43:fd:76:42: 73:b0:bb:5b:1f:8c:28:ab:9d:fc:55:a5:31:65:6b: 19:6f:c9:f9:55:18:5f:2c:2f:d9:fb:e7:22:43:ab: c7:9a:5f:bf:58:01:d4:b9:f0:16:8c:09:48:93:f1: c8:a1:79:ce:26:7e:97:b4:09:ee:20:7f:b5:f0:a1: 81:c6:c5:13:e5:f5:67:df:3a:1c:28:67:6a:ad:58: 8d:be:58:05:16:b3:ab:7d:ee:69:2f:ad:8d:d9:e2: b2:a8:14:41:41:1f:22:4e:9c:6b:81:37:68:03:0c: 4d:20:4d:b1:54:55:56:a3:51:7d:30:e8:42:59:45: 48:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F0:94:16:53:51:EF:BA:F3:18:91:7B:12:DD:F0:AE:18:9D:D7:A6 X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:a2:9c:57:8d:fd:22:46:70:d6:de:df:fd:07:4a:1d:a5:33: 59:77:35:01:82:57:0b:1f:aa:8e:63:48:c0:60:c2:62:b0:7e: 9a:6d:9e:00:fc:fb:17:9d:8b:6f:c7:0f:9c:e1:33:61:fd:ae: 3d:31:f6:5c:2f:e2:03:7e:9c:8b:1d:f6:ff:cc:0a:d1:af:5e: 0a:27:e4:fe:03:2c:4e:f0:97:af:45:32:8a:64:5d:48:7a:92: 67:51:a2:83:46:b9:0e:7b:aa:df:56:77:08:75:11:9c:fa:2f: 81:f8:33:ae:87:f6:3b:84:39:95:f2:f1:0a:a7:6a:c6:55:59: 00:d5:53:7f:96:77:a1:29:d1:b2:d6:6b:b9:c9:8f:51:43:04: 3d:cc:c8:2b:61:21:9b:38:d1:6e:c9:d8:96:f9:d5:1f:b8:9b: 5b:d2:ff:99:a9:1c:42:29:0e:f1:0e:68:03:7e:d8:2d:86:36: 57:0a:57:46:b8:da:18:9c:45:46:14:a1:27:15:cb:95:4b:3e: 6b:ce:8d:c2:90:96:b8:47:5c:48:36:0c:9f:52:f9:d0:9e:31: 10:98:54:00:f1:b4:b0:d8:af:a7:d5:48:c5:b3:0b:18:d8:66: 71:32:44:f8:37:51:7f:89:1c:53:6a:f0:b0:64:1f:6b:c5:3d: 1a:23:e5:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjUwNTEyMjEwNTE4WhcNMjUwNTE5MjEwNTE4WjAYMRYwFAYD VQQDEw02ODIyNjI4ZS02N2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZqQyawne4EWTwSak2/n+rt2/9zQteYUoTB0O9f5vQx1o6fjBqzsppoL380S EUboUHR+mOe3CW6RalbceqExhylUibmpnRdj3e/p34FE0wxZ5J+1SYts9pxb/6XO nZvK3TeUd9lXPaoYeXhaOndg/1jX8FL1+lD9pQG2QCv2MiNRQ0P9dkJzsLtbH4wo q538VaUxZWsZb8n5VRhfLC/Z++ciQ6vHml+/WAHUufAWjAlIk/HIoXnOJn6XtAnu IH+18KGBxsUT5fVn3zocKGdqrViNvlgFFrOrfe5pL62N2eKyqBRBQR8iTpxrgTdo AwxNIE2xVFVWo1F9MOhCWUVIYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTwlBZT Ue+68xiRexLd8K4YndemMB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEopxXjf0iRnDW3t/9B0odpTNZdzUBglcLH6qOY0jAYMJisH6abZ4A /PsXnYtvxw+c4TNh/a49MfZcL+IDfpyLHfb/zArRr14KJ+T+AyxO8JevRTKKZF1I epJnUaKDRrkOe6rfVncIdRGc+i+B+DOuh/Y7hDmV8vEKp2rGVVkA1VN/lnehKdGy 1mu5yY9RQwQ9zMgrYSGbONFuydiW+dUfuJtb0v+ZqRxCKQ7xDmgDftgthjZXCldG uNoYnEVGFKEnFcuVSz5rzo3CkJa4R1xINgyfUvnQnjEQmFQA8bSw2K+n1UjFswsY 2GZxMkT4N1F/iRxTavCwZB9rxT0aI+Vn -----END CERTIFICATE-----Generated at Wed May 14 17:45:26 2025 by rpki-client