$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: HOFMGL/IGcGVWm5s49At5m0w7YI7RQEfcWUqZoigQp4= Subject key identifier: 46:59:01:22:7C:BB:B9:89:7B:14:13:AE:75:A7:86:1B:DB:BC:51:A8 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07BE Signing time: Sat 10 May 2025 20:49:07 +0000 Manifest this update: Sat 10 May 2025 20:49:06 +0000 Manifest next update: Sat 17 May 2025 20:49:06 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: kwiOrsLPBfIOSKLc0LmkBen12RMgwMZ8hCwScV/+OW0=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: May 10 20:49:06 2025 GMT Not After : May 17 20:49:06 2025 GMT Subject: CN=681fbbc2-af40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b4:4b:73:3a:a8:95:26:6b:45:5f:92:ca:ea: 59:f5:d9:8b:b9:ca:68:b5:1f:70:c9:58:85:8f:7c: ab:3f:50:1b:ff:32:cb:7a:43:15:85:9f:e1:a2:18: d3:e0:a7:e0:f9:57:2e:74:a6:64:2d:e6:ce:76:86: 04:8a:e9:87:7b:c9:c5:97:9d:2a:a8:4d:2b:96:02: 60:59:3d:a8:40:fa:a8:7b:19:fd:f6:6a:b9:ce:76: 30:15:40:be:29:ce:9d:5d:6d:85:8d:5c:bb:23:9e: a0:2b:ce:c8:fb:da:23:9b:14:a9:2c:d3:b1:ea:20: 8d:31:92:64:74:0a:af:0f:0a:57:ae:92:a5:1c:c1: c5:dc:ae:99:cd:56:56:7d:21:eb:1a:86:f4:c0:58: f0:98:9b:4e:c0:3c:e8:83:f8:30:cf:93:fc:79:60: 14:31:05:2f:1e:62:18:50:20:40:18:5b:b9:30:bc: be:82:78:ee:7a:4b:eb:ff:74:f3:cd:f6:af:32:5b: 49:02:89:84:e8:92:61:a2:df:66:0f:ec:aa:2d:a8: c9:9d:a4:57:51:73:8f:35:26:f0:e4:cb:48:82:b0: 2a:0d:7a:68:07:be:a5:b5:ee:85:31:e5:64:40:50: 07:19:4b:ef:c1:b0:53:5c:92:27:c9:28:f8:7b:07: cf:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:59:01:22:7C:BB:B9:89:7B:14:13:AE:75:A7:86:1B:DB:BC:51:A8 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e2:4b:3f:78:05:93:38:95:a2:bc:ac:85:41:fb:7a:9b:3f: a5:a2:87:78:d8:78:e6:a3:db:88:1e:9d:22:fc:cb:c7:ba:d1: a6:37:01:67:e5:9e:49:08:0c:a1:9a:e3:f3:95:7f:77:d4:16: f4:b1:51:bc:2f:28:10:68:f7:da:60:09:7f:b4:b7:f0:fc:8c: 2d:b5:2f:85:ba:29:93:ef:a2:ac:59:28:df:66:51:8d:3f:43: 6d:b9:71:54:be:d5:5a:b8:cf:6c:e9:c2:59:16:bb:13:7a:f7: a8:a5:aa:56:20:ec:34:a6:11:65:d9:f6:f5:00:71:87:39:bf: 9f:78:94:f3:c9:79:31:cc:90:0c:98:ea:03:94:f9:5e:1e:21: 48:a6:30:30:a7:ea:ea:4e:3b:86:54:b6:be:88:a5:24:cd:2c: 37:3e:45:04:04:5c:d8:cd:b8:cc:4f:7f:2a:0f:09:0d:29:37: c4:d6:cb:db:18:16:4c:82:8e:7a:f6:ec:6b:f8:d4:12:eb:96: a0:01:10:55:82:b2:fe:ec:3e:46:a4:e9:64:c7:99:30:d6:c1: 3d:3b:79:a4:1f:07:7a:0f:ca:44:49:75:1a:14:3b:87:59:c8: 5c:51:5b:c7:51:83:bd:95:10:4f:98:a3:81:8d:c6:c5:65:58: 35:41:9a:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNTEwMjA0OTA2WhcNMjUwNTE3MjA0OTA2WjAYMRYwFAYD VQQDEw02ODFmYmJjMi1hZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LRLczqolSZrRV+SyupZ9dmLucpotR9wyViFj3yrP1Ab/zLLekMVhZ/hohjT 4Kfg+VcudKZkLebOdoYEiumHe8nFl50qqE0rlgJgWT2oQPqoexn99mq5znYwFUC+ Kc6dXW2FjVy7I56gK87I+9ojmxSpLNOx6iCNMZJkdAqvDwpXrpKlHMHF3K6ZzVZW fSHrGob0wFjwmJtOwDzog/gwz5P8eWAUMQUvHmIYUCBAGFu5MLy+gnjuekvr/3Tz zfavMltJAomE6JJhot9mD+yqLajJnaRXUXOPNSbw5MtIgrAqDXpoB76lte6FMeVk QFAHGUvvwbBTXJInySj4ewfP0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZZASJ8 u7mJexQTrnWnhhvbvFGoMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh4ks/eAWTOJWivKyFQft6mz+lood42Hjmo9uIHp0i/MvHutGmNwFn 5Z5JCAyhmuPzlX931Bb0sVG8LygQaPfaYAl/tLfw/IwttS+FuimT76KsWSjfZlGN P0NtuXFUvtVauM9s6cJZFrsTeveopapWIOw0phFl2fb1AHGHOb+feJTzyXkxzJAM mOoDlPleHiFIpjAwp+rqTjuGVLa+iKUkzSw3PkUEBFzYzbjMT38qDwkNKTfE1svb GBZMgo569uxr+NQS65agARBVgrL+7D5GpOlkx5kw1sE9O3mkHwd6D8pESXUaFDuH WchcUVvHUYO9lRBPmKOBjcbFZVg1QZrZ -----END CERTIFICATE-----Generated at Mon May 12 13:05:53 2025 by rpki-client