$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: vyNizVk6RinlociFTqpqJ7UJOhGNrbgSBVuG7duV6eU= Subject key identifier: 2C:DB:D9:B9:CC:53:95:88:27:6C:FF:6A:0D:41:57:37:D0:58:8F:59 Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 05EB Signing time: Sun 04 May 2025 22:36:12 +0000 Manifest this update: Sun 04 May 2025 22:36:12 +0000 Manifest next update: Sun 11 May 2025 22:36:12 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: VQolhWN7oXlY7SjvlThbZNbVWeviUSW5DCFax0Qr0Ws=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: May 4 22:36:12 2025 GMT Not After : May 11 22:36:12 2025 GMT Subject: CN=6817ebdc-3fbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a2:c1:63:5c:9a:38:48:8b:c7:2b:44:26:33: 12:85:ae:6c:e8:16:7c:cb:5b:31:76:00:a5:db:64: e3:22:9b:62:d0:8b:a3:13:e2:5f:12:d1:2d:08:44: 9d:06:14:dc:5d:12:0a:b1:95:87:03:02:70:f3:87: e6:e9:b7:12:1a:1b:5f:f1:88:9b:e9:f0:c0:af:df: 07:19:4d:18:0d:f0:67:54:b8:f6:96:b3:72:9a:0c: 44:20:43:b3:d0:18:4e:87:03:59:2e:e7:d5:1b:a4: e5:81:ae:e1:56:7c:1e:1f:70:1c:73:b7:43:0f:fc: c0:76:64:ff:2f:f0:e0:70:e9:55:b6:61:db:03:da: 87:18:3b:2f:1f:d1:c0:00:3c:e7:0d:57:97:d4:7b: ec:15:f8:40:77:b4:dd:25:a3:48:c8:26:3f:85:66: b8:c6:57:0f:0e:c7:4c:c6:4d:bf:19:7e:f1:a2:7c: 54:31:b6:88:d5:ea:97:52:f3:a3:35:0e:3e:2d:d1: c1:6f:7b:15:5c:c0:48:be:a7:7f:70:ac:42:ee:8a: 14:ab:27:74:25:cb:11:c2:90:57:61:e4:86:d8:2a: 13:51:a8:c0:e0:87:9c:20:f3:f7:c1:52:51:55:e0: 5a:2e:7f:d6:f2:a2:11:33:be:b9:86:d1:0a:8c:65: 4c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DB:D9:B9:CC:53:95:88:27:6C:FF:6A:0D:41:57:37:D0:58:8F:59 X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:5b:cd:b1:44:5d:60:67:84:10:21:7c:90:68:80:0f:79:5a: 9c:5e:03:57:90:36:46:7d:85:68:eb:4c:b8:87:e4:21:45:64: 2d:0c:42:10:c5:16:87:0b:6e:ed:92:89:bc:86:ab:4f:08:43: 23:25:8a:3c:76:ef:fb:74:d8:1b:4d:3b:72:5c:a5:35:ed:d8: 9e:e8:07:d5:e6:c8:8b:ff:cb:ac:4e:1e:f6:46:2f:fc:4e:a9: bc:18:5a:49:c7:da:74:6f:65:8c:7c:1e:15:e0:05:07:23:cd: 30:69:6f:54:04:82:04:d3:00:0e:57:4b:f4:7d:4d:ab:a2:01: 64:06:c8:56:92:c4:b9:3e:ee:1e:60:af:93:dd:98:79:cb:24: 35:61:57:a6:9d:c0:97:46:43:61:76:a5:f1:1e:7a:cf:07:9a: 32:16:ff:42:d3:ca:13:05:4b:0b:12:69:28:17:36:e2:4b:9b: 8d:ef:a7:09:3f:7f:05:61:56:f9:a0:ac:c8:40:17:2f:9e:a9: 21:f4:7c:81:0a:2b:81:8f:d1:0e:32:24:6c:ef:cc:a5:4c:29: a6:84:91:b5:56:63:fb:b0:4f:88:2a:51:40:c5:a3:28:35:68: 39:85:ca:db:f0:58:f7:0a:2f:50:f9:e4:15:da:cf:1a:c6:1d: 91:83:08:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwNTA0MjIzNjEyWhcNMjUwNTExMjIzNjEyWjAYMRYwFAYD VQQDEw02ODE3ZWJkYy0zZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6LBY1yaOEiLxytEJjMSha5s6BZ8y1sxdgCl22TjIpti0IujE+JfEtEtCESd BhTcXRIKsZWHAwJw84fm6bcSGhtf8Yib6fDAr98HGU0YDfBnVLj2lrNymgxEIEOz 0BhOhwNZLufVG6Tlga7hVnweH3Acc7dDD/zAdmT/L/DgcOlVtmHbA9qHGDsvH9HA ADznDVeX1HvsFfhAd7TdJaNIyCY/hWa4xlcPDsdMxk2/GX7xonxUMbaI1eqXUvOj NQ4+LdHBb3sVXMBIvqd/cKxC7ooUqyd0JcsRwpBXYeSG2CoTUajA4IecIPP3wVJR VeBaLn/W8qIRM765htEKjGVM7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzb2bnM U5WIJ2z/ag1BVzfQWI9ZMB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsW82xRF1gZ4QQIXyQaIAPeVqcXgNXkDZGfYVo60y4h+QhRWQtDEIQ xRaHC27tkom8hqtPCEMjJYo8du/7dNgbTTtyXKU17die6AfV5siL/8usTh72Ri/8 Tqm8GFpJx9p0b2WMfB4V4AUHI80waW9UBIIE0wAOV0v0fU2rogFkBshWksS5Pu4e YK+T3Zh5yyQ1YVemncCXRkNhdqXxHnrPB5oyFv9C08oTBUsLEmkoFzbiS5uN76cJ P38FYVb5oKzIQBcvnqkh9HyBCiuBj9EOMiRs78ylTCmmhJG1VmP7sE+IKlFAxaMo NWg5hcrb8Fj3Ci9Q+eQV2s8axh2Rgwjx -----END CERTIFICATE-----Generated at Mon May 5 02:25:55 2025 by rpki-client