$ rpki-client -vvf rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft File: rLhNci0lVbSDPOQGgw_b_pgrfGY.mft (raw, json) Hash identifier: kI0+hOhYrA0M7+6iVQg70ql5dWngw+6yf28GG2Rv9ME= Subject key identifier: 27:AF:E9:D8:32:93:BB:50:10:D3:7F:C7:A4:26:DB:C9:24:7A:1C:F0 Authority key identifier: AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 Certificate issuer: /CN=A9180669/serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft Manifest number: 0A Signing time: Thu 15 May 2025 07:25:36 +0000 Manifest this update: Thu 15 May 2025 07:25:36 +0000 Manifest next update: Thu 22 May 2025 07:25:36 +0000 Files and hashes: 1: rLhNci0lVbSDPOQGgw_b_pgrfGY.crl (hash: r+4RgY797vK5MFdPF17mAbHix4Ot+HiKqtQ6oJZ2P7U=) 2: 7D1BFC5E24B411F08834DE10C4F9AE02.roa (hash: diVe3oDK8BNzbsZfVF9MUY+tHtrxSbiFO+M9PazMfpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180669, serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Validity Not Before: May 15 07:25:36 2025 GMT Not After : May 22 07:25:36 2025 GMT Subject: CN=682596f0-1bad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:28:78:33:b9:7e:1a:c8:6c:71:75:a1:db:5b: 98:83:06:91:9b:bc:cd:cc:30:a9:a7:77:2c:3b:bb: 04:a2:f7:fe:d0:97:70:8f:48:45:8e:5c:6d:5b:c8: c1:9b:68:7c:00:fa:f5:b8:48:28:52:e3:54:6c:22: f0:a9:7b:37:72:e4:72:b4:33:4b:d3:fe:58:2a:fa: 01:f4:e0:19:98:89:42:ba:20:c3:e4:c6:72:e0:b7: 1a:4b:c1:ef:d8:4a:b4:f5:e1:12:62:ae:fb:61:01: 73:ce:91:12:e2:ea:ab:15:74:db:73:a4:d6:28:30: 9c:1f:b8:07:ca:c9:36:3c:88:02:2e:7c:00:d7:fa: 3b:59:fe:6d:94:87:0b:90:92:81:23:1b:11:03:25: 17:f9:fe:05:73:6c:fe:a7:7e:14:a8:27:85:9c:90: 00:66:99:4f:ce:a7:66:18:1a:f6:3b:8b:e6:86:22: c4:1f:50:79:9a:de:9c:a8:c2:e1:e8:08:05:c2:37: cc:1c:17:fe:ff:d0:ad:47:3c:d1:11:73:02:f8:02: 96:b2:c3:21:56:30:e0:7a:e4:34:ed:dc:cc:6a:71: 33:26:9f:d6:c5:76:d2:b2:9c:da:8b:e4:08:e7:20: c1:3e:eb:9d:9a:15:98:c4:66:20:87:2a:f9:f5:ec: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AF:E9:D8:32:93:BB:50:10:D3:7F:C7:A4:26:DB:C9:24:7A:1C:F0 X509v3 Authority Key Identifier: keyid:AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:01:84:64:98:59:57:9d:ab:88:3d:1a:85:f4:ff:da:b8:c2: fb:c7:e7:ac:9f:28:90:62:8d:b3:66:02:c0:d8:5d:3a:44:a9: c1:05:cb:46:14:da:35:0d:be:a5:d1:f4:1e:40:c2:9a:1f:fb: e9:e8:66:0e:f0:f5:0f:e7:27:70:7e:70:97:d0:9e:21:c0:bb: 00:fd:7a:64:84:48:ce:62:d8:41:96:44:ce:54:31:f1:ac:b8: 6c:ef:bf:08:8f:48:ac:6b:58:6a:ab:d6:4a:9f:f5:16:25:2f: df:99:ad:32:6e:6e:13:81:03:52:a7:28:5e:4a:cb:07:b1:c3: 1c:69:44:c7:61:41:8d:1f:c1:f8:07:a6:26:9b:1a:06:64:17: 26:49:69:1f:14:b2:4a:e5:c5:e3:06:dd:d3:4e:fa:d6:0b:e0: 85:d0:32:00:7f:0d:b6:2c:7a:23:a3:ca:2a:cf:2e:a1:67:54: 5d:af:3f:96:93:43:02:92:51:b0:36:9d:44:15:96:cd:c2:7a: 16:45:eb:ce:9b:15:ea:ae:b5:98:02:6c:47:69:2c:cd:13:f3: bc:97:0a:74:cb:c1:94:46:f9:c9:25:58:4b:19:1e:1b:ac:3c: 50:43:b0:8f:0f:b0:d9:4c:72:6b:74:a7:e5:0b:e1:39:a6:3e: 12:c4:e9:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDY2OTExMC8GA1UEBRMoQUNCODRENzIyRDI1NTVCNDgzM0NFNDA2ODMwRkRCRkU5 ODJCN0M2NjAeFw0yNTA1MTUwNzI1MzZaFw0yNTA1MjIwNzI1MzZaMBgxFjAUBgNV BAMTDTY4MjU5NmYwLTFiYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcKHgzuX4ayGxxdaHbW5iDBpGbvM3MMKmndyw7uwSi9/7Ql3CPSEWOXG1byMGb aHwA+vW4SChS41RsIvCpezdy5HK0M0vT/lgq+gH04BmYiUK6IMPkxnLgtxpLwe/Y SrT14RJirvthAXPOkRLi6qsVdNtzpNYoMJwfuAfKyTY8iAIufADX+jtZ/m2UhwuQ koEjGxEDJRf5/gVzbP6nfhSoJ4WckABmmU/Op2YYGvY7i+aGIsQfUHma3pyowuHo CAXCN8wcF/7/0K1HPNERcwL4ApaywyFWMOB65DTt3MxqcTMmn9bFdtKynNqL5Ajn IME+652aFZjEZiCHKvn17FRFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ6/p2DKT u1AQ03/HpCbbySR6HPAwHwYDVR0jBBgwFoAUrLhNci0lVbSDPOQGgw/b/pgrfGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwNjY5Lzc3RTkwNEM4MjRC MTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJTRFBPUUdnd19iX3BncmZH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckxoTmNpMGxWYlNEUE9RR2d3X2JfcGdyZkdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw NjY5Lzc3RTkwNEM4MjRCMTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJT RFBPUUdnd19iX3BncmZHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEUBhGSYWVedq4g9GoX0/9q4wvvH56yfKJBijbNmAsDYXTpEqcEFy0YU 2jUNvqXR9B5Awpof++noZg7w9Q/nJ3B+cJfQniHAuwD9emSESM5i2EGWRM5UMfGs uGzvvwiPSKxrWGqr1kqf9RYlL9+ZrTJubhOBA1KnKF5KywexwxxpRMdhQY0fwfgH piabGgZkFyZJaR8UskrlxeMG3dNO+tYL4IXQMgB/DbYseiOjyirPLqFnVF2vP5aT QwKSUbA2nUQVls3CehZF686bFequtZgCbEdpLM0T87yXCnTLwZRG+cklWEsZHhus PFBDsI8PsNlMcmt0p+UL4TmmPhLE6cg= -----END CERTIFICATE-----Generated at Thu May 15 22:31:55 2025 by rpki-client