$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: 3zyrwIFW50TU0teJFEN7AsizFRzYa5tkher10NFYIP0= Subject key identifier: 0E:B6:F7:57:57:57:32:2B:C0:AA:3D:76:F1:22:8A:19:E2:DF:3B:AA Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C22 Signing time: Thu 08 May 2025 18:35:37 +0000 Manifest this update: Thu 08 May 2025 18:35:36 +0000 Manifest next update: Thu 15 May 2025 18:35:36 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: SjmQvwnl9RnlCunp8F/YG8VSJOlkEy4Eg1vskYHdCag=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 18:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3117 (0xc2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: May 8 18:35:36 2025 GMT Not After : May 15 18:35:36 2025 GMT Subject: CN=681cf978-1aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:a0:d4:7c:44:cb:bf:3b:6d:c8:dd:24:9b: 0d:8d:66:5e:a3:00:e3:66:66:c0:de:db:c2:78:6a: 39:37:b0:5d:27:34:9c:02:d8:84:f3:a1:4b:11:99: c1:fc:2a:03:3e:62:a7:e1:61:29:ea:8c:d8:c2:3a: af:4b:0c:2f:42:dd:69:c7:f8:c1:07:ee:04:37:51: ed:f0:5a:1a:c8:5c:a9:0e:69:52:39:9d:c6:87:b0: 27:38:cd:8e:57:9b:eb:d5:ae:5f:4a:67:4b:ee:99: 55:8f:4f:c7:84:46:6f:65:a4:bc:05:e8:1b:1f:44: b6:9e:59:18:a1:dc:1c:f1:38:ec:86:8d:74:96:7b: b4:cc:b6:7f:69:dc:73:7f:ba:7a:e4:6b:70:a4:6b: 8d:78:b4:78:d2:6e:75:e5:2e:ab:98:12:8f:85:92: 99:86:f9:92:bf:38:01:d4:fd:16:78:4e:32:c0:2f: 4e:3f:ea:75:0b:c7:41:61:cc:e9:ce:51:5a:ca:40: 74:b4:e8:aa:e6:ae:b9:71:51:0e:1e:d2:e8:c0:80: 88:c5:fc:7d:ee:f6:1d:b1:23:11:6f:14:a1:b5:ac: 6d:04:56:9b:58:d9:3b:2f:82:59:45:b6:aa:59:17: cf:34:f3:3b:78:aa:e3:25:ee:84:be:1d:f2:7b:94: 35:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B6:F7:57:57:57:32:2B:C0:AA:3D:76:F1:22:8A:19:E2:DF:3B:AA X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:63:84:97:7b:17:0a:7d:da:a5:fe:1a:2c:e0:58:b9:fb:57: 41:f3:06:5d:60:86:9b:2a:78:f5:4e:3f:80:1e:32:4b:19:ba: ea:72:91:bb:fb:38:25:09:a9:02:29:c1:71:fc:cb:3d:99:7d: 24:44:46:a4:9c:07:f4:f4:9a:42:b4:5f:17:f7:89:b6:b6:75: 3e:aa:ca:72:57:1d:d4:83:57:9a:b3:f6:bb:bd:d1:8e:e7:fc: 18:cb:9d:54:fe:29:66:13:79:cc:a3:f1:d1:51:14:cb:97:43: 85:2f:d8:d7:b9:4e:ad:a1:a1:99:0f:ec:53:e1:c1:9b:53:b5: 76:51:83:6c:e6:ee:2f:7c:ea:df:72:fb:92:d6:74:99:eb:be: 1b:25:16:e9:7d:52:60:90:2f:bb:f1:b3:f9:c3:5f:bd:6c:e5: a5:e9:a2:1f:75:c3:8c:0b:43:ab:0c:3f:6b:25:07:24:3f:ea: 09:33:4f:b1:31:67:61:23:4a:86:e6:b6:24:b9:f2:c2:f7:41: cb:d0:7a:c3:43:25:d7:23:f8:2b:0c:8a:1b:91:5e:6f:95:c1: bf:cf:eb:1a:45:ff:cd:bf:97:31:c5:97:5e:11:83:1a:1c:00: a5:ee:6d:86:38:b7:92:31:87:f5:67:5e:dc:8a:42:a6:5e:34: f1:fb:54:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwNTA4MTgzNTM2WhcNMjUwNTE1MTgzNTM2WjAYMRYwFAYD VQQDEw02ODFjZjk3OC0xYWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArr+g1HxEy787bcjdJJsNjWZeowDjZmbA3tvCeGo5N7BdJzScAtiE86FLEZnB /CoDPmKn4WEp6ozYwjqvSwwvQt1px/jBB+4EN1Ht8FoayFypDmlSOZ3Gh7AnOM2O V5vr1a5fSmdL7plVj0/HhEZvZaS8BegbH0S2nlkYodwc8Tjsho10lnu0zLZ/adxz f7p65GtwpGuNeLR40m515S6rmBKPhZKZhvmSvzgB1P0WeE4ywC9OP+p1C8dBYczp zlFaykB0tOiq5q65cVEOHtLowICIxfx97vYdsSMRbxShtaxtBFabWNk7L4JZRbaq WRfPNPM7eKrjJe6Evh3ye5Q1hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6291dX VzIrwKo9dvEiihni3zuqMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Y4SXexcKfdql/hos4Fi5+1dB8wZdYIabKnj1Tj+AHjJLGbrqcpG7 +zglCakCKcFx/Ms9mX0kREaknAf09JpCtF8X94m2tnU+qspyVx3Ug1eas/a7vdGO 5/wYy51U/ilmE3nMo/HRURTLl0OFL9jXuU6toaGZD+xT4cGbU7V2UYNs5u4vfOrf cvuS1nSZ674bJRbpfVJgkC+78bP5w1+9bOWl6aIfdcOMC0OrDD9rJQckP+oJM0+x MWdhI0qG5rYkufLC90HL0HrDQyXXI/grDIobkV5vlcG/z+saRf/Nv5cxxZdeEYMa HACl7m2GOLeSMYf1Z17cikKmXjTx+1RD -----END CERTIFICATE-----Generated at Sat May 10 04:58:04 2025 by rpki-client