$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: cs8GOmNLhUU87jr7l0boNGPLoXPYf6chC4WuXihnPRE= Subject key identifier: 28:10:48:22:C2:77:2B:BF:55:66:1F:D0:0E:53:3B:95:B6:3E:2E:F9 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0570 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 056C Signing time: Wed 14 May 2025 23:23:06 +0000 Manifest this update: Wed 14 May 2025 23:23:05 +0000 Manifest next update: Wed 21 May 2025 23:23:05 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: Ip50Yjc0PHO7YweRpJIfZw7AbneqjzyZ0tEIogBEkaU=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: May 14 23:23:05 2025 GMT Not After : May 21 23:23:05 2025 GMT Subject: CN=682525d9-c9dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:d7:2a:0f:fe:2d:aa:62:c4:77:fe:e9:b2: 6d:7a:d9:5f:1d:47:cf:df:06:dd:43:18:28:54:71: ce:4f:28:23:4f:1d:57:f8:01:b6:ca:ed:e4:dc:2b: 98:76:b6:9a:30:6b:97:f6:65:89:2a:74:f8:f7:e1: 00:d1:98:85:fc:81:a2:03:dc:31:35:ab:d1:c7:6e: 3b:bc:43:25:83:e7:32:af:d4:2e:79:fa:81:6f:de: 92:d7:f6:c3:78:d7:93:49:73:51:2c:6c:74:f9:b5: be:70:31:72:27:c4:4e:72:a7:cf:b7:44:15:c5:13: 92:56:c7:1a:78:ac:bf:02:8b:8f:54:b1:bd:87:01: de:64:ef:ca:65:a1:43:d0:79:4b:44:ee:49:8e:3c: ba:6c:d0:8e:bf:87:19:fa:64:18:65:87:a4:ac:e5: 49:d5:cf:03:47:60:0a:73:4d:57:8e:b7:81:27:53: 53:cd:ec:a9:3a:a4:69:c7:7a:3f:f6:d1:4a:4a:3d: b6:48:10:2f:6d:83:f2:f7:b5:f4:a4:e1:bc:5b:dc: a6:cd:8b:bd:60:9f:57:2e:b6:89:bc:c8:f8:ff:0a: dd:a7:bd:9c:53:d9:f7:3d:a6:98:0a:d0:fb:87:55: 8c:51:57:d7:b2:fc:7b:0d:81:6c:b0:4a:d2:f4:da: c7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:10:48:22:C2:77:2B:BF:55:66:1F:D0:0E:53:3B:95:B6:3E:2E:F9 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9a:53:01:a6:4a:96:18:e6:d2:ab:c9:80:0e:2a:43:1c:1f: 1b:22:2e:05:25:ec:36:15:b7:a6:bc:e3:18:69:e2:3e:d7:5b: 1c:84:20:ba:c0:32:51:2b:1f:53:2b:3f:81:34:36:bf:8d:ea: f9:19:60:70:ba:a2:26:6a:6c:32:24:b9:c8:09:07:99:d6:89: 76:34:0d:a0:39:8c:9f:7b:90:0c:97:e9:59:62:af:38:65:21: 85:c1:d7:fe:70:c9:ff:a3:30:cf:70:dc:74:6d:92:08:10:8f: 27:c9:0f:80:91:73:15:d0:b3:45:44:30:14:b8:39:90:49:6b: 10:a6:7f:86:e2:bd:5e:cc:d2:c3:83:9b:05:b6:5c:28:a4:ef: 7d:f5:90:fd:1b:32:37:b0:c1:79:68:ca:49:fb:0c:3f:95:d8: 68:80:64:e5:a5:8c:cd:c6:c7:f6:a3:61:04:48:07:ad:ab:52: 25:be:46:c8:77:4c:08:70:a7:f1:3e:43:80:48:5b:9b:3e:a7: 6b:06:a2:d9:19:66:1d:a1:e3:ed:1f:31:e3:23:6d:10:ed:7d: 51:b7:05:23:72:fa:9e:bf:0a:bb:1d:ee:1d:d4:d2:e0:c3:b4: aa:22:84:2b:63:58:a4:ac:45:54:9f:ea:90:48:78:fd:88:2e: eb:76:34:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwNTE0MjMyMzA1WhcNMjUwNTIxMjMyMzA1WjAYMRYwFAYD VQQDEw02ODI1MjVkOS1jOWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbfXKg/+LapixHf+6bJtetlfHUfP3wbdQxgoVHHOTygjTx1X+AG2yu3k3CuY draaMGuX9mWJKnT49+EA0ZiF/IGiA9wxNavRx247vEMlg+cyr9QuefqBb96S1/bD eNeTSXNRLGx0+bW+cDFyJ8ROcqfPt0QVxROSVscaeKy/AouPVLG9hwHeZO/KZaFD 0HlLRO5Jjjy6bNCOv4cZ+mQYZYekrOVJ1c8DR2AKc01XjreBJ1NTzeypOqRpx3o/ 9tFKSj22SBAvbYPy97X0pOG8W9ymzYu9YJ9XLraJvMj4/wrdp72cU9n3PaaYCtD7 h1WMUVfXsvx7DYFssErS9NrHEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgQSCLC dyu/VWYf0A5TO5W2Pi75MB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADmlMBpkqWGObSq8mADipDHB8bIi4FJew2FbemvOMYaeI+11schCC6 wDJRKx9TKz+BNDa/jer5GWBwuqImamwyJLnICQeZ1ol2NA2gOYyfe5AMl+lZYq84 ZSGFwdf+cMn/ozDPcNx0bZIIEI8nyQ+AkXMV0LNFRDAUuDmQSWsQpn+G4r1ezNLD g5sFtlwopO999ZD9GzI3sMF5aMpJ+ww/ldhogGTlpYzNxsf2o2EESAetq1IlvkbI d0wIcKfxPkOASFubPqdrBqLZGWYdoePtHzHjI20Q7X1RtwUjcvqevwq7He4d1NLg w7SqIoQrY1ikrEVUn+qQSHj9iC7rdjQU -----END CERTIFICATE-----Generated at Fri May 16 07:17:56 2025 by rpki-client