$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: S5HNlt5i4ai72YFTAeAhPe/FdNX9i8Vg/laoFn9WfXs= Subject key identifier: FE:2A:85:7D:6C:51:6C:36:8C:14:51:CD:37:B6:B9:59:66:8C:E0:A7 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 0115 Signing time: Sun 11 May 2025 03:42:54 +0000 Manifest this update: Sun 11 May 2025 03:42:53 +0000 Manifest next update: Sun 18 May 2025 03:42:53 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: DNroXjhkuXXw9GxoOO/GNOglZe69eE4d+hzOFRzcZtY=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: wXMGwG7lxViwNnrJDB749sBIiL2piUFxteIQBHCkVTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: May 11 03:42:53 2025 GMT Not After : May 18 03:42:53 2025 GMT Subject: CN=68201cbd-10df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:16:b5:98:cb:5d:21:41:1f:fa:44:2a:42: 68:96:be:31:0d:11:44:47:49:6e:58:ce:a5:41:f3: 30:ed:7b:25:8f:05:dd:8e:2b:8a:da:6f:3b:a3:ad: c8:5d:be:68:88:b8:08:0b:a8:f3:d8:ec:b1:3c:0a: 89:7e:b9:c1:69:2a:76:52:50:6e:2f:c9:45:a4:ed: 6a:49:ca:ae:7b:e4:7c:69:3a:84:02:10:b9:9d:f4: 45:b1:42:30:e1:65:35:03:5c:53:0a:08:f1:78:a9: d5:08:40:be:35:92:7c:60:87:85:61:f0:15:63:9c: 93:15:7a:70:24:2c:ed:d2:38:7f:88:9f:df:cc:55: 51:32:44:80:77:2c:db:bc:6c:78:ee:dc:3a:78:70: a8:2b:2a:1b:05:40:80:89:0a:ef:07:b1:eb:b8:9f: 85:a3:1c:a5:f4:41:03:0e:2a:93:a0:4f:95:eb:e8: 96:10:ab:20:d0:be:57:e7:5b:27:17:ad:fc:0d:4f: 0e:17:20:13:97:4f:c3:fb:ff:fa:0a:f0:ed:75:cd: 4b:95:cd:a9:49:39:a1:1b:28:f1:5c:4f:fb:3c:f1: 21:42:2c:6f:b1:84:38:15:12:a6:0e:8a:e9:34:2c: 78:3c:fd:ba:fc:57:6a:42:c4:65:8c:5f:b7:01:da: 70:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2A:85:7D:6C:51:6C:36:8C:14:51:CD:37:B6:B9:59:66:8C:E0:A7 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:ef:79:d4:c7:6c:58:4d:c2:99:3e:19:40:06:6c:1a:2b:fa: 1f:3e:d3:bd:5a:34:10:6b:d5:ba:f0:cb:a0:47:cd:89:36:50: cc:75:7a:5b:3f:81:1b:0d:f8:bb:f3:c1:06:c6:27:11:83:ac: 1e:3b:89:e6:ca:0c:78:1f:da:3d:4b:76:99:e4:39:80:10:93: 3e:a1:b3:20:96:04:c0:ca:fc:e1:ed:75:98:77:b8:81:27:3c: b9:66:ad:9c:68:ae:dd:0e:dd:d8:db:55:07:81:ba:69:be:c9: 4c:12:7e:f9:fc:f0:12:90:77:13:91:f0:98:eb:b5:b1:76:07: 2d:c9:d3:99:d9:1b:93:bf:95:e0:24:84:1f:d9:52:6c:fe:4b: 09:fe:12:7c:b6:47:77:79:78:cb:b1:5b:bc:d1:03:11:ec:de: 8d:e4:4d:0d:84:c8:23:ab:6c:d9:01:59:33:ad:3f:b6:54:74: ee:d4:d9:6b:67:70:c4:14:ba:8d:70:3f:58:c7:a5:a3:01:6c: c1:22:e6:d4:f7:71:90:55:1f:1d:1d:4e:a0:81:ea:44:79:98: 92:2b:8c:f1:6d:a7:75:b7:a4:ce:b7:fe:89:34:f5:63:56:0e: c2:b8:91:d6:c3:b9:67:15:24:a1:77:eb:12:a8:e7:cb:03:47: 0f:24:c7:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjUwNTExMDM0MjUzWhcNMjUwNTE4MDM0MjUzWjAYMRYwFAYD VQQDEw02ODIwMWNiZC0xMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWEWtZjLXSFBH/pEKkJolr4xDRFER0luWM6lQfMw7XsljwXdjiuK2m87o63I Xb5oiLgIC6jz2OyxPAqJfrnBaSp2UlBuL8lFpO1qScque+R8aTqEAhC5nfRFsUIw 4WU1A1xTCgjxeKnVCEC+NZJ8YIeFYfAVY5yTFXpwJCzt0jh/iJ/fzFVRMkSAdyzb vGx47tw6eHCoKyobBUCAiQrvB7HruJ+Foxyl9EEDDiqToE+V6+iWEKsg0L5X51sn F638DU8OFyATl0/D+//6CvDtdc1Llc2pSTmhGyjxXE/7PPEhQixvsYQ4FRKmDorp NCx4PP26/FdqQsRljF+3AdpwJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4qhX1s UWw2jBRRzTe2uVlmjOCnMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi73nUx2xYTcKZPhlABmwaK/ofPtO9WjQQa9W68MugR82JNlDMdXpb P4EbDfi788EGxicRg6weO4nmygx4H9o9S3aZ5DmAEJM+obMglgTAyvzh7XWYd7iB Jzy5Zq2caK7dDt3Y21UHgbppvslMEn75/PASkHcTkfCY67WxdgctydOZ2RuTv5Xg JIQf2VJs/ksJ/hJ8tkd3eXjLsVu80QMR7N6N5E0NhMgjq2zZAVkzrT+2VHTu1Nlr Z3DEFLqNcD9Yx6WjAWzBIubU93GQVR8dHU6ggepEeZiSK4zxbad1t6TOt/6JNPVj Vg7CuJHWw7lnFSShd+sSqOfLA0cPJMdt -----END CERTIFICATE-----Generated at Mon May 12 22:44:27 2025 by rpki-client