$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: Fq4oAVX6ym2ljlgJYOd9ww2F8McCsCoY5NYyjOunBIk= Subject key identifier: 9F:3B:38:94:3E:AD:11:02:83:B5:6D:85:DC:0C:B8:24:AC:55:D0:99 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 0182 Signing time: Tue 13 May 2025 03:02:41 +0000 Manifest this update: Tue 13 May 2025 03:02:41 +0000 Manifest next update: Tue 20 May 2025 03:02:41 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: A1T4szceLeqjpaIcRpQNsCPlxxTHrzfutP7fkhCzft4=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: mfE8FVHaGAKjd3z9L57ng4sztMrGr2OeILKa3QTIK7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: May 13 03:02:41 2025 GMT Not After : May 20 03:02:41 2025 GMT Subject: CN=6822b651-98d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a4:4e:cd:7d:63:0f:65:1c:61:29:15:33:89: 92:dc:a9:5a:86:b2:a7:58:b6:80:1f:20:d9:4e:9b: 1f:18:f6:ef:68:84:fb:f7:a1:57:81:46:f9:c8:6a: dd:9d:fe:3c:28:89:40:f1:93:da:1a:fd:d1:d2:9d: 4d:d0:ab:31:a1:b5:f2:73:e9:ca:20:75:60:a4:28: 23:d0:69:72:43:19:8c:7c:64:f8:40:78:2f:96:ce: 35:7b:c4:4f:f6:d6:7b:7c:21:ca:14:d5:96:7b:84: 62:f2:d0:dc:2a:c1:91:72:ee:e3:18:58:32:82:fa: 4e:c4:53:26:c5:a6:3b:82:a6:10:9b:1a:f3:4a:51: df:f2:ca:90:f9:93:8a:3d:d1:2a:0e:f6:eb:64:23: f3:f2:ce:b2:24:e1:30:d7:33:12:23:a9:6e:5d:8f: 7f:c3:73:39:81:5a:fe:6d:05:14:1c:37:57:07:a1: 8b:ef:06:db:07:b0:ed:84:af:d0:d4:ac:a6:34:b5: 77:7e:ed:1e:22:2a:0d:12:9e:82:38:c2:dd:97:2d: b5:d3:8f:0d:b5:53:36:00:7c:35:2e:18:2e:f7:81: 92:6a:c3:31:c1:14:aa:5e:36:f1:1d:68:cd:2a:b6: 55:6c:76:cd:22:3e:59:a1:64:99:a8:5b:d1:f7:c4: 37:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:3B:38:94:3E:AD:11:02:83:B5:6D:85:DC:0C:B8:24:AC:55:D0:99 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:63:51:f7:ed:7a:be:27:a0:01:e3:02:7a:7b:5b:14:3c:83: 58:cb:3c:61:29:65:4b:7f:59:d2:d3:4a:18:e3:97:2c:4c:6a: 53:c6:38:75:5c:66:e3:c3:ef:8b:21:96:fa:15:2b:58:df:84: 66:70:f7:c7:40:d5:f7:c6:72:d1:8d:f6:7d:37:c9:e3:86:cb: f8:44:ee:db:bb:21:51:ca:c3:59:f9:a9:b0:99:26:c4:12:e6: 91:98:a1:1f:46:85:7d:04:54:4e:7f:72:0f:49:d8:13:82:81: 7f:29:53:d8:37:fe:a4:b0:8f:50:19:19:cf:7c:2e:f5:c8:4f: e2:a3:0c:af:0a:a9:28:44:46:3b:e3:0d:2f:cc:e2:77:0c:85: a1:1b:16:62:90:c9:a5:1c:09:2c:56:35:b4:7e:8d:29:a3:15: 75:5b:8e:17:82:91:ba:63:16:4d:51:4e:d6:bf:f0:04:5f:03: 71:e5:e4:95:3d:6a:8d:98:52:3f:38:6e:1a:9b:6b:64:ff:1c: 45:b5:38:74:2c:09:c7:c0:10:b6:be:af:b2:d0:16:52:0a:01: 87:20:3f:52:30:54:e4:5f:e5:a0:0c:3f:ad:5a:1f:f5:c9:05: 32:3d:d5:48:b0:79:a4:d6:b5:87:0c:ec:94:59:f0:d1:c3:97: 06:6f:1e:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUwNTEzMDMwMjQxWhcNMjUwNTIwMDMwMjQxWjAYMRYwFAYD VQQDEw02ODIyYjY1MS05OGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7aROzX1jD2UcYSkVM4mS3KlahrKnWLaAHyDZTpsfGPbvaIT796FXgUb5yGrd nf48KIlA8ZPaGv3R0p1N0KsxobXyc+nKIHVgpCgj0GlyQxmMfGT4QHgvls41e8RP 9tZ7fCHKFNWWe4Ri8tDcKsGRcu7jGFgygvpOxFMmxaY7gqYQmxrzSlHf8sqQ+ZOK PdEqDvbrZCPz8s6yJOEw1zMSI6luXY9/w3M5gVr+bQUUHDdXB6GL7wbbB7DthK/Q 1KymNLV3fu0eIioNEp6COMLdly21048NtVM2AHw1Lhgu94GSasMxwRSqXjbxHWjN KrZVbHbNIj5ZoWSZqFvR98Q3AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ87OJQ+ rRECg7VthdwMuCSsVdCZMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATY1H37Xq+J6AB4wJ6e1sUPINYyzxhKWVLf1nS00oY45csTGpTxjh1 XGbjw++LIZb6FStY34RmcPfHQNX3xnLRjfZ9N8njhsv4RO7buyFRysNZ+amwmSbE EuaRmKEfRoV9BFROf3IPSdgTgoF/KVPYN/6ksI9QGRnPfC71yE/iowyvCqkoREY7 4w0vzOJ3DIWhGxZikMmlHAksVjW0fo0poxV1W44XgpG6YxZNUU7Wv/AEXwNx5eSV PWqNmFI/OG4am2tk/xxFtTh0LAnHwBC2vq+y0BZSCgGHID9SMFTkX+WgDD+tWh/1 yQUyPdVIsHmk1rWHDOyUWfDRw5cGbx5M -----END CERTIFICATE-----Generated at Wed May 14 09:33:26 2025 by rpki-client