$ rpki-client -vvf rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft File: dhdGJegWMtON9iqDtXsDuiiH5vU.mft (raw, json) Hash identifier: WqhK4FECJwnhc7WpuEmgzzekCqhkXc3f3rwgQnLGb+A= Subject key identifier: 7D:E2:CE:67:38:D2:64:E1:8D:6A:88:F1:70:C3:C3:32:BA:B8:5B:20 Authority key identifier: 76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 Certificate issuer: /CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Certificate serial: 07C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft Manifest number: 0782 Signing time: Tue 22 Apr 2025 21:23:12 +0000 Manifest this update: Tue 22 Apr 2025 21:23:12 +0000 Manifest next update: Tue 29 Apr 2025 21:23:11 +0000 Files and hashes: 1: dhdGJegWMtON9iqDtXsDuiiH5vU.crl (hash: jKMT+0ZDJkuxbE1m3QdLEPdn+PKs4SbrwwvTZWIZ2Fs=) 2: 84B9D0540E9711EB9A6C2B3CC4F9AE02.roa (hash: v6e1A53lOs4ttAFgNyyjZoCXEPeOi0GiecLMqc/MAn8=) 3: 857A6BC00E9711EB9A6C2B3CC4F9AE02.roa (hash: Ok9YVh7iJVfq5jAi1dUk84sBA5IsYOWabJTj7XjuXII=) 4: 824D5E300E9711EB9A6C2B3CC4F9AE02.roa (hash: ZDF/6Xw9ZE7b2+OVuWk9y1I5UDHjuJdR4+iTcEafgmY=) 5: 8433FF6A0E9711EB9A6C2B3CC4F9AE02.roa (hash: 5isKKj264kPgvcdF8hBz70YJR1jtU24tZnWCibLQbs8=) 6: 8068BF600E9711EB9A6C2B3CC4F9AE02.roa (hash: iqYDXGJezvbHsoQI5LOs/HpZOp9DdP6shWT091zXI/w=) 7: 21CF5E6C7AF111EF8BC4E684C4F9AE02.roa (hash: b1nalvR/eNXqTum+cSymzCLGQcxE1TXmTmkjmB0g0BY=) 8: A98668464EEB11EFB3305C85C4F9AE02.roa (hash: tWiWEgQiTh2MC49VXb2kimhBotEglhYAfcGxfEIxWjU=) 9: 1E5945A69E4111EDB7C9020EC4F9AE02.roa (hash: LsbxGQh0J4jRRvHUOzGfhoQnBu+EqX3+bxB0XHIwKEg=) 10: 830314BE0E9711EB9A6C2B3CC4F9AE02.roa (hash: eUQRjtj0tF+4ReuUVl4yzwgyQ7i/OO1b+JP4gilLkCk=) 11: 80F371780E9711EB9A6C2B3CC4F9AE02.roa (hash: BL4tECo9e+3ufRZK8OCt2j/Uj2lw36IymgWS2+ZdHFQ=) 12: 8197DA7E0E9711EB9A6C2B3CC4F9AE02.roa (hash: bczxjt2FwG7ZvqXhUNRx4J14OqU7vScZjaB3EzaWWXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 20:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1987 (0x7c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110718, serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Validity Not Before: Apr 22 21:23:12 2025 GMT Not After : Apr 29 21:23:11 2025 GMT Subject: CN=680808c0-1d31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5d:7a:cb:53:e5:08:87:27:94:f2:a6:d3:cd: 48:c5:cd:32:20:9c:a7:15:f0:92:2b:15:d0:79:ee: 24:e6:3d:80:4e:45:19:f8:3c:52:f0:8f:04:b0:07: ed:5c:d3:14:96:80:68:0d:9b:6a:48:7d:a9:a7:4e: a6:cd:ca:8e:f4:9d:61:c8:da:3c:db:74:a6:34:9c: 83:99:6b:6e:b5:76:ca:a1:cf:85:13:02:a8:e5:0a: 2d:6b:eb:90:bc:01:95:f3:4a:bd:e5:22:a6:c2:b4: a2:74:a0:aa:b0:ab:e2:e9:27:92:9b:4d:f4:ec:04: 55:cc:92:a0:8d:00:ce:ff:f9:c5:f9:8d:72:7c:e4: 46:9f:44:0c:78:b0:96:9d:4b:0d:bc:db:65:fc:1b: 69:5d:ff:14:7a:9c:0b:b0:13:67:f2:ed:61:68:71: bf:f0:7e:6d:c1:d4:af:34:83:24:de:f1:d5:58:cc: 2a:e7:1b:8d:51:20:f4:42:c5:1b:e7:70:92:af:e5: d0:81:00:3b:30:c5:f5:61:ae:30:da:d7:51:df:ff: 2c:ba:2e:70:f4:49:e8:2f:ab:a4:87:a2:ba:24:6a: d2:ac:fa:fd:8c:59:45:da:3b:b6:d8:f8:47:54:fb: 04:95:3b:95:ef:75:fd:59:1a:09:15:14:77:85:21: 79:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E2:CE:67:38:D2:64:E1:8D:6A:88:F1:70:C3:C3:32:BA:B8:5B:20 X509v3 Authority Key Identifier: keyid:76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8f:2f:64:bc:4e:7f:b2:29:45:a9:ab:e3:5a:3a:af:b8:2b: 13:6c:40:e1:79:9d:b6:52:34:a0:92:01:2a:c8:d4:6e:ba:4a: 09:f5:f3:2b:27:9c:a5:ca:07:35:ba:ed:da:eb:cd:8f:a3:74: 63:a9:ce:00:0b:e7:56:ea:dd:b1:86:0c:94:ea:e3:3f:36:f1: 4f:42:10:ab:a9:9a:54:e7:b1:f8:83:d9:86:60:ab:35:f5:fd: f1:33:d7:23:0a:9e:07:57:0e:d1:5b:c6:15:1b:82:d1:fd:c7: 29:25:27:bd:35:0c:c0:83:12:b2:32:63:9f:21:c2:7b:d4:0e: 08:8c:0d:49:c9:11:a5:84:07:db:8a:f5:fc:09:64:e8:62:6d: c1:54:19:2c:ac:52:55:10:0d:e8:ea:ba:56:0d:c3:11:80:35: 93:df:a3:f7:09:fc:e0:81:ef:2c:e8:e8:90:1d:e6:5a:91:ea: 45:fb:d1:09:1c:f1:19:92:21:20:7b:94:ab:f2:e6:75:cf:cf: 29:96:c6:29:cd:cc:62:ef:c6:92:9a:06:4a:15:71:7d:99:7f: dd:25:d7:04:80:cd:56:21:c9:cc:29:04:ae:16:39:76:fe:4d: cc:aa:ea:b6:e8:e2:53:5a:58:e5:bb:30:5b:59:c4:97:f1:cf: ec:43:f2:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3MTgxMTAvBgNVBAUTKDc2MTc0NjI1RTgxNjMyRDM4REY2MkE4M0I1N0IwM0JB Mjg4N0U2RjUwHhcNMjUwNDIyMjEyMzEyWhcNMjUwNDI5MjEyMzExWjAYMRYwFAYD VQQDEw02ODA4MDhjMC0xZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl16y1PlCIcnlPKm081Ixc0yIJynFfCSKxXQee4k5j2ATkUZ+DxS8I8EsAft XNMUloBoDZtqSH2pp06mzcqO9J1hyNo823SmNJyDmWtutXbKoc+FEwKo5Qota+uQ vAGV80q95SKmwrSidKCqsKvi6SeSm0307ARVzJKgjQDO//nF+Y1yfORGn0QMeLCW nUsNvNtl/BtpXf8UepwLsBNn8u1haHG/8H5twdSvNIMk3vHVWMwq5xuNUSD0QsUb 53CSr+XQgQA7MMX1Ya4w2tdR3/8sui5w9EnoL6ukh6K6JGrSrPr9jFlF2ju22PhH VPsElTuV73X9WRoJFRR3hSF5AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3izmc4 0mThjWqI8XDDwzK6uFsgMB8GA1UdIwQYMBaAFHYXRiXoFjLTjfYqg7V7A7ooh+b1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDcxOC85MjgzRURFRTBF OTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010T045aXFEdFhzRHVpaUg1 dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoZEdKZWdXTXRPTjlpcUR0WHNEdWlpSDV2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDcxOC85MjgzRURFRTBFOTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010 T045aXFEdFhzRHVpaUg1dlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0jy9kvE5/silFqavjWjqvuCsTbEDheZ22UjSgkgEqyNRuukoJ9fMr J5ylygc1uu3a682Po3Rjqc4AC+dW6t2xhgyU6uM/NvFPQhCrqZpU57H4g9mGYKs1 9f3xM9cjCp4HVw7RW8YVG4LR/ccpJSe9NQzAgxKyMmOfIcJ71A4IjA1JyRGlhAfb ivX8CWToYm3BVBksrFJVEA3o6rpWDcMRgDWT36P3Cfzgge8s6OiQHeZakepF+9EJ HPEZkiEge5Sr8uZ1z88plsYpzcxi78aSmgZKFXF9mX/dJdcEgM1WIcnMKQSuFjl2 /k3Mquq26OJTWljluzBbWcSX8c/sQ/It -----END CERTIFICATE-----Generated at Tue Apr 22 23:05:29 2025 by rpki-client