$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: geAkv3kKMoNVtatQ9n1Cz+CsMoMfXXXIpKz6l+tKcjc= Subject key identifier: B0:1B:14:08:D3:87:6F:31:20:C2:D8:D6:CD:46:D6:75:EE:D9:ED:3B Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 17C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 17AB Signing time: Fri 04 Apr 2025 16:40:02 +0000 Manifest this update: Fri 04 Apr 2025 16:40:01 +0000 Manifest next update: Fri 11 Apr 2025 16:40:01 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: o/AexIbyF4dXNfQv97W/jVXLfzy5dkA5Xsr3oxztfik=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: zR1vLwBNC+zW0NA3iey3xByMneMFo5M9cemWz2gclFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6082 (0x17c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9 Validity Not Before: Apr 4 16:40:01 2025 GMT Not After : Apr 11 16:40:01 2025 GMT Subject: CN=67f00b62-d01e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f6:b7:25:57:0b:e8:a6:b9:c4:f4:63:9c:af: 21:01:56:9b:aa:8f:96:81:1f:3c:5d:38:69:11:fd: 98:54:67:e2:9a:b3:aa:9c:47:42:3d:cd:b2:df:f8: 89:c8:46:3d:73:6f:de:b3:4c:14:5d:77:72:64:9e: 61:52:6f:c3:75:f0:c4:cf:7f:04:6d:57:13:18:e0: d4:9b:00:be:76:23:93:37:41:9d:3c:da:0c:ba:ca: bc:1b:1a:bb:fd:c7:40:c9:94:c4:48:2d:ed:a2:4f: a9:b2:f2:15:c3:ec:57:18:8b:f1:b2:2c:33:42:c5: d0:49:b4:a5:b6:35:b8:d2:15:e7:e7:1a:3d:c5:06: 2c:dd:b3:be:9f:70:7f:e0:c3:22:45:5c:fb:ba:7f: d5:bc:91:31:66:40:ec:b7:f0:6a:5c:5a:86:dc:49: 4c:dc:db:11:0e:98:ce:8e:e9:1a:91:f7:86:a6:5a: a7:1b:e4:ee:90:41:f0:93:53:6e:d8:f5:eb:ac:40: 4a:17:c3:b3:78:a4:1f:8e:9a:bf:2e:bf:78:56:e4: 54:a0:c9:7d:91:ac:f1:de:4b:e0:cd:f6:6d:6b:de: ab:5a:65:05:c3:7f:14:5b:a1:30:a5:0a:e8:37:57: bb:ff:58:6f:b2:db:69:c8:6f:ff:73:56:3e:bd:75: e0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:1B:14:08:D3:87:6F:31:20:C2:D8:D6:CD:46:D6:75:EE:D9:ED:3B X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b4:88:0d:46:96:09:dd:94:c6:d8:a5:09:98:a0:8d:6d:d1: dd:a0:ed:67:d3:bd:00:85:70:7c:14:e5:b5:b8:e7:b2:ce:c8: f3:95:4a:3e:f1:40:bb:10:2f:b1:d9:73:0d:6c:13:f6:d7:ab: 8f:f5:f4:f0:a0:ee:d0:44:d3:e3:84:79:58:c3:32:08:af:33: 3f:de:c3:29:82:85:c5:6a:d8:10:07:7a:04:5e:12:14:4b:7d: 25:65:ed:b4:12:c7:f6:90:93:14:25:56:ba:0f:06:6a:19:9f: 38:73:27:68:58:4a:ae:7a:bc:d1:18:01:4d:25:cb:65:b6:ed: dc:27:f5:c4:77:c4:9a:3c:15:ad:a4:6d:fd:68:b5:d8:f0:fb: e4:73:d9:cd:17:80:c0:0c:12:d8:cf:fb:67:68:ca:d8:8a:21: 49:48:49:96:d3:03:f9:25:0f:95:51:94:a5:6d:90:54:2c:69: f7:be:b1:ba:f9:c1:fd:76:75:2a:e5:e0:7d:ef:90:35:e8:d1: 17:62:7e:ac:4d:89:bc:5c:15:97:18:68:54:ad:13:47:c8:22: 05:75:8e:51:46:27:51:0f:04:8d:d7:03:df:16:19:42:78:0e: 3b:52:e7:8c:7c:fd:21:8c:68:f2:02:c6:57:9d:1d:9e:03:e5: 3a:f9:90:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUwNDA0MTY0MDAxWhcNMjUwNDExMTY0MDAxWjAYMRYwFAYD VQQDEw02N2YwMGI2Mi1kMDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2va3JVcL6Ka5xPRjnK8hAVabqo+WgR88XThpEf2YVGfimrOqnEdCPc2y3/iJ yEY9c2/es0wUXXdyZJ5hUm/DdfDEz38EbVcTGODUmwC+diOTN0GdPNoMusq8Gxq7 /cdAyZTESC3tok+psvIVw+xXGIvxsiwzQsXQSbSltjW40hXn5xo9xQYs3bO+n3B/ 4MMiRVz7un/VvJExZkDst/BqXFqG3ElM3NsRDpjOjukakfeGplqnG+TukEHwk1Nu 2PXrrEBKF8OzeKQfjpq/Lr94VuRUoMl9kazx3kvgzfZta96rWmUFw38UW6EwpQro N1e7/1hvsttpyG//c1Y+vXXg1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAbFAjT h28xIMLY1s1G1nXu2e07MB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6tIgNRpYJ3ZTG2KUJmKCNbdHdoO1n070AhXB8FOW1uOeyzsjzlUo+ 8UC7EC+x2XMNbBP216uP9fTwoO7QRNPjhHlYwzIIrzM/3sMpgoXFatgQB3oEXhIU S30lZe20Esf2kJMUJVa6DwZqGZ84cydoWEquerzRGAFNJctltu3cJ/XEd8SaPBWt pG39aLXY8Pvkc9nNF4DADBLYz/tnaMrYiiFJSEmW0wP5JQ+VUZSlbZBULGn3vrG6 +cH9dnUq5eB975A16NEXYn6sTYm8XBWXGGhUrRNHyCIFdY5RRidRDwSN1wPfFhlC eA47UueMfP0hjGjyAsZXnR2eA+U6+ZBV -----END CERTIFICATE-----Generated at Sat Apr 5 03:48:50 2025 by rpki-client