$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: pi9Ic8RS+0AGJuYr84hnLmFSVLA8kCnW4Hri5wPUCvQ= Subject key identifier: 5F:CF:3C:09:3D:3E:9D:A0:96:D5:B8:F7:BF:CB:9D:A4:E3:69:E5:88 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 3486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 347E Signing time: Fri 04 Apr 2025 14:26:15 +0000 Manifest this update: Fri 04 Apr 2025 14:26:15 +0000 Manifest next update: Fri 11 Apr 2025 14:26:15 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: 4voMWFeGFsbDCBuWa9K10OVMqv/4N8LhQOhLjhqQn/0=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: O+j9Zx5sSnGiEmDp3bX6jlKG4hSKXF0a15C+swghh6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13446 (0x3486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D Validity Not Before: Apr 4 14:26:15 2025 GMT Not After : Apr 11 14:26:15 2025 GMT Subject: CN=67efec07-7efd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:26:83:4a:81:3e:23:20:09:46:f5:08:0d:30: da:83:84:3f:ff:a7:a0:57:6f:23:17:0c:ca:80:c3: 84:2c:cd:6f:f3:8a:45:80:40:95:5c:5b:2a:4b:5d: 63:9f:94:b5:1f:9e:d1:79:43:26:b6:84:bc:b4:33: c4:d2:13:61:82:77:61:a7:67:42:d2:73:3d:4c:fe: e3:f5:0d:a1:7f:09:9d:52:4e:39:4e:8e:40:55:8e: 6e:79:db:72:77:11:cf:ae:6c:c4:49:b7:6f:de:99: b5:23:30:fd:50:8a:ad:9c:b1:59:1d:bd:70:3a:86: f4:d7:9a:79:eb:1e:0e:9d:c6:e5:9e:aa:c6:db:54: dc:fd:34:57:b1:2a:8e:3c:8b:25:23:46:ad:51:e2: a7:e1:e3:2c:0e:da:8f:2b:99:b9:76:19:2b:11:20: d5:33:e2:ef:03:13:b3:3b:5d:43:d2:f4:55:5f:db: 52:dc:61:26:3b:77:d9:0a:1c:c3:9c:5d:77:35:e4: fa:be:59:11:52:11:33:25:7d:c6:4d:f7:e9:9d:4c: 31:0d:af:dd:cd:f5:8b:ac:4d:04:a6:27:b2:27:28: a8:12:d2:f8:64:15:fb:fb:83:2d:2b:51:d8:30:11: 99:ee:51:6e:2c:51:5b:53:e9:14:51:eb:96:39:8c: 2c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:CF:3C:09:3D:3E:9D:A0:96:D5:B8:F7:BF:CB:9D:A4:E3:69:E5:88 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e1:da:be:3c:85:07:c2:88:ea:c6:42:22:7d:9d:d3:cf:da: 85:8a:ec:4a:3d:75:d3:5e:9c:c1:66:4c:9e:12:7e:ec:c3:95: fe:2a:3c:03:3f:d5:f9:6c:5a:56:3f:aa:24:25:f6:02:11:34: 5b:a7:ff:a5:ba:22:6a:0b:20:a5:9d:8a:4c:a7:77:ba:47:5b: 28:c3:5e:4c:16:80:68:f6:f0:ee:18:50:d2:a3:73:d3:f4:e9: 7c:b4:eb:99:5d:29:50:f2:6a:6e:bf:be:cb:43:0d:40:95:ca: 13:1f:1e:45:2a:d2:a8:f4:07:2b:a3:4a:be:39:6c:7f:85:e8: 12:c1:67:1d:f5:93:3b:7d:d4:9d:0f:de:5f:50:87:ed:bc:da: be:e3:ee:31:64:bb:60:00:39:7f:82:56:66:8c:39:52:95:10: 79:16:af:c1:dc:9d:aa:ac:bc:18:97:04:5d:23:17:17:03:cf: e2:9f:e5:ef:87:ef:8f:28:aa:d9:46:3b:88:0c:f9:1c:f8:54: 7f:cd:fe:b8:08:0d:8f:72:ae:44:97:c7:f7:4e:75:e9:02:02: 7e:7e:6d:81:7a:f8:71:5d:c5:ce:52:89:c5:ab:64:99:5c:87: 38:78:f8:d0:b9:f0:ee:50:fd:65:f9:15:77:4b:b2:b5:e1:36: 1c:c6:c1:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjUwNDA0MTQyNjE1WhcNMjUwNDExMTQyNjE1WjAYMRYwFAYD VQQDEw02N2VmZWMwNy03ZWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCaDSoE+IyAJRvUIDTDag4Q//6egV28jFwzKgMOELM1v84pFgECVXFsqS11j n5S1H57ReUMmtoS8tDPE0hNhgndhp2dC0nM9TP7j9Q2hfwmdUk45To5AVY5uedty dxHPrmzESbdv3pm1IzD9UIqtnLFZHb1wOob015p56x4OncblnqrG21Tc/TRXsSqO PIslI0atUeKn4eMsDtqPK5m5dhkrESDVM+LvAxOzO11D0vRVX9tS3GEmO3fZChzD nF13NeT6vlkRUhEzJX3GTffpnUwxDa/dzfWLrE0EpieyJyioEtL4ZBX7+4MtK1HY MBGZ7lFuLFFbU+kUUeuWOYwsMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/PPAk9 Pp2gltW497/LnaTjaeWIMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp4dq+PIUHwojqxkIifZ3Tz9qFiuxKPXXTXpzBZkyeEn7sw5X+KjwD P9X5bFpWP6okJfYCETRbp/+luiJqCyClnYpMp3e6R1sow15MFoBo9vDuGFDSo3PT 9Ol8tOuZXSlQ8mpuv77LQw1AlcoTHx5FKtKo9Acro0q+OWx/hegSwWcd9ZM7fdSd D95fUIftvNq+4+4xZLtgADl/glZmjDlSlRB5Fq/B3J2qrLwYlwRdIxcXA8/in+Xv h++PKKrZRjuIDPkc+FR/zf64CA2Pcq5El8f3TnXpAgJ+fm2BevhxXcXOUonFq2SZ XIc4ePjQufDuUP1l+RV3S7K14TYcxsFm -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:39 2025 by rpki-client