$ rpki-client -vvf rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft File: SihlGpSsY59qsTJHTTHrDfzm3Hk.mft (raw, json) Hash identifier: 8VdgWjklpQRaooMh1sRxlo3CnN16vxSI0ixIjy6LYBI= Subject key identifier: C6:04:BF:A7:2F:29:BC:8B:6F:86:6D:F9:3C:2F:A5:FD:D1:8D:D7:7C Authority key identifier: 4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79 Certificate issuer: /CN=A9122373/serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79 Certificate serial: 04B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft Manifest number: 04A4 Signing time: Wed 02 Apr 2025 23:57:19 +0000 Manifest this update: Wed 02 Apr 2025 23:57:19 +0000 Manifest next update: Wed 09 Apr 2025 23:57:19 +0000 Files and hashes: 1: SihlGpSsY59qsTJHTTHrDfzm3Hk.crl (hash: nBHYRvPh7N7AvvOOmtU8b3uRgYxTHi0LhP1xdTMoXnQ=) 2: A64296622BAA11EC9618D864C4F9AE02.roa (hash: OMr4Dz07a9K+JRAHryD2B9Vl/J9RaoHPdVjAOTh62ZI=) 3: C420EBE06EC911EC8A5A940AC4F9AE02.roa (hash: t0Udbj/BMaf/sH0WctEk56jZ3TVW9akvyOH3KkeFZWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1205 (0x4b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122373 Validity Not Before: Apr 2 23:57:19 2025 GMT Not After : Apr 9 23:57:19 2025 GMT Subject: CN=67edcedf-3921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5a:63:4b:45:94:a5:89:85:a1:c2:34:88:b2: 03:2f:4a:62:e4:37:51:b2:aa:88:e6:c0:29:2c:85: d7:d5:4c:0b:cb:d5:e8:74:27:e2:52:e9:d2:87:7d: d6:48:7f:e2:72:05:06:25:a0:cb:0e:e9:e4:a0:b5: 55:33:9a:3e:77:ee:e9:cf:79:db:5b:e3:9d:1d:81: 3c:80:0a:9f:25:3f:af:58:7a:20:dd:19:d3:9f:d2: c6:5d:c8:dd:00:71:8e:37:fc:28:67:e1:bc:23:62: e4:d8:91:ff:50:99:a3:68:1b:8c:4a:bd:35:68:f0: 74:de:9b:47:a9:0c:f2:bc:3a:37:ac:e1:73:5b:87: 1f:1a:47:a9:39:69:f6:8d:29:f8:09:a3:0a:4c:c9: 07:0f:cf:59:6b:cc:0a:f9:a4:73:ff:fc:7d:af:ac: 53:fd:f7:a9:18:68:bb:09:9a:87:35:e8:24:f2:39: 4b:ef:6f:80:07:0c:4b:c2:12:e5:e1:ae:e7:11:03: 5e:58:97:b8:75:4a:02:0d:ac:09:ff:e1:f9:f1:8a: 6f:85:27:3c:a0:91:59:f1:54:be:44:af:00:13:18: ca:c8:42:2b:81:d1:96:da:c9:50:2a:62:c7:df:10: bb:14:33:29:e5:99:49:fa:73:a0:a9:d7:6b:80:0b: b8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:04:BF:A7:2F:29:BC:8B:6F:86:6D:F9:3C:2F:A5:FD:D1:8D:D7:7C X509v3 Authority Key Identifier: keyid:4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:66:d8:39:8e:84:90:d4:97:bb:a4:cf:33:ac:ec:d4:0f:77: 56:b0:89:bb:ac:af:63:2c:0a:a7:cc:f3:47:9c:51:89:f9:d8: 9f:af:49:3b:74:d2:3d:6e:a0:a3:64:eb:7f:da:d2:63:45:be: 31:52:4f:05:f9:26:a7:b8:97:39:12:d3:22:58:99:2d:7d:6c: 05:55:95:42:ce:5e:6d:8b:49:f3:81:49:b7:5e:2d:b7:9c:2f: c7:3e:b8:d1:cc:49:4c:29:de:56:e3:38:e0:d0:0c:ab:b8:93: b5:50:fa:36:88:02:f4:1a:7a:44:03:ab:dd:15:c7:e0:18:41: d2:7f:62:9e:d8:c3:c7:70:bc:b8:c3:49:88:b1:ee:59:6f:fc: 5b:64:d2:d7:ad:4c:12:15:f6:28:6a:12:6c:17:5d:47:19:d3: 2e:3e:57:7f:91:3b:92:68:ed:3c:aa:05:fc:2b:f1:d5:f2:03: f3:00:69:89:31:79:9c:b9:a5:ed:05:7e:ae:93:a2:0b:b7:50: 83:e1:1b:ab:d5:3f:66:80:c5:c7:42:27:e3:0e:91:fe:6d:35: 7f:17:15:47:f8:48:22:b0:b2:c5:2e:58:1d:40:46:2e:c3:d8: ae:cf:42:13:b8:ea:dc:30:e7:61:5d:f6:0e:40:e2:c4:65:2e: 41:19:36:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNzMxMTAvBgNVBAUTKDRBMjg2NTFBOTRBQzYzOUY2QUIxMzI0NzREMzFFQjBE RkNFNkRDNzkwHhcNMjUwNDAyMjM1NzE5WhcNMjUwNDA5MjM1NzE5WjAYMRYwFAYD VQQDEw02N2VkY2VkZi0zOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lpjS0WUpYmFocI0iLIDL0pi5DdRsqqI5sApLIXX1UwLy9XodCfiUunSh33W SH/icgUGJaDLDunkoLVVM5o+d+7pz3nbW+OdHYE8gAqfJT+vWHog3RnTn9LGXcjd AHGON/woZ+G8I2Lk2JH/UJmjaBuMSr01aPB03ptHqQzyvDo3rOFzW4cfGkepOWn2 jSn4CaMKTMkHD89Za8wK+aRz//x9r6xT/fepGGi7CZqHNegk8jlL72+ABwxLwhLl 4a7nEQNeWJe4dUoCDawJ/+H58YpvhSc8oJFZ8VS+RK8AExjKyEIrgdGW2slQKmLH 3xC7FDMp5ZlJ+nOgqddrgAu4hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYEv6cv KbyLb4Zt+Twvpf3Rjdd8MB8GA1UdIwQYMBaAFEooZRqUrGOfarEyR00x6w385tx5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM3My8yQzAwNkJCODJC MkQxMUVDQjg0RTcyNzNDNEY5QUUwMi9TaWhsR3BTc1k1OXFzVEpIVFRIckRmem0z SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NpaGxHcFNzWTU5cXNUSkhUVEhyRGZ6bTNIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM3My8yQzAwNkJCODJCMkQxMUVDQjg0RTcyNzNDNEY5QUUwMi9TaWhsR3BTc1k1 OXFzVEpIVFRIckRmem0zSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQZtg5joSQ1Je7pM8zrOzUD3dWsIm7rK9jLAqnzPNHnFGJ+difr0k7 dNI9bqCjZOt/2tJjRb4xUk8F+SanuJc5EtMiWJktfWwFVZVCzl5ti0nzgUm3Xi23 nC/HPrjRzElMKd5W4zjg0AyruJO1UPo2iAL0GnpEA6vdFcfgGEHSf2Ke2MPHcLy4 w0mIse5Zb/xbZNLXrUwSFfYoahJsF11HGdMuPld/kTuSaO08qgX8K/HV8gPzAGmJ MXmcuaXtBX6uk6ILt1CD4Rur1T9mgMXHQifjDpH+bTV/FxVH+EgisLLFLlgdQEYu w9iuz0ITuOrcMOdhXfYOQOLEZS5BGTZr -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:13 2025 by rpki-client