$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: Gk2AYlvtRC13Rc4fNTtE25rbKYAa+BPkHYGb02ZyKIs= Subject key identifier: B5:F7:BC:0C:DE:54:31:16:0B:A4:7F:24:40:6B:AA:BB:D5:BE:B4:10 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 0639 Signing time: Sun 06 Apr 2025 22:15:58 +0000 Manifest this update: Sun 06 Apr 2025 22:15:57 +0000 Manifest next update: Sun 13 Apr 2025 22:15:57 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: gNMBn/YRsjwKIpQMdq9yzvcZprQYuT775c39mNTiF/A=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: iRYRVo5lbaJTFKYyTxWAHiXDjG/PpAWNzoZqTqR4jfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 22:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225 Validity Not Before: Apr 6 22:15:57 2025 GMT Not After : Apr 13 22:15:57 2025 GMT Subject: CN=67f2fd1d-d857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:76:d3:4c:ed:72:76:73:33:24:9a:c7:ff:75: cc:cb:91:5a:3a:6c:de:d4:c3:1f:12:6e:af:6c:83: 38:92:8b:de:36:97:b8:c4:f6:8a:5e:48:b9:e1:2e: 15:66:ee:21:b4:5e:c4:32:28:27:51:fb:ea:57:94: 02:77:7b:30:5f:3b:a7:55:32:47:fe:2d:b3:e7:09: ac:05:a3:b9:01:45:b0:13:ba:12:56:2e:e5:81:b6: 08:38:89:82:9b:5a:ef:3a:df:d5:bc:8d:d4:bd:a2: 94:c9:f0:86:aa:6b:cf:01:52:b2:67:52:43:31:9b: 6a:74:07:8f:86:74:f1:ab:c9:49:b6:31:72:6e:20: 2f:2b:d6:62:d9:54:72:0f:60:23:21:60:e4:20:5c: d8:d0:d1:39:ec:5b:87:61:ca:ea:18:78:6a:e4:fb: d8:c4:9e:85:e3:1f:e1:56:7c:77:e6:a6:e2:b4:0d: 74:ba:fc:80:06:0d:2f:90:34:9d:ee:2d:e4:84:cf: 4e:ea:5f:ca:21:fd:22:b0:aa:94:85:98:81:5b:ed: bd:2a:36:8b:a6:1a:65:2a:8b:71:e9:f8:06:3f:ca: 05:de:72:f8:b4:be:85:01:63:27:3b:3a:ff:e3:12: 89:f5:8f:66:86:5f:58:3a:7a:ec:8c:08:e5:a8:d1: ba:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F7:BC:0C:DE:54:31:16:0B:A4:7F:24:40:6B:AA:BB:D5:BE:B4:10 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:8b:b8:ca:41:ff:fb:3d:dd:63:0a:9a:3c:b5:66:de:ca:64: 57:96:e8:5f:5a:a9:b2:13:4d:92:f7:0c:5f:09:14:98:a8:b5: a9:0d:c9:6c:c0:c0:c3:d4:0b:4d:72:bf:a9:a5:14:a6:75:cf: 57:98:85:1b:a9:71:7e:9a:cf:f1:88:54:69:af:7c:bc:f1:eb: 75:75:3f:7b:1d:c8:05:1c:f1:98:f6:07:e7:02:50:9d:73:37: e3:93:76:04:a8:67:e1:91:fc:36:fb:a3:2b:95:4d:e4:b7:21: ea:b3:28:af:3d:26:67:25:3a:a7:5e:37:09:6c:d7:8d:8b:2a: 9d:e3:32:ab:cf:f4:9a:d4:db:fa:01:81:93:61:4d:71:1a:f3: cb:80:77:c6:70:dd:ff:2e:2e:02:1c:50:31:05:b1:25:ed:f9: 54:b1:fe:e5:a4:f5:2d:82:d0:74:94:55:36:6b:08:bf:f4:4c: c1:16:da:75:39:bd:ec:d5:b4:88:99:b6:d1:1d:5b:7b:a5:1e: 26:88:80:75:cd:89:99:37:50:19:38:c5:e0:45:d3:ed:3d:44: 2b:56:a7:6b:2f:3b:31:36:4f:b9:16:4e:4c:b3:88:da:14:f6: b5:b8:f5:2a:25:55:99:2d:e3:97:30:cb:dd:e5:09:6c:68:16: 50:c3:81:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjUwNDA2MjIxNTU3WhcNMjUwNDEzMjIxNTU3WjAYMRYwFAYD VQQDEw02N2YyZmQxZC1kODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3bTTO1ydnMzJJrH/3XMy5FaOmze1MMfEm6vbIM4koveNpe4xPaKXki54S4V Zu4htF7EMignUfvqV5QCd3swXzunVTJH/i2z5wmsBaO5AUWwE7oSVi7lgbYIOImC m1rvOt/VvI3UvaKUyfCGqmvPAVKyZ1JDMZtqdAePhnTxq8lJtjFybiAvK9Zi2VRy D2AjIWDkIFzY0NE57FuHYcrqGHhq5PvYxJ6F4x/hVnx35qbitA10uvyABg0vkDSd 7i3khM9O6l/KIf0isKqUhZiBW+29KjaLphplKotx6fgGP8oF3nL4tL6FAWMnOzr/ 4xKJ9Y9mhl9YOnrsjAjlqNG62wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLX3vAze VDEWC6R/JEBrqrvVvrQQMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFi7jKQf/7Pd1jCpo8tWbeymRXluhfWqmyE02S9wxfCRSYqLWpDcls wMDD1AtNcr+ppRSmdc9XmIUbqXF+ms/xiFRpr3y88et1dT97HcgFHPGY9gfnAlCd czfjk3YEqGfhkfw2+6MrlU3ktyHqsyivPSZnJTqnXjcJbNeNiyqd4zKrz/Sa1Nv6 AYGTYU1xGvPLgHfGcN3/Li4CHFAxBbEl7flUsf7lpPUtgtB0lFU2awi/9EzBFtp1 Ob3s1bSImbbRHVt7pR4miIB1zYmZN1AZOMXgRdPtPUQrVqdrLzsxNk+5Fk5Ms4ja FPa1uPUqJVWZLeOXMMvd5QlsaBZQw4Fa -----END CERTIFICATE-----Generated at Tue Apr 8 18:10:44 2025 by rpki-client