$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: gp9B2erixh+oves+eOdkM/JEG4BH/4ig3VctcsiUJvg= Subject key identifier: 99:04:66:6A:27:4E:60:13:62:E7:46:C5:FB:18:AD:26:ED:A1:5E:BA Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0C52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0C47 Signing time: Sun 06 Apr 2025 18:13:49 +0000 Manifest this update: Sun 06 Apr 2025 18:13:48 +0000 Manifest next update: Sun 13 Apr 2025 18:13:48 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: geFUlbYymFAPoMWFrreUgUSZBxUWdgSQbpwsWRGQBi4=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3154 (0xc52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE Validity Not Before: Apr 6 18:13:48 2025 GMT Not After : Apr 13 18:13:48 2025 GMT Subject: CN=67f2c45d-6e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:8d:af:f8:29:f1:f8:d1:38:ba:8b:c1:83: 33:eb:04:5a:ee:7e:a3:76:13:8c:02:62:90:86:91: 4c:30:c5:30:bf:07:60:60:e9:25:99:c5:e2:e8:21: d2:14:5c:cc:cb:67:04:c6:2a:21:c1:6d:a1:89:2e: 3a:87:26:06:c0:82:03:2d:bd:27:84:f5:02:41:a8: 70:0d:a7:f4:a3:c9:dd:1c:9d:d4:18:b2:9f:82:b5: a8:0b:ef:5b:d5:78:be:1d:b0:a4:b1:52:2a:9c:6e: d0:2d:72:1c:4a:93:ac:14:36:05:4a:ce:8b:8e:f1: 23:f5:df:7f:87:f8:f1:f8:b2:35:f8:65:84:22:b3: f3:39:50:f5:ba:5d:3f:b0:27:3e:ae:af:06:7e:03: 54:f9:2e:02:bc:90:f1:dd:ff:b6:9a:11:ae:c6:17: 4a:05:a0:8f:9e:f5:04:36:0a:19:b0:c1:f2:51:38: 81:77:dd:0b:e4:65:29:8f:7c:3a:3e:b6:1b:72:0b: 61:d8:16:19:7e:05:5d:3d:b5:fd:36:03:cd:ac:1a: cc:d1:b5:24:7e:05:b0:03:30:55:26:e0:de:82:f5: e7:9a:03:21:91:9a:98:d7:d9:17:f8:91:86:7a:68: 99:ac:ec:9f:e6:a2:34:82:f8:55:0d:fb:fd:91:cd: 57:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:04:66:6A:27:4E:60:13:62:E7:46:C5:FB:18:AD:26:ED:A1:5E:BA X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:94:b6:22:64:40:74:77:eb:f8:03:51:e0:63:14:91:c6:39: 3b:ba:03:13:55:c2:5b:96:af:f2:32:d2:ca:22:d3:e4:14:0b: 47:6e:26:07:cc:a3:e5:ab:d5:f1:bf:18:f9:97:23:d8:cb:de: f6:f7:4d:be:de:69:f2:54:d6:55:f3:f9:bb:fd:45:a6:0b:fc: 5b:3d:54:ec:15:f9:50:76:a9:8d:23:4f:4d:50:b2:4d:2f:ae: 9d:16:73:e1:4e:d8:f6:5c:4e:d1:92:94:6b:7e:1d:c3:a0:16: 24:4c:28:51:99:62:36:97:88:75:9c:b5:c7:24:97:c8:6e:cb: 6f:9d:3d:7e:7c:18:a8:2c:82:3f:34:91:67:c9:47:b5:85:31: 4d:15:be:e6:4a:f9:f4:64:85:66:dd:78:ed:bb:a8:78:3e:51: fe:38:ee:19:50:2e:53:39:88:8c:c0:42:7f:53:98:97:24:0f: 45:bf:cb:48:3b:c6:8f:6d:35:96:a7:ce:65:99:37:b7:fc:f7: 02:92:3c:d9:73:99:91:7e:fd:58:3e:1a:96:a1:30:43:0b:fb: e6:ef:29:b8:41:e9:d8:63:1e:c8:df:82:d3:60:94:51:ba:4e: 30:18:2c:61:18:0e:2d:8e:71:b0:eb:96:23:de:40:5c:e2:2b: 56:17:76:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUwNDA2MTgxMzQ4WhcNMjUwNDEzMTgxMzQ4WjAYMRYwFAYD VQQDEw02N2YyYzQ1ZC02ZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGSNr/gp8fjROLqLwYMz6wRa7n6jdhOMAmKQhpFMMMUwvwdgYOklmcXi6CHS FFzMy2cExiohwW2hiS46hyYGwIIDLb0nhPUCQahwDaf0o8ndHJ3UGLKfgrWoC+9b 1Xi+HbCksVIqnG7QLXIcSpOsFDYFSs6LjvEj9d9/h/jx+LI1+GWEIrPzOVD1ul0/ sCc+rq8GfgNU+S4CvJDx3f+2mhGuxhdKBaCPnvUENgoZsMHyUTiBd90L5GUpj3w6 PrYbcgth2BYZfgVdPbX9NgPNrBrM0bUkfgWwAzBVJuDegvXnmgMhkZqY19kX+JGG emiZrOyf5qI0gvhVDfv9kc1XBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkEZmon TmATYudGxfsYrSbtoV66MB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0lLYiZEB0d+v4A1HgYxSRxjk7ugMTVcJblq/yMtLKItPkFAtHbiYH zKPlq9Xxvxj5lyPYy972902+3mnyVNZV8/m7/UWmC/xbPVTsFflQdqmNI09NULJN L66dFnPhTtj2XE7RkpRrfh3DoBYkTChRmWI2l4h1nLXHJJfIbstvnT1+fBioLII/ NJFnyUe1hTFNFb7mSvn0ZIVm3Xjtu6h4PlH+OO4ZUC5TOYiMwEJ/U5iXJA9Fv8tI O8aPbTWWp85lmTe3/PcCkjzZc5mRfv1YPhqWoTBDC/vm7ym4QenYYx7I34LTYJRR uk4wGCxhGA4tjnGw65Yj3kBc4itWF3Yd -----END CERTIFICATE-----Generated at Sun Apr 6 22:03:06 2025 by rpki-client