$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: zxSsQUNaNwPTG/PySpkxvd16n5CsRlVVFNbO+xY7Aho= Subject key identifier: 42:FE:D9:98:82:0F:26:8A:BC:E5:64:00:41:39:CE:72:F9:3D:31:AE Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 032A Signing time: Sat 29 Mar 2025 01:25:00 +0000 Manifest this update: Sat 29 Mar 2025 01:24:59 +0000 Manifest next update: Sat 05 Apr 2025 01:24:59 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: mqUWzaMtduTxXOK1jGGGq/yVqxN0IdR2/yiFp2gIUno=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: UBiYNqcmtBfIzuh2rKChQRqBKv4o6kiL3PCKwJHHiWM=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: 5vOwA9yYve8Rd0veqkKYknGLc6ONCvBt3X45gfOUijw=) 4: 2A616414808A11EF813A8343C4F9AE02.roa (hash: SPcUKAYBAtziUJsb1+HLmMDC9dz+I+2POCJimexdaR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138 Validity Not Before: Mar 29 01:24:59 2025 GMT Not After : Apr 5 01:24:59 2025 GMT Subject: CN=67e74bec-d8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:20:c0:3e:bf:fc:b4:d0:e0:1e:4e:e9:68:65: 26:39:c6:f5:38:7e:5b:fb:52:c3:35:f8:b3:70:7a: 68:c3:8f:bc:24:b6:3b:12:2f:7e:4a:5e:2a:58:be: 99:80:b4:0f:e5:c3:da:93:2c:01:31:fe:69:82:61: a7:6b:9a:e9:d2:4c:2c:c8:9e:01:76:46:7b:de:c5: f6:33:30:75:23:b2:93:9b:4a:e7:aa:a0:4d:fb:2d: 97:25:57:ae:45:c5:01:57:45:10:d2:8c:9f:5d:07: ae:a1:03:6c:c7:99:2d:70:1e:34:61:99:8c:90:ea: 4a:0f:43:43:d6:69:cb:38:9c:26:c5:a0:38:9c:ef: 06:ce:83:54:4c:df:f6:14:91:c9:6f:00:18:7e:d6: 70:2c:2e:f3:40:b3:12:1d:c2:4a:ff:d6:e2:3f:5b: dd:80:6d:8c:2d:75:24:54:5a:90:4b:bc:8e:dd:9d: a5:80:38:c6:33:df:1b:7c:a5:51:d9:06:65:dd:c3: 76:b2:b5:de:0d:66:14:a7:2f:75:36:61:45:42:e6: e4:e5:2e:11:d6:ff:f4:93:1e:02:a6:5e:8c:53:5d: 74:2b:e1:f1:80:7f:b1:73:36:81:22:89:4b:bd:36: f9:b8:79:4d:cf:4a:d2:24:6e:2e:3b:70:76:7d:dc: 7c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FE:D9:98:82:0F:26:8A:BC:E5:64:00:41:39:CE:72:F9:3D:31:AE X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2d:a3:88:75:77:62:43:2c:f1:1b:65:ba:f5:e2:3a:1c:5e: 84:2e:6d:48:d6:a4:be:34:aa:f3:df:59:0f:96:5d:bc:59:66: 3d:42:7a:ea:9b:cd:4d:24:86:7e:c9:d1:2b:0b:81:62:bd:63: b4:ab:c0:00:f7:d2:55:4a:03:fb:da:17:64:ae:f9:56:30:88: 8c:6c:a4:7e:a5:a6:a3:19:58:4e:8b:be:48:eb:e8:5d:db:f2: 75:49:c7:da:be:7d:9c:47:8c:ef:0c:93:48:b5:be:66:d2:8c: 98:c2:54:83:2f:0e:72:8e:17:ad:87:2d:ac:62:d6:0b:ee:a2: 0f:53:7e:aa:cc:17:11:08:e8:66:df:be:85:88:35:8a:db:e0: ce:26:6b:35:d6:7d:09:10:f5:12:e6:7d:14:a4:c7:46:fa:0d: ec:01:ef:ff:4a:ba:f8:22:b6:99:aa:c7:d2:ee:0a:43:63:92: df:f4:a2:c5:01:a1:6b:b5:38:af:b9:a6:ba:06:c3:05:60:84: aa:f6:2b:7d:37:8d:72:be:6c:db:f5:4f:d9:5d:9f:97:17:22: d9:d8:93:db:c4:0d:3c:81:35:ff:4f:17:a4:fd:b7:6d:b8:7e: c4:ec:bf:77:a1:19:dc:9f:ca:86:68:60:d9:ef:be:3c:7a:ac: 0f:89:02:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjUwMzI5MDEyNDU5WhcNMjUwNDA1MDEyNDU5WjAYMRYwFAYD VQQDEw02N2U3NGJlYy1kOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCDAPr/8tNDgHk7paGUmOcb1OH5b+1LDNfizcHpow4+8JLY7Ei9+Sl4qWL6Z gLQP5cPakywBMf5pgmGna5rp0kwsyJ4BdkZ73sX2MzB1I7KTm0rnqqBN+y2XJVeu RcUBV0UQ0oyfXQeuoQNsx5ktcB40YZmMkOpKD0ND1mnLOJwmxaA4nO8GzoNUTN/2 FJHJbwAYftZwLC7zQLMSHcJK/9biP1vdgG2MLXUkVFqQS7yO3Z2lgDjGM98bfKVR 2QZl3cN2srXeDWYUpy91NmFFQubk5S4R1v/0kx4Cpl6MU110K+HxgH+xczaBIolL vTb5uHlNz0rSJG4uO3B2fdx8fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEL+2ZiC DyaKvOVkAEE5znL5PTGuMB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6LaOIdXdiQyzxG2W69eI6HF6ELm1I1qS+NKrz31kPll28WWY9Qnrq m81NJIZ+ydErC4FivWO0q8AA99JVSgP72hdkrvlWMIiMbKR+paajGVhOi75I6+hd 2/J1Scfavn2cR4zvDJNItb5m0oyYwlSDLw5yjhethy2sYtYL7qIPU36qzBcRCOhm 376FiDWK2+DOJms11n0JEPUS5n0UpMdG+g3sAe//Srr4IraZqsfS7gpDY5Lf9KLF AaFrtTivuaa6BsMFYISq9it9N41yvmzb9U/ZXZ+XFyLZ2JPbxA08gTX/Txek/bdt uH7E7L93oRncn8qGaGDZ7748eqwPiQI+ -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:18 2025 by rpki-client