$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft File: hPqw1oT6rxaVCqyjjm1lOszyWLw.mft (raw, json) Hash identifier: bHCVF4PqL4lf2E0kJ1iTYBGWXHflvdrbKUiFvakwsRE= Subject key identifier: 38:55:A4:B1:0C:A6:D4:F3:C9:B9:31:F1:8E:09:9B:C3:BB:02:6F:1C Authority key identifier: 84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC Certificate issuer: /CN=A914247C/serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC Certificate serial: 0AEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft Manifest number: 0AE9 Signing time: Tue 08 Apr 2025 19:16:04 +0000 Manifest this update: Tue 08 Apr 2025 19:16:04 +0000 Manifest next update: Tue 15 Apr 2025 19:16:04 +0000 Files and hashes: 1: hPqw1oT6rxaVCqyjjm1lOszyWLw.crl (hash: ccEpVuK8I0dQu3IW3HQ7wyDshMs21ZqoeOP6dmEH4v4=) 2: E1AB1F92430F11EAA60DB885C4F9AE02.roa (hash: Y5ilqY3EX1YlNkwmQC54jat5s6RkhEqIyQvx25IhbvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.crl rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2799 (0xaef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C Validity Not Before: Apr 8 19:16:04 2025 GMT Not After : Apr 15 19:16:04 2025 GMT Subject: CN=67f575f4-3577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d5:79:ec:e7:19:8f:23:66:74:14:a7:40:76: 42:41:f5:bb:40:dd:18:f1:71:60:29:dc:1e:1e:a7: 6e:13:62:24:77:e4:16:f3:90:a9:bf:9e:de:3f:0a: 7f:0a:2d:a3:a0:99:76:4a:e0:83:2c:34:5b:81:19: 5b:77:95:c7:6a:dd:86:49:00:2a:15:33:2d:b5:b8: 8d:29:d1:f1:d1:7b:02:33:66:b1:d7:fc:49:03:24: 57:3c:b1:9a:7f:af:ed:a8:a0:ae:94:9b:f1:f4:7a: 25:74:a0:7d:f9:69:28:06:d3:19:f2:1f:e8:33:15: 50:e7:11:ae:49:ef:3a:2e:8b:51:4c:38:c1:4c:1d: 67:63:6c:65:67:35:db:04:5d:06:74:7a:24:d9:35: 46:37:b6:36:69:2c:e8:de:75:0b:0b:43:95:2b:f4: 62:7a:ce:0d:ba:23:7c:26:bd:9b:2a:0c:9e:0e:96: f9:87:4b:7a:83:06:ec:b0:06:9f:b7:9d:a6:20:82: 4b:1a:46:7b:f0:27:61:59:53:c6:27:c8:43:6c:ff: df:5b:2b:09:bf:6a:08:43:dc:7a:f3:2d:d2:04:93: cc:45:0b:30:70:74:0c:f9:bc:46:bd:38:73:c8:35: d8:41:28:83:67:10:98:a5:7f:7e:0d:00:57:76:4a: 73:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:55:A4:B1:0C:A6:D4:F3:C9:B9:31:F1:8E:09:9B:C3:BB:02:6F:1C X509v3 Authority Key Identifier: keyid:84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:46:05:10:92:cc:00:71:d7:cd:98:47:7b:42:53:06:66:59: d3:84:42:b2:63:a6:cf:2e:fc:90:9e:72:07:a8:99:79:e6:d2: a4:27:dd:07:ae:c3:67:bf:c0:6f:5b:6b:da:56:6d:e1:8b:fc: 3a:0c:a3:00:43:da:0a:86:66:6b:4c:8f:8a:90:b7:ca:1e:34: 49:e2:20:2c:1a:80:34:0d:64:d4:01:43:73:dc:7f:27:f1:a3: 60:6f:97:16:f6:d5:18:7b:8b:ee:99:c7:4f:43:64:f5:0a:88: 81:0f:ca:83:b3:74:ad:db:26:28:5c:c3:9e:5f:78:b7:80:67: c7:63:18:dc:6e:d5:1b:53:8c:87:e2:ee:10:84:02:af:15:e1: c0:bf:95:cb:88:48:1c:c5:cb:8a:7f:dd:dd:d5:89:ff:6f:93: 88:59:e7:8a:09:76:4c:86:50:8c:a0:c9:6e:f2:09:c5:f2:f3: f6:b7:cc:6a:d2:8f:56:68:b3:e9:ef:0f:6e:bd:7d:dc:15:7c: 4f:11:59:74:e2:43:6b:d5:65:35:1b:71:55:5a:02:ad:10:da: 7c:8c:48:6a:7c:ac:1a:58:2f:2f:92:e6:66:66:d0:58:63:13: b0:ad:d8:d7:db:96:a8:9b:44:5c:d6:6d:c8:d4:48:03:0a:c3: 67:64:9c:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKDg0RkFCMEQ2ODRGQUFGMTY5NTBBQUNBMzhFNkQ2NTNB Q0NGMjU4QkMwHhcNMjUwNDA4MTkxNjA0WhcNMjUwNDE1MTkxNjA0WjAYMRYwFAYD VQQDEw02N2Y1NzVmNC0zNTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNV57OcZjyNmdBSnQHZCQfW7QN0Y8XFgKdweHqduE2Ikd+QW85Cpv57ePwp/ Ci2joJl2SuCDLDRbgRlbd5XHat2GSQAqFTMttbiNKdHx0XsCM2ax1/xJAyRXPLGa f6/tqKCulJvx9HoldKB9+WkoBtMZ8h/oMxVQ5xGuSe86LotRTDjBTB1nY2xlZzXb BF0GdHok2TVGN7Y2aSzo3nULC0OVK/Ries4NuiN8Jr2bKgyeDpb5h0t6gwbssAaf t52mIIJLGkZ78CdhWVPGJ8hDbP/fWysJv2oIQ9x68y3SBJPMRQswcHQM+bxGvThz yDXYQSiDZxCYpX9+DQBXdkpz/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhVpLEM ptTzybkx8Y4Jm8O7Am8cMB8GA1UdIwQYMBaAFIT6sNaE+q8WlQqso45tZTrM8li8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy85MEY2MzJEQTQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi9oUHF3MW9UNnJ4YVZDcXlqam0xbE9zenlX THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hQcXcxb1Q2cnhhVkNxeWpqbTFsT3N6eVdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy85MEY2MzJEQTQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi9oUHF3MW9UNnJ4 YVZDcXlqam0xbE9zenlXTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0RgUQkswAcdfNmEd7QlMGZlnThEKyY6bPLvyQnnIHqJl55tKkJ90H rsNnv8BvW2vaVm3hi/w6DKMAQ9oKhmZrTI+KkLfKHjRJ4iAsGoA0DWTUAUNz3H8n 8aNgb5cW9tUYe4vumcdPQ2T1CoiBD8qDs3St2yYoXMOeX3i3gGfHYxjcbtUbU4yH 4u4QhAKvFeHAv5XLiEgcxcuKf93d1Yn/b5OIWeeKCXZMhlCMoMlu8gnF8vP2t8xq 0o9WaLPp7w9uvX3cFXxPEVl04kNr1WU1G3FVWgKtENp8jEhqfKwaWC8vkuZmZtBY YxOwrdjX25aom0Rc1m3I1EgDCsNnZJw9 -----END CERTIFICATE-----Generated at Fri Apr 11 23:32:01 2025 by rpki-client