$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: PSm1y7FgzPmyuArhtG/jcSyygIDmETd9eq9r9gPkB8Y= Subject key identifier: 83:DA:FB:6C:6F:D9:FE:ED:67:66:95:94:18:0B:46:F4:B3:27:FA:BA Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 05C6 Signing time: Fri 28 Mar 2025 23:18:51 +0000 Manifest this update: Fri 28 Mar 2025 23:18:51 +0000 Manifest next update: Fri 04 Apr 2025 23:18:51 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: kjKPbgHXWvVcbglRkwBEKqnOKBTPK8qNu1W2x5MDAGw=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: 9tQnJbgHn9CXIDaZmtJ4XxjigORNQV18RL9rnYpJw1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE Validity Not Before: Mar 28 23:18:51 2025 GMT Not After : Apr 4 23:18:51 2025 GMT Subject: CN=67e72e5b-d632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:70:5b:8a:57:03:0a:61:18:1d:5c:98:28: d5:8c:ff:1a:a9:61:c3:f9:5c:e3:33:b4:f8:9b:86: fb:12:d6:7b:7c:12:a3:ba:b6:34:c6:62:4b:4a:77: 12:0a:af:3c:22:1a:78:da:ed:56:1d:6c:e2:4b:39: 77:47:38:3c:a0:3e:89:03:40:15:56:66:c4:09:46: f3:75:93:41:98:31:94:b4:e2:d4:77:f6:69:f3:6b: 4d:3b:b6:0c:a4:df:fd:3c:a7:ef:4c:c7:a5:13:8c: f9:c5:9a:6a:85:d2:98:63:b6:a2:da:57:5c:a6:5c: 54:77:c7:72:05:d7:50:64:63:86:c4:76:96:80:af: f3:99:1d:cd:de:1a:06:7a:a9:7b:3e:d7:a7:72:f8: 1f:c4:c2:21:ba:ab:cd:6a:35:1b:5c:37:d8:c2:08: 9a:89:7e:fd:65:19:4f:1e:c0:bb:db:3f:b4:6f:72: 23:a1:19:83:34:c7:69:79:00:89:01:93:c2:0a:f8: 3a:c9:59:36:a6:35:99:6d:19:af:13:68:a5:3e:98: ea:dc:bf:29:23:d5:6d:2d:42:d5:8c:e5:94:20:05: 61:a5:36:00:99:0c:ff:ad:73:bf:9f:45:3b:86:55: 4c:da:00:ff:71:2a:34:7e:09:6b:de:81:5a:c1:19: 51:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DA:FB:6C:6F:D9:FE:ED:67:66:95:94:18:0B:46:F4:B3:27:FA:BA X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:19:b0:5a:9e:15:7e:92:e4:dd:2f:f8:3a:9b:87:e9:d3:4a: de:81:f7:2e:fa:a8:83:79:c8:5c:b5:8d:9e:9d:5b:79:12:16: ad:16:46:55:25:4f:62:8a:50:a2:b9:a3:cd:99:7f:0a:1f:b9: 7b:59:c2:09:84:a7:63:5c:3d:6f:17:aa:b4:af:a6:30:09:ea: 9b:33:45:72:f8:7c:a3:83:9b:bc:8e:2a:46:95:e6:66:4a:73: 1b:27:d6:98:ff:4f:a7:69:5b:d6:9c:d6:1d:bf:8e:13:d0:42: 3a:3d:df:c2:d9:c0:55:2b:78:b2:68:6e:c9:17:1d:0c:49:a0: ed:c6:c0:c8:38:54:b8:44:06:2a:46:09:52:a6:ba:cc:36:7d: 44:30:21:db:40:61:be:b0:70:f1:11:aa:4b:70:6c:82:99:49: 32:0f:76:7f:e2:ed:89:d9:1f:a8:6e:88:00:00:d1:60:a5:b2: 5a:6b:05:51:4d:c4:31:0c:b6:62:f1:ed:1c:b4:1d:10:e1:d3: d7:b2:e6:ac:9f:cb:dc:93:f6:f9:ba:27:7d:78:2c:2c:be:3f: 69:76:30:6e:b4:4b:eb:2d:b5:1b:be:5b:99:fd:72:41:08:d9: d3:6a:67:6e:21:be:aa:7e:c9:39:8e:2f:c2:cb:ed:3b:ab:ca: a0:24:7d:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwMzI4MjMxODUxWhcNMjUwNDA0MjMxODUxWjAYMRYwFAYD VQQDEw02N2U3MmU1Yi1kNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGNwW4pXAwphGB1cmCjVjP8aqWHD+VzjM7T4m4b7EtZ7fBKjurY0xmJLSncS Cq88Ihp42u1WHWziSzl3Rzg8oD6JA0AVVmbECUbzdZNBmDGUtOLUd/Zp82tNO7YM pN/9PKfvTMelE4z5xZpqhdKYY7ai2ldcplxUd8dyBddQZGOGxHaWgK/zmR3N3hoG eql7PtencvgfxMIhuqvNajUbXDfYwgiaiX79ZRlPHsC72z+0b3IjoRmDNMdpeQCJ AZPCCvg6yVk2pjWZbRmvE2ilPpjq3L8pI9VtLULVjOWUIAVhpTYAmQz/rXO/n0U7 hlVM2gD/cSo0fglr3oFawRlRewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPa+2xv 2f7tZ2aVlBgLRvSzJ/q6MB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEGbBanhV+kuTdL/g6m4fp00regfcu+qiDechctY2enVt5EhatFkZV JU9iilCiuaPNmX8KH7l7WcIJhKdjXD1vF6q0r6YwCeqbM0Vy+Hyjg5u8jipGleZm SnMbJ9aY/0+naVvWnNYdv44T0EI6Pd/C2cBVK3iyaG7JFx0MSaDtxsDIOFS4RAYq RglSprrMNn1EMCHbQGG+sHDxEapLcGyCmUkyD3Z/4u2J2R+obogAANFgpbJaawVR TcQxDLZi8e0ctB0Q4dPXsuasn8vck/b5uid9eCwsvj9pdjButEvrLbUbvluZ/XJB CNnTamduIb6qfsk5ji/Cy+07q8qgJH00 -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:11 2025 by rpki-client