$ rpki-client -vvf rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft File: hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft (raw, json) Hash identifier: zSdCBMlzanQaQ01PZLWDGuiAFM8FVM+gAcBjwkxsM7M= Subject key identifier: F5:53:9C:0C:31:67:07:5F:B2:54:98:D0:9A:84:63:94:16:FE:69:2A Authority key identifier: 84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4 Certificate issuer: /CN=A91505AB/serialNumber=84018C083D10A39E7F685C41AE166370C6D77AC4 Certificate serial: 1A06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft Manifest number: 19FE Signing time: Fri 04 Apr 2025 16:26:27 +0000 Manifest this update: Fri 04 Apr 2025 16:26:26 +0000 Manifest next update: Fri 11 Apr 2025 16:26:26 +0000 Files and hashes: 1: hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl (hash: WBAwu8liSDE/hG8mB65fcSF3p3bAsbPhqj+d+HsFe7c=) 2: 4EF483C64C2911E78BF1BD13C4F9AE02.roa (hash: YOnwHdL+VM4WZZwYTJ66mt2t+UeBiT+rfThROtawpHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6662 (0x1a06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91505AB Validity Not Before: Apr 4 16:26:26 2025 GMT Not After : Apr 11 16:26:26 2025 GMT Subject: CN=67f00832-991b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8d:6e:ba:7a:48:2f:39:ce:1d:34:d4:bc:21: 6d:f9:48:3c:00:28:2d:35:12:59:04:24:ed:e3:3c: 9e:cd:dd:0f:92:22:c8:06:5c:30:d7:51:56:75:91: 1b:58:ed:eb:66:36:f1:b8:a3:32:dd:5e:7f:dc:ff: d9:2f:6d:af:cb:c8:64:64:b1:bf:a6:af:6a:64:af: 39:44:50:01:78:50:3d:8c:8b:0b:cd:8c:26:ef:1f: d5:58:06:12:cf:39:3d:1b:9f:54:44:d6:79:31:91: b4:2f:42:63:4e:6b:e7:75:cb:8c:a8:69:f2:5c:ce: d5:f7:ac:58:ea:a1:c2:25:16:f9:05:89:ff:dd:d7: 2e:52:37:d2:64:e5:5e:d0:dc:af:22:c8:67:7b:10: 27:e1:89:a7:92:de:95:f2:23:cc:3e:13:a0:a5:ab: 19:71:3e:c0:da:43:c8:af:17:6e:37:cb:5c:81:ab: ab:15:65:d2:97:d2:0b:95:be:4a:7b:12:49:72:29: 70:6e:cd:7b:56:03:7a:fb:9f:72:58:f7:56:f0:ed: 8f:c6:e6:87:16:d7:29:9e:0c:83:69:25:49:71:01: 02:6a:c0:4c:b9:0a:c1:ad:a1:80:d2:ac:46:db:96: 54:c6:7b:f1:7c:3b:25:68:bf:4a:10:bf:97:b7:a5: 86:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:53:9C:0C:31:67:07:5F:B2:54:98:D0:9A:84:63:94:16:FE:69:2A X509v3 Authority Key Identifier: keyid:84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:cb:85:ef:d8:84:d8:54:3b:df:6f:5e:dc:96:bc:be:36:b5: 31:c8:70:d3:2e:6d:be:fa:3c:56:3a:52:95:18:83:94:48:05: f2:0c:a8:f6:34:de:3b:6d:62:60:a1:e9:f7:f2:07:61:eb:32: bb:68:87:0d:7c:87:34:e8:34:8e:73:8f:e0:ac:1a:d1:60:3f: ee:fd:82:fb:a9:20:9a:94:47:81:7f:fc:39:6f:27:2b:0e:0f: 1c:0d:b9:1b:57:b9:ff:2b:1b:9d:b1:a1:5c:89:dd:a2:b8:37: 94:f9:c2:9b:61:db:2a:03:76:8a:be:75:2e:4b:b3:dd:97:39: 85:9d:de:c7:88:f1:a8:7c:8a:af:c4:db:46:09:e9:09:5d:1a: 57:c0:ed:b6:b1:fe:34:15:ca:f5:bb:5c:b1:9a:2c:db:9c:a2: fc:d7:de:5e:8f:64:f2:69:a7:94:23:fd:92:27:2c:59:4b:be: eb:19:d0:0e:88:fc:18:e0:34:fa:68:26:9b:50:1f:5c:e3:3e: 72:7d:ca:57:3f:4c:c0:ec:7e:59:30:cc:2f:4a:88:9d:ff:d9: 73:fc:49:7f:72:3f:fc:68:19:bf:b3:4c:7d:75:66:75:b6:2a: 9a:01:e9:6b:32:94:c4:35:70:a0:48:a2:d0:e6:e5:bb:be:42: 84:1d:c2:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA1QUIxMTAvBgNVBAUTKDg0MDE4QzA4M0QxMEEzOUU3RjY4NUM0MUFFMTY2Mzcw QzZENzdBQzQwHhcNMjUwNDA0MTYyNjI2WhcNMjUwNDExMTYyNjI2WjAYMRYwFAYD VQQDEw02N2YwMDgzMi05OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY1uunpILznOHTTUvCFt+Ug8ACgtNRJZBCTt4zyezd0PkiLIBlww11FWdZEb WO3rZjbxuKMy3V5/3P/ZL22vy8hkZLG/pq9qZK85RFABeFA9jIsLzYwm7x/VWAYS zzk9G59URNZ5MZG0L0JjTmvndcuMqGnyXM7V96xY6qHCJRb5BYn/3dcuUjfSZOVe 0NyvIshnexAn4Ymnkt6V8iPMPhOgpasZcT7A2kPIrxduN8tcgaurFWXSl9ILlb5K exJJcilwbs17VgN6+59yWPdW8O2PxuaHFtcpngyDaSVJcQECasBMuQrBraGA0qxG 25ZUxnvxfDslaL9KEL+Xt6WG8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVTnAwx ZwdfslSY0JqEY5QW/mkqMB8GA1UdIwQYMBaAFIQBjAg9EKOef2hcQa4WY3DG13rE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDVBQi8wNTI0M0FDNjRD MjgxMUU3OTY4QUQyMTFDNEY5QUUwMi9oQUdNQ0QwUW81NV9hRnhCcmhaamNNYlhl c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hBR01DRDBRbzU1X2FGeEJyaFpqY01iWGVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDVBQi8wNTI0M0FDNjRDMjgxMUU3OTY4QUQyMTFDNEY5QUUwMi9oQUdNQ0QwUW81 NV9hRnhCcmhaamNNYlhlc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOy4Xv2ITYVDvfb17clry+NrUxyHDTLm2++jxWOlKVGIOUSAXyDKj2 NN47bWJgoen38gdh6zK7aIcNfIc06DSOc4/grBrRYD/u/YL7qSCalEeBf/w5bycr Dg8cDbkbV7n/KxudsaFcid2iuDeU+cKbYdsqA3aKvnUuS7PdlzmFnd7HiPGofIqv xNtGCekJXRpXwO22sf40Fcr1u1yxmizbnKL8195ej2TyaaeUI/2SJyxZS77rGdAO iPwY4DT6aCabUB9c4z5yfcpXP0zA7H5ZMMwvSoid/9lz/El/cj/8aBm/s0x9dWZ1 tiqaAelrMpTENXCgSKLQ5uW7vkKEHcJS -----END CERTIFICATE-----Generated at Sun Apr 6 01:49:14 2025 by rpki-client