$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: JmIytXS3jiWo+/UPRfDlD4lh5E9gWlgPHmI1DPHvBXI= Subject key identifier: 42:A6:3C:49:36:C4:29:9E:9C:EF:6C:CF:A8:5D:5D:6A:7C:40:75:BF Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0AF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0AF2 Signing time: Fri 04 Apr 2025 19:25:54 +0000 Manifest this update: Fri 04 Apr 2025 19:25:54 +0000 Manifest next update: Fri 11 Apr 2025 19:25:54 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: Relgmsmj7ureL28pV/4M8kpddAJRy7SjBnl3VCEsI44=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: haC4mzBCka2C4XI2abEqyRFQojyis7K+gx1fbeV1iug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2808 (0xaf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705 Validity Not Before: Apr 4 19:25:54 2025 GMT Not After : Apr 11 19:25:54 2025 GMT Subject: CN=67f03242-b94f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a4:92:c3:01:8c:da:bd:dc:b2:f5:e3:ed:4e: 62:46:8c:1c:05:b4:a2:47:ca:b3:c6:f6:2a:bb:14: e1:ec:c2:94:f4:75:0e:22:15:e8:b8:ca:2d:65:a6: dd:60:2e:27:bf:f3:90:41:33:60:f1:91:e5:11:66: d7:f3:46:e2:8a:1d:e1:15:ce:45:6b:af:97:08:8d: d7:14:dc:56:3e:5a:c9:92:ff:2c:50:04:91:1a:fc: 13:40:7e:f2:24:bc:96:22:97:f4:b4:4b:1c:5a:da: d6:c0:32:24:f3:f9:5e:19:9b:c0:9a:a4:8a:2f:03: c8:3b:11:9a:5c:a0:c2:f6:61:46:65:a9:92:dd:60: 7f:e3:96:c2:93:a6:c3:5f:44:14:3b:f2:77:9a:05: 7a:0f:1e:7a:e5:85:b4:51:8f:5e:3b:6f:be:5c:f6: 5c:b6:fd:8c:67:00:52:dd:50:74:50:26:be:40:b7: b6:94:52:7e:35:f3:53:4a:a8:9d:e2:5e:d2:2c:d6: 40:71:ec:d6:ba:e7:0e:fa:ae:f5:27:5f:71:02:44: 00:30:99:0d:af:b7:5e:43:7e:a3:81:5b:ea:67:ae: 13:cb:4e:2c:b7:30:32:db:55:82:73:45:2d:47:c8: fb:6f:f6:d7:14:e8:e0:25:fa:53:13:b2:1e:a8:dd: 23:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A6:3C:49:36:C4:29:9E:9C:EF:6C:CF:A8:5D:5D:6A:7C:40:75:BF X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:e2:4d:91:b3:88:43:ba:0e:3b:07:d9:a3:32:7b:30:55:61: b4:59:d2:4a:b8:bb:e7:55:82:14:cd:47:e7:fd:99:d0:e1:bb: de:5d:d4:f5:1b:ed:82:b1:dc:dc:35:73:5b:03:9d:75:05:37: 9c:23:77:9c:0f:1b:4a:65:7d:79:08:8f:44:75:3c:37:09:34: c9:93:c1:eb:a5:b0:c6:d7:9d:73:26:2d:f5:ae:49:e2:29:b6: ad:d0:fe:16:16:26:76:09:c9:8c:f9:c8:ad:1e:e4:e5:fe:be: ee:50:d1:8c:f9:27:51:5e:2b:38:b5:b3:e1:7d:a1:88:00:00: ca:95:96:1b:15:d4:df:4e:25:6c:e8:2c:22:a2:72:91:4f:fb: f0:9c:3f:6f:bd:5d:ac:54:ac:a1:e0:52:55:59:ed:d0:3f:19: f9:72:ec:51:9e:99:da:01:5f:eb:79:8d:9a:8d:2a:37:2b:dd: b8:7a:0f:cb:7c:40:e7:23:e6:d4:fc:5f:54:b6:5d:27:08:6f: 1c:d9:72:13:bb:cb:37:31:bb:ee:61:5e:84:d4:42:5a:4c:50: d7:fb:6b:e4:1e:44:3d:a7:8b:5f:9b:d2:6a:a0:69:bf:f7:9d: 04:09:28:c0:7b:c1:0d:bb:92:dd:51:97:9b:23:4f:8c:8f:89: 69:94:72:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUwNDA0MTkyNTU0WhcNMjUwNDExMTkyNTU0WjAYMRYwFAYD VQQDEw02N2YwMzI0Mi1iOTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqSSwwGM2r3csvXj7U5iRowcBbSiR8qzxvYquxTh7MKU9HUOIhXouMotZabd YC4nv/OQQTNg8ZHlEWbX80biih3hFc5Fa6+XCI3XFNxWPlrJkv8sUASRGvwTQH7y JLyWIpf0tEscWtrWwDIk8/leGZvAmqSKLwPIOxGaXKDC9mFGZamS3WB/45bCk6bD X0QUO/J3mgV6Dx565YW0UY9eO2++XPZctv2MZwBS3VB0UCa+QLe2lFJ+NfNTSqid 4l7SLNZAcezWuucO+q71J19xAkQAMJkNr7deQ36jgVvqZ64Ty04stzAy21WCc0Ut R8j7b/bXFOjgJfpTE7IeqN0jtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKmPEk2 xCmenO9sz6hdXWp8QHW/MB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq4k2Rs4hDug47B9mjMnswVWG0WdJKuLvnVYIUzUfn/ZnQ4bveXdT1 G+2CsdzcNXNbA511BTecI3ecDxtKZX15CI9EdTw3CTTJk8HrpbDG151zJi31rkni Kbat0P4WFiZ2CcmM+citHuTl/r7uUNGM+SdRXis4tbPhfaGIAADKlZYbFdTfTiVs 6CwionKRT/vwnD9vvV2sVKyh4FJVWe3QPxn5cuxRnpnaAV/reY2ajSo3K924eg/L fEDnI+bU/F9Utl0nCG8c2XITu8s3MbvuYV6E1EJaTFDX+2vkHkQ9p4tfm9JqoGm/ 950ECSjAe8ENu5LdUZebI0+Mj4lplHLB -----END CERTIFICATE-----Generated at Sat Apr 5 19:13:08 2025 by rpki-client