$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: rNl/MNehosmEJxzsrCFObz7j/jiZ5EMzLqQ35K6s6Mw= Subject key identifier: B1:9A:99:80:6A:A5:35:29:2F:39:CC:B7:E1:A2:5F:FB:55:F2:1C:ED Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 2892 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 2828 Signing time: Sun 06 Apr 2025 15:34:55 +0000 Manifest this update: Sun 06 Apr 2025 15:34:55 +0000 Manifest next update: Sun 13 Apr 2025 15:34:55 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: mBEZK6b8pFh81ZxjqfVAxhKIqRhqKtvlR6Kpru1chJk=) 2: 87698C36F97A11EF9C671B12C4F9AE02.roa (hash: PO9vrEZKtQy4m/ZG2Dl3CG6VeiLEOLC1N62aNsK+38k=) 3: 4B65B208288F11EFB3C88742C4F9AE02.roa (hash: r2GAe+G1s6g34WU+Ia+gD4xaBN9kiFwzFN+koW6QJQs=) 4: 7F3D1128DC7811EFA7D7DB49C4F9AE02.roa (hash: Oiuj+Kbic3HQuA1OyKape4/HDdacy+ZxoCUL9iL91SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10386 (0x2892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447 Validity Not Before: Apr 6 15:34:55 2025 GMT Not After : Apr 13 15:34:55 2025 GMT Subject: CN=67f29f1f-050e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:80:84:50:af:80:9a:5e:db:e9:bb:cf:a0:da: 9e:6b:a6:2e:0f:3d:f4:d0:69:e9:0e:d8:26:7e:cd: 58:4f:ec:9c:15:20:4a:5b:e1:00:e0:77:62:26:fb: 90:3f:d5:02:dc:fc:e8:53:cd:7b:34:f6:5a:df:9b: 47:41:1a:ab:7b:73:d4:aa:cb:34:64:30:fa:0f:1b: 0a:7c:2b:14:bd:60:c9:f7:38:77:d3:49:bf:4f:dc: 0d:60:54:9f:66:11:03:8f:b7:f3:23:ab:67:b6:fb: 8a:8c:c1:59:09:1c:c4:c2:69:c9:0f:3a:fc:67:1c: 1d:27:fd:d8:4b:ca:71:74:0b:70:a7:53:a1:14:07: 54:d5:e8:6d:35:41:59:90:f8:6c:28:ab:89:b1:fd: f2:0b:5a:aa:31:c6:8d:39:2b:40:af:d5:33:0d:b6: f9:db:8f:78:a2:a4:73:18:ea:de:d5:ab:d7:0b:69: 6a:03:88:8c:fa:45:c5:00:62:d7:d0:be:57:48:79: d5:2a:9b:1c:63:21:f7:8b:fd:e7:d4:7e:73:cb:eb: db:ba:6e:e1:65:36:36:29:ed:1c:37:dc:df:7e:94: 3f:04:60:87:d4:5b:4f:c8:bd:63:0e:0a:09:59:f4: 8f:45:be:78:db:39:54:85:de:c9:3c:d6:09:9e:d3: 6c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9A:99:80:6A:A5:35:29:2F:39:CC:B7:E1:A2:5F:FB:55:F2:1C:ED X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2e:ea:d0:b4:26:f4:32:55:65:25:7c:5c:1d:49:47:ba:ce: fe:f5:20:87:3c:e9:a9:1c:c7:2c:68:60:e7:1a:d5:61:cf:97: 8b:fc:f1:30:57:f0:71:8a:b3:f8:65:09:4d:14:1b:b0:f5:0a: c6:bb:ca:92:b6:a1:7e:f4:48:44:a5:cb:0b:97:af:0c:94:d9: bc:1a:8b:ef:72:76:8a:59:9d:c9:43:3e:10:ba:68:49:ec:e5: 1e:b1:d4:6e:6c:52:52:17:90:87:d4:79:de:1a:db:f8:53:41: d9:af:16:d6:a5:0b:6c:f6:55:67:be:1f:cf:18:a9:5b:79:3c: 11:cb:f0:e2:f6:0a:61:66:e9:1a:07:0f:63:58:c4:60:37:b6: b4:e1:5e:16:1e:c6:9c:7d:2d:de:fc:72:67:4e:99:c3:43:8b: 76:d2:c1:41:01:5a:28:34:de:c2:58:a7:8e:5b:62:8e:0c:1c: b1:7e:05:1e:9c:a0:a5:14:20:82:82:ad:df:88:43:e1:f6:aa: b0:3b:96:3c:22:91:87:bd:a3:9d:e1:64:1d:d8:31:1b:fb:93: 9f:80:49:4d:46:e0:22:16:84:a0:9e:42:16:71:d1:a0:e3:59: e8:06:e2:97:c8:b6:0c:31:98:d3:22:c4:33:38:df:88:2a:a2: 9d:ac:85:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjUwNDA2MTUzNDU1WhcNMjUwNDEzMTUzNDU1WjAYMRYwFAYD VQQDEw02N2YyOWYxZi0wNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oCEUK+Aml7b6bvPoNqea6YuDz300GnpDtgmfs1YT+ycFSBKW+EA4HdiJvuQ P9UC3PzoU817NPZa35tHQRqre3PUqss0ZDD6DxsKfCsUvWDJ9zh300m/T9wNYFSf ZhEDj7fzI6tntvuKjMFZCRzEwmnJDzr8ZxwdJ/3YS8pxdAtwp1OhFAdU1ehtNUFZ kPhsKKuJsf3yC1qqMcaNOStAr9UzDbb52494oqRzGOre1avXC2lqA4iM+kXFAGLX 0L5XSHnVKpscYyH3i/3n1H5zy+vbum7hZTY2Ke0cN9zffpQ/BGCH1FtPyL1jDgoJ WfSPRb542zlUhd7JPNYJntNs9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGamYBq pTUpLznMt+GiX/tV8hztMB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATLurQtCb0MlVlJXxcHUlHus7+9SCHPOmpHMcsaGDnGtVhz5eL/PEw V/BxirP4ZQlNFBuw9QrGu8qStqF+9EhEpcsLl68MlNm8GovvcnaKWZ3JQz4QumhJ 7OUesdRubFJSF5CH1HneGtv4U0HZrxbWpQts9lVnvh/PGKlbeTwRy/Di9gphZuka Bw9jWMRgN7a04V4WHsacfS3e/HJnTpnDQ4t20sFBAVooNN7CWKeOW2KODByxfgUe nKClFCCCgq3fiEPh9qqwO5Y8IpGHvaOd4WQd2DEb+5OfgElNRuAiFoSgnkIWcdGg 41noBuKXyLYMMZjTIsQzON+IKqKdrIUx -----END CERTIFICATE-----Generated at Sun Apr 6 21:08:56 2025 by rpki-client