$ rpki-client -vvf rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft File: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft (raw, json) Hash identifier: TUtBTHOlo6v7Vu0X/17zK9xbtyDYpaUZFgEwj75EgSM= Subject key identifier: 14:DF:06:77:EE:2E:70:03:1A:F7:26:7F:BB:7B:99:D3:4F:AF:F0:3C Authority key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 Certificate issuer: /CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Certificate serial: 06F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft Manifest number: 06F0 Signing time: Fri 28 Mar 2025 22:16:26 +0000 Manifest this update: Fri 28 Mar 2025 22:16:26 +0000 Manifest next update: Fri 04 Apr 2025 22:16:26 +0000 Files and hashes: 1: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl (hash: mLSSqqFITFR8XTM96NcuNFIR4mrsHgISg3oXcSHOm88=) 2: A2C94D9C3F0F11EB80256B25C4F9AE02.roa (hash: VsARmmeViDsi1FVlV4Qtd1FMCrKISqOnhPnZTXsK7F8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B232 Validity Not Before: Mar 28 22:16:26 2025 GMT Not After : Apr 4 22:16:26 2025 GMT Subject: CN=67e71fba-62aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:61:f7:72:57:e0:12:42:e5:33:68:1d:23:d3: 3c:07:ab:12:89:9d:50:c8:c0:7b:a9:45:b2:f9:30: 7c:69:2e:a1:ea:98:67:90:18:d9:c9:6a:ea:26:d8: 6a:f8:c9:cf:fb:92:d7:07:d3:49:aa:e6:aa:58:b6: 39:0e:6f:f7:99:9d:60:ce:26:fe:e8:cd:0e:09:58: bc:da:76:17:86:bc:5f:69:3b:47:87:89:09:f2:4b: 09:0b:6d:b0:6d:50:17:d6:6e:9a:ea:07:1c:e4:6f: 73:f8:52:f1:72:bf:65:10:b8:be:7b:e3:3c:26:1d: 6a:cc:56:8b:da:eb:48:31:cc:b5:13:ad:42:85:7f: f7:61:64:98:3c:83:47:15:30:67:2f:99:10:44:9d: 38:51:b0:1a:ef:9f:18:a8:8c:e5:c6:df:4e:24:a9: 7e:a8:fb:df:4f:7d:aa:26:90:75:a3:23:9d:97:2a: 46:6b:07:6d:94:a1:89:66:3e:b3:d7:88:04:54:9d: 3f:60:67:fd:8e:b5:d8:e2:a4:09:a8:9e:92:f8:df: b0:1d:30:bd:ee:27:f6:be:85:32:5e:2d:e7:28:46: 54:2b:89:ab:01:e8:28:b0:fa:63:4f:06:0d:b1:bb: 9a:c2:43:c5:72:78:f9:72:d7:ad:52:fa:b9:0a:6f: b7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:DF:06:77:EE:2E:70:03:1A:F7:26:7F:BB:7B:99:D3:4F:AF:F0:3C X509v3 Authority Key Identifier: keyid:6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ed:8a:d8:97:14:19:a7:d0:22:88:5a:aa:47:d2:17:3c:2e: 0f:30:4f:a5:72:6b:7b:8a:e8:86:b3:10:f0:39:16:66:f5:f9: 2a:45:f0:07:29:25:19:e0:83:fc:e4:bb:09:de:49:5f:3f:d9: 45:09:d2:b4:ed:75:d2:67:bf:b6:a5:78:76:c2:71:f0:0f:e5: d0:05:b6:6e:e5:4e:b7:97:8a:21:dc:9b:45:d4:34:59:15:a4: aa:73:fc:7b:27:49:57:c3:92:ca:47:c1:2b:ed:76:e8:d9:6b: 39:07:bc:37:da:d9:e8:7b:1d:67:0c:7a:0c:d0:e2:7f:21:50: 66:91:a8:55:67:af:6c:f8:24:5a:9a:d4:33:da:af:bf:f9:2d: 6c:ca:49:ea:be:35:91:a9:e9:bc:e8:18:ca:b5:18:8a:6f:de: 87:18:28:a5:21:73:df:81:73:e4:6c:c9:50:c9:3b:71:40:2a: 70:27:e4:cc:01:f0:da:22:26:ec:63:d5:42:9b:cf:28:4b:b9: fc:8d:31:6b:ce:dc:89:4d:a0:41:50:bf:63:73:07:9e:83:a7: 9b:b1:46:df:39:ab:0b:42:49:eb:6a:c4:1c:b1:e1:18:2d:95: c6:45:e3:d0:3c:f5:73:a4:5e:ae:95:00:37:f1:77:e2:67:9b: 70:03:61:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyMzIxMTAvBgNVBAUTKDZFMTg0QkUxNDYxMkQ1QTJCNTNDNDk4NzY4NDQ1MDg1 MERCMDJDNzQwHhcNMjUwMzI4MjIxNjI2WhcNMjUwNDA0MjIxNjI2WjAYMRYwFAYD VQQDEw02N2U3MWZiYS02MmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2H3clfgEkLlM2gdI9M8B6sSiZ1QyMB7qUWy+TB8aS6h6phnkBjZyWrqJthq +MnP+5LXB9NJquaqWLY5Dm/3mZ1gzib+6M0OCVi82nYXhrxfaTtHh4kJ8ksJC22w bVAX1m6a6gcc5G9z+FLxcr9lELi+e+M8Jh1qzFaL2utIMcy1E61ChX/3YWSYPINH FTBnL5kQRJ04UbAa758YqIzlxt9OJKl+qPvfT32qJpB1oyOdlypGawdtlKGJZj6z 14gEVJ0/YGf9jrXY4qQJqJ6S+N+wHTC97if2voUyXi3nKEZUK4mrAegosPpjTwYN sbuawkPFcnj5ctetUvq5Cm+36QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTfBnfu LnADGvcmf7t7mdNPr/A8MB8GA1UdIwQYMBaAFG4YS+FGEtWitTxJh2hEUIUNsCx0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjIzMi85NEQ0Qzc0MDNG MEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFhSzFQRW1IYUVSUWhRMndM SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoaEw0VVlTMWFLMVBFbUhhRVJRaFEyd0xIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjIzMi85NEQ0Qzc0MDNGMEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFh SzFQRW1IYUVSUWhRMndMSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE7YrYlxQZp9AiiFqqR9IXPC4PME+lcmt7iuiGsxDwORZm9fkqRfAH KSUZ4IP85LsJ3klfP9lFCdK07XXSZ7+2pXh2wnHwD+XQBbZu5U63l4oh3JtF1DRZ FaSqc/x7J0lXw5LKR8Er7Xbo2Ws5B7w32tnoex1nDHoM0OJ/IVBmkahVZ69s+CRa mtQz2q+/+S1syknqvjWRqem86BjKtRiKb96HGCilIXPfgXPkbMlQyTtxQCpwJ+TM AfDaIibsY9VCm88oS7n8jTFrztyJTaBBUL9jcweeg6ebsUbfOasLQknrasQcseEY LZXGRePQPPVzpF6ulQA38XfiZ5twA2Gj -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:51 2025 by rpki-client