$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: MCjSviHMtClRaVrvy6y7c2+656sVMyRER1abhdEPUiM= Subject key identifier: E0:B6:06:40:4A:F8:C1:7A:00:81:B2:EC:0E:BC:C2:00:7D:89:20:C8 Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0C16 Signing time: Wed 16 Apr 2025 18:29:23 +0000 Manifest this update: Wed 16 Apr 2025 18:29:23 +0000 Manifest next update: Wed 23 Apr 2025 18:29:23 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: k11pbky9BrhCpWqvlOQLcU+Kknt9SCuqe8w5RMCX9Nw=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: m+JE5pCglgWFiHYLAbZNmBupgcN+FxTJD3mSp1g3gfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 18:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Apr 16 18:29:23 2025 GMT Not After : Apr 23 18:29:23 2025 GMT Subject: CN=67fff703-b679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:03:68:61:62:a3:4b:35:68:8d:9a:15:d9:a8: 7e:93:66:6d:a5:2c:17:b0:4b:07:71:2e:85:84:a7: 91:d9:04:63:35:a0:2a:c4:1c:2c:a2:11:11:8a:e0: b4:3f:c1:43:db:0c:34:e1:d4:52:3a:b6:80:5c:52: cd:6c:56:0a:16:23:e2:41:43:a2:c6:1b:eb:23:0d: 36:9d:e8:e6:d2:3a:88:cd:0e:7e:b8:90:cb:12:4e: 1f:c7:3e:41:37:ec:a7:f3:62:a9:94:d0:d2:dc:f6: 74:ee:8f:9c:27:94:58:b6:80:32:41:58:2c:74:31: df:3b:cc:f3:45:d3:91:11:0c:e1:b0:e9:d0:c0:3d: 3f:db:ed:ec:c3:d4:83:6e:9a:13:ad:42:36:de:fe: a3:54:41:cd:d2:fb:9d:d0:e9:cb:84:c4:cb:9c:3f: 4b:7e:99:56:a7:16:32:dc:73:96:33:0d:08:67:a6: e9:20:d5:62:d1:66:cb:54:ed:d7:e8:b4:d4:45:09: 06:16:d2:b2:75:f6:5e:04:33:b5:05:3d:cd:e2:17: 39:c0:fc:6f:40:76:fc:3a:4f:03:73:3c:23:5b:a3: 11:4b:04:e5:66:ca:2a:89:e5:58:66:3f:98:f8:bd: d1:c7:30:38:05:fc:30:6e:33:af:66:eb:81:85:86: a2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B6:06:40:4A:F8:C1:7A:00:81:B2:EC:0E:BC:C2:00:7D:89:20:C8 X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:14:80:d8:1e:ad:95:98:81:f0:d1:e7:eb:5a:15:d7:f3:70: 6b:78:a0:68:3d:3c:06:0e:b9:be:81:55:c7:2c:28:9a:55:8f: cd:8f:cd:43:92:4e:47:a5:33:45:a2:c2:42:aa:a1:70:95:3c: a8:66:55:b7:1b:b4:1a:35:17:f1:02:01:b3:b7:a2:bb:67:4f: d2:b6:0a:fb:cd:ec:e8:cd:82:b8:53:db:80:bb:6d:ed:af:6c: 8a:1c:0d:b0:c8:a0:0c:37:2f:f3:bf:69:8f:e0:3c:0a:5e:26: d3:e6:be:2c:f1:29:46:f1:3a:7d:a4:94:0d:e2:19:a5:cf:bb: 1b:86:5d:83:bf:f3:02:d3:73:a7:ae:c2:2c:fd:f8:78:b6:e7: a4:08:a4:a4:0b:05:e4:6d:e1:18:44:45:bb:21:6d:a0:1e:2d: 6a:7b:64:d6:34:4f:78:ef:64:f8:37:70:ff:dd:16:dd:11:a7: 4a:7e:d1:95:7b:93:9e:7f:73:e0:59:18:f2:52:f9:58:3a:78: 23:86:1f:93:43:9a:6e:57:62:64:05:74:3f:eb:eb:55:f3:a7: 5e:d9:dc:86:02:50:e3:a1:96:b5:7f:a3:8e:2d:99:b2:ad:3b: 7d:2c:8d:26:08:d5:a8:c3:91:ef:02:15:da:97:38:cf:c4:6b: 1d:aa:b7:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjUwNDE2MTgyOTIzWhcNMjUwNDIzMTgyOTIzWjAYMRYwFAYD VQQDEw02N2ZmZjcwMy1iNjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QNoYWKjSzVojZoV2ah+k2ZtpSwXsEsHcS6FhKeR2QRjNaAqxBwsohERiuC0 P8FD2ww04dRSOraAXFLNbFYKFiPiQUOixhvrIw02nejm0jqIzQ5+uJDLEk4fxz5B N+yn82KplNDS3PZ07o+cJ5RYtoAyQVgsdDHfO8zzRdOREQzhsOnQwD0/2+3sw9SD bpoTrUI23v6jVEHN0vud0OnLhMTLnD9LfplWpxYy3HOWMw0IZ6bpINVi0WbLVO3X 6LTURQkGFtKydfZeBDO1BT3N4hc5wPxvQHb8Ok8DczwjW6MRSwTlZsoqieVYZj+Y +L3RxzA4BfwwbjOvZuuBhYaiGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOC2BkBK +MF6AIGy7A68wgB9iSDIMB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiFIDYHq2VmIHw0efrWhXX83BreKBoPTwGDrm+gVXHLCiaVY/Nj81D kk5HpTNFosJCqqFwlTyoZlW3G7QaNRfxAgGzt6K7Z0/Stgr7zezozYK4U9uAu23t r2yKHA2wyKAMNy/zv2mP4DwKXibT5r4s8SlG8Tp9pJQN4hmlz7sbhl2Dv/MC03On rsIs/fh4tuekCKSkCwXkbeEYREW7IW2gHi1qe2TWNE9472T4N3D/3RbdEadKftGV e5Oef3PgWRjyUvlYOngjhh+TQ5puV2JkBXQ/6+tV86de2dyGAlDjoZa1f6OOLZmy rTt9LI0mCNWow5HvAhXalzjPxGsdqre5 -----END CERTIFICATE-----Generated at Fri Apr 18 20:29:28 2025 by rpki-client