$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: Tn/j1AEIx6ig/fKICGjjSVS+nEGBpm2ClPTOmzNrAds= Subject key identifier: 30:A1:1D:78:FE:F7:17:14:44:77:6C:A2:0D:C5:45:AA:16:F4:CE:4A Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07AC Signing time: Fri 04 Apr 2025 21:21:19 +0000 Manifest this update: Fri 04 Apr 2025 21:21:19 +0000 Manifest next update: Fri 11 Apr 2025 21:21:19 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: qY/8TGdWRHdjSmVRc/f61tZyLEaZhodHARC9+/32HQg=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1978 (0x7ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD Validity Not Before: Apr 4 21:21:19 2025 GMT Not After : Apr 11 21:21:19 2025 GMT Subject: CN=67f04d4f-ebac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1a:40:22:d4:3d:3d:a7:f3:5d:a1:ea:2b:fb: f4:94:53:62:23:4c:f4:2d:9a:ad:83:27:91:cd:78: 09:ae:12:5f:97:f2:b7:52:75:d7:fb:15:58:b3:1e: 6b:cd:af:06:e8:1e:ef:6f:08:b6:13:42:f3:44:9b: ed:9e:83:17:ab:38:ae:20:e2:a8:80:35:a0:a2:96: d0:8d:ca:02:25:b0:db:17:e3:e9:70:83:18:79:6e: b6:71:4e:03:57:3a:f9:ca:52:71:d3:1b:39:56:f2: 31:9c:a6:d7:20:47:0a:a8:2b:a0:1d:c5:73:e9:23: 96:1f:94:ed:3f:df:80:fd:4d:c8:e7:a5:77:4b:73: c7:ff:60:f4:18:49:87:cd:78:a1:f6:cc:70:db:12: 88:39:53:2c:3b:fb:1a:0c:d9:e8:e0:dc:a7:8e:bd: 43:d8:88:65:f9:29:ff:b7:d4:39:f6:35:6e:f5:cb: f3:6d:1f:47:5f:39:5c:23:f9:9e:56:f2:7e:46:ed: d6:8f:5f:5c:30:9c:e3:d4:b9:2b:31:d0:6f:03:89: 40:f1:68:b7:d7:6a:73:a0:23:ca:d5:3d:e7:81:ec: 84:af:98:b9:05:47:a4:00:f0:46:55:83:28:90:a6: 86:60:8a:f6:d8:88:24:ab:43:0c:2c:bc:54:0f:a7: ae:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A1:1D:78:FE:F7:17:14:44:77:6C:A2:0D:C5:45:AA:16:F4:CE:4A X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:5b:f3:bf:fb:28:f3:15:40:0d:1e:32:71:67:b9:09:8e:46: ab:cf:1e:45:a4:8c:33:75:c4:1f:ce:40:e0:ea:72:87:31:71: 59:c1:90:ab:1b:4d:ee:4b:21:50:a4:9c:b8:95:e7:e8:9f:95: cb:43:be:6d:75:c7:55:3c:2c:1f:3b:d4:d6:43:a6:1b:48:fd: 3e:4d:f3:7d:ae:28:21:dd:de:cb:49:51:6d:de:74:cd:71:64: cf:80:cb:da:ba:3b:7e:b0:e7:5b:a5:34:94:55:08:17:26:30: 3a:5d:f9:5b:24:44:de:0a:7e:61:9c:d7:55:19:06:ab:ea:e6: 6b:a9:2d:03:73:9d:e5:ff:4e:3a:67:ae:37:ec:55:ac:da:e0: e6:25:2b:03:65:9c:82:22:60:81:89:8a:52:42:7a:0c:aa:6c: c3:28:15:9d:1b:c0:82:ff:0a:71:22:a8:18:2c:83:ba:07:69: 1a:75:2f:ca:19:2e:ad:f5:e7:ac:ce:1c:c0:04:4a:d9:55:47: ca:30:db:c3:cf:fa:f3:c0:30:6c:6f:38:fb:d1:15:f8:f5:e3: 55:78:42:b6:8b:8a:1c:60:7c:20:db:70:58:41:61:28:e0:64: 31:c3:48:c0:2b:77:ed:4d:c5:d8:a7:d9:03:b3:a8:f8:0c:61: 8e:8a:cc:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNDA0MjEyMTE5WhcNMjUwNDExMjEyMTE5WjAYMRYwFAYD VQQDEw02N2YwNGQ0Zi1lYmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BpAItQ9PafzXaHqK/v0lFNiI0z0LZqtgyeRzXgJrhJfl/K3UnXX+xVYsx5r za8G6B7vbwi2E0LzRJvtnoMXqziuIOKogDWgopbQjcoCJbDbF+PpcIMYeW62cU4D Vzr5ylJx0xs5VvIxnKbXIEcKqCugHcVz6SOWH5TtP9+A/U3I56V3S3PH/2D0GEmH zXih9sxw2xKIOVMsO/saDNno4Nynjr1D2Ihl+Sn/t9Q59jVu9cvzbR9HXzlcI/me VvJ+Ru3Wj19cMJzj1LkrMdBvA4lA8Wi312pzoCPK1T3ngeyEr5i5BUekAPBGVYMo kKaGYIr22Igkq0MMLLxUD6euGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDChHXj+ 9xcURHdsog3FRaoW9M5KMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUW/O/+yjzFUANHjJxZ7kJjkarzx5FpIwzdcQfzkDg6nKHMXFZwZCr G03uSyFQpJy4lefon5XLQ75tdcdVPCwfO9TWQ6YbSP0+TfN9righ3d7LSVFt3nTN cWTPgMvaujt+sOdbpTSUVQgXJjA6XflbJETeCn5hnNdVGQar6uZrqS0Dc53l/046 Z6437FWs2uDmJSsDZZyCImCBiYpSQnoMqmzDKBWdG8CC/wpxIqgYLIO6B2kadS/K GS6t9eeszhzABErZVUfKMNvDz/rzwDBsbzj70RX49eNVeEK2i4ocYHwg23BYQWEo 4GQxw0jAK3ftTcXYp9kDs6j4DGGOiszU -----END CERTIFICATE-----Generated at Sat Apr 5 22:04:23 2025 by rpki-client