$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: SvF1CSSwt7qj4ZYJtb5Nwg01BwIu87GsgZzDPT2U+fk= Subject key identifier: F6:35:43:81:92:52:98:F4:B1:1A:26:9C:9B:E9:43:DF:88:3A:05:CF Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 0165 Signing time: Thu 03 Apr 2025 03:14:24 +0000 Manifest this update: Thu 03 Apr 2025 03:14:23 +0000 Manifest next update: Thu 10 Apr 2025 03:14:23 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: 8gjeLW3m9VRC3uZNNtAu+Md8n/NmCdqWWo467CLqTIM=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: YT1DLrJvP+2w7lodtwm2stNsNaNoq+ytHid9uR561S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F Validity Not Before: Apr 3 03:14:23 2025 GMT Not After : Apr 10 03:14:23 2025 GMT Subject: CN=67edfd10-3fb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:47:5e:af:dd:39:31:4c:d5:5b:51:74:0c: d6:0a:33:ed:a4:07:03:c3:5f:1f:a1:2a:c8:9b:f3: ed:0a:f8:08:1e:03:39:2f:fa:ff:7b:4c:e0:ba:de: b8:f3:1e:72:8c:9e:eb:b3:a7:ad:53:ea:e1:5c:09: 95:89:9b:b3:b1:23:f1:c0:f5:9e:12:cb:95:cf:22: 72:ba:7b:5e:b7:54:73:3a:82:46:c4:d7:3d:37:02: b4:b2:93:00:ea:43:21:12:7a:53:61:76:28:59:19: b3:a5:6f:f7:67:21:11:e0:d0:a1:e5:e7:53:1d:e9: 25:6d:f3:c4:2d:a8:56:f1:91:5e:3a:53:3b:af:05: 3d:1d:bf:23:42:16:18:ad:8a:b0:bb:ab:f9:89:1b: 4a:36:92:3e:a3:44:e5:f1:8e:9a:e8:77:fb:dc:32: 81:e9:0a:73:69:6c:bd:17:2a:2b:4f:86:98:b1:5a: e2:f1:05:d5:0a:1c:e5:24:98:17:27:15:6d:b7:0a: 04:a9:57:ec:59:21:46:50:82:cc:3a:34:df:54:42: bc:f4:a2:b3:48:b1:f9:f5:4d:39:03:29:21:85:22: c8:33:bc:b0:e6:7a:d3:1e:ad:bd:4f:b7:71:26:77: 44:86:64:ba:3c:6e:80:2d:ab:dc:57:22:44:d6:27: 79:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:35:43:81:92:52:98:F4:B1:1A:26:9C:9B:E9:43:DF:88:3A:05:CF X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:19:41:c7:bc:c7:7a:6a:4e:3c:b2:33:63:48:7a:a0:30:b6: a4:8a:1c:f6:a0:8b:f6:c6:28:2b:43:09:6e:04:17:b1:f9:e8: 3a:44:ae:b6:79:fc:2a:23:7e:63:a0:ae:bb:8f:49:33:7e:e3: f0:e1:f4:ae:b5:45:72:1f:60:2e:73:bf:c6:4f:98:8e:3c:a4: 9b:1c:92:15:78:f0:0f:0b:7a:b0:38:9d:bd:30:b6:62:05:34: 38:3d:e8:c3:c7:cc:c4:5c:27:9e:71:75:8f:ff:fe:06:59:47: b4:75:5a:e3:a9:87:70:99:92:8e:ca:f4:19:60:6b:c5:ed:0b: 16:b7:2e:93:d9:01:31:2c:9b:f7:d4:c1:b3:e4:61:dd:61:69: f3:3b:5a:c4:8a:9d:ba:c0:20:30:fe:ed:17:bd:14:90:fc:db: c1:54:97:ba:54:9d:6f:d7:7f:0e:6e:0f:03:59:d8:52:c5:38: 17:04:10:62:f7:77:a6:17:0a:9c:83:07:a6:e5:48:e7:4d:5b: a8:97:4f:f2:85:93:47:2d:3c:df:98:8c:b6:4f:98:85:c7:fe: 10:43:36:47:e2:56:23:43:78:78:27:12:7b:5b:a4:04:52:8d: 8a:c3:bc:7f:3c:50:e7:65:3e:e5:d7:f2:86:c0:3e:dc:82:47: 2b:fd:c7:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUwNDAzMDMxNDIzWhcNMjUwNDEwMDMxNDIzWjAYMRYwFAYD VQQDEw02N2VkZmQxMC0zZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaZHXq/dOTFM1VtRdAzWCjPtpAcDw18foSrIm/PtCvgIHgM5L/r/e0zgut64 8x5yjJ7rs6etU+rhXAmViZuzsSPxwPWeEsuVzyJyuntet1RzOoJGxNc9NwK0spMA 6kMhEnpTYXYoWRmzpW/3ZyER4NCh5edTHeklbfPELahW8ZFeOlM7rwU9Hb8jQhYY rYqwu6v5iRtKNpI+o0Tl8Y6a6Hf73DKB6QpzaWy9FyorT4aYsVri8QXVChzlJJgX JxVttwoEqVfsWSFGUILMOjTfVEK89KKzSLH59U05AykhhSLIM7yw5nrTHq29T7dx JndEhmS6PG6ALavcVyJE1id5xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPY1Q4GS Upj0sRomnJvpQ9+IOgXPMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrGUHHvMd6ak48sjNjSHqgMLakihz2oIv2xigrQwluBBex+eg6RK62 efwqI35joK67j0kzfuPw4fSutUVyH2Auc7/GT5iOPKSbHJIVePAPC3qwOJ29MLZi BTQ4PejDx8zEXCeecXWP//4GWUe0dVrjqYdwmZKOyvQZYGvF7QsWty6T2QExLJv3 1MGz5GHdYWnzO1rEip26wCAw/u0XvRSQ/NvBVJe6VJ1v138Obg8DWdhSxTgXBBBi 93emFwqcgwem5UjnTVuol0/yhZNHLTzfmIy2T5iFx/4QQzZH4lYjQ3h4JxJ7W6QE Uo2Kw7x/PFDnZT7l1/KGwD7cgkcr/cdb -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:56 2025 by rpki-client