$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: pO0URmvM4n3bYOPhubv5orPJmu3grr9CJ3SRfSdoVUA= Subject key identifier: B8:19:52:17:A3:62:BE:CD:92:D4:FE:69:78:32:F0:26:72:3D:F4:1A Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C11 Signing time: Fri 04 Apr 2025 18:45:18 +0000 Manifest this update: Fri 04 Apr 2025 18:45:17 +0000 Manifest next update: Fri 11 Apr 2025 18:45:17 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: WHHWFDCYLUSDoy9nInE9LvouBCtZ8kWqgzV4NmzOGb8=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777 Validity Not Before: Apr 4 18:45:17 2025 GMT Not After : Apr 11 18:45:17 2025 GMT Subject: CN=67f028be-57f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:12:47:6e:be:ed:3f:57:1f:b2:a9:5a:db:b9: 43:62:2d:d2:9d:a1:58:bb:98:0b:6a:c8:fb:aa:2d: e3:b7:e6:2d:e8:a2:1b:48:a6:67:37:8d:96:ad:78: 53:be:08:d8:55:40:9d:ac:2d:21:ba:2d:bf:d6:9a: 26:b1:43:6d:45:13:90:09:f2:b5:6e:db:d3:ea:63: 45:b3:f4:03:0b:e7:48:8a:58:e0:f9:f2:b4:c3:96: 02:3b:62:1b:d6:87:e5:29:8a:74:41:ca:f4:46:21: 99:ba:7e:aa:88:02:c2:43:38:25:b4:81:91:12:44: 7a:08:30:37:00:0f:17:96:96:61:ee:03:11:99:70: 26:ab:f0:39:83:63:dc:19:05:68:40:f3:5b:a0:74: ad:69:07:76:b1:64:3a:51:15:62:ff:77:97:b5:a0: 2d:7b:c1:fd:6a:45:dd:a9:57:d6:b8:0d:50:db:82: 12:ab:1c:bf:d0:72:1a:ed:6c:46:a5:df:68:09:23: 52:74:6d:6d:ec:e4:13:14:95:2e:b2:e5:bb:bf:bd: a4:71:0a:3f:01:3c:d9:44:ba:7c:bd:82:d3:73:3c: fb:33:9e:ad:f7:6f:a9:ee:ad:fc:d7:f3:a1:b1:01: 91:40:d2:86:4c:c7:af:cb:63:59:98:02:41:a7:35: f0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:19:52:17:A3:62:BE:CD:92:D4:FE:69:78:32:F0:26:72:3D:F4:1A X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:63:9d:d7:b0:cb:9c:97:5b:1e:a8:b7:03:9a:5f:e0:e8:56: 15:7e:cb:71:46:d3:64:2b:c4:18:51:a7:d4:90:d6:b1:bf:9b: ee:b0:80:6c:d6:4d:1d:c0:0e:ed:3a:07:a6:88:35:f2:13:f0: 74:65:9b:b0:bf:bc:53:50:b9:10:5d:7c:9a:bc:7c:ee:87:a7: 32:89:5c:5f:fa:ad:8c:3e:5f:2e:4f:3b:60:5f:47:e2:fd:68: 92:1e:8b:97:65:42:14:d6:f0:c8:13:69:39:8a:a8:a5:60:e3: fc:67:31:3c:ba:1e:cf:a1:11:1e:e9:f1:32:19:70:10:8f:73: 96:9e:7e:2b:55:32:16:76:02:0a:c7:f0:d3:cc:e8:6b:be:eb: 4b:10:ac:12:ec:27:98:ce:e1:a0:91:94:a2:40:2f:9e:72:04: 94:11:03:2c:5f:57:d1:54:34:8b:46:fe:d2:26:09:a1:42:05: e3:ec:f6:98:fc:72:8b:b0:12:3d:bf:8a:b9:03:4c:30:72:4b: e9:63:63:71:48:f8:26:78:82:49:74:9c:a1:be:e4:18:f8:08: e7:11:86:f7:80:42:52:54:1b:64:ec:10:7f:96:0d:47:4f:d9: 2e:53:5c:31:36:1b:b1:b2:f6:36:53:e4:c6:6d:56:a0:db:75: 18:e9:50:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwNDA0MTg0NTE3WhcNMjUwNDExMTg0NTE3WjAYMRYwFAYD VQQDEw02N2YwMjhiZS01N2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8RJHbr7tP1cfsqla27lDYi3SnaFYu5gLasj7qi3jt+Yt6KIbSKZnN42WrXhT vgjYVUCdrC0hui2/1pomsUNtRROQCfK1btvT6mNFs/QDC+dIiljg+fK0w5YCO2Ib 1oflKYp0Qcr0RiGZun6qiALCQzgltIGREkR6CDA3AA8XlpZh7gMRmXAmq/A5g2Pc GQVoQPNboHStaQd2sWQ6URVi/3eXtaAte8H9akXdqVfWuA1Q24ISqxy/0HIa7WxG pd9oCSNSdG1t7OQTFJUusuW7v72kcQo/ATzZRLp8vYLTczz7M56t92+p7q381/Oh sQGRQNKGTMevy2NZmAJBpzXwbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgZUhej Yr7NktT+aXgy8CZyPfQaMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARY53XsMucl1seqLcDml/g6FYVfstxRtNkK8QYUafUkNaxv5vusIBs 1k0dwA7tOgemiDXyE/B0ZZuwv7xTULkQXXyavHzuh6cyiVxf+q2MPl8uTztgX0fi /WiSHouXZUIU1vDIE2k5iqilYOP8ZzE8uh7PoREe6fEyGXAQj3OWnn4rVTIWdgIK x/DTzOhrvutLEKwS7CeYzuGgkZSiQC+ecgSUEQMsX1fRVDSLRv7SJgmhQgXj7PaY /HKLsBI9v4q5A0wwckvpY2NxSPgmeIJJdJyhvuQY+AjnEYb3gEJSVBtk7BB/lg1H T9kuU1wxNhuxsvY2U+TGbVag23UY6VD/ -----END CERTIFICATE-----Generated at Sun Apr 6 03:44:08 2025 by rpki-client