$ rpki-client -vvf rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft File: Rhwv4neii8iX8PzKT3yRCN2XSQM.mft (raw, json) Hash identifier: Dp3YSMrJkeP/03ncwTMmVw2lhov9hPb0oQTH0oz/SN4= Subject key identifier: 4C:6D:F8:19:46:F9:E1:7E:82:5C:90:DC:77:22:B8:E3:67:3D:3D:87 Authority key identifier: 46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 Certificate issuer: /CN=A918711E/serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Certificate serial: 0A9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft Manifest number: 0A9B Signing time: Thu 10 Apr 2025 19:27:23 +0000 Manifest this update: Thu 10 Apr 2025 19:27:23 +0000 Manifest next update: Thu 17 Apr 2025 19:27:23 +0000 Files and hashes: 1: Rhwv4neii8iX8PzKT3yRCN2XSQM.crl (hash: dKAGbUIyEE7myi9CBM+S1kaSwpWL4uXjpqSuiLNsIZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 19:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2715 (0xa9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918711E, serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Validity Not Before: Apr 10 19:27:23 2025 GMT Not After : Apr 17 19:27:23 2025 GMT Subject: CN=67f81b9b-b01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3b:34:c1:c6:5f:46:29:06:2e:8a:bf:b2:11: 3b:14:9c:1a:66:b5:7b:06:04:13:4a:55:d4:9b:6d: 50:8b:1e:2a:1c:12:66:14:9b:69:36:46:2c:93:88: 2d:7a:a6:65:aa:c9:64:76:a2:80:40:7e:53:25:bb: ce:0b:92:21:59:02:e1:8b:d9:b0:d9:db:c7:ec:d9: 8d:00:07:cf:ce:06:28:b2:30:35:49:4f:11:33:45: a0:00:8c:e3:e3:52:c0:39:b9:34:e0:80:9f:b6:4c: 69:65:e1:56:fa:5f:86:27:42:e1:a4:4a:f6:72:ca: 6c:2f:df:6c:c8:51:bc:15:88:df:84:dc:d6:ac:5e: 26:7f:76:5b:8e:5d:8c:20:68:8c:e2:9f:9c:b0:0d: 06:4f:58:a4:fc:8e:87:41:57:3d:d5:87:56:27:ad: ed:96:0f:3b:04:03:5a:fa:98:b5:8c:26:5e:15:9d: 83:c7:25:c8:af:4b:e0:99:9d:13:46:44:a8:fb:d9: 13:3f:aa:b7:ab:31:25:dd:32:6f:d8:78:69:ae:ba: 9b:e1:7d:5c:47:6c:83:87:3b:be:a1:ad:39:bc:31: 7b:82:1f:78:d2:21:46:e2:43:dd:5f:63:fa:6c:d8: 5d:d9:8d:27:6e:e7:02:c5:4c:d6:c3:10:22:10:9b: bb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6D:F8:19:46:F9:E1:7E:82:5C:90:DC:77:22:B8:E3:67:3D:3D:87 X509v3 Authority Key Identifier: keyid:46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ff:6c:b6:96:bd:c4:3a:24:c4:8d:8a:93:89:21:04:f4:e8: 0e:30:5a:13:ad:0b:ec:d3:c4:dd:b9:d8:90:53:25:92:48:4a: d1:f5:e3:68:6a:f6:94:2b:a2:ed:8c:77:54:26:7d:34:88:2d: a1:46:03:a0:98:17:9b:dc:74:6c:c0:49:0d:04:f1:f5:bf:3d: 2d:7a:bc:d1:4a:bb:0b:c5:62:a5:27:c3:39:87:50:8a:26:ef: c2:3e:20:a1:58:0a:8e:9e:35:ad:ca:aa:29:38:0f:ce:e3:30: 1a:af:d3:b8:56:35:30:1d:91:00:73:1b:ed:85:2d:5f:d3:e6: fe:3e:84:1c:64:32:ef:62:ed:b3:35:1d:ba:4e:45:35:aa:f4: 3e:6e:ea:97:36:dc:99:78:39:74:ab:15:5d:9d:ba:30:70:98: fa:e8:d0:8d:d9:f0:6a:11:e2:5d:92:0a:69:fc:57:ea:be:9e: 4b:07:90:a3:f9:56:32:06:7a:dd:0c:62:b9:93:00:dc:e4:58: 2e:f0:86:03:7f:4f:c6:90:ba:9d:1b:c6:90:b4:d4:72:84:81: 8e:92:fa:88:69:67:8a:48:64:b2:f2:7a:38:6e:08:cf:d2:b4: ac:98:9d:27:18:a2:d2:6c:a0:85:aa:57:ab:af:04:4e:aa:ec: 8b:fd:a7:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcxMUUxMTAvBgNVBAUTKDQ2MUMyRkUyNzdBMjhCQzg5N0YwRkNDQTRGN0M5MTA4 REQ5NzQ5MDMwHhcNMjUwNDEwMTkyNzIzWhcNMjUwNDE3MTkyNzIzWjAYMRYwFAYD VQQDEw02N2Y4MWI5Yi1iMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zs0wcZfRikGLoq/shE7FJwaZrV7BgQTSlXUm21Qix4qHBJmFJtpNkYsk4gt eqZlqslkdqKAQH5TJbvOC5IhWQLhi9mw2dvH7NmNAAfPzgYosjA1SU8RM0WgAIzj 41LAObk04ICftkxpZeFW+l+GJ0LhpEr2cspsL99syFG8FYjfhNzWrF4mf3Zbjl2M IGiM4p+csA0GT1ik/I6HQVc91YdWJ63tlg87BANa+pi1jCZeFZ2DxyXIr0vgmZ0T RkSo+9kTP6q3qzEl3TJv2Hhprrqb4X1cR2yDhzu+oa05vDF7gh940iFG4kPdX2P6 bNhd2Y0nbucCxUzWwxAiEJu7gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExt+BlG +eF+glyQ3HciuONnPT2HMB8GA1UdIwQYMBaAFEYcL+J3oovIl/D8yk98kQjdl0kD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzExRS8wQjU4NEM3ODUx MzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4aVg4UHpLVDN5UkNOMlhT UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Jod3Y0bmVpaThpWDhQektUM3lSQ04yWFNRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzExRS8wQjU4NEM3ODUxMzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4 aVg4UHpLVDN5UkNOMlhTUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1/2y2lr3EOiTEjYqTiSEE9OgOMFoTrQvs08TdudiQUyWSSErR9eNo avaUK6LtjHdUJn00iC2hRgOgmBeb3HRswEkNBPH1vz0terzRSrsLxWKlJ8M5h1CK Ju/CPiChWAqOnjWtyqopOA/O4zAar9O4VjUwHZEAcxvthS1f0+b+PoQcZDLvYu2z NR26TkU1qvQ+buqXNtyZeDl0qxVdnbowcJj66NCN2fBqEeJdkgpp/Ffqvp5LB5Cj +VYyBnrdDGK5kwDc5Fgu8IYDf0/GkLqdG8aQtNRyhIGOkvqIaWeKSGSy8no4bgjP 0rSsmJ0nGKLSbKCFqlerrwROquyL/adg -----END CERTIFICATE-----Generated at Sat Apr 12 19:16:49 2025 by rpki-client