$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: 2tmWvfg1wvH/AzL2QTR5xKQ1ShNXByeV6uq1Rqg5JFc= Subject key identifier: 3A:53:58:2D:52:B6:A8:8A:13:B8:43:78:88:DD:F5:DC:1A:6A:EE:CE Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0560 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 055C Signing time: Sat 12 Apr 2025 23:01:52 +0000 Manifest this update: Sat 12 Apr 2025 23:01:51 +0000 Manifest next update: Sat 19 Apr 2025 23:01:51 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: 2FH81DXB2tMsoGOi6eFc/tBfz6tvBeQBwJGQdKNDwYg=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 23:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1376 (0x560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Apr 12 23:01:51 2025 GMT Not After : Apr 19 23:01:51 2025 GMT Subject: CN=67faf0e0-2856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:89:ad:36:e0:be:b2:7d:5c:24:40:50:67:8f: 99:b6:92:d3:bb:cc:dc:68:04:b1:0d:2e:d2:7d:db: 11:57:b0:90:11:dc:f3:01:16:53:4a:ce:bd:13:14: d7:ee:ba:4f:6e:a5:72:ff:c6:e0:24:24:f7:b9:48: bd:1a:34:0c:55:6b:f5:98:48:9c:cb:5c:9b:35:55: 32:c1:ee:be:40:9b:6f:48:68:c6:b9:35:a8:38:5c: 6e:b6:3d:ce:51:a2:b6:8c:6e:73:4f:36:b0:5d:76: 4e:5a:ed:da:c1:21:8e:a6:8c:90:d1:0d:0c:e4:2c: c6:0e:e9:f7:7e:4d:3a:a0:18:21:9a:f3:e4:bb:ce: d0:6d:72:c5:51:fa:78:f2:bb:60:f1:0c:da:99:b0: bb:f4:69:d2:5a:e8:e5:1c:22:47:75:84:18:5e:05: 2a:45:a1:9c:df:68:30:8f:f4:e7:27:4b:31:6d:55: ba:99:5f:c9:a7:04:97:69:97:2a:86:7d:57:bc:a2: 53:fe:c4:08:82:fe:5c:6d:f5:69:f3:b0:f5:4c:82: 7d:44:70:8e:c0:88:28:eb:d5:3e:22:5d:9d:e4:02: 6e:26:c1:aa:39:eb:fc:e6:31:b1:d3:9d:41:ce:75: 58:15:7e:4d:52:1b:52:bc:84:1b:bf:0d:df:e3:b3: 7e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:53:58:2D:52:B6:A8:8A:13:B8:43:78:88:DD:F5:DC:1A:6A:EE:CE X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:3f:eb:53:9d:ec:91:53:ae:0a:dc:19:0e:0b:62:33:fb:3f: 04:3e:b0:1f:80:93:32:a4:79:e0:f6:bb:fd:2b:32:f2:1f:ce: 3c:1b:c3:ba:0f:e9:59:07:ce:b4:e4:fa:05:d2:44:52:06:30: ce:b0:b8:48:48:59:97:7f:7d:df:bc:30:a5:43:ab:37:50:17: b8:13:86:58:eb:aa:e1:b2:f9:b8:5a:60:ac:97:0b:9a:60:31: 06:a4:50:93:40:16:76:c7:27:22:00:17:0c:43:eb:14:b7:3c: fc:9c:73:fc:1f:ee:f2:52:91:df:1b:61:13:38:24:10:41:05: ae:90:d8:23:88:bf:06:02:80:b6:a9:f8:06:0f:b2:53:c2:8a: 9d:c4:2c:ee:cc:9d:8f:29:a1:16:c9:65:7d:aa:4e:28:1c:40: 92:36:85:6b:7e:ba:62:bc:0d:72:3d:06:56:bb:a2:a4:34:24: 90:d7:16:5b:1e:88:8c:49:fc:c6:fd:71:d1:2f:b4:b4:14:b9: 3d:7a:f4:f8:6b:6c:bb:7b:8a:78:c5:d9:e8:4b:bd:e9:58:cd: cf:ff:9e:33:59:a2:81:b0:7e:bb:54:e2:e0:45:6d:a2:f5:dd: 12:27:b9:2e:ed:72:c1:1a:b1:10:5a:cf:58:db:9e:ae:a8:c5: bf:6d:0c:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwNDEyMjMwMTUxWhcNMjUwNDE5MjMwMTUxWjAYMRYwFAYD VQQDEw02N2ZhZjBlMC0yODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl4mtNuC+sn1cJEBQZ4+ZtpLTu8zcaASxDS7SfdsRV7CQEdzzARZTSs69ExTX 7rpPbqVy/8bgJCT3uUi9GjQMVWv1mEicy1ybNVUywe6+QJtvSGjGuTWoOFxutj3O UaK2jG5zTzawXXZOWu3awSGOpoyQ0Q0M5CzGDun3fk06oBghmvPku87QbXLFUfp4 8rtg8QzambC79GnSWujlHCJHdYQYXgUqRaGc32gwj/TnJ0sxbVW6mV/JpwSXaZcq hn1XvKJT/sQIgv5cbfVp87D1TIJ9RHCOwIgo69U+Il2d5AJuJsGqOev85jGx051B znVYFX5NUhtSvIQbvw3f47N+eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpTWC1S tqiKE7hDeIjd9dwaau7OMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuP+tTneyRU64K3BkOC2Iz+z8EPrAfgJMypHng9rv9KzLyH848G8O6 D+lZB8605PoF0kRSBjDOsLhISFmXf33fvDClQ6s3UBe4E4ZY66rhsvm4WmCslwua YDEGpFCTQBZ2xyciABcMQ+sUtzz8nHP8H+7yUpHfG2ETOCQQQQWukNgjiL8GAoC2 qfgGD7JTwoqdxCzuzJ2PKaEWyWV9qk4oHECSNoVrfrpivA1yPQZWu6KkNCSQ1xZb HoiMSfzG/XHRL7S0FLk9evT4a2y7e4p4xdnoS73pWM3P/54zWaKBsH67VOLgRW2i 9d0SJ7ku7XLBGrEQWs9Y256uqMW/bQyh -----END CERTIFICATE-----Generated at Sun Apr 13 04:50:39 2025 by rpki-client