$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: qirFd7Of9iDIudnMiuVBMH1sy9BbF0ZZ4SAYv3edMXk= Subject key identifier: 95:31:24:53:1E:94:36:A5:9F:AB:B2:4E:7D:C9:9F:01:DF:9C:72:22 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 0A04 Signing time: Sun 06 Apr 2025 19:48:05 +0000 Manifest this update: Sun 06 Apr 2025 19:48:04 +0000 Manifest next update: Sun 13 Apr 2025 19:48:04 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: 9JXcWt9Cv9RPOCMPbelmGo9zh+wdsjCNDbZClOZOMJw=) 2: A81364AC4B0611EF91534014C4F9AE02.roa (hash: w/5bZBiXDjvqgxnP7qfHyeDTFEoVXi8DgwG0C4ccn5Q=) 3: D9AFDBC2400111EFBB30C475C4F9AE02.roa (hash: Ve3ejv62M16tRhsxP6f89AusOlZpUFORwV+rrPuD1sg=) 4: 73DC26744B0611EF8698EB13C4F9AE02.roa (hash: ybrtkQR3uxqIC7ty9/ANRKrx+CuUtT0biIda1i5SZAg=) 5: B8D18508EDE011EF88407251C4F9AE02.roa (hash: 7FKsDT71I8DwEjcBpbCZQH8HmSgZkJ2Kdkp2VjtHRzA=) 6: 6C68485C5A1D11EFA9989052C4F9AE02.roa (hash: eMC9itpv3oFgg3wC16WZV3uYeAr5DZklaR+zjZUUL1Q=) 7: A7A72BF24B0611EF91534014C4F9AE02.roa (hash: 5X86twqvrwj9rAMXwE7dxiHPJmnmzTIw/q2mjxKYTMU=) 8: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: 74YlPjSTLEaBRhMrN5akas7kNpehqYE1ysoQhZlJDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 19:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661 Validity Not Before: Apr 6 19:48:04 2025 GMT Not After : Apr 13 19:48:04 2025 GMT Subject: CN=67f2da74-b1c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f0:7d:b5:56:df:25:2b:25:06:59:27:92:8f: 20:72:f3:06:2b:8e:a7:c8:1b:0f:c8:c6:4a:57:19: 46:94:c7:06:61:8e:85:46:ed:c2:79:21:6b:b1:9b: 7e:85:16:b4:b3:fe:13:1d:2f:67:95:30:1c:9a:8c: 1d:2d:d5:70:24:41:56:47:91:ef:4e:7d:bc:2e:a6: 3c:00:d8:d8:8c:86:97:62:9e:d6:36:11:62:ac:c2: 77:3b:ff:fc:b6:6f:18:4c:4f:ab:a3:99:55:ff:bb: d7:cf:b8:94:90:33:70:3c:96:bd:eb:81:ee:4c:a6: 8e:60:e1:3f:7d:75:3c:54:ab:ca:fa:cc:77:36:5a: a0:72:fa:7d:c7:bf:e9:f5:99:3e:68:cd:99:85:68: e9:57:f5:91:4a:34:6c:66:e7:b5:10:7a:b3:a8:03: 54:08:71:39:92:e3:5f:38:6a:88:cf:e3:b9:e7:e7: 36:16:48:da:7b:eb:be:92:1c:1a:4a:7b:0b:d6:5a: 18:59:d8:54:95:50:2d:a6:49:bb:2f:ca:bb:31:27: 8f:4c:0d:d1:1e:40:0d:34:46:e6:d1:3b:a2:82:ee: 62:2d:0b:23:76:78:6e:87:2e:7d:c6:ed:da:e8:cd: ae:42:07:11:14:5a:fd:ab:1d:31:2f:e8:56:8a:38: 2d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:31:24:53:1E:94:36:A5:9F:AB:B2:4E:7D:C9:9F:01:DF:9C:72:22 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:2a:ad:97:5a:bf:10:f8:69:be:24:c1:37:59:7c:e2:06:f4: b2:e5:93:aa:4d:47:9c:c2:34:d5:8a:99:c6:2e:dd:de:3c:a7: 23:87:09:6c:14:a9:81:f2:d7:d7:de:3e:4b:ea:20:f2:f6:ff: 9a:39:13:9f:7c:ef:b9:07:4a:1f:7c:b8:3a:2a:a1:23:75:04: d9:12:1b:02:e0:14:d0:47:09:f8:e1:0e:7e:29:f5:ef:f8:3c: 08:97:a0:9b:ff:c3:4a:e1:97:3a:81:23:5e:1b:58:41:34:d5: b5:3a:fe:ac:f3:34:e2:df:aa:23:da:7b:d0:54:11:da:08:25: f9:b7:ec:b0:7d:94:fe:55:8c:35:27:84:28:5e:a6:77:b8:1a: 54:b5:e0:d9:b6:80:c5:0b:5e:e3:45:26:c6:3f:20:22:33:c8: b9:95:84:99:f8:61:db:1b:78:df:a4:98:5e:37:5d:0b:9f:b8: f6:a6:3b:9d:ec:1b:23:06:be:57:3f:0a:fa:f4:af:f0:c9:e6: 73:93:77:f6:74:80:eb:69:70:3e:da:84:d7:8f:b1:96:25:3d: 78:36:47:4d:2e:d4:7e:b9:3e:69:b3:84:30:f6:8c:8f:69:fb: af:93:6e:be:1c:30:18:ea:94:2c:3b:bd:fa:28:aa:84:11:e7: b5:2f:27:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjUwNDA2MTk0ODA0WhcNMjUwNDEzMTk0ODA0WjAYMRYwFAYD VQQDEw02N2YyZGE3NC1iMWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/B9tVbfJSslBlknko8gcvMGK46nyBsPyMZKVxlGlMcGYY6FRu3CeSFrsZt+ hRa0s/4THS9nlTAcmowdLdVwJEFWR5HvTn28LqY8ANjYjIaXYp7WNhFirMJ3O//8 tm8YTE+ro5lV/7vXz7iUkDNwPJa964HuTKaOYOE/fXU8VKvK+sx3Nlqgcvp9x7/p 9Zk+aM2ZhWjpV/WRSjRsZue1EHqzqANUCHE5kuNfOGqIz+O55+c2Fkjae+u+khwa SnsL1loYWdhUlVAtpkm7L8q7MSePTA3RHkANNEbm0Tuigu5iLQsjdnhuhy59xu3a 6M2uQgcRFFr9qx0xL+hWijgtpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUxJFMe lDaln6uyTn3JnwHfnHIiMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGKq2XWr8Q+Gm+JME3WXziBvSy5ZOqTUecwjTVipnGLt3ePKcjhwls FKmB8tfX3j5L6iDy9v+aOROffO+5B0offLg6KqEjdQTZEhsC4BTQRwn44Q5+KfXv +DwIl6Cb/8NK4Zc6gSNeG1hBNNW1Ov6s8zTi36oj2nvQVBHaCCX5t+ywfZT+VYw1 J4QoXqZ3uBpUteDZtoDFC17jRSbGPyAiM8i5lYSZ+GHbG3jfpJheN10Ln7j2pjud 7BsjBr5XPwr69K/wyeZzk3f2dIDraXA+2oTXj7GWJT14NkdNLtR+uT5ps4Qw9oyP afuvk26+HDAY6pQsO736KKqEEee1Lyfv -----END CERTIFICATE-----Generated at Tue Apr 8 20:30:58 2025 by rpki-client