$ rpki-client -vvf rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft File: BHuLKVTEerFcV1ht0ATriTl3xa8.mft (raw, json) Hash identifier: EutwS7P5gPH77Q1B0Tba5OKYRVBqmkoZYBtOSz4pVzo= Subject key identifier: 96:55:BD:6A:14:CB:72:E4:E6:B4:9B:AD:9A:A3:C0:4E:CD:9F:06:C3 Authority key identifier: 04:7B:8B:29:54:C4:7A:B1:5C:57:58:6D:D0:04:EB:89:39:77:C5:AF Certificate issuer: /CN=A918E8EB/serialNumber=047B8B2954C47AB15C57586DD004EB893977C5AF Certificate serial: 125B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHuLKVTEerFcV1ht0ATriTl3xa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft Manifest number: 1249 Signing time: Sat 12 Apr 2025 17:03:23 +0000 Manifest this update: Sat 12 Apr 2025 17:03:22 +0000 Manifest next update: Sat 19 Apr 2025 17:03:22 +0000 Files and hashes: 1: BHuLKVTEerFcV1ht0ATriTl3xa8.crl (hash: UD1WogLAUdYRfQ2RJq6kasbCJJ0IdWkmSFrnV1r5Oj0=) 2: 3489528EC84511ED90A61540C4F9AE02.roa (hash: 0GBU9clR4v/kv/m8Iw+tpC8pBR8oX1ZqIKf4DgtvCco=) 3: 35615A30C84511ED90A61540C4F9AE02.roa (hash: CfO3CZyouhq3VXYxiVm5tnc8saneiKp2zLb93JcMMQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.crl rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHuLKVTEerFcV1ht0ATriTl3xa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4699 (0x125b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E8EB, serialNumber=047B8B2954C47AB15C57586DD004EB893977C5AF Validity Not Before: Apr 12 17:03:22 2025 GMT Not After : Apr 19 17:03:22 2025 GMT Subject: CN=67fa9cda-9255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:48:65:44:91:4b:bb:9f:c2:b3:66:5d:63:ee: 2d:51:9b:4e:5d:94:31:06:f6:2f:79:e6:5f:71:fc: ea:23:84:38:79:48:27:9a:f7:19:af:61:59:a0:b1: ce:70:5b:3c:3b:b9:93:25:b8:b5:77:15:07:5a:56: 9c:02:09:54:fd:32:ac:c5:88:a6:9b:62:78:4b:e3: f4:ea:c6:e5:2a:05:d7:41:b7:1d:11:c7:ac:40:c3: 25:c6:1f:4b:f6:ed:3d:ce:56:eb:54:18:0d:d9:28: df:ec:de:cb:f2:5a:4b:8e:c7:35:74:7a:57:f2:28: 77:ac:84:f9:45:ed:e4:d8:77:94:ae:08:7c:0c:1e: a7:00:db:d6:5d:cb:4e:24:7a:cb:bf:c3:20:44:0d: 64:0d:ea:b2:99:ab:32:4a:66:92:00:c8:7a:2f:05: 48:5e:32:c2:4f:e6:60:aa:66:72:8e:dc:e6:91:d7: e4:a8:b4:5b:c0:6f:dc:92:30:b4:26:59:af:fb:ff: 48:72:03:72:fe:e5:fa:a8:47:19:64:66:a6:60:c8: 72:6a:ce:55:20:c2:fd:7d:2b:23:cf:26:7a:be:e3: 1f:0f:b0:88:cb:66:a5:c3:5d:a7:3b:f1:ba:f8:27: 5d:ec:1c:b7:b3:12:6a:ad:e8:1b:62:92:f6:c7:e3: fb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:55:BD:6A:14:CB:72:E4:E6:B4:9B:AD:9A:A3:C0:4E:CD:9F:06:C3 X509v3 Authority Key Identifier: keyid:04:7B:8B:29:54:C4:7A:B1:5C:57:58:6D:D0:04:EB:89:39:77:C5:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHuLKVTEerFcV1ht0ATriTl3xa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E8EB/D039F8D6D1BF11E8B264F65AC4F9AE02/BHuLKVTEerFcV1ht0ATriTl3xa8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:3c:23:74:23:c9:4a:c8:d3:0f:70:8c:34:96:ad:e7:59:3b: df:df:8b:33:6e:d6:42:50:2e:ec:ed:f6:4a:fe:ba:05:4a:69: 5a:65:52:21:9a:ad:9d:1e:e3:b9:4b:71:f6:3f:5a:b3:49:7e: d4:0e:54:bf:b4:22:c4:8e:c6:20:6c:66:6e:b2:4d:5a:0f:47: 5f:ca:91:12:5e:6c:dd:c3:34:b9:fe:8c:18:3d:8d:db:d8:53: 92:f9:e8:50:d3:67:a2:47:9b:f0:0b:8c:ea:2b:dc:12:7a:f6: e4:73:a3:4b:8b:cd:4a:50:af:ec:19:f6:f5:62:69:1c:ab:6b: 15:99:bf:3a:3b:13:ad:52:37:7f:0c:36:3e:76:cc:f9:9a:cc: c7:81:49:fe:d7:b1:5b:55:f5:44:6b:49:32:db:92:16:00:25: 2e:b6:2c:24:db:76:b7:aa:3d:15:3a:0e:c0:1e:13:bd:e0:d2: 24:90:dc:da:a8:68:30:8e:cd:2f:fe:e3:e0:3d:a0:31:84:d3: 45:4f:58:1e:05:3e:7f:80:62:16:fb:8e:04:3f:8f:0e:b6:32: 9e:ee:f4:47:d0:32:60:75:ed:2d:08:43:67:80:c0:ba:5d:61: e8:e0:ca:fc:d0:79:9c:ae:51:1a:6c:92:2a:cc:d9:f1:2b:6c: ec:69:3f:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICElswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4RUIxMTAvBgNVBAUTKDA0N0I4QjI5NTRDNDdBQjE1QzU3NTg2REQwMDRFQjg5 Mzk3N0M1QUYwHhcNMjUwNDEyMTcwMzIyWhcNMjUwNDE5MTcwMzIyWjAYMRYwFAYD VQQDEw02N2ZhOWNkYS05MjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEhlRJFLu5/Cs2ZdY+4tUZtOXZQxBvYveeZfcfzqI4Q4eUgnmvcZr2FZoLHO cFs8O7mTJbi1dxUHWlacAglU/TKsxYimm2J4S+P06sblKgXXQbcdEcesQMMlxh9L 9u09zlbrVBgN2Sjf7N7L8lpLjsc1dHpX8ih3rIT5Re3k2HeUrgh8DB6nANvWXctO JHrLv8MgRA1kDeqymasySmaSAMh6LwVIXjLCT+ZgqmZyjtzmkdfkqLRbwG/ckjC0 Jlmv+/9IcgNy/uX6qEcZZGamYMhyas5VIML9fSsjzyZ6vuMfD7CIy2alw12nO/G6 +Cdd7By3sxJqregbYpL2x+P7GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZVvWoU y3Lk5rSbrZqjwE7NnwbDMB8GA1UdIwQYMBaAFAR7iylUxHqxXFdYbdAE64k5d8Wv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RThFQi9EMDM5RjhENkQx QkYxMUU4QjI2NEY2NUFDNEY5QUUwMi9CSHVMS1ZURWVyRmNWMWh0MEFUcmlUbDN4 YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JIdUxLVlRFZXJGY1YxaHQwQVRyaVRsM3hhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RThFQi9EMDM5RjhENkQxQkYxMUU4QjI2NEY2NUFDNEY5QUUwMi9CSHVMS1ZURWVy RmNWMWh0MEFUcmlUbDN4YTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFPCN0I8lKyNMPcIw0lq3nWTvf34szbtZCUC7s7fZK/roFSmlaZVIh mq2dHuO5S3H2P1qzSX7UDlS/tCLEjsYgbGZusk1aD0dfypESXmzdwzS5/owYPY3b 2FOS+ehQ02eiR5vwC4zqK9wSevbkc6NLi81KUK/sGfb1Ymkcq2sVmb86OxOtUjd/ DDY+dsz5mszHgUn+17FbVfVEa0ky25IWACUutiwk23a3qj0VOg7AHhO94NIkkNza qGgwjs0v/uPgPaAxhNNFT1geBT5/gGIW+44EP48OtjKe7vRH0DJgde0tCENngMC6 XWHo4Mr80HmcrlEabJIqzNnxK2zsaT85 -----END CERTIFICATE-----Generated at Sun Apr 13 05:57:48 2025 by rpki-client