$ rpki-client -vvf rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft File: mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft (raw, json) Hash identifier: 99t78yuH8+Qh9r+KB57o67wiwC1hFwmhwjX8DPycpOg= Subject key identifier: 34:D1:C6:1F:88:20:69:5D:6D:EF:17:9E:5F:A7:BD:1E:1B:08:D7:04 Authority key identifier: 98:74:E6:D6:1A:60:D8:84:4C:30:1D:81:F3:37:7C:BF:34:F0:D8:BF Certificate issuer: /CN=A9190B12/serialNumber=9874E6D61A60D8844C301D81F3377CBF34F0D8BF Certificate serial: 0762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft Manifest number: 075D Signing time: Sun 20 Apr 2025 21:13:22 +0000 Manifest this update: Sun 20 Apr 2025 21:13:21 +0000 Manifest next update: Sun 27 Apr 2025 21:13:21 +0000 Files and hashes: 1: mHTm1hpg2IRMMB2B8zd8vzTw2L8.crl (hash: LriPXlPRwnvP0Ekbpv3Gt+cOwb95Z/WufDHwmXMugbA=) 2: 0F785ED8171F11EB9D7AD884C4F9AE02.roa (hash: ZpjOcQRNDlH5qRGo4JGz7s8WdXPnuqrQVNeiUcwkU1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.crl rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 21:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190B12, serialNumber=9874E6D61A60D8844C301D81F3377CBF34F0D8BF Validity Not Before: Apr 20 21:13:21 2025 GMT Not After : Apr 27 21:13:21 2025 GMT Subject: CN=68056372-fbc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:48:4c:37:f0:01:d6:17:75:48:a3:1c:4b:08: 53:8f:f0:99:7c:82:cf:10:37:e0:f2:35:b7:65:97: 63:ee:73:1f:fd:55:8f:9c:0b:7f:73:35:5a:e8:a4: 9f:cb:1e:6a:b4:20:d5:8c:c1:09:94:3f:6f:8d:9c: 9c:7c:27:c7:e8:c1:c7:4c:3f:dc:5d:a1:3e:bd:a6: cf:b3:b8:6e:45:e1:4a:86:c0:a5:cd:da:4d:63:a0: 06:d8:ef:57:a2:4c:6f:39:c4:d9:41:66:aa:f0:db: 83:2b:89:98:ff:1d:5a:92:a3:c9:be:4e:b8:96:65: 50:96:1c:d8:5f:4f:b7:aa:fd:5e:30:8b:74:82:30: fa:08:2b:16:1f:c0:4e:4b:c2:67:3b:c4:ea:bc:64: 99:28:c1:fe:2f:0e:c8:b5:a5:bc:fb:42:33:34:0f: 0d:52:04:bc:3a:8d:49:b6:3c:63:58:0e:f4:5f:b8: 38:1b:d1:4a:d8:15:39:f0:4d:4d:d8:17:21:ec:b7: 98:7a:e6:58:ff:53:db:d5:39:11:b3:96:d1:6f:77: 51:dd:01:5a:9b:68:d8:32:93:02:54:0e:db:36:bf: 2d:d2:98:fb:e0:2e:ad:e5:f4:d1:45:eb:28:46:2f: b9:72:9a:df:19:16:57:8d:b7:68:25:40:44:ba:f4: 32:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:D1:C6:1F:88:20:69:5D:6D:EF:17:9E:5F:A7:BD:1E:1B:08:D7:04 X509v3 Authority Key Identifier: keyid:98:74:E6:D6:1A:60:D8:84:4C:30:1D:81:F3:37:7C:BF:34:F0:D8:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:1e:da:20:32:24:f4:e9:6c:32:97:8d:b1:9e:97:70:f9:28: d5:ef:eb:6f:90:dd:c2:1c:f1:80:b1:79:c7:9a:87:4b:b5:63: 18:ba:7e:af:d2:84:21:29:7e:2f:89:11:4e:8f:c3:66:b9:cb: da:0b:83:ac:2a:8c:ff:7e:4f:fd:13:7d:40:61:ad:bf:e3:87: d0:cf:9c:37:e0:06:53:46:35:2b:05:02:69:47:12:e5:ca:4d: f6:18:67:b8:0d:c5:24:18:83:e5:7c:1e:8f:ea:d6:e2:18:94: 5d:ae:71:83:8b:e7:a7:75:79:6e:1f:f9:9c:66:7a:28:7a:60: 71:ed:ea:57:c6:11:ec:7d:7f:ee:a1:d9:88:aa:9d:ba:22:f9: 79:64:37:a4:d5:30:d3:b1:fc:fa:36:6e:2c:9e:e7:c3:80:f4: 6a:ee:31:6c:2d:5b:d9:4f:77:b8:50:26:3f:68:cf:40:27:98: ab:81:47:cc:3e:d0:93:67:c9:f8:cb:e1:55:1d:91:0a:d4:46: 08:bb:4a:30:2b:ed:01:67:2e:d1:8e:8d:c1:b3:2d:d5:11:aa: ff:62:6c:4c:50:bd:12:b8:99:b5:fb:47:17:99:86:bd:40:71: 84:9c:a8:bd:bc:21:a3:b8:20:00:70:29:9a:c1:1f:22:53:fa: fc:48:ae:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBCMTIxMTAvBgNVBAUTKDk4NzRFNkQ2MUE2MEQ4ODQ0QzMwMUQ4MUYzMzc3Q0JG MzRGMEQ4QkYwHhcNMjUwNDIwMjExMzIxWhcNMjUwNDI3MjExMzIxWjAYMRYwFAYD VQQDEw02ODA1NjM3Mi1mYmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA70hMN/AB1hd1SKMcSwhTj/CZfILPEDfg8jW3ZZdj7nMf/VWPnAt/czVa6KSf yx5qtCDVjMEJlD9vjZycfCfH6MHHTD/cXaE+vabPs7huReFKhsClzdpNY6AG2O9X okxvOcTZQWaq8NuDK4mY/x1akqPJvk64lmVQlhzYX0+3qv1eMIt0gjD6CCsWH8BO S8JnO8TqvGSZKMH+Lw7ItaW8+0IzNA8NUgS8Oo1JtjxjWA70X7g4G9FK2BU58E1N 2Bch7LeYeuZY/1Pb1TkRs5bRb3dR3QFam2jYMpMCVA7bNr8t0pj74C6t5fTRReso Ri+5cprfGRZXjbdoJUBEuvQyrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDTRxh+I IGldbe8Xnl+nvR4bCNcEMB8GA1UdIwQYMBaAFJh05tYaYNiETDAdgfM3fL808Ni/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEIxMi8yNkQzNjI3ODE3 MUQxMUVCODMzRjREODBDNEY5QUUwMi9tSFRtMWhwZzJJUk1NQjJCOHpkOHZ6VHcy TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21IVG0xaHBnMklSTU1CMkI4emQ4dnpUdzJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEIxMi8yNkQzNjI3ODE3MUQxMUVCODMzRjREODBDNEY5QUUwMi9tSFRtMWhwZzJJ Uk1NQjJCOHpkOHZ6VHcyTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByHtogMiT06Wwyl42xnpdw+SjV7+tvkN3CHPGAsXnHmodLtWMYun6v 0oQhKX4viRFOj8NmucvaC4OsKoz/fk/9E31AYa2/44fQz5w34AZTRjUrBQJpRxLl yk32GGe4DcUkGIPlfB6P6tbiGJRdrnGDi+endXluH/mcZnooemBx7epXxhHsfX/u odmIqp26Ivl5ZDek1TDTsfz6Nm4snufDgPRq7jFsLVvZT3e4UCY/aM9AJ5irgUfM PtCTZ8n4y+FVHZEK1EYIu0owK+0BZy7Rjo3Bsy3VEar/YmxMUL0SuJm1+0cXmYa9 QHGEnKi9vCGjuCAAcCmawR8iU/r8SK4Z -----END CERTIFICATE-----Generated at Mon Apr 21 17:05:38 2025 by rpki-client