$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: exzUjeaNM2gbXdxde6hDzGQCUrd/Txu1o7Ow9UN3Zss= Subject key identifier: 5D:B9:C4:A7:E4:95:8E:2B:85:B7:F2:D2:BA:1E:69:8C:64:4D:D7:EE Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0F7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0F66 Signing time: Thu 10 Apr 2025 17:34:56 +0000 Manifest this update: Thu 10 Apr 2025 17:34:56 +0000 Manifest next update: Thu 17 Apr 2025 17:34:56 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: cQqWOOjoQh/hDfj+lfvWlY2/QTjb4Oqkswc6eH5F0/g=) 2: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (hash: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc=) 3: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 17:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3962 (0xf7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Apr 10 17:34:56 2025 GMT Not After : Apr 17 17:34:56 2025 GMT Subject: CN=67f80140-49ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ab:4c:c8:13:bb:d6:19:20:95:44:7a:13:fd: a8:e3:a6:8f:4e:f1:13:aa:29:6c:d6:86:34:56:5f: 20:a4:dd:0b:2b:22:66:57:1b:7b:69:ee:e3:43:50: e3:1a:cd:b8:dc:67:8f:5e:32:3e:f2:8d:e3:c3:dd: 4a:e0:4e:d6:c0:41:ef:80:ae:f4:4f:5c:49:6f:ae: f0:c2:f2:79:49:2f:9a:53:19:15:04:22:61:dc:b1: f8:d5:d5:2e:f5:d7:62:ba:6f:12:34:48:db:0f:16: ac:00:eb:15:0b:a7:2d:c1:26:37:66:c4:57:94:97: 50:4a:ed:f2:2d:ae:c0:1f:c4:30:a1:72:36:de:4d: 29:4d:51:2b:4f:75:30:59:f2:3c:d0:7e:56:f6:49: 70:7f:e0:bc:8b:e2:2b:f0:70:80:6a:aa:d4:f1:32: 48:1a:84:07:b1:02:1f:90:6b:3b:36:57:46:9f:49: f7:56:1e:93:1f:1a:cb:3b:ad:6a:5d:99:8b:f7:54: 3a:d2:80:c0:e6:ea:73:10:7d:8b:23:25:4e:9e:16: 55:22:eb:82:f7:5c:a1:cf:c2:e0:bd:c4:8c:6c:fe: b6:c4:f2:f1:f1:e1:ec:80:f5:da:9d:ad:d3:26:64: a3:5e:02:c9:fa:d8:1e:21:36:d5:b4:9e:27:ec:b6: 20:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B9:C4:A7:E4:95:8E:2B:85:B7:F2:D2:BA:1E:69:8C:64:4D:D7:EE X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:ac:aa:1f:b7:c4:2b:3a:a2:f7:0a:72:7a:42:56:c3:32:95: 5f:ab:0a:d2:51:ec:b5:5b:4b:95:d2:fe:20:10:e1:ec:6a:b6: 8c:21:4d:52:8c:bb:19:14:b4:6f:0e:d8:46:83:f5:62:20:9e: f9:2a:67:b4:02:e2:58:04:85:e7:52:29:83:7b:0b:c4:3c:22: 06:0e:34:0d:b1:9d:26:67:96:7c:04:e1:b7:5e:6d:13:79:ca: 2a:7f:9b:1d:00:68:e1:fa:6c:84:31:ea:f4:93:cc:3a:2d:04: 95:33:7d:11:bd:65:93:47:82:f2:75:3f:a7:ab:39:dc:c6:5f: b1:5d:4d:f1:3c:fe:07:8d:5f:6e:4a:59:fb:b2:22:6e:b7:3b: e1:5f:ab:71:92:a9:39:19:89:d6:55:80:0e:38:1c:a9:0e:7f: b0:b7:9b:c6:a0:03:b0:dc:39:e1:88:b6:70:59:e0:99:3c:e1: 0e:a6:f7:46:c3:b8:24:36:5f:65:7c:48:30:3a:6d:3d:f6:ce: 6d:fb:d5:14:81:a4:34:f8:2d:9c:ec:ee:c2:b8:41:cc:ff:72: c4:52:dc:2a:76:1b:f8:c0:ef:d4:81:c4:b3:48:05:e2:01:13: 55:88:e7:60:97:3b:a6:f3:f4:9d:f9:22:e9:ea:eb:4e:b6:95: ef:39:14:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwNDEwMTczNDU2WhcNMjUwNDE3MTczNDU2WjAYMRYwFAYD VQQDEw02N2Y4MDE0MC00OWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqatMyBO71hkglUR6E/2o46aPTvETqils1oY0Vl8gpN0LKyJmVxt7ae7jQ1Dj Gs243GePXjI+8o3jw91K4E7WwEHvgK70T1xJb67wwvJ5SS+aUxkVBCJh3LH41dUu 9ddium8SNEjbDxasAOsVC6ctwSY3ZsRXlJdQSu3yLa7AH8QwoXI23k0pTVErT3Uw WfI80H5W9klwf+C8i+Ir8HCAaqrU8TJIGoQHsQIfkGs7NldGn0n3Vh6THxrLO61q XZmL91Q60oDA5upzEH2LIyVOnhZVIuuC91yhz8LgvcSMbP62xPLx8eHsgPXana3T JmSjXgLJ+tgeITbVtJ4n7LYgdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF25xKfk lY4rhbfy0roeaYxkTdfuMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBrKoft8QrOqL3CnJ6QlbDMpVfqwrSUey1W0uV0v4gEOHsaraMIU1S jLsZFLRvDthGg/ViIJ75Kme0AuJYBIXnUimDewvEPCIGDjQNsZ0mZ5Z8BOG3Xm0T ecoqf5sdAGjh+myEMer0k8w6LQSVM30RvWWTR4LydT+nqzncxl+xXU3xPP4HjV9u Sln7siJutzvhX6txkqk5GYnWVYAOOBypDn+wt5vGoAOw3DnhiLZwWeCZPOEOpvdG w7gkNl9lfEgwOm099s5t+9UUgaQ0+C2c7O7CuEHM/3LEUtwqdhv4wO/UgcSzSAXi ARNViOdglzum8/Sd+SLp6utOtpXvORR2 -----END CERTIFICATE-----Generated at Sat Apr 12 19:09:44 2025 by rpki-client