$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft File: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft (raw, json) Hash identifier: zdvhZHc5FHCozEP62d/noq3WGwxMJnVL+wG6JZ0TfMc= Subject key identifier: 9E:DE:3F:82:8A:0D:00:17:E8:15:2A:60:E3:3F:C9:BA:37:2C:9B:94 Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1B3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft Manifest number: 1AFC Signing time: Fri 04 Apr 2025 16:21:10 +0000 Manifest this update: Fri 04 Apr 2025 16:21:10 +0000 Manifest next update: Fri 11 Apr 2025 16:21:10 +0000 Files and hashes: 1: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl (hash: Zj9DSubBZZARuc5yOTBauRG54pjO/KXYe9542UxQAhw=) 2: 65486DA81F8411E79BCB6D54C4F9AE02.roa (hash: 4xV+J3CmmdCpDaEFPGjRsDGwUIL2Vy4kSy5m15MGfXg=) 3: 634556A61F8411E79BCB6D54C4F9AE02.roa (hash: 4IDng3Lrs8lhaOUdN7yvdIjmCJWMny3fPwZTXINqHBU=) 4: AA54657A880E11ED9BE52B17C4F9AE02.roa (hash: UVvEuCytrfCrphts5UpSNqcuRE3wm/rQR1W1CXxy/Rw=) 5: A842EEAA880E11ED9BE52B17C4F9AE02.roa (hash: 4Q6EmcPQKZH/+9z09btDyZRmVTuV1a4n3djNOV7Om64=) 6: A93E93C2880E11ED9BE52B17C4F9AE02.roa (hash: KB78mB/+BtWr5xn0d2YgdyzOTI8fLFM20j2nckGLtwU=) 7: 66914122CEAB11E796AC671AC4F9AE02.roa (hash: 9nJsdnxbQLzrLx2EZCka7q5S0FAqMVpfxB+cnZiwYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6974 (0x1b3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB Validity Not Before: Apr 4 16:21:10 2025 GMT Not After : Apr 11 16:21:10 2025 GMT Subject: CN=67f006f6-d92b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:02:2a:de:b6:1a:26:e0:51:c4:03:44:d6:d6: f7:b0:2e:e5:bf:4a:dc:d0:c9:b0:5a:68:24:03:8e: 73:85:15:a9:d5:38:f8:7d:5f:79:2d:7a:d3:48:92: 4f:be:ee:b9:6b:97:55:5f:c3:f5:67:09:a6:d8:d4: 63:fe:42:0a:d2:cf:97:8f:3f:a0:ef:e3:eb:20:31: c7:ef:e2:af:e5:5a:0f:83:85:fa:a2:4d:36:bf:79: f4:6d:7e:56:f5:0a:61:78:4f:17:ff:7b:f1:62:81: 95:ba:1f:75:a5:9e:36:a5:06:f6:8d:83:fd:42:1d: 58:55:df:ab:09:73:62:1e:67:2b:3d:50:cb:e3:73: 93:cc:3b:c9:79:93:a5:15:ab:ef:8a:1d:81:da:a0: 07:90:d7:c7:a2:17:af:9f:5f:c7:81:b9:ca:35:62: 97:4e:a4:ea:6e:af:ea:48:63:b7:63:83:8b:eb:5e: aa:3e:a7:05:80:41:e0:5d:4a:ad:6b:02:19:86:92: f2:a7:54:ce:07:34:0f:44:d3:00:4a:ef:0f:42:6d: 42:eb:b6:23:85:72:d6:bc:1f:af:07:0f:33:5d:dd: 40:9b:0e:14:25:43:d0:b5:54:39:fa:4b:05:fc:d4: 18:19:a2:c5:e0:0a:da:55:e6:95:58:ee:f1:82:3e: 0f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DE:3F:82:8A:0D:00:17:E8:15:2A:60:E3:3F:C9:BA:37:2C:9B:94 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c4:7b:20:b8:24:d1:64:eb:f9:2d:e7:f0:57:5e:3b:ea:d7: 59:67:29:f4:72:33:ca:2e:64:a5:5b:3c:53:49:7d:4d:61:7d: 9d:c8:12:d2:42:8f:9e:94:4f:e9:e2:f1:a7:e0:28:6e:8e:6e: 24:f6:ef:3c:a4:55:ce:c8:78:0e:bb:12:fb:9a:a4:5e:19:60: e3:99:bd:4f:41:7d:6e:96:40:c4:63:e0:13:96:e2:28:47:2c: f7:f4:52:15:d8:c6:56:cb:c4:b3:18:b2:b5:46:f7:0d:b4:3f: c9:01:f1:56:c3:da:37:85:ef:4e:a0:19:a6:08:96:ee:2e:65: 05:1d:3e:14:32:4b:8e:3f:2c:89:61:b8:d5:5c:8f:23:c2:07: fc:ef:f9:fa:1a:78:df:fb:2e:3c:94:99:9f:a1:00:e6:ab:7b: 54:80:6d:c2:d8:68:c8:63:fe:6e:ba:27:c4:88:e0:f2:c1:f7: 9e:04:18:4f:3b:15:f2:3f:49:1b:c2:7d:33:b2:ea:3d:d4:d6: 5c:3b:ba:d5:cc:81:c6:d7:8d:c4:65:9e:74:23:35:c5:eb:51: 99:35:1a:31:d9:5e:85:50:50:ed:c7:69:a8:e5:0f:23:4c:13: 63:67:bc:a9:64:d9:11:80:4b:3c:50:2e:9c:dc:7a:5a:59:5f: 01:3f:25:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjUwNDA0MTYyMTEwWhcNMjUwNDExMTYyMTEwWjAYMRYwFAYD VQQDEw02N2YwMDZmNi1kOTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngIq3rYaJuBRxANE1tb3sC7lv0rc0MmwWmgkA45zhRWp1Tj4fV95LXrTSJJP vu65a5dVX8P1Zwmm2NRj/kIK0s+Xjz+g7+PrIDHH7+Kv5VoPg4X6ok02v3n0bX5W 9QpheE8X/3vxYoGVuh91pZ42pQb2jYP9Qh1YVd+rCXNiHmcrPVDL43OTzDvJeZOl Favvih2B2qAHkNfHohevn1/HgbnKNWKXTqTqbq/qSGO3Y4OL616qPqcFgEHgXUqt awIZhpLyp1TOBzQPRNMASu8PQm1C67YjhXLWvB+vBw8zXd1Amw4UJUPQtVQ5+ksF /NQYGaLF4AraVeaVWO7xgj4PkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7eP4KK DQAX6BUqYOM/ybo3LJuUMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QkVEQi81RDg2N0VCQzFGODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtM elNyak5sRTRHOTRmMEh4ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxxHsguCTRZOv5LefwV1476tdZZyn0cjPKLmSlWzxTSX1NYX2dyBLS Qo+elE/p4vGn4Chujm4k9u88pFXOyHgOuxL7mqReGWDjmb1PQX1ulkDEY+ATluIo Ryz39FIV2MZWy8SzGLK1RvcNtD/JAfFWw9o3he9OoBmmCJbuLmUFHT4UMkuOPyyJ YbjVXI8jwgf87/n6Gnjf+y48lJmfoQDmq3tUgG3C2GjIY/5uuifEiODywfeeBBhP OxXyP0kbwn0zsuo91NZcO7rVzIHG143EZZ50IzXF61GZNRox2V6FUFDtx2mo5Q8j TBNjZ7ypZNkRgEs8UC6c3HpaWV8BPyX7 -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:31 2025 by rpki-client