$ rpki-client -vvf rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft File: ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft (raw, json) Hash identifier: e8dW3KKz9jb26y46w9raFonySBQ+BWETqkV8XhU7W0E= Subject key identifier: 65:30:2B:1E:25:C1:78:04:8F:F4:62:93:B7:E9:66:6E:BB:09:64:18 Authority key identifier: 6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 Certificate issuer: /CN=A919C451/serialNumber=6A185BF417A2EB02A12E19D57590AD8D118475F7 Certificate serial: 0C25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft Manifest number: 0C1E Signing time: Fri 04 Apr 2025 18:39:47 +0000 Manifest this update: Fri 04 Apr 2025 18:39:47 +0000 Manifest next update: Fri 11 Apr 2025 18:39:47 +0000 Files and hashes: 1: ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl (hash: YkUI1bu7SkdIfPljBCZDre0lJH0Et10u7jLuJtciM04=) 2: F0208B2012BC11EBB3294950C4F9AE02.roa (hash: eaM5ERmLR+NewtcyA9NoXbFVJmh3ke0mtpONHl7mYGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3109 (0xc25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C451 Validity Not Before: Apr 4 18:39:47 2025 GMT Not After : Apr 11 18:39:47 2025 GMT Subject: CN=67f02773-e54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:bb:51:7e:63:75:67:03:fa:c4:e1:98:d6:cd: ae:f7:07:da:e3:f5:58:4f:f7:4d:5b:08:8e:b1:85: 04:c5:6d:db:12:3d:23:10:69:50:64:45:15:0a:0d: 55:70:aa:8b:9a:40:ff:40:46:f4:6e:11:55:ad:e2: 7e:6e:04:17:26:65:47:52:be:39:a9:00:fb:26:db: 65:39:5a:a3:64:8a:b4:74:98:50:2d:6a:0d:20:5e: 1f:74:2b:eb:aa:24:bb:7a:cc:62:13:11:a7:5b:18: 3a:19:60:bd:c8:23:bf:4c:d9:72:1f:79:30:10:24: fc:2d:08:a7:95:ff:ce:e0:09:2c:c5:87:f6:20:53: c3:9b:94:d0:95:c6:c4:8d:91:ac:e6:f9:bd:03:32: 2c:49:7e:5a:f6:00:c9:b1:6d:e3:be:a7:02:1a:8d: 98:ca:ac:f4:30:08:10:1b:9a:bd:ab:5d:6f:7c:95: 74:5a:2b:f2:d0:5c:3c:3b:ed:34:49:df:a2:7c:08: 8c:a9:d8:ea:16:19:f9:04:d9:11:37:b2:a2:b0:d4: 02:45:78:7f:a7:d2:e9:ce:6d:9a:73:be:bc:1f:14: 3d:da:9e:40:09:e3:4a:c9:ea:3e:f8:4b:17:44:9e: ce:e2:87:19:4d:42:45:f9:d8:b7:27:e5:ff:44:0b: 28:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:30:2B:1E:25:C1:78:04:8F:F4:62:93:B7:E9:66:6E:BB:09:64:18 X509v3 Authority Key Identifier: keyid:6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:2f:7d:95:00:1f:ba:c5:25:bc:30:d6:92:16:c3:30:c4:ba: b0:1c:c8:e2:8b:a7:f7:12:ef:d2:a8:a3:db:83:74:c2:63:3c: 4f:a8:af:08:52:f0:e6:eb:48:4c:47:50:83:d2:73:40:6e:8e: a8:46:c6:58:4a:c9:0a:c2:7e:ee:87:a2:ad:e0:d7:e9:ca:aa: 6f:b2:17:b9:d9:24:19:0a:a1:2f:33:d7:52:73:36:41:14:d2: b9:16:17:a5:00:dc:16:d3:6e:b6:9e:24:a0:a0:62:16:60:20: 2e:57:ea:e2:ce:57:b1:06:c0:b0:b2:27:41:9d:f9:bd:e1:bd: 83:19:6c:a9:b0:28:34:64:dd:ae:20:1c:37:a5:68:86:d6:78: 98:b3:38:42:5b:3a:41:a7:e4:fe:f1:c7:d6:77:81:21:9e:ba: ee:92:91:b9:03:72:fb:1d:b2:8e:1e:51:d2:9b:b0:80:ae:35: 79:ed:c1:46:c9:56:07:d0:ca:66:2f:33:4f:1f:73:ea:1a:e5: d4:38:25:3c:d6:fc:e0:e6:70:a6:b6:20:f8:66:99:3e:cd:59: 98:21:c9:bc:3c:5e:a1:38:88:ea:93:df:70:77:1a:de:fe:c7: cb:b5:1d:41:85:47:92:f4:06:9e:fd:60:9b:64:d7:1e:a1:af: d2:97:d9:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0NTExMTAvBgNVBAUTKDZBMTg1QkY0MTdBMkVCMDJBMTJFMTlENTc1OTBBRDhE MTE4NDc1RjcwHhcNMjUwNDA0MTgzOTQ3WhcNMjUwNDExMTgzOTQ3WjAYMRYwFAYD VQQDEw02N2YwMjc3My1lNTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLtRfmN1ZwP6xOGY1s2u9wfa4/VYT/dNWwiOsYUExW3bEj0jEGlQZEUVCg1V cKqLmkD/QEb0bhFVreJ+bgQXJmVHUr45qQD7JttlOVqjZIq0dJhQLWoNIF4fdCvr qiS7esxiExGnWxg6GWC9yCO/TNlyH3kwECT8LQinlf/O4AksxYf2IFPDm5TQlcbE jZGs5vm9AzIsSX5a9gDJsW3jvqcCGo2Yyqz0MAgQG5q9q11vfJV0Wivy0Fw8O+00 Sd+ifAiMqdjqFhn5BNkRN7KisNQCRXh/p9Lpzm2ac768HxQ92p5ACeNKyeo++EsX RJ7O4ocZTUJF+di3J+X/RAsouwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUwKx4l wXgEj/Rik7fpZm67CWQYMB8GA1UdIwQYMBaAFGoYW/QXousCoS4Z1XWQrY0RhHX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ1MS9COTM0OTM3QTA2 RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3S2hMaG5WZFpDdGpSR0Vk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoaGI5QmVpNndLaExoblZkWkN0alJHRWRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ1MS9COTM0OTM3QTA2RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3 S2hMaG5WZFpDdGpSR0VkZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdL32VAB+6xSW8MNaSFsMwxLqwHMjii6f3Eu/SqKPbg3TCYzxPqK8I UvDm60hMR1CD0nNAbo6oRsZYSskKwn7uh6Kt4Nfpyqpvshe52SQZCqEvM9dSczZB FNK5FhelANwW0262niSgoGIWYCAuV+rizlexBsCwsidBnfm94b2DGWypsCg0ZN2u IBw3pWiG1niYszhCWzpBp+T+8cfWd4EhnrrukpG5A3L7HbKOHlHSm7CArjV57cFG yVYH0MpmLzNPH3PqGuXUOCU81vzg5nCmtiD4Zpk+zVmYIcm8PF6hOIjqk99wdxre /sfLtR1BhUeS9Aae/WCbZNceoa/Sl9nH -----END CERTIFICATE-----Generated at Sun Apr 6 01:57:27 2025 by rpki-client