$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft File: ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft (raw, json) Hash identifier: YevZ+ZEZHhTXFtXLL3Cc+tOFlBax6I/3E8TxrpaWZYs= Subject key identifier: 21:0E:33:FC:86:D8:09:F1:0C:DB:6A:CE:8D:E3:A2:8A:93:AC:94:51 Authority key identifier: 85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4 Certificate issuer: /CN=A91E9EBA/serialNumber=85AE6219F86269414BE176B7825F16CDDD4242D4 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft Manifest number: 7D Signing time: Wed 09 Apr 2025 05:29:21 +0000 Manifest this update: Wed 09 Apr 2025 05:29:21 +0000 Manifest next update: Wed 16 Apr 2025 05:29:21 +0000 Files and hashes: 1: ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl (hash: 8d7/BGcdE+zSylgLDiza0mHLStZ2wmYpKe0VCzT2dRI=) 2: 36C627945ADD11EF80893A3FC4F9AE02.roa (hash: SmnJr3cmtzrwi435sl7t5/Qk1K3MbfKQ5zVZNYo5M50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9EBA Validity Not Before: Apr 9 05:29:21 2025 GMT Not After : Apr 16 05:29:21 2025 GMT Subject: CN=67f605b1-e8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:f7:30:a8:3a:0e:9c:4b:db:d3:a3:4e:36: 42:dd:56:51:a5:d2:ac:6c:87:ea:a5:bf:0e:47:2a: 37:fe:c1:45:e4:41:75:76:16:28:e3:b1:11:cc:c0: 0a:30:38:03:e8:d9:0d:ae:f9:8b:3a:7c:74:4e:ad: 0b:25:71:04:5f:7e:fe:f4:5a:15:31:1d:ac:d7:ee: 7a:47:dc:1c:27:91:03:e9:5c:6c:e3:51:3e:51:82: 61:cc:be:6e:1b:d7:82:bd:33:ba:aa:5f:f3:e3:ba: a3:8e:9f:28:16:6f:f3:2f:6b:45:bd:7b:f5:86:56: 28:c2:60:27:87:1d:86:fe:7e:58:d6:50:d3:3c:0f: 5f:1f:8f:e0:3b:31:18:d7:32:7c:26:0f:3f:61:04: 7d:8a:bc:ac:e1:7d:3e:2b:ae:d3:2e:fc:9f:bf:dd: b7:4e:17:01:ac:36:9c:66:f8:67:09:6a:bb:cb:80: a4:ca:65:7c:2b:e6:3b:a7:8f:73:ee:d5:16:5d:1b: 8d:e6:da:6a:5c:08:45:73:d3:da:af:3a:3d:b0:e1: 2a:83:58:df:1a:88:80:62:55:c7:66:29:ba:81:da: 31:0e:d2:89:ba:30:04:4d:3f:b3:d6:5a:83:cf:93: 5f:60:68:ad:80:78:bb:3f:eb:e7:1d:d9:30:34:19: 8d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0E:33:FC:86:D8:09:F1:0C:DB:6A:CE:8D:E3:A2:8A:93:AC:94:51 X509v3 Authority Key Identifier: keyid:85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:45:34:64:88:b2:7a:fc:ce:06:cb:75:7c:00:3e:74:a7:6c: 61:7d:6e:0f:4f:9d:a9:7b:09:bc:28:75:73:a4:a5:49:74:f5: e4:09:99:97:1e:d8:16:b0:69:33:95:4a:77:46:09:2b:c4:fa: 33:85:f8:34:8c:26:b4:66:38:4b:8f:f1:73:61:7e:7b:ed:f9: 74:9a:d4:d9:be:34:48:13:5b:36:db:60:7d:d9:e0:c5:47:69: 65:4b:02:06:7c:5c:3b:12:28:77:42:fb:e8:35:ac:52:ef:b8: 45:3d:73:e5:56:fd:4a:7e:1c:d8:b1:6a:44:04:5c:93:1d:41: c2:8c:5a:8d:9d:23:b2:97:74:d5:01:95:ec:60:2b:f6:98:7b: 43:fa:36:94:ec:8f:36:ef:06:7e:05:d5:0f:b6:c5:a8:5f:13: ec:71:ab:e9:d8:a6:af:c9:74:b3:dc:f7:b9:3e:7c:4c:f8:4a: b2:21:25:09:96:d4:5e:1d:48:a6:4c:1f:dd:05:19:d9:ab:e9: f1:73:56:36:c2:f5:32:ac:cc:a8:84:3c:6f:43:49:d0:c0:b9: 8f:69:66:dc:6d:31:35:33:2c:a7:28:1a:6e:42:d4:a5:78:22: 78:82:fb:cf:64:d2:0a:2f:f1:5e:10:4b:ec:a7:32:70:56:19: 4b:bc:8d:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUVCQTExMC8GA1UEBRMoODVBRTYyMTlGODYyNjk0MTRCRTE3NkI3ODI1RjE2Q0RE RDQyNDJENDAeFw0yNTA0MDkwNTI5MjFaFw0yNTA0MTYwNTI5MjFaMBgxFjAUBgNV BAMTDTY3ZjYwNWIxLWU4YzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHTfcwqDoOnEvb06NONkLdVlGl0qxsh+qlvw5HKjf+wUXkQXV2FijjsRHMwAow OAPo2Q2u+Ys6fHROrQslcQRffv70WhUxHazX7npH3BwnkQPpXGzjUT5RgmHMvm4b 14K9M7qqX/PjuqOOnygWb/Mva0W9e/WGVijCYCeHHYb+fljWUNM8D18fj+A7MRjX MnwmDz9hBH2KvKzhfT4rrtMu/J+/3bdOFwGsNpxm+GcJarvLgKTKZXwr5junj3Pu 1RZdG43m2mpcCEVz09qvOj2w4SqDWN8aiIBiVcdmKbqB2jEO0om6MARNP7PWWoPP k19gaK2AeLs/6+cd2TA0GY1jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIQ4z/IbY CfEM22rOjeOiipOslFEwHwYDVR0jBBgwFoAUha5iGfhiaUFL4Xa3gl8Wzd1CQtQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5RUJBL0ZBMzIwQ0RBNUFE QzExRUZCNTYwNjYzN0M0RjlBRTAyL2hhNWlHZmhpYVVGTDRYYTNnbDhXemQxQ1F0 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGE1aUdmaGlhVUZMNFhhM2dsOFd6ZDFDUXRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5 RUJBL0ZBMzIwQ0RBNUFEQzExRUZCNTYwNjYzN0M0RjlBRTAyL2hhNWlHZmhpYVVG TDRYYTNnbDhXemQxQ1F0US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMpFNGSIsnr8zgbLdXwAPnSnbGF9bg9Pnal7CbwodXOkpUl09eQJmZce 2BawaTOVSndGCSvE+jOF+DSMJrRmOEuP8XNhfnvt+XSa1Nm+NEgTWzbbYH3Z4MVH aWVLAgZ8XDsSKHdC++g1rFLvuEU9c+VW/Up+HNixakQEXJMdQcKMWo2dI7KXdNUB lexgK/aYe0P6NpTsjzbvBn4F1Q+2xahfE+xxq+nYpq/JdLPc97k+fEz4SrIhJQmW 1F4dSKZMH90FGdmr6fFzVjbC9TKszKiEPG9DSdDAuY9pZtxtMTUzLKcoGm5C1KV4 IniC+89k0gov8V4QS+ynMnBWGUu8jds= -----END CERTIFICATE-----Generated at Thu Apr 10 18:53:36 2025 by rpki-client