$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: ary6sAPE+35LiD4KQM+XdHN9lNBzp9ISM6Woex2f2z4= Subject key identifier: B7:33:25:E1:09:7D:82:66:51:E8:D2:32:14:29:84:54:2E:F1:14:49 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 34A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 349D Signing time: Sat 31 May 2025 14:26:09 +0000 Manifest this update: Sat 31 May 2025 14:26:08 +0000 Manifest next update: Sat 07 Jun 2025 14:26:08 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: JKA5+UWRIcy7jgrWoMvuXKGBo7WzRA5Th91LD+X4VQY=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: lxqMNiae0D1WCp5yu5bfMqSlo/P+rEmoNXBcqzUVjb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13478 (0x34a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: May 31 14:26:08 2025 GMT Not After : Jun 7 14:26:08 2025 GMT Subject: CN=683b1180-1f6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:37:71:90:7d:91:5d:83:5b:52:6f:0e:d3:9d: 4a:14:c3:05:4d:77:26:6a:e7:87:e7:0c:ab:d7:86: 4d:69:c7:f1:74:30:2c:62:95:cb:28:84:2c:44:dc: be:9c:86:f1:3f:9a:89:f1:7c:d1:6d:a9:57:00:be: f3:e0:69:fa:ef:70:e3:9e:78:02:fb:dc:1d:26:fa: e1:e9:34:9f:e7:4f:fa:01:90:42:cb:60:89:ca:9b: d0:3d:81:1d:87:ff:32:1e:12:b2:bb:91:87:46:4d: cb:78:cc:46:9a:6a:e6:a6:c4:a0:b7:1a:66:60:c5: 0d:5c:4a:0e:00:2a:f9:e0:7d:13:d7:29:a4:90:a2: 79:25:01:c7:48:fc:d4:d3:1f:37:23:26:e8:dc:61: bd:58:ad:8d:e8:d5:b3:29:f3:ff:0a:7e:c5:07:8e: dc:41:da:84:b3:fb:73:ca:df:a6:18:17:d6:34:d9: 50:dd:1d:5d:80:fe:58:eb:98:ac:94:06:74:cb:5d: d6:95:02:23:10:5d:86:3c:72:cb:60:97:2f:0d:16: 66:5d:71:cd:b3:5d:46:19:3a:d7:ec:ce:86:bc:1e: 6a:a8:c7:dd:8c:6d:98:9f:c2:50:66:a2:05:91:52: ed:bf:fe:a8:0e:0d:b1:3f:37:05:59:ce:bb:b0:ef: d5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:33:25:E1:09:7D:82:66:51:E8:D2:32:14:29:84:54:2E:F1:14:49 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:61:7c:15:30:5d:1e:b0:f7:ad:bb:ad:83:1b:d3:be:f7:02: ed:42:71:c0:41:b6:d0:b4:ab:cc:d1:e8:99:45:86:1f:a1:e3: f3:bf:38:f1:73:d1:d3:75:45:a9:41:cc:22:d4:af:44:35:ee: 29:6b:62:9c:65:28:43:96:88:3d:3b:ad:35:1a:e6:25:8b:83: 88:b8:6b:18:b0:22:e7:41:06:48:0e:2b:c8:e4:61:80:4f:73: 3d:67:6d:c1:4d:50:f0:90:ed:22:89:61:88:0e:01:0e:25:e0: ff:56:fb:c1:61:23:f9:3b:42:34:24:4b:8f:16:2f:af:6f:99: 64:77:ba:b6:e5:3f:85:ec:49:4e:0f:0e:cf:97:09:dd:71:a1: 39:5c:68:dc:83:cc:f1:30:7a:e8:78:88:d5:4d:b5:42:d6:bb: fa:87:16:52:26:c0:8a:30:4f:f3:7a:ae:71:9a:c2:de:af:92: 34:2e:7b:05:c0:0e:29:60:4d:a0:5d:85:4c:45:c1:45:ff:db: 59:4f:3b:8d:4e:16:77:6c:a2:43:18:ed:a3:05:3b:53:93:5d: d6:c6:b9:bc:64:31:3f:d1:3b:3d:0e:be:cc:d2:33:39:94:b2: 48:3d:21:b2:cc:e8:f6:60:c2:b6:1a:b6:e6:e1:a0:57:97:2a: 40:05:8d:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjUwNTMxMTQyNjA4WhcNMjUwNjA3MTQyNjA4WjAYMRYwFAYD VQQDEw02ODNiMTE4MC0xZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zdxkH2RXYNbUm8O051KFMMFTXcmaueH5wyr14ZNacfxdDAsYpXLKIQsRNy+ nIbxP5qJ8XzRbalXAL7z4Gn673DjnngC+9wdJvrh6TSf50/6AZBCy2CJypvQPYEd h/8yHhKyu5GHRk3LeMxGmmrmpsSgtxpmYMUNXEoOACr54H0T1ymkkKJ5JQHHSPzU 0x83Iybo3GG9WK2N6NWzKfP/Cn7FB47cQdqEs/tzyt+mGBfWNNlQ3R1dgP5Y65is lAZ0y13WlQIjEF2GPHLLYJcvDRZmXXHNs11GGTrX7M6GvB5qqMfdjG2Yn8JQZqIF kVLtv/6oDg2xPzcFWc67sO/VuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLczJeEJ fYJmUejSMhQphFQu8RRJMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVYXwVMF0esPetu62DG9O+9wLtQnHAQbbQtKvM0eiZRYYfoePzvzjx c9HTdUWpQcwi1K9ENe4pa2KcZShDlog9O601GuYli4OIuGsYsCLnQQZIDivI5GGA T3M9Z23BTVDwkO0iiWGIDgEOJeD/VvvBYSP5O0I0JEuPFi+vb5lkd7q25T+F7ElO Dw7PlwndcaE5XGjcg8zxMHroeIjVTbVC1rv6hxZSJsCKME/zeq5xmsLer5I0LnsF wA4pYE2gXYVMRcFF/9tZTzuNThZ3bKJDGO2jBTtTk13Wxrm8ZDE/0Ts9Dr7M0jM5 lLJIPSGyzOj2YMK2Grbm4aBXlypABY2N -----END CERTIFICATE-----Generated at Sat May 31 17:10:20 2025 by rpki-client