$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: LT5SDPgEGkdpYCTRqkKNL1ITkg/dWVhgtszonwDNtck= Subject key identifier: E0:AF:DC:DA:24:4A:6C:61:ED:8D:FF:1F:7C:61:AE:F4:9D:E8:16:7F Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 07A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 07A0 Signing time: Fri 30 May 2025 21:29:47 +0000 Manifest this update: Fri 30 May 2025 21:29:47 +0000 Manifest next update: Fri 06 Jun 2025 21:29:47 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: /zka1ZvtBYX3SooRfHveXTqoDmazwGkJaIh9Le9CL7w=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: 0iyvzLFIUAJQiOyEvH+MRt0xVeTfFziku8Yy3Ho4c+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1, serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: May 30 21:29:47 2025 GMT Not After : Jun 6 21:29:47 2025 GMT Subject: CN=683a234b-b178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d9:d1:37:76:52:8f:3e:b6:f8:e8:b2:3b:bd: a9:f0:b0:1d:77:c0:c1:85:c1:72:06:9d:cd:36:4e: c5:a9:48:02:fa:fc:e8:33:33:cc:c8:8a:cd:ea:b2: 32:88:bc:42:c4:b9:a1:a5:b9:8d:42:fe:53:e2:a6: 08:80:f1:e2:e3:84:0e:1a:12:be:9e:1c:7e:7b:c9: 10:2d:4d:cc:8d:40:d8:e8:1d:e8:7d:34:fa:64:67: aa:42:86:78:b4:a3:c5:63:4f:ae:e8:3b:5b:49:37: 89:38:f5:19:41:b1:ad:ff:82:92:f4:d2:0d:db:3b: f6:83:18:35:17:b2:a8:12:c2:54:c7:98:85:ea:e2: bc:17:ce:ff:80:b6:de:e9:b2:37:ba:44:a3:b8:56: 76:5b:f8:09:20:61:9d:27:b7:fe:04:fc:3a:7a:db: fe:e0:ce:1f:c0:c6:6c:fb:d6:21:79:dd:9f:c3:ac: 15:c0:c7:46:b2:3e:b1:56:cb:ac:e5:4d:6c:96:c3: 61:8d:d6:24:a2:8e:06:54:87:4f:15:e1:37:8d:b1: 4b:38:13:af:b2:3e:5c:84:1f:f9:c8:60:52:a7:2f: 1e:91:4f:1d:76:ce:24:6d:87:b6:2a:94:e9:98:1c: cc:c2:44:92:c9:3c:1c:34:e3:0e:0f:96:c7:87:e6: d4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AF:DC:DA:24:4A:6C:61:ED:8D:FF:1F:7C:61:AE:F4:9D:E8:16:7F X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:2c:20:c1:e9:f3:4e:da:fe:6e:fa:3e:07:df:87:8b:49:74: 71:a0:ea:0b:47:fd:48:00:56:e5:2c:af:f9:71:9d:94:61:e1: d4:73:3e:0a:88:12:b0:1f:e9:42:96:9f:1f:5f:46:97:e8:30: c3:02:05:45:4f:92:53:18:4c:2e:99:ae:de:13:72:d2:09:2c: 54:f7:0d:81:1e:fd:3b:1b:90:b8:81:8a:55:bc:b8:c9:6c:5c: fd:0a:90:63:26:f4:fb:c7:1d:47:bf:1a:bc:59:f9:24:31:72: b3:88:5f:95:16:30:af:c3:5d:64:ba:2b:23:78:c5:34:9c:7c: a5:33:77:14:af:83:74:af:d6:03:3d:a8:3e:78:6c:73:ca:d7: d6:64:2d:e4:a3:19:48:5f:42:cd:11:a8:c8:31:52:ab:ec:c3: 3e:9a:60:92:23:c7:94:a2:98:07:ca:a2:2e:3e:8a:f9:33:d7: c9:58:5b:95:b9:66:0f:9e:c0:9f:e2:40:b0:4e:c7:92:0b:53: 70:4a:e3:11:73:a5:7d:11:27:a1:f4:e1:9f:cd:d8:18:0b:56: 45:ed:67:8b:26:d7:4e:6c:e5:fd:e5:4d:9b:c3:10:b2:91:e1: b8:81:eb:9c:05:b6:4d:72:65:19:ef:d2:8f:a7:11:5f:7b:b4: 13:71:47:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjUwNTMwMjEyOTQ3WhcNMjUwNjA2MjEyOTQ3WjAYMRYwFAYD VQQDEw02ODNhMjM0Yi1iMTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29nRN3ZSjz62+OiyO72p8LAdd8DBhcFyBp3NNk7FqUgC+vzoMzPMyIrN6rIy iLxCxLmhpbmNQv5T4qYIgPHi44QOGhK+nhx+e8kQLU3MjUDY6B3ofTT6ZGeqQoZ4 tKPFY0+u6DtbSTeJOPUZQbGt/4KS9NIN2zv2gxg1F7KoEsJUx5iF6uK8F87/gLbe 6bI3ukSjuFZ2W/gJIGGdJ7f+BPw6etv+4M4fwMZs+9Yhed2fw6wVwMdGsj6xVsus 5U1slsNhjdYkoo4GVIdPFeE3jbFLOBOvsj5chB/5yGBSpy8ekU8dds4kbYe2KpTp mBzMwkSSyTwcNOMOD5bHh+bUQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCv3Nok Smxh7Y3/H3xhrvSd6BZ/MB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+LCDB6fNO2v5u+j4H34eLSXRxoOoLR/1IAFblLK/5cZ2UYeHUcz4K iBKwH+lClp8fX0aX6DDDAgVFT5JTGEwuma7eE3LSCSxU9w2BHv07G5C4gYpVvLjJ bFz9CpBjJvT7xx1Hvxq8WfkkMXKziF+VFjCvw11kuisjeMU0nHylM3cUr4N0r9YD Pag+eGxzytfWZC3koxlIX0LNEajIMVKr7MM+mmCSI8eUopgHyqIuPor5M9fJWFuV uWYPnsCf4kCwTseSC1NwSuMRc6V9ESeh9OGfzdgYC1ZF7WeLJtdObOX95U2bwxCy keG4geucBbZNcmUZ79KPpxFfe7QTcUej -----END CERTIFICATE-----Generated at Sat May 31 17:23:35 2025 by rpki-client