$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: ume2+x7017O9WElObz9tO6WfBwMbWBSkHZRKE9gz5DI= Subject key identifier: 06:64:52:D2:76:6B:80:F6:F7:76:2A:6B:62:E4:50:90:8A:73:D4:CA Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 07DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 07CA Signing time: Fri 30 May 2025 21:20:18 +0000 Manifest this update: Fri 30 May 2025 21:20:17 +0000 Manifest next update: Fri 06 Jun 2025 21:20:17 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: vAheit3lt01Pksgjp0UvXVpgMbLUUxh9QfBWUtX78n8=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2012 (0x7dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: May 30 21:20:17 2025 GMT Not After : Jun 6 21:20:17 2025 GMT Subject: CN=683a2111-cc01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:77:ae:2c:d6:f4:9d:8e:ad:17:b2:b4:ce:14: 2f:4a:87:c4:ad:91:30:72:ba:45:f0:9d:c1:3c:e9: 8c:cd:75:66:f2:8a:57:b7:e4:a2:21:1d:d7:e4:7a: bb:09:7d:c6:e2:26:8a:d7:5d:7f:68:ba:8d:c5:d5: 96:bf:b4:20:36:c0:f4:29:7b:c6:22:dd:19:7f:2d: 88:ef:42:fb:90:cb:5b:22:67:7a:55:00:de:58:64: 2c:48:21:43:c3:30:d8:d6:84:cb:ff:32:cb:c7:4f: dc:c6:a9:86:cb:7e:3c:67:4c:98:9c:43:1b:a0:db: cb:a2:2c:b6:83:bd:9a:e7:14:55:8b:ba:40:15:cd: 78:42:24:7b:46:22:25:16:97:a1:f8:d3:84:01:2a: 55:54:5f:fe:01:fb:cb:4f:4d:e6:c9:3a:9e:93:57: 61:ea:81:bc:a0:db:f9:d8:be:66:1f:60:e5:2a:ce: b4:3e:9b:99:17:eb:ea:d6:af:f1:89:1b:f4:38:5b: c1:7c:f6:67:b6:7a:32:e1:d0:ae:2c:08:80:b9:d0: 55:ee:3c:fe:88:4d:2a:2e:91:79:6a:4a:92:b3:42: 95:ba:00:3d:64:76:82:5e:f0:57:bd:33:ea:31:fe: ab:c4:7b:71:c3:d0:48:17:2a:e3:32:f4:ab:11:1d: 33:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:64:52:D2:76:6B:80:F6:F7:76:2A:6B:62:E4:50:90:8A:73:D4:CA X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:c7:58:d8:4e:56:d9:ba:da:03:f3:73:11:28:25:32:95:2e: 85:b1:e6:69:e5:a1:ba:10:fb:93:18:76:0f:a2:fd:83:ec:ce: 8e:bc:5a:b5:4f:b6:93:2b:e6:a6:77:da:0d:d1:9c:e6:1d:14: 27:74:fe:28:b6:ea:93:34:ad:1b:80:f8:31:8e:7b:1e:c1:37: 0f:23:e4:df:5d:80:14:36:b2:45:31:ff:fe:19:00:bb:13:9e: 18:ef:f6:a7:93:3d:53:59:df:06:06:f3:1a:61:1c:f2:c7:e1: c0:45:b4:87:03:cf:fc:b9:a3:59:44:ca:e6:99:d8:40:7a:29: e8:19:80:95:58:82:6a:87:86:9c:cb:fb:70:42:25:97:89:64: 65:18:66:24:46:17:c7:b7:a8:c2:f2:ec:ef:f8:c7:79:38:f1: eb:55:5c:d3:70:38:8b:c3:2c:ef:ff:e4:ee:c4:12:9d:e9:ba: 5a:53:9a:af:43:66:67:6e:6c:81:ec:4c:43:bd:7d:1d:e7:94: 6a:32:ed:a3:9d:d5:16:34:35:89:21:46:75:99:a9:af:24:87: 58:b4:62:7d:72:02:e3:98:90:af:b4:5f:3a:ea:22:3c:c4:ce: a5:c0:77:20:e7:a3:85:73:ee:77:03:90:45:8f:d6:c0:a0:33: ed:1f:a8:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUwNTMwMjEyMDE3WhcNMjUwNjA2MjEyMDE3WjAYMRYwFAYD VQQDEw02ODNhMjExMS1jYzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyneuLNb0nY6tF7K0zhQvSofErZEwcrpF8J3BPOmMzXVm8opXt+SiIR3X5Hq7 CX3G4iaK111/aLqNxdWWv7QgNsD0KXvGIt0Zfy2I70L7kMtbImd6VQDeWGQsSCFD wzDY1oTL/zLLx0/cxqmGy348Z0yYnEMboNvLoiy2g72a5xRVi7pAFc14QiR7RiIl Fpeh+NOEASpVVF/+AfvLT03myTqek1dh6oG8oNv52L5mH2DlKs60PpuZF+vq1q/x iRv0OFvBfPZntnoy4dCuLAiAudBV7jz+iE0qLpF5akqSs0KVugA9ZHaCXvBXvTPq Mf6rxHtxw9BIFyrjMvSrER0z+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZkUtJ2 a4D293Yqa2LkUJCKc9TKMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLx1jYTlbZutoD83MRKCUylS6FseZp5aG6EPuTGHYPov2D7M6OvFq1 T7aTK+amd9oN0ZzmHRQndP4otuqTNK0bgPgxjnsewTcPI+TfXYAUNrJFMf/+GQC7 E54Y7/ankz1TWd8GBvMaYRzyx+HARbSHA8/8uaNZRMrmmdhAeinoGYCVWIJqh4ac y/twQiWXiWRlGGYkRhfHt6jC8uzv+Md5OPHrVVzTcDiLwyzv/+TuxBKd6bpaU5qv Q2ZnbmyB7ExDvX0d55RqMu2jndUWNDWJIUZ1mamvJIdYtGJ9cgLjmJCvtF866iI8 xM6lwHcg56OFc+53A5BFj9bAoDPtH6i/ -----END CERTIFICATE-----Generated at Sat May 31 16:28:41 2025 by rpki-client