$ rpki-client -vvf rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft File: h-gMDkYzEKnTA4zgE88YU3SlxyI.mft (raw, json) Hash identifier: VycLguPvdJ1OD6V6r8a9HVEnvkWHqWH5YvtdqS4NDBs= Subject key identifier: 20:C9:0A:0B:3F:CC:3A:17:7C:02:07:6F:E3:40:37:7C:CF:61:CE:90 Authority key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 Certificate issuer: /CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft Manifest number: 05BA Signing time: Mon 14 Apr 2025 22:51:38 +0000 Manifest this update: Mon 14 Apr 2025 22:51:38 +0000 Manifest next update: Mon 21 Apr 2025 22:51:38 +0000 Files and hashes: 1: h-gMDkYzEKnTA4zgE88YU3SlxyI.crl (hash: YY1LaotmuCjZvIFzRvzEH43GMsaJprnXLkQcUCKmre8=) 2: C850F3BA89A511EEB6692E43C4F9AE02.roa (hash: UO8+/PNJyP8F2PV5d82ae9pJgiAAnCCFoOA6ej/PePM=) 3: C49CE482BEA411EB85828650C4F9AE02.roa (hash: SYzw7W4I8ERB2k6TGS/FM3oGH7TQqDLdsyK12v9ZWyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 22:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918524B, serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Validity Not Before: Apr 14 22:51:38 2025 GMT Not After : Apr 21 22:51:38 2025 GMT Subject: CN=67fd917a-6375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:24:27:b6:26:53:e7:b6:a3:79:d7:3b:25:35: b6:5e:2a:97:95:fc:ba:9c:59:f6:71:46:3c:5c:c0: 8d:a5:8e:a6:15:37:fd:af:2a:53:9f:54:9b:50:6d: 42:1d:26:02:30:04:e8:7a:45:90:6c:86:3a:47:03: 8a:ce:1d:22:e9:e4:54:a7:da:db:48:1b:e6:55:0b: ce:fe:64:34:2a:cb:0e:9e:f4:59:ba:fe:5e:42:3a: 75:c5:cd:78:a2:fe:1e:92:b2:66:2d:e1:1b:d4:8a: 38:ed:3c:cc:f3:ad:3e:53:4a:e4:19:30:e5:d6:7c: f6:bc:f6:97:fe:a9:d9:98:3c:4d:a9:20:31:8c:c7: 56:9b:cb:99:25:11:48:a8:d2:b3:11:29:08:bb:5d: 55:a7:b1:84:a7:34:e5:29:d6:60:78:6d:51:84:77: f6:e2:f2:6c:04:36:f8:fa:a2:54:fa:04:6a:8e:1a: bc:45:23:99:17:4d:ea:98:e6:06:b6:64:12:c2:04: 74:3f:a3:cf:ed:40:7d:db:8a:ce:d2:48:47:21:70: 47:e4:2b:d3:10:47:b7:19:95:b5:55:7d:52:c8:6b: 05:0a:af:fb:d1:26:fb:82:77:86:6c:e6:24:73:81: d6:b0:9f:fb:1b:e0:64:4f:31:16:a7:2f:80:1a:4b: b2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:C9:0A:0B:3F:CC:3A:17:7C:02:07:6F:E3:40:37:7C:CF:61:CE:90 X509v3 Authority Key Identifier: keyid:87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a4:da:5c:f9:3d:09:f5:86:d3:9b:e7:d1:5f:5f:f2:ce:14: 87:fa:e3:af:71:32:9d:86:7e:65:c4:aa:fb:c9:0f:ef:65:0f: e3:68:83:2e:c6:3b:0c:f4:80:ed:d9:19:4a:d0:4a:27:1f:5a: b3:41:9a:d2:f8:8b:4a:19:70:e3:aa:0f:a7:23:1b:9e:1a:4c: 18:e6:09:2b:fa:05:85:af:73:6d:90:75:1c:5b:38:0b:94:d3: 68:50:42:af:a1:39:14:3a:d5:31:61:2b:f1:02:c5:02:a1:13: 67:ae:e0:70:84:66:03:a2:3d:07:a2:46:b8:8e:41:48:9f:70: e3:29:51:c3:f0:f6:ed:bb:0c:57:b7:70:76:c3:7e:65:93:9d: 77:9c:3b:45:39:36:7a:5e:5f:6c:e8:c1:10:8f:2d:1d:b7:38: a9:f8:7f:db:89:b1:2b:d8:6e:a6:b0:5d:0e:9f:ea:1c:94:09: 06:27:7a:28:80:b9:3b:a9:25:4a:76:70:42:34:e1:62:3a:49: dc:d0:72:84:8e:a9:ec:ad:c9:38:ee:54:97:b6:d8:33:a5:a7: 46:39:1f:17:b0:dd:c7:d3:df:9a:01:9a:35:57:85:66:54:3d: 49:59:3c:68:fe:78:5a:7b:d9:44:dc:cf:2f:d8:1d:cb:97:1c: 31:0f:53:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyNEIxMTAvBgNVBAUTKDg3RTgwQzBFNDYzMzEwQTlEMzAzOENFMDEzQ0YxODUz NzRBNUM3MjIwHhcNMjUwNDE0MjI1MTM4WhcNMjUwNDIxMjI1MTM4WjAYMRYwFAYD VQQDEw02N2ZkOTE3YS02Mzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAniQntiZT57ajedc7JTW2XiqXlfy6nFn2cUY8XMCNpY6mFTf9rypTn1SbUG1C HSYCMAToekWQbIY6RwOKzh0i6eRUp9rbSBvmVQvO/mQ0KssOnvRZuv5eQjp1xc14 ov4ekrJmLeEb1Io47TzM860+U0rkGTDl1nz2vPaX/qnZmDxNqSAxjMdWm8uZJRFI qNKzESkIu11Vp7GEpzTlKdZgeG1RhHf24vJsBDb4+qJU+gRqjhq8RSOZF03qmOYG tmQSwgR0P6PP7UB924rO0khHIXBH5CvTEEe3GZW1VX1SyGsFCq/70Sb7gneGbOYk c4HWsJ/7G+BkTzEWpy+AGkuy8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDJCgs/ zDoXfAIHb+NAN3zPYc6QMB8GA1UdIwQYMBaAFIfoDA5GMxCp0wOM4BPPGFN0pcci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTI0Qi85MjQwNkEwNkJF QTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVLblRBNHpnRTg4WVUzU2x4 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gtZ01Ea1l6RUtuVEE0emdFODhZVTNTbHh5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTI0Qi85MjQwNkEwNkJFQTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVL blRBNHpnRTg4WVUzU2x4eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhpNpc+T0J9YbTm+fRX1/yzhSH+uOvcTKdhn5lxKr7yQ/vZQ/jaIMu xjsM9IDt2RlK0EonH1qzQZrS+ItKGXDjqg+nIxueGkwY5gkr+gWFr3NtkHUcWzgL lNNoUEKvoTkUOtUxYSvxAsUCoRNnruBwhGYDoj0Hoka4jkFIn3DjKVHD8PbtuwxX t3B2w35lk513nDtFOTZ6Xl9s6MEQjy0dtzip+H/bibEr2G6msF0On+oclAkGJ3oo gLk7qSVKdnBCNOFiOknc0HKEjqnsrck47lSXttgzpadGOR8XsN3H09+aAZo1V4Vm VD1JWTxo/nhae9lE3M8v2B3LlxwxD1Mt -----END CERTIFICATE-----Generated at Tue Apr 15 10:32:13 2025 by rpki-client