$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: P7qcGsllHV7c0HV4WekleZ2vgRQfe0IIC4Txhx1kPWQ= Subject key identifier: 24:A8:E3:CA:0F:F5:C1:D9:2E:C9:C3:7A:64:D5:0B:CE:3C:64:60:74 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C2C Signing time: Fri 30 May 2025 18:46:58 +0000 Manifest this update: Fri 30 May 2025 18:46:57 +0000 Manifest next update: Fri 06 Jun 2025 18:46:57 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: JcPlDvqBn1RWk7RMVI68f/PvXqVFrSv+vvLSPP6kM+k=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3127 (0xc37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: May 30 18:46:57 2025 GMT Not After : Jun 6 18:46:57 2025 GMT Subject: CN=6839fd22-daca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c4:e5:8e:66:93:4c:77:32:b1:2e:ac:61:a6: b5:d3:94:17:fb:89:c0:d6:23:1a:ab:1e:85:61:49: 0d:aa:26:a5:20:4b:2d:6d:57:31:6a:eb:1a:7c:7c: e4:11:a7:16:7e:13:83:f7:e8:19:ba:31:1a:5c:f8: 8b:38:78:f1:56:0f:89:8d:c3:a6:12:82:9e:ca:b2: 2d:e7:bf:4c:01:4f:64:5e:19:91:d7:d8:42:10:c5: dd:4c:5b:72:e0:6f:05:50:9c:8a:3e:9a:46:fc:32: 42:66:c8:b7:3f:f0:e9:5b:95:fb:00:61:0e:95:2a: 3c:2e:ae:0e:50:3a:df:43:a8:6b:13:03:4f:a9:3f: 48:1f:6e:3b:6c:e2:d6:c7:f7:4f:83:4f:35:9e:cf: 61:bf:d5:e2:20:8f:10:f4:c0:2a:ff:db:b0:a8:ef: cc:20:94:6a:3f:48:00:2f:55:6a:f3:31:df:78:17: 12:49:57:bd:5a:48:20:75:13:88:69:44:8d:c9:be: 1e:af:bd:9e:8a:fe:b9:d3:a9:62:82:2d:88:30:57: 81:5a:98:ab:39:7d:67:ed:0d:00:86:89:76:c7:d2: f5:27:a9:09:82:fd:00:1d:87:0c:47:36:c7:c9:47: 61:80:53:ad:c3:69:56:ef:8d:47:6e:70:73:16:50: 80:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A8:E3:CA:0F:F5:C1:D9:2E:C9:C3:7A:64:D5:0B:CE:3C:64:60:74 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:00:3f:0f:ee:52:58:9d:fa:b9:c4:1c:02:16:a4:b2:02:53: 07:04:8c:19:0a:d7:76:d4:e8:6b:99:b3:2b:7e:2f:b6:61:48: 50:2f:77:a1:ea:00:82:d6:a7:71:74:87:0b:e4:e4:bf:4c:40: 4e:88:47:e4:2e:8f:43:d6:eb:2d:d0:e8:f3:45:f2:5f:b2:36: 5f:98:78:dd:80:44:2a:c7:bc:cd:92:5b:3c:77:e8:3d:78:c2: 36:c9:c4:6e:a1:ea:2f:d9:d1:6e:b7:94:22:f5:32:95:b5:93: 64:54:1f:f9:60:44:00:86:9b:9b:77:f8:35:76:0e:f8:a8:11: 24:b9:9a:20:6e:d3:18:f5:92:95:ea:80:22:9a:cf:a8:56:62: 33:32:04:64:18:b2:8b:25:e5:00:11:34:ea:16:09:5b:4a:83: 73:a8:8e:59:25:99:f8:44:b7:3e:f5:89:d4:36:81:23:1f:ca: 6c:be:a1:cc:aa:4a:10:40:64:c5:5e:52:ad:c4:bb:99:3d:b7: ec:2b:17:27:30:d5:ba:3e:1b:c0:a9:19:bd:23:95:17:9e:a7: 2e:90:94:70:63:cf:e1:d1:6b:60:85:12:ac:64:48:c8:e0:e9: 71:cf:ed:0a:73:1a:00:c6:90:b5:ca:10:63:ac:6d:00:a5:95: 3f:47:bf:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwNTMwMTg0NjU3WhcNMjUwNjA2MTg0NjU3WjAYMRYwFAYD VQQDEw02ODM5ZmQyMi1kYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58TljmaTTHcysS6sYaa105QX+4nA1iMaqx6FYUkNqialIEstbVcxausafHzk EacWfhOD9+gZujEaXPiLOHjxVg+JjcOmEoKeyrIt579MAU9kXhmR19hCEMXdTFty 4G8FUJyKPppG/DJCZsi3P/DpW5X7AGEOlSo8Lq4OUDrfQ6hrEwNPqT9IH247bOLW x/dPg081ns9hv9XiII8Q9MAq/9uwqO/MIJRqP0gAL1Vq8zHfeBcSSVe9WkggdROI aUSNyb4er72eiv6506ligi2IMFeBWpirOX1n7Q0Ahol2x9L1J6kJgv0AHYcMRzbH yUdhgFOtw2lW741HbnBzFlCANwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSo48oP 9cHZLsnDemTVC848ZGB0MB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUAD8P7lJYnfq5xBwCFqSyAlMHBIwZCtd21OhrmbMrfi+2YUhQL3eh 6gCC1qdxdIcL5OS/TEBOiEfkLo9D1ust0OjzRfJfsjZfmHjdgEQqx7zNkls8d+g9 eMI2ycRuoeov2dFut5Qi9TKVtZNkVB/5YEQAhpubd/g1dg74qBEkuZogbtMY9ZKV 6oAims+oVmIzMgRkGLKLJeUAETTqFglbSoNzqI5ZJZn4RLc+9YnUNoEjH8psvqHM qkoQQGTFXlKtxLuZPbfsKxcnMNW6PhvAqRm9I5UXnqcukJRwY8/h0WtghRKsZEjI 4Olxz+0KcxoAxpC1yhBjrG0ApZU/R7+e -----END CERTIFICATE-----Generated at Sat May 31 16:31:20 2025 by rpki-client