$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: knD4vOvLdoD0529L9D7nQUK7ZJgHKwJOjStm5HaEliI= Subject key identifier: AD:7C:63:B1:CB:0F:DF:40:B5:5C:3A:06:0A:57:A3:1B:B6:C5:DF:FE Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: C0 Signing time: Fri 25 Apr 2025 04:55:36 +0000 Manifest this update: Fri 25 Apr 2025 04:55:36 +0000 Manifest next update: Fri 02 May 2025 04:55:36 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: lrKiyfmzaW7tz6IGLRX63M5ZyIzJ0GHoZXY+eKcLhYY=) 2: 894D6CDE1C3511EFA78E995CC4F9AE02.roa (hash: uii8sBoCCA9oMiaCp6gGjIs44iklY2+Z8HWMoERYSKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE, serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: Apr 25 04:55:36 2025 GMT Not After : May 2 04:55:36 2025 GMT Subject: CN=680b15c8-cd3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5d:09:a6:a8:6b:a2:4b:10:48:e8:fc:ce:e0: 9d:6c:e8:94:dd:4e:e7:de:fb:a4:80:a0:57:37:64: da:60:6e:aa:e8:5a:f9:b4:97:8e:5c:b7:15:f2:d1: d1:93:9a:23:c7:fd:fd:3a:d3:52:6e:10:85:b8:68: 13:ea:08:b8:1a:30:b1:cf:52:f0:f7:e0:09:ce:7e: 8c:01:35:1f:0c:67:1d:22:f7:ed:56:9d:36:1e:b4: 79:28:c7:30:3a:fa:9a:fb:24:21:1f:57:90:7d:70: 6c:61:72:99:f2:69:d3:b8:1f:cb:23:28:e9:f4:82: 17:a1:1f:1e:b4:7f:d6:94:ec:52:92:8f:b3:29:65: 2e:5d:4d:8c:bd:29:34:c2:a3:c6:58:d0:f1:dc:3a: e5:e7:aa:78:5f:0d:3f:47:99:09:65:96:df:d9:33: 20:27:bf:c1:22:ea:15:2b:df:37:06:f1:28:b4:3e: 13:a8:08:18:e3:27:77:d3:09:00:55:b3:db:32:26: e6:d8:2a:fe:a9:79:80:36:ad:42:5c:7e:ed:86:ff: 6a:b9:4b:88:a0:cf:88:53:c6:6a:85:70:f8:ed:6d: c5:30:c8:56:ed:72:ba:73:d7:b2:bc:c6:19:bb:37: b5:bf:9c:92:2a:cf:1c:e7:33:e6:bc:61:44:e8:2e: 5b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7C:63:B1:CB:0F:DF:40:B5:5C:3A:06:0A:57:A3:1B:B6:C5:DF:FE X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a5:d4:0f:b9:64:19:25:88:4d:a6:f1:ae:59:0c:26:92:4f: f6:26:67:5a:7b:be:73:00:07:2e:2d:41:fe:85:43:d5:f1:b8: 64:df:5f:d5:ce:e7:17:84:6a:1c:8f:73:03:bd:75:7f:83:71: 99:55:bf:45:09:a6:3d:6e:af:b0:7d:3b:6f:51:a6:a5:83:20: cb:d2:dd:97:15:3e:eb:3f:2c:09:43:26:9c:7f:e4:7c:24:30: a0:f3:dd:b5:49:a8:37:96:a8:3b:fa:5d:84:35:5e:c4:f6:af: 91:92:9a:33:89:f7:68:75:24:da:13:83:1f:1d:bb:35:e6:28: 47:1e:e5:85:63:b4:33:f7:17:ca:4b:b6:21:cd:79:57:41:4f: 55:1d:5f:63:48:72:99:d9:1d:b7:b1:4c:87:dd:75:5b:15:48: 4d:dd:ff:bc:09:4f:a0:3d:a6:7b:b3:cc:eb:ff:05:88:2c:fe: b0:18:e8:70:d7:3d:9b:79:c0:86:b9:36:3c:74:0c:60:fd:83: e6:34:d6:f0:b2:cf:ee:ea:ad:9b:e4:75:cc:f3:8f:f9:a9:12: 40:65:d6:7b:b1:ba:b4:81:da:25:fe:58:be:3d:be:d7:40:c1: db:06:c7:44:6c:5a:f0:bc:0c:e3:ba:56:6b:29:53:5b:8d:ae: 81:6e:c5:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGQ0UxMTAvBgNVBAUTKDg2NkU3OEQxQTQ1RThGRDEyNjgwOEFGRjdDRUE0RkMw OEU3RDkyQTgwHhcNMjUwNDI1MDQ1NTM2WhcNMjUwNTAyMDQ1NTM2WjAYMRYwFAYD VQQDEw02ODBiMTVjOC1jZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F0JpqhroksQSOj8zuCdbOiU3U7n3vukgKBXN2TaYG6q6Fr5tJeOXLcV8tHR k5ojx/39OtNSbhCFuGgT6gi4GjCxz1Lw9+AJzn6MATUfDGcdIvftVp02HrR5KMcw Ovqa+yQhH1eQfXBsYXKZ8mnTuB/LIyjp9IIXoR8etH/WlOxSko+zKWUuXU2MvSk0 wqPGWNDx3Drl56p4Xw0/R5kJZZbf2TMgJ7/BIuoVK983BvEotD4TqAgY4yd30wkA VbPbMibm2Cr+qXmANq1CXH7thv9quUuIoM+IU8ZqhXD47W3FMMhW7XK6c9eyvMYZ uze1v5ySKs8c5zPmvGFE6C5b0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK18Y7HL D99AtVw6BgpXoxu2xd/+MB8GA1UdIwQYMBaAFIZueNGkXo/RJoCK/3zqT8COfZKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0ZDRS9FMEJFMzZBQzAy M0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5RW1nSXJfZk9wUHdJNTlr cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0ZDRS9FMEJFMzZBQzAyM0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5 RW1nSXJfZk9wUHdJNTlrcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRpdQPuWQZJYhNpvGuWQwmkk/2Jmdae75zAAcuLUH+hUPV8bhk31/V zucXhGocj3MDvXV/g3GZVb9FCaY9bq+wfTtvUaalgyDL0t2XFT7rPywJQyacf+R8 JDCg8921Sag3lqg7+l2ENV7E9q+RkpozifdodSTaE4MfHbs15ihHHuWFY7Qz9xfK S7YhzXlXQU9VHV9jSHKZ2R23sUyH3XVbFUhN3f+8CU+gPaZ7s8zr/wWILP6wGOhw 1z2becCGuTY8dAxg/YPmNNbwss/u6q2b5HXM84/5qRJAZdZ7sbq0gdol/li+Pb7X QMHbBsdEbFrwvAzjulZrKVNbja6BbsUk -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:30 2025 by rpki-client