$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: 8TtVp6m6t0G2Tzr11Ou6V35nv7xEgZYz7V8qMURjoB8= Subject key identifier: 34:E1:D5:54:FF:A5:A5:C7:3A:02:25:D6:23:43:6D:D4:2B:0F:03:2C Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 63 Signing time: Fri 25 Apr 2025 06:07:18 +0000 Manifest this update: Fri 25 Apr 2025 06:07:17 +0000 Manifest next update: Fri 02 May 2025 06:07:17 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: nV59ZpEY5sXCWMxrciWIqp6Uq79q7xoH0ZmxtrZiCC4=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 3tPU5Z40ENmKrBN3OAXsHJVkK9J8E3240xOs2Cjr+YQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Apr 25 06:07:17 2025 GMT Not After : May 2 06:07:17 2025 GMT Subject: CN=680b2695-4912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:eb:1e:25:fc:ea:58:7a:76:29:1b:c5:46:f9: 33:b3:4c:8a:88:60:1d:48:47:de:24:98:98:21:d6: 76:57:d0:42:2b:84:ca:84:7d:53:3b:86:8a:ee:74: 04:11:e9:b4:d6:b5:4f:4f:54:63:82:32:8f:76:cd: d0:d9:ef:88:a3:1d:65:84:2a:ee:d5:f4:3d:05:f7: 22:c6:00:6e:a6:ec:86:1b:0b:08:7f:5d:9d:e8:d2: 5d:99:de:37:b2:7f:ce:93:dd:9e:a9:c7:70:8f:e4: f1:ae:42:de:be:8b:08:b5:1b:43:c9:bb:0e:f7:a7: 95:c1:eb:c8:e1:1e:39:88:f0:70:03:d7:41:79:88: 2d:7e:84:95:be:75:8f:11:78:1d:cf:e1:e8:c1:53: 41:08:b3:bc:f7:52:29:81:fe:79:f4:a0:cb:aa:92: 4a:78:31:9b:53:1c:df:6b:43:2c:22:0d:91:75:d4: b3:af:30:68:07:6c:59:11:5d:00:71:76:0f:2c:ca: 4d:bd:ff:5c:b2:40:08:3d:e4:d4:e0:8f:65:26:16: 5f:ca:35:d0:aa:7d:27:3b:35:31:88:98:78:31:e1: b7:7f:aa:77:94:1c:6c:3d:82:ac:9f:f9:74:3f:20: 48:b6:d0:a7:51:1a:a5:97:bb:38:14:af:52:40:16: 81:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E1:D5:54:FF:A5:A5:C7:3A:02:25:D6:23:43:6D:D4:2B:0F:03:2C X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:78:0d:71:55:6c:f0:e0:d9:02:8d:c6:5b:cd:dc:18:2f:a3: f4:60:81:04:50:b4:11:8d:fc:c9:ac:8e:dc:b4:d0:9a:48:c0: 15:bd:dc:02:72:25:29:64:18:e9:95:9d:04:29:8f:ea:26:57: df:d8:23:96:38:06:7b:69:5c:0d:63:4b:02:eb:84:0f:00:51: 17:36:87:09:d7:8d:3a:27:1c:b9:5b:d9:63:8a:3f:24:c7:78: 90:a0:f3:e4:9a:b3:12:79:aa:df:a5:bb:5a:4d:c7:c5:a6:55: 23:15:e4:b4:ca:8b:2c:d9:62:64:dd:c3:aa:54:ca:b0:06:55: 01:29:4b:66:1a:4e:72:c5:c9:de:1a:bc:f6:5f:83:d6:48:8b: 65:44:50:da:4d:fe:26:85:72:44:e5:0b:14:86:c7:35:56:0a: 88:8c:56:b2:9b:fa:94:da:68:35:69:bf:c6:06:e5:e0:71:1e: 6c:ba:75:75:6e:fe:cd:86:dc:c7:b8:aa:d7:82:97:b5:86:7c: fe:9a:23:42:31:53:ab:46:f1:72:3c:55:af:f5:e0:dc:3a:a5: 65:db:53:3c:01:b8:77:f1:fc:3d:10:f2:b9:cb:b0:f7:34:9f: 5a:ba:e9:5a:b1:5b:fb:2f:de:ae:a9:e7:7a:8d:94:ae:0d:d0: 9f:c9:2a:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDg0ODExMC8GA1UEBRMoMUREMUI4Njg3ODg2OTI0QzQ2MTMxMTYwNTBFRTkwRTlE NDk0MjY5RTAeFw0yNTA0MjUwNjA3MTdaFw0yNTA1MDIwNjA3MTdaMBgxFjAUBgNV BAMTDTY4MGIyNjk1LTQ5MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl6x4l/OpYenYpG8VG+TOzTIqIYB1IR94kmJgh1nZX0EIrhMqEfVM7horudAQR 6bTWtU9PVGOCMo92zdDZ74ijHWWEKu7V9D0F9yLGAG6m7IYbCwh/XZ3o0l2Z3jey f86T3Z6px3CP5PGuQt6+iwi1G0PJuw73p5XB68jhHjmI8HAD10F5iC1+hJW+dY8R eB3P4ejBU0EIs7z3UimB/nn0oMuqkkp4MZtTHN9rQywiDZF11LOvMGgHbFkRXQBx dg8syk29/1yyQAg95NTgj2UmFl/KNdCqfSc7NTGImHgx4bd/qneUHGw9gqyf+XQ/ IEi20KdRGqWXuzgUr1JAFoEvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNOHVVP+l pcc6AiXWI0Nt1CsPAywwHwYDVR0jBBgwFoAUHdG4aHiGkkxGExFgUO6Q6dSUJp4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEODQ4L0MyNTFCNUIyOUIx MDExRUZBNzJCQTAyMEM0RjlBRTAyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGRHNGFIaUdra3hHRXhGZ1VPNlE2ZFNVSnA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE ODQ4L0MyNTFCNUIyOUIxMDExRUZBNzJCQTAyMEM0RjlBRTAyL0hkRzRhSGlHa2t4 R0V4RmdVTzZRNmRTVUpwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIx4DXFVbPDg2QKNxlvN3Bgvo/RggQRQtBGN/Mmsjty00JpIwBW93AJy JSlkGOmVnQQpj+omV9/YI5Y4BntpXA1jSwLrhA8AURc2hwnXjTonHLlb2WOKPyTH eJCg8+SasxJ5qt+lu1pNx8WmVSMV5LTKiyzZYmTdw6pUyrAGVQEpS2YaTnLFyd4a vPZfg9ZIi2VEUNpN/iaFckTlCxSGxzVWCoiMVrKb+pTaaDVpv8YG5eBxHmy6dXVu /s2G3Me4qteCl7WGfP6aI0IxU6tG8XI8Va/14Nw6pWXbUzwBuHfx/D0Q8rnLsPc0 n1q66VqxW/sv3q6p53qNlK4N0J/JKks= -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:13 2025 by rpki-client