$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: kQ3uh9kGi3d3YgVS3AS42kRv23Y9aZZZTrchGajYNCk= Subject key identifier: B3:AA:17:5C:0C:F8:01:0A:0F:B4:A7:59:7A:AF:E6:96:69:5D:FF:DA Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 07BC Signing time: Thu 24 Apr 2025 21:00:15 +0000 Manifest this update: Thu 24 Apr 2025 21:00:15 +0000 Manifest next update: Thu 01 May 2025 21:00:15 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: QWjXX3AwYQuH1oSPMRbBLIvcpvDGG4t9TxtV8QWjAE4=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: xYIcgS1Zp8wD+PJFBZBjfV7mWptLx74W20qrbaZleiE=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: vzmf8XnwJutTzSkLhDDX6poVkZL6XtaY1a0fPCQC+dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Apr 24 21:00:15 2025 GMT Not After : May 1 21:00:15 2025 GMT Subject: CN=680aa65f-60f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:be:6f:7f:c6:10:c4:f3:d2:4b:73:07:cd:3b: 72:0d:96:5d:3f:d7:e2:1a:b2:44:bc:83:61:99:62: 6c:4e:a7:47:85:c1:35:2b:eb:1f:6d:cf:77:c0:fe: 70:e0:ab:5d:2a:1a:dc:dc:31:20:b9:3a:38:79:3d: 6d:8b:d2:79:67:18:24:9b:bc:78:90:01:0f:10:3b: dd:f6:e8:74:66:f9:b8:87:29:d5:0d:0d:58:a5:c3: 13:17:bc:ca:9f:33:1c:da:83:77:75:46:8d:21:76: ee:d6:9a:fe:df:4a:24:f0:5f:74:ad:8f:a1:b2:e3: 2b:cf:23:10:0f:58:9e:ad:07:bf:81:bd:70:a5:da: 80:45:19:33:32:9b:f6:ae:4b:44:de:e0:aa:dd:f8: fb:8d:2d:47:8d:eb:f9:e3:3e:e4:02:30:2a:bf:43: 26:36:3d:88:8c:9c:b1:13:c5:93:d4:da:f1:35:8a: 6d:9a:6e:48:23:4e:b8:1b:75:19:0e:c7:38:33:3c: f2:5a:39:c2:60:f7:38:9b:93:74:78:e7:c4:aa:20: 50:d6:8b:2a:0a:20:fa:dd:89:5e:84:1b:aa:81:18: a6:43:a1:cb:ec:59:ce:52:db:c4:35:d1:0c:66:5b: 69:05:63:e4:fa:08:a0:62:98:ee:ba:2c:e6:b8:c0: 74:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:AA:17:5C:0C:F8:01:0A:0F:B4:A7:59:7A:AF:E6:96:69:5D:FF:DA X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:47:c8:72:d8:52:b3:0a:5b:91:1e:38:0e:bf:37:9d:45:d9: 0d:3d:f2:31:d9:b4:0f:fc:40:d4:f0:9a:da:6f:47:44:1e:72: b9:95:07:f0:d7:90:d1:27:45:35:81:e4:2f:4e:09:63:71:61: 76:32:f6:e2:56:c6:a7:d8:2f:e2:3b:02:84:f5:36:42:aa:22: 13:14:34:83:f6:1c:d5:75:34:f0:1c:5c:9d:ec:e2:84:5c:53: 26:5f:c5:db:87:61:d0:78:c6:e3:12:53:a4:23:24:89:13:79: f7:eb:90:c3:23:4f:74:68:99:9f:ae:94:3c:25:f0:c0:3e:44: aa:ea:30:f2:dd:f4:0b:7a:56:4f:d0:9d:9a:2e:d0:61:aa:57: 3e:3a:68:78:eb:2b:51:4c:85:e7:55:11:36:65:f8:4a:c1:3b: a8:fc:97:d7:b5:e6:63:42:ed:d7:ea:8d:4d:c1:a0:40:95:8b: e7:6d:c3:d2:ef:17:16:43:e1:dc:3d:59:f8:c0:73:7d:f8:cd: b5:47:38:22:4f:da:70:58:49:1b:18:5c:59:bf:c4:1d:af:63: bb:91:c4:7c:c7:6a:71:69:ec:b8:4f:89:dc:8b:e9:34:87:4e: 94:e4:33:ad:e0:4a:08:96:39:f5:78:55:30:d4:a2:c7:94:25: e0:79:31:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwNDI0MjEwMDE1WhcNMjUwNTAxMjEwMDE1WjAYMRYwFAYD VQQDEw02ODBhYTY1Zi02MGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr75vf8YQxPPSS3MHzTtyDZZdP9fiGrJEvINhmWJsTqdHhcE1K+sfbc93wP5w 4KtdKhrc3DEguTo4eT1ti9J5Zxgkm7x4kAEPEDvd9uh0Zvm4hynVDQ1YpcMTF7zK nzMc2oN3dUaNIXbu1pr+30ok8F90rY+hsuMrzyMQD1ierQe/gb1wpdqARRkzMpv2 rktE3uCq3fj7jS1Hjev54z7kAjAqv0MmNj2IjJyxE8WT1NrxNYptmm5II064G3UZ Dsc4MzzyWjnCYPc4m5N0eOfEqiBQ1osqCiD63YlehBuqgRimQ6HL7FnOUtvENdEM ZltpBWPk+gigYpjuuizmuMB0HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOqF1wM +AEKD7SnWXqv5pZpXf/aMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvR8hy2FKzCluRHjgOvzedRdkNPfIx2bQP/EDU8Jrab0dEHnK5lQfw 15DRJ0U1geQvTgljcWF2MvbiVsan2C/iOwKE9TZCqiITFDSD9hzVdTTwHFyd7OKE XFMmX8Xbh2HQeMbjElOkIySJE3n365DDI090aJmfrpQ8JfDAPkSq6jDy3fQLelZP 0J2aLtBhqlc+Omh46ytRTIXnVRE2ZfhKwTuo/JfXteZjQu3X6o1NwaBAlYvnbcPS 7xcWQ+HcPVn4wHN9+M21RzgiT9pwWEkbGFxZv8Qdr2O7kcR8x2pxaey4T4nci+k0 h06U5DOt4EoIljn1eFUw1KLHlCXgeTEs -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:42 2025 by rpki-client