$ rpki-client -vvf rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft File: mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft (raw, json) Hash identifier: X+WSn5aH7i6/XPf03ZNUhriOsZzCPKVT+PjrO45HOUU= Subject key identifier: 28:ED:F0:C6:0E:54:DB:5B:ED:4A:63:44:7C:B1:72:04:9E:9B:FB:13 Authority key identifier: 9A:14:83:6A:21:86:D1:97:22:14:86:22:48:35:5D:AB:8B:B9:73:66 Certificate issuer: /CN=A91325C7/serialNumber=9A14836A2186D1972214862248355DAB8BB97366 Certificate serial: 06D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft Manifest number: 06C6 Signing time: Thu 24 Apr 2025 21:52:14 +0000 Manifest this update: Thu 24 Apr 2025 21:52:13 +0000 Manifest next update: Thu 01 May 2025 21:52:13 +0000 Files and hashes: 1: mhSDaiGG0ZciFIYiSDVdq4u5c2Y.crl (hash: el++KSdUruv5xWHYRctkHCNrnzRFg3L2NhmI9jEp3ag=) 2: 591B98DE548711EB89568B65C4F9AE02.roa (hash: d7N6f6yC80H+bBisy6d0uZFPMZkPZ4+tK8vPcg2RMI4=) 3: 59BC86E0548711EB89568B65C4F9AE02.roa (hash: XqZL53ufCEPPnAj9K+Mz0fhXU33hy00eQ9KaFrfBZL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.crl rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325C7, serialNumber=9A14836A2186D1972214862248355DAB8BB97366 Validity Not Before: Apr 24 21:52:13 2025 GMT Not After : May 1 21:52:13 2025 GMT Subject: CN=680ab28d-a7bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:53:b1:36:52:8f:64:a8:e2:b8:51:48:91:1c: c4:31:c3:04:8c:f1:bf:38:fa:e8:5e:4b:26:85:3c: 97:b4:04:1c:dc:1e:cb:72:03:19:a7:6b:01:5d:95: 89:e4:d1:86:48:35:15:c8:bd:fa:b3:5a:17:ad:1a: 29:f5:1e:1f:e8:0d:da:f9:b5:52:9f:64:79:b2:5c: 8f:c9:39:5e:40:5f:cb:05:a3:eb:6f:4c:a3:c6:84: 84:c2:07:5d:6a:e8:34:b4:3c:53:b0:cd:d1:18:36: e5:60:77:42:e3:fd:ed:59:7f:ca:d0:39:80:e0:c9: 50:3c:b7:96:22:65:f9:21:95:95:b2:59:01:c0:2f: 74:17:35:1c:3c:8f:49:5d:cc:01:46:07:11:ac:55: 7b:14:40:ac:e7:6c:fc:60:7c:8b:7a:7e:d1:a3:1d: 95:ef:68:48:e5:68:89:54:5c:42:62:3c:17:0e:4d: ec:af:b5:c6:c1:5a:17:1a:d6:a2:ce:a0:9a:76:1b: 3f:5b:c3:e1:25:76:3a:88:33:9b:9d:67:ed:97:6a: 84:86:2e:78:1c:71:60:18:d9:f4:a7:15:90:8d:24: 24:b7:f9:6d:01:8f:90:8b:d3:43:f0:8e:8c:2e:f5: 2b:14:b7:3f:5c:f7:90:73:97:97:fd:36:28:96:bd: 4f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:ED:F0:C6:0E:54:DB:5B:ED:4A:63:44:7C:B1:72:04:9E:9B:FB:13 X509v3 Authority Key Identifier: keyid:9A:14:83:6A:21:86:D1:97:22:14:86:22:48:35:5D:AB:8B:B9:73:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325C7/24398230548611EB9F98C264C4F9AE02/mhSDaiGG0ZciFIYiSDVdq4u5c2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:e1:cc:d3:14:e1:58:1a:0e:c1:2b:82:7c:f7:28:ae:ae:c7: 87:cc:cf:11:49:b7:53:b4:56:b4:93:83:f7:1b:e2:9a:f7:20: a5:b9:da:97:1a:51:26:6b:e4:49:5d:4b:a6:bf:b7:fe:0b:6e: b1:d8:99:2c:e0:02:d8:13:f2:5f:8c:cb:ad:24:fe:0e:48:eb: fe:f8:94:42:64:48:62:86:03:98:e7:7f:cf:63:5c:8e:32:7f: 4b:70:54:7b:eb:88:d8:4a:38:44:25:30:a1:e0:92:b1:f9:70: a7:37:d1:df:8f:dd:2f:76:a1:97:82:d2:78:5a:b1:03:9c:ad: ff:0e:9f:26:41:0f:16:2a:4e:0c:03:91:8f:fe:54:9e:7c:c0: cd:f0:b5:6c:10:b8:68:31:9f:7b:79:95:3a:79:1a:d3:b0:0d: ea:52:52:b2:62:6c:7e:83:92:7d:70:9f:47:c3:33:92:e4:53: 81:da:9a:2a:86:2c:8c:ad:f9:e7:b9:a5:5f:f0:ce:8a:e0:87: c8:e9:3f:34:ca:81:4b:1e:20:94:f3:77:33:df:d6:d9:7e:5e: dc:e3:a1:13:15:99:80:f9:93:e3:47:fa:07:e7:2f:9e:53:f5: 6f:4f:f2:ff:36:49:44:e3:70:b0:64:46:d2:a9:79:0b:a9:67: fb:1b:fa:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1QzcxMTAvBgNVBAUTKDlBMTQ4MzZBMjE4NkQxOTcyMjE0ODYyMjQ4MzU1REFC OEJCOTczNjYwHhcNMjUwNDI0MjE1MjEzWhcNMjUwNTAxMjE1MjEzWjAYMRYwFAYD VQQDEw02ODBhYjI4ZC1hN2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlOxNlKPZKjiuFFIkRzEMcMEjPG/OProXksmhTyXtAQc3B7LcgMZp2sBXZWJ 5NGGSDUVyL36s1oXrRop9R4f6A3a+bVSn2R5slyPyTleQF/LBaPrb0yjxoSEwgdd aug0tDxTsM3RGDblYHdC4/3tWX/K0DmA4MlQPLeWImX5IZWVslkBwC90FzUcPI9J XcwBRgcRrFV7FECs52z8YHyLen7Rox2V72hI5WiJVFxCYjwXDk3sr7XGwVoXGtai zqCadhs/W8PhJXY6iDObnWftl2qEhi54HHFgGNn0pxWQjSQkt/ltAY+Qi9ND8I6M LvUrFLc/XPeQc5eX/TYolr1P5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjt8MYO VNtb7UpjRHyxcgSem/sTMB8GA1UdIwQYMBaAFJoUg2ohhtGXIhSGIkg1XauLuXNm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVDNy8yNDM5ODIzMDU0 ODYxMUVCOUY5OEMyNjRDNEY5QUUwMi9taFNEYWlHRzBaY2lGSVlpU0RWZHE0dTVj MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21oU0RhaUdHMFpjaUZJWWlTRFZkcTR1NWMyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVDNy8yNDM5ODIzMDU0ODYxMUVCOUY5OEMyNjRDNEY5QUUwMi9taFNEYWlHRzBa Y2lGSVlpU0RWZHE0dTVjMlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo4czTFOFYGg7BK4J89yiurseHzM8RSbdTtFa0k4P3G+Ka9yCludqX GlEma+RJXUumv7f+C26x2Jks4ALYE/JfjMutJP4OSOv++JRCZEhihgOY53/PY1yO Mn9LcFR764jYSjhEJTCh4JKx+XCnN9Hfj90vdqGXgtJ4WrEDnK3/Dp8mQQ8WKk4M A5GP/lSefMDN8LVsELhoMZ97eZU6eRrTsA3qUlKyYmx+g5J9cJ9HwzOS5FOB2poq hiyMrfnnuaVf8M6K4IfI6T80yoFLHiCU83cz39bZfl7c46ETFZmA+ZPjR/oH5y+e U/VvT/L/NklE43CwZEbSqXkLqWf7G/od -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:29 2025 by rpki-client