$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft File: hnHJZ--Azj0S3OowSRuUb9cGh8A.mft (raw, json) Hash identifier: CDeRA9Tu77l2EqoicD+b8dvhoIbFrQNwZlrZQ93vsLY= Subject key identifier: E8:20:10:C3:B0:AC:FA:D1:70:E2:12:B2:1A:DA:ED:5D:5E:A5:F9:65 Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 13A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft Manifest number: 1370 Signing time: Thu 24 Apr 2025 17:01:41 +0000 Manifest this update: Thu 24 Apr 2025 17:01:41 +0000 Manifest next update: Thu 01 May 2025 17:01:40 +0000 Files and hashes: 1: hnHJZ--Azj0S3OowSRuUb9cGh8A.crl (hash: Kvfsqx92/NFcNreA30p/heg8vRU4EIFagK1rX6KrojU=) 2: F046E896E9B411EFADF57822C4F9AE02.roa (hash: GMfaRkgZtU0bibSF5X1yqmKnNBnQN18neJaY0c9lA5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5024 (0x13a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E, serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Validity Not Before: Apr 24 17:01:41 2025 GMT Not After : May 1 17:01:40 2025 GMT Subject: CN=680a6e75-e1f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:41:ef:0c:3a:4c:ea:bd:7e:aa:d3:ff:d4:c0: 9a:22:6d:84:63:4d:00:92:24:d0:39:bf:ca:76:58: 99:17:38:b4:c9:80:76:7b:ae:48:02:2d:bd:c5:0f: b1:a2:d3:9e:89:7a:46:d9:bf:9a:3c:97:b6:49:28: 6d:54:fc:4e:f0:f7:c6:79:94:9d:6b:e1:2a:a3:ca: 52:13:9d:4c:eb:bd:94:4b:0d:fd:da:3a:fa:6e:fd: 43:dd:71:52:19:b9:4a:ac:3c:f7:ed:53:57:6f:61: 97:77:de:75:4c:8e:8b:fb:f8:9b:f7:4b:1c:e9:b2: 02:c4:2f:56:8b:40:4a:dc:97:82:fb:6a:b4:c5:61: f5:9f:b8:f5:4e:01:ca:c5:a9:00:c0:15:7b:fb:77: 65:d1:3a:19:1f:b2:02:a1:76:64:51:58:23:32:3b: 35:38:73:0e:fc:92:36:fc:6d:14:bd:79:74:f9:d8: cb:ed:d3:68:54:2e:af:c9:06:5c:e6:ec:54:3f:49: c9:82:c7:f0:5f:fb:83:09:f6:8b:e9:bb:5a:26:cd: c2:8e:2d:c8:00:2d:8c:fa:be:fe:53:08:76:5f:8b: c6:36:b2:b3:62:74:59:ee:6f:d6:7c:79:15:cd:f6: 29:05:e6:f9:50:84:6c:01:ac:63:1a:60:50:82:c9: e1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:20:10:C3:B0:AC:FA:D1:70:E2:12:B2:1A:DA:ED:5D:5E:A5:F9:65 X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:49:84:ef:bd:b1:da:e0:ef:e7:50:9f:df:46:4e:cd:39:f1: fe:1f:62:69:2f:0d:88:17:88:8f:d4:de:21:91:fb:2e:8f:a6: ff:a7:28:66:cc:a1:85:53:f3:4c:b8:58:a7:f5:6b:ce:e0:d9: 39:7a:46:91:45:8f:d4:cb:94:80:16:88:f9:91:a7:f6:29:fc: 6f:f8:ae:17:80:03:84:dc:47:cb:98:b9:bc:79:b8:51:61:aa: ee:f2:2d:5d:5e:63:d2:9e:b9:b5:e8:84:81:b5:b8:40:de:0c: 75:aa:31:49:a8:41:21:1c:48:1e:17:91:e8:ad:31:24:d8:e0: 87:78:4e:0b:b4:e5:3a:da:73:f9:f3:7c:7d:6a:cc:9b:21:5b: 6c:47:5c:cd:df:74:62:c3:95:7b:ac:f7:6e:d6:47:ba:8c:bc: 06:f7:bc:26:e8:9f:9c:a6:16:26:fe:25:08:f3:e4:90:3c:04: 41:11:71:5c:82:bc:de:82:e9:79:01:85:af:f4:57:2a:c3:21: 68:9f:39:25:00:58:4a:c8:06:47:8a:81:04:58:42:51:70:d7: 37:f0:3f:5d:41:f7:83:53:f5:e0:bc:2d:22:de:34:4f:23:7d: a6:3d:c5:91:33:24:9d:4d:ae:18:e5:8a:45:01:fe:4e:3c:79: 27:21:54:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjUwNDI0MTcwMTQxWhcNMjUwNTAxMTcwMTQwWjAYMRYwFAYD VQQDEw02ODBhNmU3NS1lMWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0HvDDpM6r1+qtP/1MCaIm2EY00AkiTQOb/KdliZFzi0yYB2e65IAi29xQ+x otOeiXpG2b+aPJe2SShtVPxO8PfGeZSda+Eqo8pSE51M672USw392jr6bv1D3XFS GblKrDz37VNXb2GXd951TI6L+/ib90sc6bICxC9Wi0BK3JeC+2q0xWH1n7j1TgHK xakAwBV7+3dl0ToZH7ICoXZkUVgjMjs1OHMO/JI2/G0UvXl0+djL7dNoVC6vyQZc 5uxUP0nJgsfwX/uDCfaL6btaJs3Cji3IAC2M+r7+Uwh2X4vGNrKzYnRZ7m/WfHkV zfYpBeb5UIRsAaxjGmBQgsnhjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOggEMOw rPrRcOISshra7V1epfllMB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQwRS84RTcxNDk4NEEzNUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpq MFMzT293U1J1VWI5Y0doOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxSYTvvbHa4O/nUJ/fRk7NOfH+H2JpLw2IF4iP1N4hkfsuj6b/pyhm zKGFU/NMuFin9WvO4Nk5ekaRRY/Uy5SAFoj5kaf2Kfxv+K4XgAOE3EfLmLm8ebhR Yaru8i1dXmPSnrm16ISBtbhA3gx1qjFJqEEhHEgeF5HorTEk2OCHeE4LtOU62nP5 83x9asybIVtsR1zN33Riw5V7rPdu1ke6jLwG97wm6J+cphYm/iUI8+SQPARBEXFc grzegul5AYWv9FcqwyFonzklAFhKyAZHioEEWEJRcNc38D9dQfeDU/XgvC0i3jRP I32mPcWRMySdTa4Y5YpFAf5OPHknIVRB -----END CERTIFICATE-----Generated at Sat Apr 26 05:21:38 2025 by rpki-client