$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: JlR+tFR92lzVExlrq22pTmWy5GpdYsaunezQPyfexz8= Subject key identifier: C7:53:E9:08:1F:02:44:17:DC:58:A6:1E:CE:DD:46:EC:4C:4C:B3:32 Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 1670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 1666 Signing time: Thu 24 Apr 2025 16:43:16 +0000 Manifest this update: Thu 24 Apr 2025 16:43:15 +0000 Manifest next update: Thu 01 May 2025 16:43:15 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: DwjBYlkFpevJOAi74T/1MdslBNFVUETOw53G1W2zquk=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: l/QXhkP0PiImWOQFu3VwXh2hTS7h1F0aUkdMN0JWiZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5744 (0x1670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Apr 24 16:43:15 2025 GMT Not After : May 1 16:43:15 2025 GMT Subject: CN=680a6a23-5a69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:62:b7:10:bb:64:54:99:43:a8:9c:15:f9: 7e:d1:7f:3e:07:97:fc:4c:2a:c8:16:27:01:28:55: 11:92:ca:3f:4a:0f:39:a6:47:94:16:46:2e:65:b5: 26:29:52:cb:e0:19:37:d5:b8:28:a6:a8:69:bc:76: fb:5f:db:a3:da:fc:2d:f5:94:d3:29:43:00:2d:a2: 22:ed:9c:32:c6:26:50:ac:84:0b:1e:ca:57:19:1f: f3:df:ee:6d:6f:82:0f:e2:65:86:85:c9:17:4e:8f: 57:c0:13:67:4c:68:9d:c4:56:dc:e3:12:32:97:e9: 1c:d6:b4:d2:9d:19:8d:39:a1:68:ee:19:e7:61:3b: 11:b4:7a:8c:82:15:8e:cc:39:7a:39:96:6b:60:46: d7:b3:93:86:7b:7d:88:17:f8:1a:61:2c:3e:69:f3: d7:28:c5:c8:79:a5:16:f4:2d:9a:fb:c6:b0:72:65: 78:59:38:b2:b8:d1:e5:27:87:33:3b:6b:09:76:dc: 13:eb:6e:79:37:92:43:60:f2:ff:8d:d3:c1:25:96: b4:ee:e5:38:c2:31:24:b3:94:5f:33:db:24:75:cf: 9e:fe:48:f7:72:fd:30:f3:9b:f7:4f:f9:2d:91:ae: ae:3d:f3:90:71:05:55:73:7c:bf:20:55:e7:ea:23: a6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:53:E9:08:1F:02:44:17:DC:58:A6:1E:CE:DD:46:EC:4C:4C:B3:32 X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:c7:c3:a9:91:06:33:33:0a:1e:ea:b6:55:a5:c4:70:a4:6d: cd:bb:0f:b8:d7:b7:fc:ab:90:b4:df:87:20:c7:f4:d4:d4:fc: 21:3a:13:95:3c:d5:3b:c6:17:5c:c9:66:0f:3b:5b:c9:79:0d: 77:8f:2d:f6:57:3b:19:24:cd:14:0e:3b:7e:9c:bd:07:f5:b7: 22:93:e2:97:24:8e:f1:74:8c:7b:63:81:2f:36:4d:5e:6c:de: c5:33:bb:b5:09:50:59:ca:25:ea:2b:f2:b2:ad:e0:7c:61:7d: 69:a9:00:88:dc:c6:7a:97:3c:2b:3d:43:a5:b7:27:f2:f1:7f: 83:98:46:73:19:bd:df:01:bf:09:26:67:d0:cb:e5:cd:0c:1b: c9:f0:3c:a4:1f:92:66:03:8d:9f:7d:20:ed:1b:cc:c4:00:ea: 9a:75:7b:1a:16:78:09:b2:70:54:1e:bd:ee:87:10:cd:87:1c: 68:8c:66:6e:94:ca:7d:d5:38:81:09:1d:e3:2c:9e:4c:31:0d: bc:ae:02:64:ce:fe:bd:46:4f:78:6a:ad:05:3a:e1:3c:55:76: 76:ef:ed:c3:79:6b:7e:f7:81:4a:75:43:3c:be:c0:36:ca:c7: 10:32:c4:ab:72:79:70:96:46:06:de:d2:a1:f5:4c:15:52:dc: d5:fc:f9:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwNDI0MTY0MzE1WhcNMjUwNTAxMTY0MzE1WjAYMRYwFAYD VQQDEw02ODBhNmEyMy01YTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt45itxC7ZFSZQ6icFfl+0X8+B5f8TCrIFicBKFURkso/Sg85pkeUFkYuZbUm KVLL4Bk31bgopqhpvHb7X9uj2vwt9ZTTKUMALaIi7ZwyxiZQrIQLHspXGR/z3+5t b4IP4mWGhckXTo9XwBNnTGidxFbc4xIyl+kc1rTSnRmNOaFo7hnnYTsRtHqMghWO zDl6OZZrYEbXs5OGe32IF/gaYSw+afPXKMXIeaUW9C2a+8awcmV4WTiyuNHlJ4cz O2sJdtwT6255N5JDYPL/jdPBJZa07uU4wjEks5RfM9skdc+e/kj3cv0w85v3T/kt ka6uPfOQcQVVc3y/IFXn6iOm1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdT6Qgf AkQX3FimHs7dRuxMTLMyMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlx8OpkQYzMwoe6rZVpcRwpG3Nuw+417f8q5C034cgx/TU1PwhOhOV PNU7xhdcyWYPO1vJeQ13jy32VzsZJM0UDjt+nL0H9bcik+KXJI7xdIx7Y4EvNk1e bN7FM7u1CVBZyiXqK/KyreB8YX1pqQCI3MZ6lzwrPUOltyfy8X+DmEZzGb3fAb8J JmfQy+XNDBvJ8DykH5JmA42ffSDtG8zEAOqadXsaFngJsnBUHr3uhxDNhxxojGZu lMp91TiBCR3jLJ5MMQ28rgJkzv69Rk94aq0FOuE8VXZ27+3DeWt+94FKdUM8vsA2 yscQMsSrcnlwlkYG3tKh9UwVUtzV/Pnz -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:48 2025 by rpki-client