$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: JOfOro+e3Kfxbdt5HsLj2EJ1kesGEHCSxqaIetjev9A= Subject key identifier: 17:51:19:0B:FC:AF:7D:B6:8C:86:9F:02:63:B2:F6:F5:37:F2:27:3C Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: 91 Signing time: Fri 25 Apr 2025 05:26:13 +0000 Manifest this update: Fri 25 Apr 2025 05:26:12 +0000 Manifest next update: Fri 02 May 2025 05:26:12 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: lSFihYjHjDyJpN/pQA9uvq8PmFmqe1XsH+DGDveYPsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Apr 25 05:26:12 2025 GMT Not After : May 2 05:26:12 2025 GMT Subject: CN=680b1cf5-d56f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a3:67:4f:c2:5c:70:6c:87:d1:44:95:73:9f: b8:bc:fd:cd:d4:35:de:c6:1f:4c:19:77:6d:28:2c: ae:7f:44:12:60:b0:f6:16:c7:ae:8e:ab:c4:41:dc: 4c:1a:2c:f7:f7:9d:70:5c:b8:84:9e:16:9a:6e:85: 2d:46:33:8f:f7:ea:ab:a2:45:f3:28:d8:7c:bf:10: ab:63:51:8f:bd:ba:c2:2e:f6:b9:4d:b3:86:4c:82: d2:42:e1:21:f4:48:2d:79:03:7e:51:19:5e:2e:01: 0a:30:f2:53:8e:db:86:9e:91:d5:26:f7:b6:b8:d2: 40:60:16:2f:8d:54:37:88:f4:d8:01:eb:ea:04:b1: c8:1a:ab:5a:a3:d9:cd:b0:10:75:bf:78:f7:c7:26: e1:26:77:81:18:3b:6a:30:d1:71:ec:e9:21:ee:90: 1c:11:ff:2b:6c:2b:5d:3a:ad:75:e1:da:78:ec:da: 7e:59:78:53:31:c3:9f:f7:7f:79:19:01:5b:21:fb: 1e:c0:12:88:9d:da:41:49:bf:a4:26:16:32:5f:a5: 61:76:1a:c7:fd:b0:17:d5:f5:54:c6:32:75:56:3d: e7:3b:80:dd:89:15:3d:dc:0b:75:05:00:75:cc:e2: 4e:be:82:0d:fe:98:6c:96:5d:4f:f7:fd:88:2c:f6: b5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:51:19:0B:FC:AF:7D:B6:8C:86:9F:02:63:B2:F6:F5:37:F2:27:3C X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:1b:b3:b2:f1:e8:0f:7e:c7:af:8e:81:a7:02:ab:0e:8a:7f: 9c:24:34:0f:97:88:3d:95:3a:53:6c:5f:7c:82:df:16:27:db: 72:8d:01:ba:d2:4e:1a:f1:fe:1c:eb:01:85:fb:38:d4:8c:97: 4d:0d:e3:0e:73:21:0f:76:ac:4f:a4:ef:55:4c:f0:ab:1c:4f: 62:f2:52:20:6c:dc:76:48:40:99:f9:29:57:84:0b:57:58:5b: e6:fd:b9:9a:e7:18:a0:8c:e9:40:82:3e:71:0c:67:cf:cb:c2: 2d:82:ba:23:c4:8d:a1:37:b2:99:2f:29:4b:a3:e9:06:5b:0a: 8b:e9:46:cd:c5:78:1e:88:f7:f0:fb:52:f4:a7:da:77:c5:5a: 0c:ef:a5:1f:4f:a3:c6:a7:70:99:41:0e:46:9c:8c:e5:95:45: 44:f3:fb:13:ff:59:0b:5e:80:c4:a9:c7:55:eb:c0:07:fe:01: f8:18:ec:76:78:af:87:ff:9f:44:ce:3d:79:1a:7a:38:2d:eb: 83:f7:bc:e9:f6:4e:60:1e:da:56:34:7b:80:2b:d9:f8:ed:75: 7e:a0:0d:80:66:96:dc:0d:d9:8a:a9:af:a2:61:ed:b2:ef:41: 81:2a:25:c9:6d:e5:77:ff:13:04:3b:3f:05:9b:5c:0f:92:71: 6b:7e:75:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUwNDI1MDUyNjEyWhcNMjUwNTAyMDUyNjEyWjAYMRYwFAYD VQQDEw02ODBiMWNmNS1kNTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qNnT8JccGyH0USVc5+4vP3N1DXexh9MGXdtKCyuf0QSYLD2FseujqvEQdxM Giz3951wXLiEnhaaboUtRjOP9+qrokXzKNh8vxCrY1GPvbrCLva5TbOGTILSQuEh 9EgteQN+URleLgEKMPJTjtuGnpHVJve2uNJAYBYvjVQ3iPTYAevqBLHIGqtao9nN sBB1v3j3xybhJneBGDtqMNFx7Okh7pAcEf8rbCtdOq114dp47Np+WXhTMcOf9395 GQFbIfsewBKIndpBSb+kJhYyX6VhdhrH/bAX1fVUxjJ1Vj3nO4DdiRU93At1BQB1 zOJOvoIN/phsll1P9/2ILPa1awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdRGQv8 r322jIafAmOy9vU38ic8MB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0G7Oy8egPfsevjoGnAqsOin+cJDQPl4g9lTpTbF98gt8WJ9tyjQG6 0k4a8f4c6wGF+zjUjJdNDeMOcyEPdqxPpO9VTPCrHE9i8lIgbNx2SECZ+SlXhAtX WFvm/bma5xigjOlAgj5xDGfPy8ItgrojxI2hN7KZLylLo+kGWwqL6UbNxXgeiPfw +1L0p9p3xVoM76UfT6PGp3CZQQ5GnIzllUVE8/sT/1kLXoDEqcdV68AH/gH4GOx2 eK+H/59Ezj15Gno4LeuD97zp9k5gHtpWNHuAK9n47XV+oA2AZpbcDdmKqa+iYe2y 70GBKiXJbeV3/xMEOz8Fm1wPknFrfnVC -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:50 2025 by rpki-client