$ rpki-client -vvf rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft File: Hte4fPVriwDuFD5GlnhQOBTl-lM.mft (raw, json) Hash identifier: LJGdrulcmBnu9OFsgngzu/GLq+xorz2zn6twI06dyjI= Subject key identifier: 95:A6:64:C5:A5:A9:06:15:70:23:A8:70:0E:31:C4:7E:49:2C:E9:E6 Authority key identifier: 1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 Certificate issuer: /CN=A914C0F5/serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft Manifest number: 05C2 Signing time: Thu 24 Apr 2025 22:54:03 +0000 Manifest this update: Thu 24 Apr 2025 22:54:02 +0000 Manifest next update: Thu 01 May 2025 22:54:02 +0000 Files and hashes: 1: Hte4fPVriwDuFD5GlnhQOBTl-lM.crl (hash: GnQZtqTMQ6hIqIKS4DdaV7MxgJqrt76k4LtT24d5mbU=) 2: 694F9F9CBE2811EBBB48FF52C4F9AE02.roa (hash: fb7qHh5ZQWTTd8VnRA4KyHFCOrkRy8TphWCCGB0gByk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:54:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C0F5, serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Validity Not Before: Apr 24 22:54:02 2025 GMT Not After : May 1 22:54:02 2025 GMT Subject: CN=680ac10a-1594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:38:34:c2:18:e1:36:e0:a7:aa:e4:b6:2f:1b: 0d:d2:bc:cd:b7:03:98:ba:0b:03:13:ea:73:83:31: 08:36:70:5a:be:cd:5a:03:82:1c:68:10:14:6a:17: e3:bf:a0:e2:8d:53:22:d8:49:c3:9d:b1:f1:70:4c: 17:4c:be:f7:43:ab:d7:2d:18:e1:96:b2:85:90:d3: 47:06:8e:31:c8:84:68:0a:14:ea:f6:b0:d8:5f:0f: 1a:a8:5e:4d:f1:25:65:9c:71:2e:ee:15:03:c6:54: 86:be:01:1e:7c:08:e2:6d:f2:ae:44:29:fa:b8:52: 8d:3c:07:1e:43:70:50:ef:74:48:ca:e5:73:f2:b1: 3c:23:8d:5a:58:6e:cb:d6:b7:c8:15:ee:85:91:ef: 2d:07:97:26:10:09:39:94:69:ba:13:bd:32:8b:92: 05:02:13:ef:b5:56:dc:63:fa:0e:0d:85:51:98:2a: 95:e1:bf:26:81:3a:5c:b7:c6:fd:19:f6:7c:72:23: a7:28:63:aa:ab:ee:e5:14:c7:e9:6b:ab:60:19:3a: 55:2d:5e:a9:3c:33:b0:37:c1:74:50:bc:18:45:bf: 04:27:cc:f9:44:d3:b1:12:50:02:31:65:4d:01:ba: bd:b0:9f:f5:64:a6:38:01:b3:35:e7:85:93:6e:32: d7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A6:64:C5:A5:A9:06:15:70:23:A8:70:0E:31:C4:7E:49:2C:E9:E6 X509v3 Authority Key Identifier: keyid:1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:90:77:07:94:1c:99:ab:8d:df:20:71:cd:41:57:59:73:6c: 33:03:84:85:1d:b2:dd:98:f6:b3:aa:73:6b:7c:1f:ea:45:48: 9d:ef:a9:cb:b3:97:d7:97:87:d7:69:bd:3d:5f:53:ed:ac:88: 45:ea:de:3b:0c:bf:1d:e1:48:15:c2:52:45:e8:a2:c0:8f:5e: 10:8a:8b:fc:77:e2:28:a5:c2:9d:55:2d:fb:e0:53:7d:dd:a3: 43:e0:f9:e6:61:05:f6:b1:54:af:de:97:e9:74:3f:1c:2f:bb: 04:f5:f6:3f:7b:07:38:7b:dc:9d:7d:3f:b1:40:52:3a:4a:d1: 13:36:75:1b:21:29:68:f6:81:ea:35:ff:1b:3c:67:ac:cc:a8: 2f:d1:3a:01:74:72:36:25:6b:db:60:20:32:1b:b5:c1:65:3b: 0f:11:4f:f3:a4:e1:b5:01:0f:54:fe:8b:18:03:7c:12:6e:31: f7:38:93:8d:c6:cf:6d:8b:2d:66:68:b6:8a:2b:65:53:82:f2: b8:43:79:34:12:d2:0f:d3:79:63:93:cb:24:ea:4c:2c:d2:54: 3e:a4:94:af:c8:88:30:a7:d3:7a:0d:ed:d3:81:29:1e:31:24: b1:f2:9c:e2:da:17:81:38:ed:be:07:34:ae:84:73:e5:3f:0b: e0:c4:a2:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwRjUxMTAvBgNVBAUTKDFFRDdCODdDRjU2QjhCMDBFRTE0M0U0Njk2Nzg1MDM4 MTRFNUZBNTMwHhcNMjUwNDI0MjI1NDAyWhcNMjUwNTAxMjI1NDAyWjAYMRYwFAYD VQQDEw02ODBhYzEwYS0xNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jg0whjhNuCnquS2LxsN0rzNtwOYugsDE+pzgzEINnBavs1aA4IcaBAUahfj v6DijVMi2EnDnbHxcEwXTL73Q6vXLRjhlrKFkNNHBo4xyIRoChTq9rDYXw8aqF5N 8SVlnHEu7hUDxlSGvgEefAjibfKuRCn6uFKNPAceQ3BQ73RIyuVz8rE8I41aWG7L 1rfIFe6Fke8tB5cmEAk5lGm6E70yi5IFAhPvtVbcY/oODYVRmCqV4b8mgTpct8b9 GfZ8ciOnKGOqq+7lFMfpa6tgGTpVLV6pPDOwN8F0ULwYRb8EJ8z5RNOxElACMWVN Abq9sJ/1ZKY4AbM154WTbjLXMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWmZMWl qQYVcCOocA4xxH5JLOnmMB8GA1UdIwQYMBaAFB7XuHz1a4sA7hQ+RpZ4UDgU5fpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzBGNS9ERjAxM0EzMkJF MjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3RHVGRDVHbG5oUU9CVGwt bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZTRmUFZyaXdEdUZENUdsbmhRT0JUbC1sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzBGNS9ERjAxM0EzMkJFMjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3 RHVGRDVHbG5oUU9CVGwtbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATkHcHlByZq43fIHHNQVdZc2wzA4SFHbLdmPazqnNrfB/qRUid76nL s5fXl4fXab09X1PtrIhF6t47DL8d4UgVwlJF6KLAj14Qiov8d+IopcKdVS374FN9 3aND4PnmYQX2sVSv3pfpdD8cL7sE9fY/ewc4e9ydfT+xQFI6StETNnUbISlo9oHq Nf8bPGeszKgv0ToBdHI2JWvbYCAyG7XBZTsPEU/zpOG1AQ9U/osYA3wSbjH3OJON xs9tiy1maLaKK2VTgvK4Q3k0EtIP03ljk8sk6kws0lQ+pJSvyIgwp9N6De3TgSke MSSx8pzi2heBOO2+BzSuhHPlPwvgxKI2 -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:27 2025 by rpki-client