$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: Mu8bsMhWDdTfGq4BpgtLnXptonaLCIrWaDKHDHd/hYM= Subject key identifier: 8B:FA:8C:09:E6:FB:76:87:68:97:58:87:5D:E2:21:12:E3:6F:84:C5 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: 4F Signing time: Fri 25 Apr 2025 06:20:58 +0000 Manifest this update: Fri 25 Apr 2025 06:20:58 +0000 Manifest next update: Fri 02 May 2025 06:20:58 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: ZEqRGGPBwKS2qukAes4OmVl+9baZWhcqctcBXNtWhJU=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Apr 25 06:20:58 2025 GMT Not After : May 2 06:20:58 2025 GMT Subject: CN=680b29ca-13f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:0d:75:b4:56:fb:57:90:6b:2d:70:d5:03: e6:d4:cd:62:e9:04:68:62:56:6b:21:2e:41:df:dd: b3:84:4a:fb:52:de:ae:d5:3c:dd:cd:97:c5:20:5f: a0:93:43:65:13:0d:a4:d2:ad:9f:dd:59:1d:26:12: e2:b1:21:20:25:58:8d:8d:0a:65:aa:59:74:29:64: 3b:91:ff:41:b6:de:28:06:b9:a3:2c:9a:7f:3f:27: c1:04:44:d7:54:9b:f3:36:f8:dd:65:2d:43:4a:8f: 45:dd:a4:9b:14:00:2a:99:ac:84:a3:7d:58:81:a2: 95:8a:b6:75:4f:88:96:9a:87:0c:37:45:a1:fb:e3: 72:07:66:80:ce:8d:d3:b9:2b:fa:f2:3f:e1:a3:87: 57:97:2f:d4:ef:1e:bf:05:15:2d:04:22:40:41:1d: d9:0f:c1:b4:bb:8f:65:51:45:11:a0:d5:cb:66:c5: 8c:d7:b8:10:89:16:ad:9d:17:a4:5e:2e:3e:47:6f: 1b:8f:cd:55:04:9e:72:d8:c0:40:32:c9:32:33:00: 1a:c2:69:08:8e:9d:de:d4:6b:3c:de:63:9c:6f:9a: a3:20:0d:e8:3f:32:82:49:ff:9d:46:87:ad:7c:32: 6d:ff:78:2d:da:43:27:39:08:75:1e:2e:0a:2e:25: d4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:FA:8C:09:E6:FB:76:87:68:97:58:87:5D:E2:21:12:E3:6F:84:C5 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:79:e2:8f:a7:d1:c0:2f:e2:9f:7f:7d:15:4b:97:46:18:a3: a0:83:22:4c:00:36:05:b5:64:50:d3:c7:b8:59:93:21:43:ad: 01:3f:c9:e0:e3:cb:2f:95:63:0f:ac:f0:54:90:74:13:1e:3b: 8d:e7:2d:9a:f5:2a:63:0e:25:11:89:64:68:e3:e9:69:78:2c: 15:72:4d:5e:35:a2:70:f5:5a:1d:b9:ec:1a:13:48:1e:48:91: 6b:c9:36:e2:25:06:b8:75:f7:1c:50:87:d4:9e:b8:e7:5d:67: 4f:43:4c:72:d7:3a:01:e0:d7:3d:ff:bc:e9:5e:8d:09:c8:b6: f3:10:98:98:16:aa:31:97:d9:99:65:11:7f:95:b1:ac:83:04: 8d:0d:9b:22:ed:46:36:11:90:f5:5f:af:b8:93:57:ff:e1:08: 31:75:d2:a1:7d:90:e6:e8:6c:68:61:bc:fc:ef:3d:5e:dc:ea: a8:54:b6:a3:38:05:cf:86:1f:da:01:25:10:4a:06:07:ba:ba: 61:38:c6:ca:75:33:c2:67:81:60:1f:34:98:26:42:ba:01:4a: 5d:8b:30:6a:b1:99:ad:69:4d:26:2e:90:b6:93:3d:b9:8b:ae: eb:6b:db:e4:19:f1:ec:86:86:6b:21:cf:ad:c3:4d:cf:f1:29: 4f:54:b5:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QzQ4RDExMC8GA1UEBRMoODY0NDRBMzM0OTE1MTIxNEI0RjI3MTFCMkM1REEwQ0I5 OUU1MEYxMzAeFw0yNTA0MjUwNjIwNThaFw0yNTA1MDIwNjIwNThaMBgxFjAUBgNV BAMTDTY4MGIyOWNhLTEzZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1FA11tFb7V5BrLXDVA+bUzWLpBGhiVmshLkHf3bOESvtS3q7VPN3Nl8UgX6CT Q2UTDaTSrZ/dWR0mEuKxISAlWI2NCmWqWXQpZDuR/0G23igGuaMsmn8/J8EERNdU m/M2+N1lLUNKj0XdpJsUACqZrISjfViBopWKtnVPiJaahww3RaH743IHZoDOjdO5 K/ryP+Gjh1eXL9TvHr8FFS0EIkBBHdkPwbS7j2VRRRGg1ctmxYzXuBCJFq2dF6Re Lj5HbxuPzVUEnnLYwEAyyTIzABrCaQiOnd7UazzeY5xvmqMgDeg/MoJJ/51Gh618 Mm3/eC3aQyc5CHUeLgouJdR1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi/qMCeb7 dodol1iHXeIhEuNvhMUwHwYDVR0jBBgwFoAUhkRKM0kVEhS08nEbLF2gy5nlDxMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDNDhELzBDMjE1OEIyQjJD OTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGtSS00wa1ZFaFMwOG5FYkxGMmd5NW5sRHhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVD NDhELzBDMjE1OEIyQjJDOTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhT MDhuRWJMRjJneTVubER4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIV54o+n0cAv4p9/fRVLl0YYo6CDIkwANgW1ZFDTx7hZkyFDrQE/yeDj yy+VYw+s8FSQdBMeO43nLZr1KmMOJRGJZGjj6Wl4LBVyTV41onD1Wh257BoTSB5I kWvJNuIlBrh19xxQh9SeuOddZ09DTHLXOgHg1z3/vOlejQnItvMQmJgWqjGX2Zll EX+VsayDBI0NmyLtRjYRkPVfr7iTV//hCDF10qF9kObobGhhvPzvPV7c6qhUtqM4 Bc+GH9oBJRBKBge6umE4xsp1M8JngWAfNJgmQroBSl2LMGqxma1pTSYukLaTPbmL rutr2+QZ8eyGhmshz63DTc/xKU9UtTY= -----END CERTIFICATE-----Generated at Sat Apr 26 19:43:42 2025 by rpki-client