$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft File: hobJK4fdXdLuKrtA7HPxePYEWjQ.mft (raw, json) Hash identifier: j4OIZrktl9KOseQCW3qNfKs3NTL421AL2z1AcoSCWYg= Subject key identifier: F3:44:B3:7E:3B:A0:97:09:59:88:55:C6:D6:13:A5:49:A8:E8:5D:FF Authority key identifier: 86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 Certificate issuer: /CN=A9165DB1/serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft Manifest number: 0262 Signing time: Fri 25 Apr 2025 01:31:51 +0000 Manifest this update: Fri 25 Apr 2025 01:31:50 +0000 Manifest next update: Fri 02 May 2025 01:31:50 +0000 Files and hashes: 1: hobJK4fdXdLuKrtA7HPxePYEWjQ.crl (hash: bxQkLx5wyquHSFibJqpZgOKUHhE1j1svSHyMJeGjcgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1, serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Validity Not Before: Apr 25 01:31:50 2025 GMT Not After : May 2 01:31:50 2025 GMT Subject: CN=680ae607-b8f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c3:9b:7e:e6:0d:a1:89:e9:a5:bf:da:7e:39: 49:4e:9c:8b:b7:7b:b1:f5:94:b2:9c:2a:53:59:de: ce:5b:3b:1e:3a:df:72:dc:77:0c:1c:7e:21:1d:7b: 39:d9:8d:1c:4a:11:31:51:da:14:38:fb:8d:54:24: bf:cc:0a:28:21:b3:4b:4b:40:0c:2a:5f:76:ff:c9: 74:d6:08:f3:86:7e:fb:86:39:de:0c:ad:81:67:e8: 0b:5d:7e:c9:54:f1:ed:cd:0b:2e:4f:32:ae:8d:5d: 1e:00:7c:42:47:87:c6:64:e1:44:31:d5:c0:84:c8: 0d:69:e8:e1:de:b9:11:f2:85:70:b1:29:56:f4:86: e5:b5:fa:69:24:9c:42:4b:22:71:16:16:57:fa:df: 6f:93:8a:6e:59:5e:44:e9:ed:a2:77:a9:fa:40:fd: 5a:69:11:24:e9:26:c2:a7:38:8a:ab:cc:47:b9:a4: 57:fb:16:21:d3:6c:6b:19:7d:3d:83:fd:cd:4a:12: 2e:60:c8:13:d5:4b:bb:60:f1:50:45:4f:22:94:0b: e5:82:0d:87:ea:d8:c5:a9:32:96:18:a3:dd:e2:2d: b5:ae:2c:ef:bc:85:40:54:55:76:26:6e:24:94:f9: 92:2e:61:9b:5f:9e:7f:77:3d:41:aa:81:c5:9a:9b: 21:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:44:B3:7E:3B:A0:97:09:59:88:55:C6:D6:13:A5:49:A8:E8:5D:FF X509v3 Authority Key Identifier: keyid:86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b6:d8:a6:8e:47:0e:f8:46:a9:2d:33:03:b2:40:c7:2a:13: f0:d5:44:78:39:75:54:67:5f:0d:af:3b:ae:72:93:98:88:1d: 20:d0:ed:ab:24:32:3b:76:63:3b:e7:1d:6d:34:0d:99:94:62: 09:6d:40:9f:3f:98:b1:dd:16:30:2a:11:ee:82:e4:a2:1a:d6: 29:ab:ae:9a:64:6e:94:bb:46:bd:f6:f3:6a:04:28:a0:be:b5: d9:73:1b:f8:47:5b:52:be:1a:91:fd:c0:3c:db:24:3a:68:ea: 70:29:5e:fd:1c:ab:ba:46:dd:fc:d3:01:2b:9c:93:af:58:a2: fc:f6:19:29:5c:df:db:68:37:1a:2e:a3:ea:c5:a0:e7:0b:ae: 9b:98:69:ac:85:cc:00:47:0c:db:76:da:c4:d7:1c:18:ca:dc: 79:c8:f2:6d:6f:59:33:cd:0a:40:b8:28:71:06:01:6c:c4:5b: b1:9c:42:f7:26:46:fa:68:7e:a2:a5:9b:0e:59:9f:1c:3b:b9: 44:49:c2:d8:d1:07:29:48:5a:c2:23:6d:9c:68:17:ac:3e:61: 68:aa:14:e4:b6:37:4a:07:26:5e:91:1e:41:c4:c8:b4:96:8b: fd:86:a2:56:a5:db:fa:70:b5:6f:91:36:d3:e6:4f:a5:c8:f4: e1:65:02:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDg2ODZDOTJCODdERDVERDJFRTJBQkI0MEVDNzNGMTc4 RjYwNDVBMzQwHhcNMjUwNDI1MDEzMTUwWhcNMjUwNTAyMDEzMTUwWjAYMRYwFAYD VQQDEw02ODBhZTYwNy1iOGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cObfuYNoYnppb/afjlJTpyLt3ux9ZSynCpTWd7OWzseOt9y3HcMHH4hHXs5 2Y0cShExUdoUOPuNVCS/zAooIbNLS0AMKl92/8l01gjzhn77hjneDK2BZ+gLXX7J VPHtzQsuTzKujV0eAHxCR4fGZOFEMdXAhMgNaejh3rkR8oVwsSlW9IbltfppJJxC SyJxFhZX+t9vk4puWV5E6e2id6n6QP1aaREk6SbCpziKq8xHuaRX+xYh02xrGX09 g/3NShIuYMgT1Uu7YPFQRU8ilAvlgg2H6tjFqTKWGKPd4i21rizvvIVAVFV2Jm4k lPmSLmGbX55/dz1BqoHFmpshEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNEs347 oJcJWYhVxtYTpUmo6F3/MB8GA1UdIwQYMBaAFIaGySuH3V3S7iq7QOxz8Xj2BFo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81QTQ5NkY4ODBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhkTHVLcnRBN0hQeGVQWUVX alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvYkpLNGZkWGRMdUtydEE3SFB4ZVBZRVdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NURCMS81QTQ5NkY4ODBFMTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhk THVLcnRBN0hQeGVQWUVXalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4ttimjkcO+EapLTMDskDHKhPw1UR4OXVUZ18NrzuucpOYiB0g0O2r JDI7dmM75x1tNA2ZlGIJbUCfP5ix3RYwKhHuguSiGtYpq66aZG6Uu0a99vNqBCig vrXZcxv4R1tSvhqR/cA82yQ6aOpwKV79HKu6Rt380wErnJOvWKL89hkpXN/baDca LqPqxaDnC66bmGmshcwARwzbdtrE1xwYytx5yPJtb1kzzQpAuChxBgFsxFuxnEL3 Jkb6aH6ipZsOWZ8cO7lEScLY0QcpSFrCI22caBesPmFoqhTktjdKByZekR5BxMi0 lov9hqJWpdv6cLVvkTbT5k+lyPThZQJc -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:04 2025 by rpki-client