$ rpki-client -vvf rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft File: HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft (raw, json) Hash identifier: 8W+LlVAfi1XL/l1EcqMVFOnkG/c1L5S2MN8nkVCMawc= Subject key identifier: 4B:4B:EC:BD:49:46:2A:9D:65:3C:CA:83:89:72:34:4B:26:B9:B9:E3 Authority key identifier: 1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A Certificate issuer: /CN=A91707D0/serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft Manifest number: 18 Signing time: Fri 25 Apr 2025 06:58:04 +0000 Manifest this update: Fri 25 Apr 2025 06:58:03 +0000 Manifest next update: Fri 02 May 2025 06:58:03 +0000 Files and hashes: 1: HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl (hash: bD35X1ipJqf9k7OjJdVdUQgCiEqlB+9RXgaYkqqtB98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91707D0, serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Validity Not Before: Apr 25 06:58:03 2025 GMT Not After : May 2 06:58:03 2025 GMT Subject: CN=680b327c-1c92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:38:53:24:8b:f0:b0:16:7e:99:4e:60:6e:fd: bb:d7:12:c1:81:11:27:7f:f0:a5:be:b4:2f:14:bf: 6f:a8:4a:f6:38:a5:74:e7:df:3b:e4:7a:45:80:0a: d2:3f:c5:9a:7a:8c:3e:74:91:bc:f0:77:ec:a4:c4: 28:eb:9f:54:dd:40:3c:1d:5f:e0:bd:68:f9:46:ac: 15:8f:af:6e:95:e3:94:d5:4e:76:70:2c:9b:db:79: bd:80:29:dd:13:b3:72:65:c0:1e:ea:bd:00:fb:33: 72:90:9a:b5:a3:db:b1:90:7e:5b:b2:27:ab:cc:cf: 5e:0e:9c:ca:1e:05:66:08:f9:fd:cd:43:c7:e1:5e: 23:6f:94:40:1b:d7:c6:d5:8c:9b:58:79:59:25:86: 9f:c0:7e:a5:46:4d:2a:17:76:8e:d4:51:95:70:4b: b0:23:51:a9:d2:48:81:e0:10:53:0a:e0:3b:07:da: 48:78:3d:81:f0:f8:15:c2:67:5b:ae:e5:26:20:9a: 37:98:34:fb:95:8f:fb:62:e4:8b:85:07:e1:d8:93: 97:76:74:0c:09:5b:a6:3f:64:91:62:2b:1c:ea:89: 37:89:3b:ef:9a:2c:3d:86:7d:d6:33:be:68:4d:7f: b2:c1:39:d3:bb:03:85:4d:23:06:e8:4e:55:54:79: fd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4B:EC:BD:49:46:2A:9D:65:3C:CA:83:89:72:34:4B:26:B9:B9:E3 X509v3 Authority Key Identifier: keyid:1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:7c:b0:27:ac:96:90:6c:7d:75:61:3b:c1:07:e2:39:dc:33: c4:d7:e7:0b:30:d8:fd:10:d5:35:5f:db:f2:ff:46:67:90:fb: d2:eb:dc:1b:8c:fe:fe:4c:4d:d3:36:a6:a2:cc:9e:8f:47:fd: ac:ae:2a:bf:c0:02:03:29:69:3e:e2:1a:25:d4:46:a5:38:22: 1b:ef:22:10:2f:30:e8:cc:7c:c4:f8:2d:3e:c7:78:ce:8c:e6: bb:c2:48:9b:79:86:e2:13:7a:19:87:ba:b8:d4:81:33:27:95: d9:10:11:ef:38:78:5d:2b:9d:5f:7b:56:23:d5:ce:35:b6:2f: c4:a4:c0:81:bb:b8:8c:cb:13:0f:43:97:5c:01:8a:ed:da:59: 66:d3:ba:79:8f:14:f6:03:ba:42:ff:95:d1:1b:5d:bb:53:ea: 00:65:71:14:b3:fd:99:c0:fa:46:fc:58:f8:29:01:00:a5:cc: b8:6c:78:7d:cc:ec:8b:e3:1a:e4:72:8e:7d:c4:7d:41:14:89: f3:62:d8:6c:ee:06:a1:48:03:58:df:fc:8b:d5:a7:89:b5:67: 19:6f:22:2f:e1:a2:0e:96:09:15:f7:55:32:28:87:12:91:6d: 77:93:1f:3b:6b:21:11:be:a1:ff:65:fa:59:af:ae:15:7f:e9: 5e:dc:5e:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDdEMDExMC8GA1UEBRMoMUQ2MzQxNkM0NzNCMEMwOTEyQkRBQjM3MTAyNzAxMDk1 RkM2QzM1QTAeFw0yNTA0MjUwNjU4MDNaFw0yNTA1MDIwNjU4MDNaMBgxFjAUBgNV BAMTDTY4MGIzMjdjLTFjOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuOFMki/CwFn6ZTmBu/bvXEsGBESd/8KW+tC8Uv2+oSvY4pXTn3zvkekWACtI/ xZp6jD50kbzwd+ykxCjrn1TdQDwdX+C9aPlGrBWPr26V45TVTnZwLJvbeb2AKd0T s3JlwB7qvQD7M3KQmrWj27GQfluyJ6vMz14OnMoeBWYI+f3NQ8fhXiNvlEAb18bV jJtYeVklhp/AfqVGTSoXdo7UUZVwS7AjUanSSIHgEFMK4DsH2kh4PYHw+BXCZ1uu 5SYgmjeYNPuVj/ti5IuFB+HYk5d2dAwJW6Y/ZJFiKxzqiTeJO++aLD2GfdYzvmhN f7LBOdO7A4VNIwboTlVUef0NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS0vsvUlG Kp1lPMqDiXI0Sya5ueMwHwYDVR0jBBgwFoAUHWNBbEc7DAkSvas3ECcBCV/Gw1ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwN0QwLzY1QjY4RTk2MDA3 MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFrU3ZhczNFQ2NCQ1ZfR3cx by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFdOQmJFYzdEQWtTdmFzM0VDY0JDVl9HdzFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw N0QwLzY1QjY4RTk2MDA3MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFr U3ZhczNFQ2NCQ1ZfR3cxby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAId8sCeslpBsfXVhO8EH4jncM8TX5wsw2P0Q1TVf2/L/RmeQ+9Lr3BuM /v5MTdM2pqLMno9H/ayuKr/AAgMpaT7iGiXURqU4IhvvIhAvMOjMfMT4LT7HeM6M 5rvCSJt5huITehmHurjUgTMnldkQEe84eF0rnV97ViPVzjW2L8SkwIG7uIzLEw9D l1wBiu3aWWbTunmPFPYDukL/ldEbXbtT6gBlcRSz/ZnA+kb8WPgpAQClzLhseH3M 7IvjGuRyjn3EfUEUifNi2GzuBqFIA1jf/IvVp4m1ZxlvIi/hog6WCRX3VTIohxKR bXeTHztrIRG+of9l+lmvrhV/6V7cXuc= -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:00 2025 by rpki-client