$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: vhYKMXKz8koqolaFfI6jykT4mA5rF/KDtqnjFXel2yU= Subject key identifier: 39:D1:2A:A2:42:A7:C1:DA:B5:39:B6:8C:EB:02:78:57:B0:E6:1A:B0 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 1D Signing time: Fri 25 Apr 2025 06:52:11 +0000 Manifest this update: Fri 25 Apr 2025 06:52:10 +0000 Manifest next update: Fri 02 May 2025 06:52:10 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: wVTByrWagt7P7jOt7fXRButDbSFfBIE+TpjJSQvW5qs=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Apr 25 06:52:10 2025 GMT Not After : May 2 06:52:10 2025 GMT Subject: CN=680b311b-861e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6c:ba:8c:be:21:b0:2c:d9:d1:6d:b6:9f:d6: 84:11:a3:a9:38:7a:e4:e4:f4:6f:33:3c:37:b6:56: 13:48:fc:5f:d9:d6:79:22:b7:be:d9:82:cf:f1:37: ff:15:d1:c9:fd:81:f9:53:e3:ab:8d:d3:c5:d6:38: cb:55:e0:de:bb:fa:50:9d:c5:f9:e5:39:20:1d:91: 56:98:f1:77:ff:32:6c:ca:d5:4d:27:09:ef:06:9a: 81:dd:f3:f2:af:b0:7b:f6:96:79:ef:8e:07:06:64: 42:55:49:9d:10:b9:4a:ac:e5:d4:09:68:4f:dc:84: 24:50:1a:a8:8e:84:7b:d9:5e:f9:6a:01:22:87:40: fc:0b:8c:1d:e6:3d:8d:0a:2b:b1:cf:1c:3b:39:06: eb:4d:5b:6b:40:3b:56:e0:ce:e8:57:c6:b4:fe:41: 97:aa:59:e1:45:9a:50:e1:cb:24:1c:2a:31:e0:30: 9e:93:ad:16:d9:10:86:59:82:11:ae:5b:db:23:c2: 42:2e:31:0f:09:32:2c:df:82:85:3c:34:c4:38:82: a4:9b:40:ef:e5:d8:19:84:d1:fa:f8:2c:50:85:3c: d3:84:89:8d:bc:f8:d5:4b:73:21:ca:c2:9c:79:0b: 17:27:f6:98:e8:2d:7d:ae:97:5c:05:70:ff:cd:a7: eb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:D1:2A:A2:42:A7:C1:DA:B5:39:B6:8C:EB:02:78:57:B0:E6:1A:B0 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:96:46:8e:d4:fe:54:a1:35:33:ba:f6:f6:f3:0b:57:e3:b6: b2:a7:0f:49:7d:75:ed:57:a6:29:f1:e9:94:43:c3:87:96:b2: c0:38:c1:88:50:7e:8d:b7:3a:58:09:43:51:de:1e:ad:ea:c9: d9:6f:e0:41:ef:fc:dd:51:1d:3a:ef:d2:1b:ff:ff:6b:19:4d: fe:0a:2c:b3:6a:7d:16:59:56:17:dd:c7:8b:aa:d8:72:5b:5a: ca:1c:ab:62:80:d5:dc:a8:e8:93:d1:02:dd:90:fe:fc:5e:17: 10:f1:6a:8f:90:60:16:9c:b6:15:1f:35:80:83:e4:10:f6:28: 78:8f:60:72:d5:70:58:c5:75:3b:34:06:22:f2:e3:26:13:68: ed:61:fb:cd:38:e4:37:0f:47:c0:8f:e1:da:84:c5:39:f5:15: af:db:9c:fc:cf:e0:ef:64:ba:18:12:41:f7:03:a9:34:a7:3c: 66:c7:76:6a:fd:05:23:7d:c2:bb:0d:90:cb:bb:e1:6d:5b:51: 4d:7c:02:2e:59:7f:9e:b6:7c:5d:f2:b7:27:0c:53:7f:2e:f9: f5:b8:e6:0a:6c:38:0c:d7:45:9c:5c:b5:52:35:8e:c5:8c:f1: 36:8e:7f:ea:58:e2:04:27:02:ce:53:6e:7c:9c:7c:1f:98:b5: 63:3c:d6:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA0MjUwNjUyMTBaFw0yNTA1MDIwNjUyMTBaMBgxFjAUBgNV BAMTDTY4MGIzMTFiLTg2MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHbLqMviGwLNnRbbaf1oQRo6k4euTk9G8zPDe2VhNI/F/Z1nkit77Zgs/xN/8V 0cn9gflT46uN08XWOMtV4N67+lCdxfnlOSAdkVaY8Xf/MmzK1U0nCe8GmoHd8/Kv sHv2lnnvjgcGZEJVSZ0QuUqs5dQJaE/chCRQGqiOhHvZXvlqASKHQPwLjB3mPY0K K7HPHDs5ButNW2tAO1bgzuhXxrT+QZeqWeFFmlDhyyQcKjHgMJ6TrRbZEIZZghGu W9sjwkIuMQ8JMizfgoU8NMQ4gqSbQO/l2BmE0fr4LFCFPNOEiY28+NVLcyHKwpx5 Cxcn9pjoLX2ul1wFcP/Np+s3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOdEqokKn wdq1ObaM6wJ4V7DmGrAwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC2WRo7U/lShNTO69vbzC1fjtrKnD0l9de1Xpinx6ZRDw4eWssA4wYhQ fo23OlgJQ1HeHq3qydlv4EHv/N1RHTrv0hv//2sZTf4KLLNqfRZZVhfdx4uq2HJb Wsocq2KA1dyo6JPRAt2Q/vxeFxDxao+QYBacthUfNYCD5BD2KHiPYHLVcFjFdTs0 BiLy4yYTaO1h+8045DcPR8CP4dqExTn1Fa/bnPzP4O9kuhgSQfcDqTSnPGbHdmr9 BSN9wrsNkMu74W1bUU18Ai5Zf562fF3ytycMU38u+fW45gpsOAzXRZxctVI1jsWM 8TaOf+pY4gQnAs5TbnycfB+YtWM81vE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:38 2025 by rpki-client