$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: ztTgJkk7MSaUuAskPG0KEfXkXZ3EEy51ZP7gdaoNQ5g= Subject key identifier: E7:22:71:9B:A0:BA:28:BA:8B:0E:E9:F4:7E:68:0E:C6:CF:B4:E3:94 Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 17C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 17C5 Signing time: Thu 24 Apr 2025 16:34:56 +0000 Manifest this update: Thu 24 Apr 2025 16:34:56 +0000 Manifest next update: Thu 01 May 2025 16:34:56 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: V/IhNUGuehcsgzjfu9lq1N/kNeFomGdFyeC7Ql3a+Rg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6085 (0x17c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3, serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Apr 24 16:34:56 2025 GMT Not After : May 1 16:34:56 2025 GMT Subject: CN=680a6830-d57a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:08:b4:34:93:0c:7c:75:2b:77:52:82:89:72: 2c:99:83:76:d9:00:24:84:13:ec:00:0b:d1:81:1b: 8d:75:97:74:16:d2:1d:4f:ad:08:3a:76:a8:89:b3: c3:50:f0:5d:9c:24:d2:e9:3c:e0:e6:35:e4:db:0f: 26:3d:ca:7b:28:a8:70:ad:93:2c:89:18:89:ab:bc: b1:7f:ca:83:9e:ae:7d:1f:e2:fa:d1:d9:98:3c:45: 68:c2:c4:b3:75:50:8c:3e:d7:cd:a3:cc:ab:67:43: 83:de:e0:2b:94:dc:3c:8e:9c:d2:a2:96:64:95:ba: 7b:c9:37:86:ba:23:4d:52:43:dc:6c:8b:c2:c7:d3: 8f:5f:91:df:17:b6:4d:d4:36:e1:55:4d:4a:ac:92: 82:2a:c2:03:d6:6e:89:7e:2d:17:71:63:16:a3:ff: 36:c7:36:b0:0a:ff:52:51:10:70:5c:2f:85:5a:15: c1:0e:67:d8:00:43:50:e7:47:f5:e7:73:2a:9f:be: 03:f8:60:5b:1a:49:80:10:34:8d:8e:8e:5c:63:e1: 52:95:43:95:1a:bf:31:c7:d9:d3:40:e8:48:68:73: 82:c2:09:f7:7e:5c:1a:99:83:ed:46:a0:bf:51:2c: 59:e7:1f:92:11:85:ad:f7:ec:4e:77:81:b3:64:56: 57:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:22:71:9B:A0:BA:28:BA:8B:0E:E9:F4:7E:68:0E:C6:CF:B4:E3:94 X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:5b:2d:72:bf:5c:d4:90:48:15:f9:c8:7e:13:b4:79:4c:65: 2f:bb:0b:36:2d:ad:fb:95:e7:19:25:43:e9:d2:24:77:c4:cc: 06:4a:a0:62:dd:48:fa:75:58:e3:28:6b:4c:a0:cc:28:0c:9a: 30:4f:56:d8:cd:03:e4:b6:f2:00:2f:c7:f1:f0:b6:97:32:39: 57:3a:03:e9:95:fd:31:65:26:51:52:99:e3:32:26:c1:eb:f0: d0:d6:19:b2:fb:c2:50:4f:be:2b:93:0b:b6:46:5a:e1:53:22: 19:d2:c1:af:a8:b0:8a:68:92:3b:98:87:60:7e:83:36:86:83: 16:5b:b9:75:e1:29:e5:2d:d0:4d:15:94:1e:9a:0a:fc:21:8a: ce:a7:7d:64:e1:da:54:6e:5d:2e:22:27:03:04:7d:2c:6b:f2: e5:20:be:40:72:94:99:3d:6f:4f:42:c6:0f:8e:4e:c3:56:6f: 9b:97:f0:64:b6:d7:31:b1:12:da:9b:70:52:ba:99:23:e9:1d: 36:98:d1:83:e3:51:72:97:03:93:a8:1d:95:dc:a8:7b:bd:3c: 50:6f:d1:33:ba:d3:45:06:c6:c4:90:98:eb:12:43:42:fd:87: 84:b4:1f:0f:77:3e:a6:24:8d:b4:51:9c:10:1b:f4:f4:09:99: 23:b1:a6:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjUwNDI0MTYzNDU2WhcNMjUwNTAxMTYzNDU2WjAYMRYwFAYD VQQDEw02ODBhNjgzMC1kNTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wi0NJMMfHUrd1KCiXIsmYN22QAkhBPsAAvRgRuNdZd0FtIdT60IOnaoibPD UPBdnCTS6Tzg5jXk2w8mPcp7KKhwrZMsiRiJq7yxf8qDnq59H+L60dmYPEVowsSz dVCMPtfNo8yrZ0OD3uArlNw8jpzSopZklbp7yTeGuiNNUkPcbIvCx9OPX5HfF7ZN 1DbhVU1KrJKCKsID1m6Jfi0XcWMWo/82xzawCv9SURBwXC+FWhXBDmfYAENQ50f1 53Mqn74D+GBbGkmAEDSNjo5cY+FSlUOVGr8xx9nTQOhIaHOCwgn3flwamYPtRqC/ USxZ5x+SEYWt9+xOd4GzZFZX5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcicZug uii6iw7p9H5oDsbPtOOUMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIWy1yv1zUkEgV+ch+E7R5TGUvuws2La37lecZJUPp0iR3xMwGSqBi 3Uj6dVjjKGtMoMwoDJowT1bYzQPktvIAL8fx8LaXMjlXOgPplf0xZSZRUpnjMibB 6/DQ1hmy+8JQT74rkwu2RlrhUyIZ0sGvqLCKaJI7mIdgfoM2hoMWW7l14SnlLdBN FZQemgr8IYrOp31k4dpUbl0uIicDBH0sa/LlIL5AcpSZPW9PQsYPjk7DVm+bl/Bk ttcxsRLam3BSupkj6R02mNGD41FylwOTqB2V3Kh7vTxQb9EzutNFBsbEkJjrEkNC /YeEtB8Pdz6mJI20UZwQG/T0CZkjsaYQ -----END CERTIFICATE-----Generated at Sat Apr 26 05:54:58 2025 by rpki-client