$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft File: hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft (raw, json) Hash identifier: W+C4b/8xp7riXkb+dPBD1L311NL2hyVDR53IGBR2k08= Subject key identifier: 64:03:19:1F:04:4E:13:21:D7:AB:90:A8:6B:09:B9:48:7A:6E:3B:22 Authority key identifier: 85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 Certificate issuer: /CN=A9196DCA/serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft Manifest number: 3A Signing time: Fri 25 Apr 2025 06:29:49 +0000 Manifest this update: Fri 25 Apr 2025 06:29:48 +0000 Manifest next update: Fri 02 May 2025 06:29:48 +0000 Files and hashes: 1: hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl (hash: LO8dBAgVCr2EgjQO3nuxaYIV3/ia3yUs4tk+6CVP7Y4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DCA, serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Validity Not Before: Apr 25 06:29:48 2025 GMT Not After : May 2 06:29:48 2025 GMT Subject: CN=680b2bdd-ef64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:ee:4a:c5:ee:9e:9a:40:3a:a2:a3:35:8c: 8c:05:3c:87:4d:f7:15:3e:05:a0:f9:31:dc:53:b6: 2f:b6:8e:8f:01:fa:3e:d4:8a:0f:8d:d6:30:92:23: 15:99:99:fb:e6:cb:29:c2:ca:0e:94:86:de:d9:b9: c2:f9:d0:cf:ee:34:c3:23:b8:ad:33:62:a7:b3:33: 25:b5:1e:3d:54:1b:a7:e0:2f:5c:d9:73:1c:80:4d: 1e:27:e4:06:ff:c6:e7:6b:81:03:71:de:20:e1:8d: 87:45:dc:25:fc:ca:b7:a5:44:b3:37:9e:67:a6:13: 14:34:4f:f8:27:71:e1:9d:b4:37:7e:50:30:7d:d5: 39:7c:b3:78:52:c4:13:b4:ec:dc:47:40:6d:9c:ac: 2f:2c:6a:db:e7:09:d4:e2:b3:a6:13:26:6a:4d:e8: b6:0c:1d:56:8f:8c:84:90:ff:6f:8c:e8:49:c7:75: 4c:53:76:ad:62:d8:54:89:a5:85:1e:6d:9a:33:09: 2f:26:47:c7:6a:fa:45:7b:1a:8d:0b:c7:21:a0:29: fa:33:91:26:99:d8:ae:3a:82:7d:57:7b:af:6a:5f: b9:32:57:ba:bd:6c:1b:b3:69:73:fa:e2:42:e1:fe: 41:48:14:55:af:a7:08:8e:0c:b5:9b:dd:eb:07:dd: a5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:03:19:1F:04:4E:13:21:D7:AB:90:A8:6B:09:B9:48:7A:6E:3B:22 X509v3 Authority Key Identifier: keyid:85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e6:04:c3:79:2c:79:8a:55:a8:0d:a3:63:03:3c:8a:b0:35: cc:e0:70:dc:16:08:60:cc:53:45:16:a5:b4:f8:20:07:0b:06: 57:be:63:dd:fb:cb:96:ab:1a:a1:bf:6e:4c:83:da:c8:80:87: fc:a4:76:fb:6f:4d:8e:b3:cb:49:ff:d0:bc:2f:03:8f:3b:f0: f1:88:36:ab:23:88:ba:1c:be:52:ae:5a:c6:a1:29:9d:93:6d: ee:7b:0a:97:ea:84:6a:7c:d4:ae:f6:f9:6c:a6:b9:18:99:f2: ff:07:35:5a:d4:eb:fa:f2:76:3b:31:fd:f2:e2:2b:71:84:2b: b0:cf:e1:cb:98:57:f5:7f:68:4e:f3:55:dc:8a:30:d3:e9:51: 4d:67:ed:10:a4:0e:2b:7d:7e:9c:68:19:8d:45:97:be:9a:b6: 15:19:b4:e6:41:a5:7b:7e:aa:1e:a2:e2:a3:9e:41:f6:4e:35: 6e:df:9c:2d:44:e1:54:6e:96:10:1a:40:79:e1:12:18:26:f9: 52:e1:9a:97:1b:23:2a:a1:9b:23:f0:b8:50:a0:f7:af:6b:0e: a7:48:0c:c7:44:b8:fb:b5:c3:ab:60:cc:5d:89:8f:30:3c:66: 2d:df:9e:4b:8c:24:41:6d:e3:75:4f:35:ea:c9:98:a6:1a:2d: 72:5e:15:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDQTExMC8GA1UEBRMoODVDNTY3MjU5MTAzRDlFMjI5MkU2NERCRkI3OUZEMzlC MjU2RkRFNDAeFw0yNTA0MjUwNjI5NDhaFw0yNTA1MDIwNjI5NDhaMBgxFjAUBgNV BAMTDTY4MGIyYmRkLWVmNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC86+5Kxe6emkA6oqM1jIwFPIdN9xU+BaD5MdxTti+2jo8B+j7Uig+N1jCSIxWZ mfvmyynCyg6Uht7ZucL50M/uNMMjuK0zYqezMyW1Hj1UG6fgL1zZcxyATR4n5Ab/ xudrgQNx3iDhjYdF3CX8yrelRLM3nmemExQ0T/gnceGdtDd+UDB91Tl8s3hSxBO0 7NxHQG2crC8satvnCdTis6YTJmpN6LYMHVaPjISQ/2+M6EnHdUxTdq1i2FSJpYUe bZozCS8mR8dq+kV7Go0LxyGgKfozkSaZ2K46gn1Xe69qX7kyV7q9bBuzaXP64kLh /kFIFFWvpwiODLWb3esH3aXZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZAMZHwRO EyHXq5Coawm5SHpuOyIwHwYDVR0jBBgwFoAUhcVnJZED2eIpLmTb+3n9ObJW/eQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RENBLzU4M0ZGQzk0Q0Ix RjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJcExtVGItM245T2JKV19l US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGNWbkpaRUQyZUlwTG1UYi0zbjlPYkpXX2VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RENBLzU4M0ZGQzk0Q0IxRjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJ cExtVGItM245T2JKV19lUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFLmBMN5LHmKVagNo2MDPIqwNczgcNwWCGDMU0UWpbT4IAcLBle+Y937 y5arGqG/bkyD2siAh/ykdvtvTY6zy0n/0LwvA4878PGINqsjiLocvlKuWsahKZ2T be57CpfqhGp81K72+WymuRiZ8v8HNVrU6/rydjsx/fLiK3GEK7DP4cuYV/V/aE7z VdyKMNPpUU1n7RCkDit9fpxoGY1Fl76athUZtOZBpXt+qh6i4qOeQfZONW7fnC1E 4VRulhAaQHnhEhgm+VLhmpcbIyqhmyPwuFCg969rDqdIDMdEuPu1w6tgzF2JjzA8 Zi3fnkuMJEFt43VPNerJmKYaLXJeFVo= -----END CERTIFICATE-----Generated at Sat Apr 26 05:24:48 2025 by rpki-client