$ rpki-client -vvf rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft File: hneZBT7JF0sRHLtGspf6ZH6YKqU.mft (raw, json) Hash identifier: d4OjEFayTuQaFiRuKyeFUJZ5felICRv27ZjwnM2lt7I= Subject key identifier: 20:EE:4B:2E:75:FD:88:72:98:87:4E:8F:69:08:89:3A:FD:A0:D6:FE Authority key identifier: 86:77:99:05:3E:C9:17:4B:11:1C:BB:46:B2:97:FA:64:7E:98:2A:A5 Certificate issuer: /CN=A91A00E4/serialNumber=867799053EC9174B111CBB46B297FA647E982AA5 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft Manifest number: 5A Signing time: Fri 25 Apr 2025 06:06:50 +0000 Manifest this update: Fri 25 Apr 2025 06:06:50 +0000 Manifest next update: Fri 02 May 2025 06:06:50 +0000 Files and hashes: 1: hneZBT7JF0sRHLtGspf6ZH6YKqU.crl (hash: ClyvUjMmZzUfffFBuanK22hHxxnyCtlj55LF8iQV9YU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.crl rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A00E4, serialNumber=867799053EC9174B111CBB46B297FA647E982AA5 Validity Not Before: Apr 25 06:06:50 2025 GMT Not After : May 2 06:06:50 2025 GMT Subject: CN=680b267a-fda6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1b:01:18:45:5c:71:a1:68:bb:9f:f3:34:b5: 59:7a:e9:30:be:7f:4a:c7:d6:59:bb:f3:67:56:86: e4:19:c5:fe:e7:5a:2a:73:b0:0b:d8:9a:2a:9e:6e: 7f:ec:83:11:46:bd:a7:0f:99:54:e8:e2:b3:f5:52: e8:51:4d:7b:89:f3:e7:69:92:97:e3:1e:cf:0f:95: c0:72:cc:6e:ec:9e:31:51:d9:56:70:d0:57:db:f4: 88:92:2c:e2:76:14:eb:1d:28:c2:e6:bb:d3:51:79: a6:cc:52:d1:dc:c3:83:87:dc:ec:22:7c:eb:14:4d: b5:9d:8a:d9:e4:60:97:3a:ec:2e:45:b2:49:2a:ef: 34:99:cc:ad:3c:9c:b0:f0:d1:1f:b0:0a:e6:e5:bf: c3:68:bd:6c:76:4f:1e:14:79:67:7d:2f:e7:e8:95: f8:59:ef:06:c5:d3:7d:92:fa:77:15:f0:9d:06:0a: c5:d5:cd:8a:54:39:95:6b:4b:c5:f2:04:66:41:5b: ac:b4:ef:43:76:0a:bd:66:1e:33:89:35:f0:50:e1: 6a:30:9d:85:b1:9a:88:4d:b9:b2:26:17:c8:69:19: c7:8c:59:de:46:1b:56:75:d4:57:54:c0:57:38:ec: c9:b3:a0:32:8c:45:8a:ae:b2:9b:03:27:3d:1d:8c: b2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EE:4B:2E:75:FD:88:72:98:87:4E:8F:69:08:89:3A:FD:A0:D6:FE X509v3 Authority Key Identifier: keyid:86:77:99:05:3E:C9:17:4B:11:1C:BB:46:B2:97:FA:64:7E:98:2A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:12:2d:2b:59:74:01:8f:e9:9a:e0:65:7f:17:16:b9:39:c1: a7:84:68:de:6c:24:00:43:f5:e3:3b:6a:b2:d0:8d:16:04:e9: 8c:11:16:cd:de:35:a5:e8:e3:8f:20:d6:0c:18:d0:f6:ae:34: c0:df:31:b3:d1:98:bc:38:ae:ef:7e:18:84:a3:c6:98:1d:e3: a3:82:07:be:87:0a:7c:7d:48:d9:1c:d8:d8:d1:d3:d3:ae:7f: 48:95:35:d2:85:76:10:49:86:44:81:24:7f:9d:53:6b:22:17: 00:56:a3:c4:7d:1f:b6:45:9c:f0:a1:43:ab:1f:9c:35:cf:e4: 9c:52:f6:29:ec:08:db:dd:4e:79:6c:44:38:24:1c:66:38:6b: b8:c3:27:8d:d1:62:e5:88:7d:f8:4a:ea:c1:32:72:99:2b:b0: 9a:02:72:6f:be:b5:82:3c:9f:2c:0c:3f:d8:6a:36:b5:af:88: d7:27:32:f3:f9:00:5b:a9:cb:88:9b:47:b1:39:1d:6a:6f:94: 9d:62:28:6b:0c:a4:7e:54:7b:cd:f4:89:70:30:37:04:25:bd: 7b:1d:86:b0:cc:10:ee:1a:6e:79:0a:f9:27:88:c6:6a:26:ba: 20:93:9f:f3:13:63:31:3b:b8:d5:fd:3c:77:9e:a2:47:30:04: 66:64:ce:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDBFNDExMC8GA1UEBRMoODY3Nzk5MDUzRUM5MTc0QjExMUNCQjQ2QjI5N0ZBNjQ3 RTk4MkFBNTAeFw0yNTA0MjUwNjA2NTBaFw0yNTA1MDIwNjA2NTBaMBgxFjAUBgNV BAMTDTY4MGIyNjdhLWZkYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+GwEYRVxxoWi7n/M0tVl66TC+f0rH1lm782dWhuQZxf7nWipzsAvYmiqebn/s gxFGvacPmVTo4rP1UuhRTXuJ8+dpkpfjHs8PlcByzG7snjFR2VZw0Ffb9IiSLOJ2 FOsdKMLmu9NReabMUtHcw4OH3OwifOsUTbWditnkYJc67C5Fskkq7zSZzK08nLDw 0R+wCublv8NovWx2Tx4UeWd9L+folfhZ7wbF032S+ncV8J0GCsXVzYpUOZVrS8Xy BGZBW6y070N2Cr1mHjOJNfBQ4WownYWxmohNubImF8hpGceMWd5GG1Z11FdUwFc4 7MmzoDKMRYquspsDJz0djLIDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIO5LLnX9 iHKYh06PaQiJOv2g1v4wHwYDVR0jBBgwFoAUhneZBT7JF0sRHLtGspf6ZH6YKqUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwMEU0LzU2MDhBNDk4OUE2 NTExRUY5RjdBQjIyNkM0RjlBRTAyL2huZVpCVDdKRjBzUkhMdEdzcGY2Wkg2WUtx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaG5lWkJUN0pGMHNSSEx0R3NwZjZaSDZZS3FVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw MEU0LzU2MDhBNDk4OUE2NTExRUY5RjdBQjIyNkM0RjlBRTAyL2huZVpCVDdKRjBz UkhMdEdzcGY2Wkg2WUtxVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGISLStZdAGP6ZrgZX8XFrk5waeEaN5sJABD9eM7arLQjRYE6YwRFs3e NaXo448g1gwY0PauNMDfMbPRmLw4ru9+GISjxpgd46OCB76HCnx9SNkc2NjR09Ou f0iVNdKFdhBJhkSBJH+dU2siFwBWo8R9H7ZFnPChQ6sfnDXP5JxS9insCNvdTnls RDgkHGY4a7jDJ43RYuWIffhK6sEycpkrsJoCcm++tYI8nywMP9hqNrWviNcnMvP5 AFupy4ibR7E5HWpvlJ1iKGsMpH5Ue830iXAwNwQlvXsdhrDMEO4abnkK+SeIxmom uiCTn/MTYzE7uNX9PHeeokcwBGZkzqY= -----END CERTIFICATE-----Generated at Sat Apr 26 03:36:14 2025 by rpki-client