$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: OdjRG46hRwCYeE1ZrH/d8wk6O3G7g/PT5rs2KXDo76Q= Subject key identifier: E2:3A:6E:A4:6C:13:F4:71:00:90:0B:5F:00:0D:D9:B1:8C:9A:3C:61 Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 34CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 34A2 Signing time: Thu 24 Apr 2025 14:33:24 +0000 Manifest this update: Thu 24 Apr 2025 14:33:23 +0000 Manifest next update: Thu 01 May 2025 14:33:23 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: bqQI1gomlXzQNK7zRJQPDBjrAyvrJgOFrgM5fTsF8UQ=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: d0P/BKes6SbSKV4r9lK1XjzU3f1Gv4sq1ihkJ2akzQw=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: 1oolI04ZrhXaYmXgZvqSiMymHhXrDoJjC9cjKEp6I10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13517 (0x34cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Apr 24 14:33:23 2025 GMT Not After : May 1 14:33:23 2025 GMT Subject: CN=680a4bb4-66a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d0:76:af:8a:7b:d3:ab:c9:6e:88:64:51:03: ea:58:83:43:39:c6:67:fa:e3:a7:f8:4a:36:f1:cb: 03:1c:f1:64:ed:bd:09:cc:98:41:a7:08:12:92:36: 0c:47:8b:43:17:49:50:72:dc:4d:81:c4:b4:68:ab: 3e:07:f0:a1:63:12:0d:80:54:cd:39:38:b4:76:4d: 47:2e:93:d9:72:16:35:7c:5e:01:11:fa:37:af:4c: ab:be:46:ff:81:c5:57:02:76:9a:5e:c4:cb:1a:86: 65:5f:fa:05:1f:cd:d0:e1:68:98:09:b5:6d:48:52: b1:f0:2e:3f:99:1e:0d:19:1f:fc:3d:b6:41:c7:a0: 12:83:22:be:9b:cb:fd:02:1a:86:0b:af:9f:48:2a: 95:3e:d5:e9:a1:22:5e:6a:81:4c:d4:ea:cd:84:a8: e8:1b:8b:be:fb:20:bb:6f:cc:28:8f:9d:b1:92:31: a7:c7:6d:6d:2c:41:a7:53:0d:96:64:0f:26:27:7f: 41:1f:97:4b:fc:ad:43:61:e9:cc:b0:4d:a8:cc:7c: 92:b9:fc:86:89:66:e2:10:3c:30:5c:bf:8e:b8:a1: a2:e1:98:a9:3b:90:ed:d9:29:9f:bd:e5:5a:be:42: 12:f9:24:aa:b7:96:ef:d3:41:5f:a5:7e:28:1e:72: 8f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3A:6E:A4:6C:13:F4:71:00:90:0B:5F:00:0D:D9:B1:8C:9A:3C:61 X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c1:71:08:21:90:2c:f6:fe:e9:b0:31:6b:aa:3b:38:93:9c: 3c:04:0d:a4:80:bd:ca:30:8f:4f:7b:8d:94:d5:01:e6:d8:4c: 90:f2:4e:bc:a3:27:5d:9c:f7:12:b0:26:4e:1f:c1:2f:1f:21: 75:ef:98:cb:e7:11:f5:2b:f0:8a:22:2f:de:8b:95:c6:73:80: f6:36:fe:18:40:29:e2:81:dc:4d:0c:42:60:b0:45:ff:81:f0: 9e:d8:56:fd:ce:3e:2e:39:f3:2f:6b:ff:99:96:79:d6:44:f4: b0:49:7c:7f:eb:f1:84:ca:6e:26:e4:b2:ca:4c:75:bf:03:6f: fa:10:d5:12:6f:5a:de:0f:20:5e:a4:57:6d:27:d0:43:ac:1e: ab:68:54:aa:ba:24:0e:ab:32:af:9c:33:47:bb:db:89:d1:9b: 4e:5d:04:77:22:1c:b5:c3:28:bb:f6:3a:5a:83:69:3b:a2:77: 7c:4f:7d:05:67:c8:c6:ab:84:7d:23:cf:21:0e:d9:d8:b6:06: e2:b8:a6:fa:67:9b:eb:d0:33:bc:2f:76:a8:5e:fa:85:12:a1: fc:f5:9a:4e:71:9c:40:38:49:e4:3e:78:45:ba:b3:80:ac:ec: 6b:6c:05:c8:fe:b7:31:dc:7b:bb:53:42:3b:4a:72:99:a7:09: 4a:06:e7:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjUwNDI0MTQzMzIzWhcNMjUwNTAxMTQzMzIzWjAYMRYwFAYD VQQDEw02ODBhNGJiNC02NmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9B2r4p706vJbohkUQPqWINDOcZn+uOn+Eo28csDHPFk7b0JzJhBpwgSkjYM R4tDF0lQctxNgcS0aKs+B/ChYxINgFTNOTi0dk1HLpPZchY1fF4BEfo3r0yrvkb/ gcVXAnaaXsTLGoZlX/oFH83Q4WiYCbVtSFKx8C4/mR4NGR/8PbZBx6ASgyK+m8v9 AhqGC6+fSCqVPtXpoSJeaoFM1OrNhKjoG4u++yC7b8woj52xkjGnx21tLEGnUw2W ZA8mJ39BH5dL/K1DYenMsE2ozHySufyGiWbiEDwwXL+OuKGi4ZipO5Dt2SmfveVa vkIS+SSqt5bv00FfpX4oHnKPDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOI6bqRs E/RxAJALXwAN2bGMmjxhMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfwXEIIZAs9v7psDFrqjs4k5w8BA2kgL3KMI9Pe42U1QHm2EyQ8k68 oyddnPcSsCZOH8EvHyF175jL5xH1K/CKIi/ei5XGc4D2Nv4YQCnigdxNDEJgsEX/ gfCe2Fb9zj4uOfMva/+ZlnnWRPSwSXx/6/GEym4m5LLKTHW/A2/6ENUSb1reDyBe pFdtJ9BDrB6raFSquiQOqzKvnDNHu9uJ0ZtOXQR3Ihy1wyi79jpag2k7ond8T30F Z8jGq4R9I88hDtnYtgbiuKb6Z5vr0DO8L3aoXvqFEqH89ZpOcZxAOEnkPnhFurOA rOxrbAXI/rcx3Hu7U0I7SnKZpwlKBufC -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:49 2025 by rpki-client