$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json) Hash identifier: 2qloX3s3ZXnBKbn218HcfrqNa9CTdAxwHpfTYKmEKQI= Subject key identifier: E8:E2:EC:77:75:84:F0:17:78:2F:47:A4:F4:07:10:2D:9B:FA:52:35 Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Certificate serial: 1D1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft Manifest number: 1D06 Signing time: Thu 24 Apr 2025 16:10:26 +0000 Manifest this update: Thu 24 Apr 2025 16:10:25 +0000 Manifest next update: Thu 01 May 2025 16:10:25 +0000 Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: obEeMWn61tYt9Cr0b6rWbXp+w3tWfHlPggr1P4Mi5II=) 2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: hUo9fC/hzy17W76vlbeXm/dftwyddFbiGAwqbp53ZVY=) 3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: PqWYELxwluX51eG9Uh24A8xMydgivpkrMXOxcA+zOSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7453 (0x1d1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEA8C, serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Validity Not Before: Apr 24 16:10:25 2025 GMT Not After : May 1 16:10:25 2025 GMT Subject: CN=680a6272-273a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:02:f0:da:06:30:73:08:98:de:54:1c:5e:63: 36:58:ce:08:91:ef:23:c2:0e:58:68:12:08:04:b1: 98:d7:7f:6b:38:b2:85:ab:94:f1:8f:0d:70:b4:a2: 41:48:b6:52:53:0c:c9:a5:ec:b5:6e:bf:91:07:07: db:39:fa:60:89:56:c9:34:fc:75:5d:14:71:d9:63: 55:fc:7a:1d:88:d9:94:13:06:e0:32:b6:ed:08:89: 6f:7c:10:51:ab:fa:b8:6b:ff:a8:55:17:9c:4f:86: 39:a3:9e:96:72:7a:60:d5:5b:52:6a:58:99:ab:6e: c6:7d:02:87:67:ff:44:ba:b4:47:f8:9a:78:6f:1c: 61:15:32:1c:97:66:85:3b:04:03:20:b5:a4:70:c1: 13:a4:2c:1d:ff:2e:3e:e8:12:69:ec:8c:35:dc:30: 1a:00:60:da:d4:bf:f5:5f:6f:46:9d:37:d1:00:b7: c5:88:3d:47:5c:0b:1b:15:4b:4d:c2:db:ec:dc:37: ad:5c:99:5f:c6:07:d5:df:2c:8c:e2:ce:90:36:cb: 0c:14:1b:21:4f:a8:d8:6e:66:9e:7b:e5:25:3d:78: 09:5a:e6:f9:3d:37:c1:f6:89:fa:d3:e0:91:7b:21: fd:92:7c:3a:1c:22:51:e1:c6:00:43:d9:da:2b:96: ea:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E2:EC:77:75:84:F0:17:78:2F:47:A4:F4:07:10:2D:9B:FA:52:35 X509v3 Authority Key Identifier: keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:99:ca:92:92:29:54:cc:1f:fd:6c:4d:98:33:5f:d1:85:88: 64:c7:fb:38:fd:06:07:89:9d:ff:fc:50:7f:84:3f:59:06:aa: ab:6f:6a:a5:3c:d7:fc:81:4d:35:4a:5b:24:cc:c6:de:9f:30: 72:3d:46:aa:3c:04:b1:15:b9:dd:51:71:91:82:98:0a:79:a3: 67:3b:41:bb:0e:c5:35:12:37:64:43:b2:89:1f:6f:fe:14:6a: 9a:e9:fd:8c:bf:67:d8:69:22:77:61:4c:cb:81:70:da:fa:ee: 18:79:13:7e:88:3b:7f:0a:5b:03:e6:4f:a2:bc:a7:95:1d:db: b6:27:2d:c6:54:ba:51:f5:cc:52:cd:25:7f:5f:7b:d0:d1:4d: b9:f2:f5:b0:da:60:e8:42:ad:b7:91:5d:8e:49:ee:d3:38:84: dc:a6:21:40:e4:00:e4:06:65:7c:40:fe:5d:eb:a0:f1:65:00: 06:87:42:11:8a:67:53:09:e0:6c:14:23:fc:0c:0d:2f:60:80: f5:a7:b0:76:94:92:0b:3f:34:71:07:e6:dd:64:45:06:bc:bc: 96:db:fc:17:0f:68:46:e0:25:0c:12:3a:3b:0f:71:a1:0b:5c: 9c:1c:13:47:21:b7:a3:20:9b:f2:8e:a0:b1:01:48:8c:2e:da: 7a:e3:4f:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBOEMxMTAvBgNVBAUTKDg3MEI5Q0QyRTQxREFCMDVCRDU1MjdDOTE1MEU5NDg5 NTk3MTY2OTYwHhcNMjUwNDI0MTYxMDI1WhcNMjUwNTAxMTYxMDI1WjAYMRYwFAYD VQQDEw02ODBhNjI3Mi0yNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ALw2gYwcwiY3lQcXmM2WM4Ike8jwg5YaBIIBLGY139rOLKFq5Txjw1wtKJB SLZSUwzJpey1br+RBwfbOfpgiVbJNPx1XRRx2WNV/HodiNmUEwbgMrbtCIlvfBBR q/q4a/+oVRecT4Y5o56Wcnpg1VtSaliZq27GfQKHZ/9EurRH+Jp4bxxhFTIcl2aF OwQDILWkcMETpCwd/y4+6BJp7Iw13DAaAGDa1L/1X29GnTfRALfFiD1HXAsbFUtN wtvs3DetXJlfxgfV3yyM4s6QNssMFBshT6jYbmaee+UlPXgJWub5PTfB9on60+CR eyH9knw6HCJR4cYAQ9naK5bqqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOji7Hd1 hPAXeC9HpPQHEC2b+lI1MB8GA1UdIwQYMBaAFIcLnNLkHasFvVUnyRUOlIlZcWaW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUE4Qy9GMjdCOUNERUJC ODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3VzlWU2ZKRlE2VWlWbHha cFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3dWMwdVFkcXdXOVZTZkpGUTZVaVZseFpwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUE4Qy9GMjdCOUNERUJCODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3 VzlWU2ZKRlE2VWlWbHhacFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzmcqSkilUzB/9bE2YM1/RhYhkx/s4/QYHiZ3//FB/hD9ZBqqrb2ql PNf8gU01SlskzMbenzByPUaqPASxFbndUXGRgpgKeaNnO0G7DsU1EjdkQ7KJH2/+ FGqa6f2Mv2fYaSJ3YUzLgXDa+u4YeRN+iDt/ClsD5k+ivKeVHdu2Jy3GVLpR9cxS zSV/X3vQ0U258vWw2mDoQq23kV2OSe7TOITcpiFA5ADkBmV8QP5d66DxZQAGh0IR imdTCeBsFCP8DA0vYID1p7B2lJILPzRxB+bdZEUGvLyW2/wXD2hG4CUMEjo7D3Gh C1ycHBNHIbejIJvyjqCxAUiMLtp6408K -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:49 2025 by rpki-client