$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: KLJIfKz2LdFQr2xj2xiz4xiJ5zZYeLs7Sg36p5vnujs= Subject key identifier: 2E:8E:61:0F:A9:6F:54:B2:68:36:9C:58:66:D0:94:6F:43:A5:DE:51 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 1B Signing time: Fri 25 Apr 2025 06:55:14 +0000 Manifest this update: Fri 25 Apr 2025 06:55:14 +0000 Manifest next update: Fri 02 May 2025 06:55:14 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: GApfj1hG75i/bnq66UhD4akkSh00rB5qVP9MRnyMloQ=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: Q6MiHP+R88hVP5uJ4adxJpvxkQ/xGhsrM9tNu/bI7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Apr 25 06:55:14 2025 GMT Not After : May 2 06:55:14 2025 GMT Subject: CN=680b31d2-172a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:da:f9:3c:c0:87:04:86:ac:df:46:d9:1b:ab: 03:1c:c2:6e:ee:70:49:8f:ec:3d:0c:68:0e:ae:8e: 28:67:72:a3:de:5a:32:a0:4b:66:ee:0b:a9:47:83: 69:72:b6:57:2f:1c:ad:95:ed:26:34:a4:8a:9f:71: 96:7b:de:d3:35:9e:cc:ea:95:86:c7:64:1c:46:b8: 31:f6:77:1b:3d:ee:48:b9:d9:b7:b0:7a:1a:2b:22: 75:72:cc:0a:54:31:6e:28:a4:4a:bb:ca:93:fc:74: b7:a0:22:d0:ca:d1:db:a5:31:2c:d4:0c:ca:ca:ab: 24:e6:70:4e:19:3a:6f:77:48:31:f7:e3:3b:34:12: fb:ac:e9:6b:75:d1:b3:31:0a:16:bb:78:2e:cf:ac: 5a:11:d4:c8:3b:df:5b:45:85:ed:e2:71:c7:eb:24: c4:69:6f:1f:84:a6:78:f1:fa:9f:3f:4d:f4:46:18: 22:1c:5a:85:c4:f7:ed:26:7a:e0:56:8c:17:3e:27: 2d:a1:1f:a4:b0:a8:b6:f7:d0:75:76:1a:2f:b5:e8: d7:7d:f9:25:bb:66:da:ff:0c:0a:db:4e:9a:93:4c: 4f:94:b1:a9:77:ea:1b:f7:1e:3a:08:c8:36:44:5f: f8:03:5c:f9:55:9d:08:34:cb:04:bd:90:d4:3c:fc: 2c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:8E:61:0F:A9:6F:54:B2:68:36:9C:58:66:D0:94:6F:43:A5:DE:51 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:54:dd:43:f3:c7:99:47:a6:a2:4f:a2:3d:c7:45:85:f1:9b: bc:98:87:00:8e:40:7c:f7:83:f5:b6:bd:3e:2f:5b:42:1d:b4: e7:a8:bc:9e:7d:a8:44:ef:9d:93:ba:a1:28:38:53:a5:fd:4c: 4c:d5:92:13:92:ec:ef:02:bb:61:d1:14:c0:ca:bd:e9:ff:1e: 40:4d:8f:6a:a3:51:d9:7b:f4:16:6a:3c:c2:ba:8a:a4:b2:ac: ca:d0:ad:b1:82:47:b0:22:14:e0:89:84:d0:74:6f:7a:ea:a5: 7e:5b:ac:ee:3b:68:3d:e5:00:00:81:4f:93:95:0e:78:c8:56: 7b:b0:bb:9e:7c:53:d5:a7:32:f3:02:3d:75:37:94:e9:63:b7: 90:8f:82:1b:e3:3e:60:41:c5:30:5b:58:4f:0d:76:59:d5:04: d4:9e:35:e0:c2:9e:1c:aa:53:ac:a7:37:de:a8:43:29:98:9d: 8e:7c:9b:93:24:e3:61:56:7a:d2:ee:41:8a:99:fe:0a:9b:13: d2:c3:98:70:ca:c8:7e:7f:73:39:81:93:12:8a:60:78:95:b2: c4:ef:ea:21:54:8a:99:ac:20:5f:20:cc:76:45:8b:d2:2c:e2: b1:d6:62:eb:1f:54:a4:b2:53:64:5a:d6:46:f9:4e:7e:7f:41: b4:50:d1:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjA2NjExMC8GA1UEBRMoMUQ0RUM0MjUzMzEzQjYyQzQ4NDQ5MTZCODVEQzBGRkU0 QjA3RDUwODAeFw0yNTA0MjUwNjU1MTRaFw0yNTA1MDIwNjU1MTRaMBgxFjAUBgNV BAMTDTY4MGIzMWQyLTE3MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDp2vk8wIcEhqzfRtkbqwMcwm7ucEmP7D0MaA6ujihncqPeWjKgS2buC6lHg2ly tlcvHK2V7SY0pIqfcZZ73tM1nszqlYbHZBxGuDH2dxs97ki52bewehorInVyzApU MW4opEq7ypP8dLegItDK0dulMSzUDMrKqyTmcE4ZOm93SDH34zs0Evus6Wt10bMx Cha7eC7PrFoR1Mg731tFhe3iccfrJMRpbx+Epnjx+p8/TfRGGCIcWoXE9+0meuBW jBc+Jy2hH6SwqLb30HV2Gi+16Nd9+SW7Ztr/DArbTpqTTE+Usal36hv3HjoIyDZE X/gDXPlVnQg0ywS9kNQ8/CyTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULo5hD6lv VLJoNpxYZtCUb0Ol3lEwHwYDVR0jBBgwFoAUHU7EJTMTtixIRJFrhdwP/ksH1Qgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MDY2LzY0OEE4ODMyRkI2 NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFR Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFU3RUpUTVR0aXhJUkpGcmhkd1Bfa3NIMVFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 MDY2LzY0OEE4ODMyRkI2NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4 SVJKRnJoZHdQX2tzSDFRZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGFU3UPzx5lHpqJPoj3HRYXxm7yYhwCOQHz3g/W2vT4vW0IdtOeovJ59 qETvnZO6oSg4U6X9TEzVkhOS7O8Cu2HRFMDKven/HkBNj2qjUdl79BZqPMK6iqSy rMrQrbGCR7AiFOCJhNB0b3rqpX5brO47aD3lAACBT5OVDnjIVnuwu558U9WnMvMC PXU3lOljt5CPghvjPmBBxTBbWE8NdlnVBNSeNeDCnhyqU6ynN96oQymYnY58m5Mk 42FWetLuQYqZ/gqbE9LDmHDKyH5/czmBkxKKYHiVssTv6iFUipmsIF8gzHZFi9Is 4rHWYusfVKSyU2Ra1kb5Tn5/QbRQ0TA= -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:01 2025 by rpki-client