$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft File: HWw-nEchLuSN-fVOZJCpphbUEYk.mft (raw, json) Hash identifier: S4cqz7Dys65hdvrK1L7sHp225pjikCZ02Z+PmfEI96U= Subject key identifier: 16:07:B4:30:2A:D8:9C:AC:54:05:D6:D5:D2:B4:40:5F:1F:14:3A:36 Authority key identifier: 1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 Certificate issuer: /CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft Manifest number: 01CA Signing time: Fri 25 Apr 2025 02:05:24 +0000 Manifest this update: Fri 25 Apr 2025 02:05:24 +0000 Manifest next update: Fri 02 May 2025 02:05:24 +0000 Files and hashes: 1: HWw-nEchLuSN-fVOZJCpphbUEYk.crl (hash: qZFGA4NQLxN+AXYHAx6H/GHTETd/HnUIN2EfI/S2idw=) 2: 3B7794D2664A11EDB095B812C4F9AE02.roa (hash: ne9O+G9qSru/U2exZgVGXkHzQTflawcam407PNhnI+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6AEE, serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Validity Not Before: Apr 25 02:05:24 2025 GMT Not After : May 2 02:05:24 2025 GMT Subject: CN=680aede4-4409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:c1:7f:df:e1:7b:22:e4:e8:c5:90:20:3d: 61:4b:8c:50:2b:ca:50:93:fb:f0:af:57:6c:93:82: e8:30:d0:84:67:d1:0c:f4:65:1d:1f:4a:1d:d0:79: 1d:b9:21:3c:4d:ea:13:79:1b:d1:e8:34:35:0b:3f: 77:98:b9:d9:be:f2:4c:a8:89:df:d7:cf:66:d1:21: 3a:56:c1:98:c6:87:4a:87:5f:7f:21:be:0c:47:28: ab:51:22:ec:55:b2:ea:1f:f2:79:41:d8:fc:42:21: f9:5e:44:38:ef:89:58:95:0d:d3:4a:35:98:a6:8e: fd:18:2d:62:1e:33:92:c9:f9:11:ef:a2:6c:c0:e6: ef:63:1a:84:ab:ef:d3:b2:4e:a8:cc:f0:59:c7:a7: 77:a6:8b:5a:3a:d3:c5:de:bb:d3:30:75:df:2a:88: 6f:2f:91:97:7e:71:1e:9c:49:b7:c7:8f:b0:27:bb: 7f:39:b6:ea:ce:70:da:5a:4a:94:0d:22:29:67:22: 40:f4:40:f9:c0:a6:22:1a:c3:89:cf:b2:0d:29:4e: e8:1d:d2:c5:ac:53:e7:02:53:df:f1:f6:ba:5c:1f: 6c:72:b0:be:00:6c:6b:5c:65:ce:25:25:a8:b0:bb: 89:ae:ea:33:5c:63:2c:d4:be:82:78:70:7b:91:3a: a6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:07:B4:30:2A:D8:9C:AC:54:05:D6:D5:D2:B4:40:5F:1F:14:3A:36 X509v3 Authority Key Identifier: keyid:1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:c0:8d:39:7f:aa:49:1c:d6:ca:c4:80:36:74:31:01:68:ea: cd:35:b6:4d:0d:65:4b:14:85:24:56:aa:01:01:1e:83:a6:37: 0f:08:c2:21:d8:0e:55:6f:de:20:7f:e8:72:ef:e3:1b:33:94: 96:43:8d:64:12:0a:f9:27:2a:ec:79:e2:d7:d9:ae:83:3d:54: 85:0b:99:67:c5:94:59:eb:29:49:8d:40:fe:1b:f0:40:f8:1d: 25:58:c4:c3:4b:6b:83:6a:2d:58:d7:c1:40:30:a5:6b:01:87: 71:01:26:6c:10:37:5d:1b:23:e9:d3:ef:bf:15:ef:e2:a6:15: b5:77:2e:3d:97:93:c3:84:ab:c9:62:ee:1c:f9:7b:fe:57:4e: 4f:32:5b:b7:e6:57:d8:c2:91:93:ac:ce:be:4f:d0:e3:b2:1a: d2:9e:c1:8d:b4:a2:19:68:65:9a:13:9d:3a:30:15:61:18:ad: 38:d9:da:22:a9:18:3f:f5:57:96:04:a4:75:ae:af:ce:b0:17: b5:d2:38:cc:b5:9d:b6:66:30:37:c4:3b:b6:0d:19:29:dd:b9: 80:c6:86:e7:6e:5b:d8:5a:52:e9:1c:63:57:23:1c:17:c9:06: a7:c2:5f:a0:9e:45:14:07:ba:b2:ae:63:13:24:e2:30:70:63: 4c:03:db:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZBRUUxMTAvBgNVBAUTKDFENkMzRTlDNDcyMTJFRTQ4REY5RjU0RTY0OTBBOUE2 MTZENDExODkwHhcNMjUwNDI1MDIwNTI0WhcNMjUwNTAyMDIwNTI0WjAYMRYwFAYD VQQDEw02ODBhZWRlNC00NDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7zBf9/heyLk6MWQID1hS4xQK8pQk/vwr1dsk4LoMNCEZ9EM9GUdH0od0Hkd uSE8TeoTeRvR6DQ1Cz93mLnZvvJMqInf189m0SE6VsGYxodKh19/Ib4MRyirUSLs VbLqH/J5Qdj8QiH5XkQ474lYlQ3TSjWYpo79GC1iHjOSyfkR76JswObvYxqEq+/T sk6ozPBZx6d3potaOtPF3rvTMHXfKohvL5GXfnEenEm3x4+wJ7t/ObbqznDaWkqU DSIpZyJA9ED5wKYiGsOJz7INKU7oHdLFrFPnAlPf8fa6XB9scrC+AGxrXGXOJSWo sLuJruozXGMs1L6CeHB7kTqmnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYHtDAq 2JysVAXW1dK0QF8fFDo2MB8GA1UdIwQYMBaAFB1sPpxHIS7kjfn1TmSQqaYW1BGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkFFRS80RjMzMjg4MjY2 NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1U04tZlZPWkpDcHBoYlVF WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXdy1uRWNoTHVTTi1mVk9aSkNwcGhiVUVZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkFFRS80RjMzMjg4MjY2NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1 U04tZlZPWkpDcHBoYlVFWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkwI05f6pJHNbKxIA2dDEBaOrNNbZNDWVLFIUkVqoBAR6DpjcPCMIh 2A5Vb94gf+hy7+MbM5SWQ41kEgr5JyrseeLX2a6DPVSFC5lnxZRZ6ylJjUD+G/BA +B0lWMTDS2uDai1Y18FAMKVrAYdxASZsEDddGyPp0++/Fe/iphW1dy49l5PDhKvJ Yu4c+Xv+V05PMlu35lfYwpGTrM6+T9DjshrSnsGNtKIZaGWaE506MBVhGK042doi qRg/9VeWBKR1rq/OsBe10jjMtZ22ZjA3xDu2DRkp3bmAxobnblvYWlLpHGNXIxwX yQanwl+gnkUUB7qyrmMTJOIwcGNMA9sa -----END CERTIFICATE-----Generated at Sat Apr 26 03:45:29 2025 by rpki-client