$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: 51PGSwkaHSKOMk9Dojlj6+01SA0/5oUwAHXIRuIA/04= Subject key identifier: 3C:45:85:C7:5F:D6:4A:A9:CA:52:69:6A:DB:B5:26:76:CC:6D:E0:35 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 5D Signing time: Fri 25 Apr 2025 06:05:52 +0000 Manifest this update: Fri 25 Apr 2025 06:05:51 +0000 Manifest next update: Fri 02 May 2025 06:05:51 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: uCtxC25Du+CC3Uz2Af0jkZTUnEQpOuH7VnFYT2Ej0hs=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Apr 25 06:05:51 2025 GMT Not After : May 2 06:05:51 2025 GMT Subject: CN=680b263f-a8a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:13:d4:14:4e:3d:09:65:2e:2f:35:0e:45:e2: 99:c8:57:c1:f7:83:d1:66:0a:30:fb:b2:fd:b6:85: 9e:0b:7b:75:91:0d:c2:34:14:1b:81:bd:dd:67:78: b2:78:f9:7f:d8:e1:fc:ea:e6:f7:fd:cd:24:a0:a9: 8c:d8:5d:25:24:f5:5c:e4:a1:e4:51:a9:39:9a:ec: e4:38:53:c7:28:27:44:bf:4f:62:fc:03:cb:69:25: a9:37:d8:9a:ad:af:01:2a:d3:d8:6a:be:05:53:23: 6f:b6:97:22:2f:f9:5b:2c:4a:af:86:24:f7:05:09: 76:c0:92:1d:77:97:28:05:a8:07:87:78:94:4d:51: 50:a6:2e:f1:70:84:90:26:ed:58:69:53:c2:8a:2d: 44:dc:cb:c9:2d:93:52:54:1e:1f:26:cc:99:71:3b: 67:81:78:ea:48:11:62:39:42:74:b6:6f:81:e2:2d: f9:9d:52:d4:60:f0:b6:12:8d:9f:ca:b6:56:b2:83: f2:95:44:3b:16:6b:27:51:31:ee:ed:68:d1:99:3f: 76:b4:07:c2:d7:2c:ea:55:a2:7f:d4:1a:d2:78:3a: 9d:e7:4c:e5:69:73:5e:9a:9b:46:0b:70:85:e9:40: 53:63:84:22:9f:60:58:25:0d:c2:76:55:62:9a:fb: b4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:45:85:C7:5F:D6:4A:A9:CA:52:69:6A:DB:B5:26:76:CC:6D:E0:35 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:19:85:3f:43:0b:c2:f7:08:ed:57:4f:1b:af:cd:f4:53:bd: 53:19:b4:6d:f5:fd:8b:8f:11:93:65:2e:b3:01:f4:c9:c3:04: 54:e7:2c:b4:7a:44:a6:2b:ac:96:18:27:a7:b6:a3:17:4a:20: 6c:ba:4a:b0:ea:df:59:b1:f3:55:09:83:30:2b:28:3e:5c:67: 58:43:51:66:7a:04:c0:36:46:2e:f0:0d:ff:cf:ce:ed:7e:6c: e2:a1:02:21:b5:9c:2d:2d:f2:3d:82:c8:d5:5e:86:8a:2e:39: 13:8a:39:db:7f:7a:4d:25:7a:82:8f:0a:e2:5e:9e:6f:ea:4a: b0:5a:62:31:3c:f0:b3:35:05:5b:82:9e:10:69:ea:43:a6:42: bc:04:8f:8b:af:f6:ed:9f:41:71:6a:12:dc:d5:da:b6:ae:4f: f3:7e:59:b6:ce:32:f0:e4:04:68:cd:40:b7:23:b9:68:6d:3f: 48:02:31:d1:1b:a0:04:9b:aa:33:78:69:3a:2a:87:e4:b8:c3: 20:17:7b:a7:3f:3a:a7:52:85:2d:08:c0:f1:35:2d:d3:05:16: 4e:fa:a9:17:6f:76:46:10:e2:a7:f9:c1:49:9e:40:f7:87:8b: 9f:96:a3:67:4d:09:33:8d:aa:b9:14:1c:5b:b9:6a:0c:9f:00: 0a:97:b8:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNTA0MjUwNjA1NTFaFw0yNTA1MDIwNjA1NTFaMBgxFjAUBgNV BAMTDTY4MGIyNjNmLWE4YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD7E9QUTj0JZS4vNQ5F4pnIV8H3g9FmCjD7sv22hZ4Le3WRDcI0FBuBvd1neLJ4 +X/Y4fzq5vf9zSSgqYzYXSUk9VzkoeRRqTma7OQ4U8coJ0S/T2L8A8tpJak32Jqt rwEq09hqvgVTI2+2lyIv+VssSq+GJPcFCXbAkh13lygFqAeHeJRNUVCmLvFwhJAm 7VhpU8KKLUTcy8ktk1JUHh8mzJlxO2eBeOpIEWI5QnS2b4HiLfmdUtRg8LYSjZ/K tlayg/KVRDsWaydRMe7taNGZP3a0B8LXLOpVon/UGtJ4Op3nTOVpc16am0YLcIXp QFNjhCKfYFglDcJ2VWKa+7TJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPEWFx1/W SqnKUmlq27Umdsxt4DUwHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACAZhT9DC8L3CO1XTxuvzfRTvVMZtG31/YuPEZNlLrMB9MnDBFTnLLR6 RKYrrJYYJ6e2oxdKIGy6SrDq31mx81UJgzArKD5cZ1hDUWZ6BMA2Ri7wDf/Pzu1+ bOKhAiG1nC0t8j2CyNVehoouOROKOdt/ek0leoKPCuJenm/qSrBaYjE88LM1BVuC nhBp6kOmQrwEj4uv9u2fQXFqEtzV2rauT/N+WbbOMvDkBGjNQLcjuWhtP0gCMdEb oASbqjN4aToqh+S4wyAXe6c/OqdShS0IwPE1LdMFFk76qRdvdkYQ4qf5wUmeQPeH i5+Wo2dNCTONqrkUHFu5agyfAAqXuCM= -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:08 2025 by rpki-client