$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: 56TPy0i0TEo9ETPDTvBtiy2OKOGuNhYDOk4aLoUhb0c= Subject key identifier: 07:B9:E2:72:DA:6A:14:23:DF:00:B4:15:ED:BF:E3:7E:D3:A8:23:CC Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 77 Signing time: Tue 17 Jun 2025 05:41:21 +0000 Manifest this update: Tue 17 Jun 2025 05:41:20 +0000 Manifest next update: Tue 24 Jun 2025 05:41:20 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: sFgL4c6JTVsy+cEpGaeoGiTeHg3EaXP41JGD5YQ6s/4=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Jun 17 05:41:20 2025 GMT Not After : Jun 24 05:41:20 2025 GMT Subject: CN=68510000-3041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fb:51:c8:ed:24:f6:cd:7c:45:61:59:3e:9e: a9:77:49:13:d9:d4:83:d2:be:98:a3:5e:e8:00:98: 27:b2:39:ed:1a:d3:47:f3:4a:8f:96:00:ae:6e:b9: a1:5f:19:e5:95:9c:e2:6c:a7:15:0b:55:80:08:c8: 61:cd:63:16:74:67:6e:f5:56:c1:6e:77:b1:7a:6d: 74:ba:b9:f8:30:9a:b3:82:f1:6f:df:96:e4:d9:88: 6f:79:01:47:30:31:de:1e:9a:e8:15:05:a8:10:d6: 31:dc:17:2b:a5:de:c8:5a:3c:25:0a:f3:cc:ff:75: 2a:04:f4:6f:2b:9e:25:67:32:39:df:96:01:3e:50: e1:18:2d:8f:1f:ab:a1:bb:1e:13:95:a7:94:f6:98: 61:ce:5d:7b:8e:2a:ce:a0:59:1f:c7:c3:61:f7:36: 30:8c:fc:d8:1d:1a:bd:1b:cb:a9:9a:95:86:07:e4: 87:50:0b:a9:8e:30:7c:31:50:96:09:e8:1f:d8:91: 53:99:a2:4c:99:01:16:2b:7e:8a:5d:b8:8f:dc:e5: 89:56:38:df:52:b2:e3:9e:5c:83:94:96:25:f0:ba: 70:c1:21:7a:24:d4:70:61:9f:a5:30:f6:0f:52:00: 04:3d:a5:e7:d7:36:4d:a1:9b:22:d4:3b:84:f5:da: 1e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B9:E2:72:DA:6A:14:23:DF:00:B4:15:ED:BF:E3:7E:D3:A8:23:CC X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:57:c7:4f:39:9f:bd:1a:2d:c8:ec:00:d6:ae:88:93:28:f6: fe:27:7b:b2:42:d3:28:92:f4:bb:d9:ee:8d:5c:33:7d:c4:b3: 90:a5:ab:67:f3:1d:bf:71:5e:2c:f9:2e:a4:ce:c6:33:9d:92: 00:a0:0c:bf:db:59:6c:b2:38:58:3d:7d:c1:04:55:9e:c0:08: 73:74:e7:27:9b:22:09:d3:9e:08:5f:85:56:bd:20:1e:41:67: 15:4c:87:57:2e:8d:3b:56:69:fb:8f:65:d0:73:8a:55:c5:10: 1f:30:8b:f9:00:ef:01:8e:e4:e5:3e:ab:2b:d8:b1:01:d3:ab: ca:dd:47:4e:4d:1c:df:82:b9:67:4f:01:84:b5:8c:9c:b4:73: bd:f0:42:b4:65:bd:cf:c0:43:b1:c2:4d:ea:82:4e:90:79:a3: 89:9c:9c:86:4c:1c:27:af:59:26:38:ba:1d:57:81:80:50:9b: fa:e8:03:74:a9:40:28:57:00:53:40:83:48:82:ba:af:0d:52: b6:b5:d3:ee:61:24:6f:64:67:f4:c8:53:fc:9c:90:d9:f5:6e: 36:98:fa:94:48:3a:40:f4:00:0e:a6:33:95:fd:10:b2:9a:5f: 1e:8e:90:49:2e:f9:4b:b5:fa:a5:c1:77:09:54:c0:61:ed:50: f9:14:b4:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNTA2MTcwNTQxMjBaFw0yNTA2MjQwNTQxMjBaMBgxFjAUBgNV BAMTDTY4NTEwMDAwLTMwNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw+1HI7ST2zXxFYVk+nql3SRPZ1IPSvpijXugAmCeyOe0a00fzSo+WAK5uuaFf GeWVnOJspxULVYAIyGHNYxZ0Z271VsFud7F6bXS6ufgwmrOC8W/fluTZiG95AUcw Md4emugVBagQ1jHcFyul3shaPCUK88z/dSoE9G8rniVnMjnflgE+UOEYLY8fq6G7 HhOVp5T2mGHOXXuOKs6gWR/Hw2H3NjCM/NgdGr0by6malYYH5IdQC6mOMHwxUJYJ 6B/YkVOZokyZARYrfopduI/c5YlWON9SsuOeXIOUliXwunDBIXok1HBhn6Uw9g9S AAQ9pefXNk2hmyLUO4T12h7fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUB7nictpq FCPfALQV7b/jftOoI8wwHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAClXx085n70aLcjsANauiJMo9v4ne7JC0yiS9LvZ7o1cM33Es5Clq2fz Hb9xXiz5LqTOxjOdkgCgDL/bWWyyOFg9fcEEVZ7ACHN05yebIgnTnghfhVa9IB5B ZxVMh1cujTtWafuPZdBzilXFEB8wi/kA7wGO5OU+qyvYsQHTq8rdR05NHN+CuWdP AYS1jJy0c73wQrRlvc/AQ7HCTeqCTpB5o4mcnIZMHCevWSY4uh1XgYBQm/roA3Sp QChXAFNAg0iCuq8NUra10+5hJG9kZ/TIU/yckNn1bjaY+pRIOkD0AA6mM5X9ELKa Xx6OkEku+Uu1+qXBdwlUwGHtUPkUtCQ= -----END CERTIFICATE-----Generated at Wed Jun 18 16:35:23 2025 by rpki-client