$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft File: hypmcnatRHCKRH_b6IHxYueQ3WM.mft (raw, json) Hash identifier: z0k/R1hfyMKnQ/IpLJfEaEoSaO36zT30NqNxCvuS1dg= Subject key identifier: BB:C2:6C:DD:0E:DB:52:43:41:33:0E:F5:2E:78:15:B9:57:10:DB:8D Authority key identifier: 87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 Certificate issuer: /CN=A91C5153/serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Certificate serial: 063B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft Manifest number: 0633 Signing time: Thu 24 Apr 2025 22:53:13 +0000 Manifest this update: Thu 24 Apr 2025 22:53:12 +0000 Manifest next update: Thu 01 May 2025 22:53:12 +0000 Files and hashes: 1: hypmcnatRHCKRH_b6IHxYueQ3WM.crl (hash: jJ5fLZh78elHKHdb4rhr/1YxJ5/uht7RgW3ycupeWzI=) 2: 5B194E5EDFF311EBBC814169C4F9AE02.roa (hash: bolwxGi/eUOKWmqsmWqcMpF1AWqbvnFw3vWt3JpNOcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5153, serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Validity Not Before: Apr 24 22:53:12 2025 GMT Not After : May 1 22:53:12 2025 GMT Subject: CN=680ac0d9-3a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6d:5a:dd:7b:99:02:28:aa:d0:24:1b:59:82: 0b:36:85:4e:79:f6:96:9e:be:ad:f3:ca:e1:9f:80: d3:a2:74:28:31:69:fb:4b:07:26:88:4a:23:b6:fa: bd:b3:62:92:a8:40:48:a3:b7:fd:24:17:10:75:bc: 50:5b:06:ca:89:d9:9d:1d:6d:db:d5:5c:ab:d9:26: 40:52:d5:00:c1:6b:c7:19:12:36:95:2a:ad:e1:81: 05:73:b3:4a:01:57:6f:ed:c5:64:ba:09:80:b6:83: 39:3b:bd:8b:43:58:53:9b:7b:8b:db:d0:ef:a0:af: 12:ed:bc:67:a7:d1:57:25:aa:ef:34:a8:92:99:51: 18:4d:6a:f8:f3:74:b4:d4:30:68:cf:c6:27:11:d0: a3:ec:3c:3f:be:79:1a:5e:6e:99:1c:d9:2a:95:60: 0a:4e:2c:93:47:da:08:39:d1:ad:5c:76:0b:e0:7b: 54:68:14:1a:21:2c:be:8f:ac:d5:e2:5d:ba:86:3c: 5a:9a:d8:2b:d2:d3:d1:a9:d6:71:63:17:d5:77:32: a1:c7:5d:aa:1e:ba:93:58:03:03:13:15:37:73:9b: b0:34:de:65:70:9c:91:36:14:67:9b:4d:a6:42:13: 49:0b:bd:fe:a7:7e:55:50:fb:95:e3:f5:fc:14:8b: 34:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C2:6C:DD:0E:DB:52:43:41:33:0E:F5:2E:78:15:B9:57:10:DB:8D X509v3 Authority Key Identifier: keyid:87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:30:86:c8:d4:f5:6b:86:0d:bb:00:98:e5:c6:ed:bb:20:2b: 71:84:50:b9:dd:c3:8e:ce:af:2d:0e:bb:2a:7b:67:62:25:55: ad:80:66:e9:82:0b:b4:82:cc:e1:91:2b:4c:2d:9b:31:44:92: f1:f1:13:11:ec:6f:80:04:25:cc:9c:39:51:16:98:2c:55:01: 49:9c:04:40:51:16:ab:97:31:65:6f:76:a3:bc:7d:11:9a:c8: ea:95:fd:cf:c7:ac:4f:63:8f:87:eb:ba:f7:80:60:0a:cd:37: 44:52:f5:e0:10:68:54:42:76:43:ae:47:32:52:b8:bf:fc:ab: ce:32:5a:eb:bc:3d:7e:53:72:36:99:92:74:1c:4b:3b:c6:02: d8:f0:75:a8:54:6d:b1:75:ad:70:a6:3e:3a:07:1e:d2:70:4d: 1c:c5:62:26:94:c3:b5:14:e2:6e:92:6b:9d:16:e2:ef:bb:ca: 8c:cc:4a:a8:1b:84:bb:50:36:e2:95:b7:ff:cb:e3:2e:f4:7a: 80:4c:9a:87:8e:54:fb:b5:ef:5b:fc:49:ba:5b:89:bb:3b:96: 28:aa:50:a7:9c:a8:b2:24:0b:3f:31:5b:06:0d:d0:d7:45:dd: df:17:db:74:e1:4c:51:28:50:ab:79:e3:9a:f9:96:53:51:0f: 62:da:60:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUxNTMxMTAvBgNVBAUTKDg3MkE2NjcyNzZBRDQ0NzA4QTQ0N0ZEQkU4ODFGMTYy RTc5MERENjMwHhcNMjUwNDI0MjI1MzEyWhcNMjUwNTAxMjI1MzEyWjAYMRYwFAYD VQQDEw02ODBhYzBkOS0zYTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW1a3XuZAiiq0CQbWYILNoVOefaWnr6t88rhn4DTonQoMWn7SwcmiEojtvq9 s2KSqEBIo7f9JBcQdbxQWwbKidmdHW3b1Vyr2SZAUtUAwWvHGRI2lSqt4YEFc7NK AVdv7cVkugmAtoM5O72LQ1hTm3uL29DvoK8S7bxnp9FXJarvNKiSmVEYTWr483S0 1DBoz8YnEdCj7Dw/vnkaXm6ZHNkqlWAKTiyTR9oIOdGtXHYL4HtUaBQaISy+j6zV 4l26hjxamtgr0tPRqdZxYxfVdzKhx12qHrqTWAMDExU3c5uwNN5lcJyRNhRnm02m QhNJC73+p35VUPuV4/X8FIs0eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvCbN0O 21JDQTMO9S54FblXENuNMB8GA1UdIwQYMBaAFIcqZnJ2rURwikR/2+iB8WLnkN1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTE1My85NTQyODFDMjkw NDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJIQ0tSSF9iNklIeFl1ZVEz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5cG1jbmF0UkhDS1JIX2I2SUh4WXVlUTNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTE1My85NTQyODFDMjkwNDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJI Q0tSSF9iNklIeFl1ZVEzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfMIbI1PVrhg27AJjlxu27ICtxhFC53cOOzq8tDrsqe2diJVWtgGbp ggu0gszhkStMLZsxRJLx8RMR7G+ABCXMnDlRFpgsVQFJnARAURarlzFlb3ajvH0R msjqlf3Px6xPY4+H67r3gGAKzTdEUvXgEGhUQnZDrkcyUri//KvOMlrrvD1+U3I2 mZJ0HEs7xgLY8HWoVG2xda1wpj46Bx7ScE0cxWImlMO1FOJukmudFuLvu8qMzEqo G4S7UDbilbf/y+Mu9HqATJqHjlT7te9b/Em6W4m7O5YoqlCnnKiyJAs/MVsGDdDX Rd3fF9t04UxRKFCreeOa+ZZTUQ9i2mCH -----END CERTIFICATE-----Generated at Sat Apr 26 17:19:22 2025 by rpki-client