$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: PaJW7I3qSZL7/xoRu/yEbDIa3rRr2dyNUtuup0Bm3Y4= Subject key identifier: 1E:B8:20:81:94:CA:CE:D8:56:BE:73:57:3F:29:05:84:0F:6C:36:F8 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0BA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0B98 Signing time: Thu 24 Apr 2025 18:54:59 +0000 Manifest this update: Thu 24 Apr 2025 18:54:59 +0000 Manifest next update: Thu 01 May 2025 18:54:59 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: IjDrkDdqMTWwZme+5uKWdh0GToH5HCv5X1hojZXhxKU=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2982 (0xba6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Apr 24 18:54:59 2025 GMT Not After : May 1 18:54:59 2025 GMT Subject: CN=680a8903-dd87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ee:43:9e:cc:4e:af:e7:d4:cb:c7:2d:1a:45: 96:30:85:25:ef:bc:65:0a:6a:09:0d:44:64:3a:fc: 8e:eb:6e:0d:c2:49:73:3a:b7:34:90:33:e5:b3:00: d5:90:60:cf:6d:54:eb:8b:f5:8c:30:77:30:eb:40: 8d:4e:22:2e:0e:0f:ea:99:b1:30:d7:b1:3c:7d:ec: 0d:29:d2:ea:0b:d5:ba:f0:1d:b1:53:78:49:99:fb: 3c:3c:8a:77:e1:de:75:88:50:73:a5:98:01:42:c3: 81:29:3a:f1:22:82:d8:2b:22:1c:c7:7e:73:cb:b4: a3:a1:57:6e:03:38:77:08:99:8b:c0:c4:f1:13:14: e6:4a:d0:a3:66:ae:e1:79:94:19:7d:fb:ef:c9:e7: b0:40:0f:47:6d:fc:b4:d0:46:61:d5:63:1f:ce:de: a5:ad:74:a4:40:c8:35:bb:a1:83:24:80:b2:1e:70: f1:90:99:b5:7c:a6:a9:e2:74:9e:4f:24:80:4e:d7: d2:25:80:46:cb:19:ba:76:23:a6:d0:85:a2:2c:54: 32:e5:ad:94:42:ad:52:1c:9f:16:dd:fb:46:ef:64: 15:3a:84:a6:ab:f9:a4:b4:2a:14:b2:c7:c3:96:b0: 80:41:dd:38:03:5c:8f:5c:6a:d5:cb:f1:6c:98:14: 72:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B8:20:81:94:CA:CE:D8:56:BE:73:57:3F:29:05:84:0F:6C:36:F8 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:10:79:03:c3:2b:f9:d3:e6:19:b7:21:f6:20:c0:b3:e4:65: 19:c2:84:5b:86:fd:ed:92:53:4e:5b:25:9e:41:a8:0a:bc:38: 33:9d:95:c8:45:d8:f2:66:a6:71:b9:37:d0:b8:41:43:da:d6: fc:fb:dd:1b:12:a7:14:69:be:b5:02:90:67:6d:99:4a:7b:14: 8b:14:c3:2c:42:12:6a:ed:f7:ff:27:50:62:18:bd:67:87:a8: 4f:5f:d0:4f:4f:07:2e:1f:96:9f:0b:be:c7:5c:5f:c9:af:2e: d1:d8:ab:78:07:66:be:19:6f:63:57:4d:4c:2e:ed:8d:17:06: cb:78:55:9c:45:ad:b5:38:e1:bb:32:49:83:7d:b4:44:12:1a: 4b:56:a0:08:25:f1:78:dc:bf:63:5c:f8:00:74:71:92:8b:09: 1f:65:6c:1f:cc:d6:5e:8b:85:d4:3b:5c:27:ae:39:55:ff:a8: c5:b4:ae:d3:2d:c8:a1:c0:78:64:38:6b:e3:c1:14:59:4d:a2: dd:92:af:b8:2b:6b:a5:77:e8:4c:6e:8e:82:19:f6:17:f5:6a: fe:3a:6a:12:ca:49:c3:0e:96:ac:de:44:7b:5f:5e:e7:36:c1: 9d:45:08:8b:a0:a0:c9:5e:8f:d1:41:9e:97:70:34:91:f9:7f: 58:71:d4:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUwNDI0MTg1NDU5WhcNMjUwNTAxMTg1NDU5WjAYMRYwFAYD VQQDEw02ODBhODkwMy1kZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve5DnsxOr+fUy8ctGkWWMIUl77xlCmoJDURkOvyO624NwklzOrc0kDPlswDV kGDPbVTri/WMMHcw60CNTiIuDg/qmbEw17E8fewNKdLqC9W68B2xU3hJmfs8PIp3 4d51iFBzpZgBQsOBKTrxIoLYKyIcx35zy7SjoVduAzh3CJmLwMTxExTmStCjZq7h eZQZffvvyeewQA9Hbfy00EZh1WMfzt6lrXSkQMg1u6GDJICyHnDxkJm1fKap4nSe TySATtfSJYBGyxm6diOm0IWiLFQy5a2UQq1SHJ8W3ftG72QVOoSmq/mktCoUssfD lrCAQd04A1yPXGrVy/FsmBRyVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB64IIGU ys7YVr5zVz8pBYQPbDb4MB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzEHkDwyv50+YZtyH2IMCz5GUZwoRbhv3tklNOWyWeQagKvDgznZXI RdjyZqZxuTfQuEFD2tb8+90bEqcUab61ApBnbZlKexSLFMMsQhJq7ff/J1BiGL1n h6hPX9BPTwcuH5afC77HXF/Jry7R2Kt4B2a+GW9jV01MLu2NFwbLeFWcRa21OOG7 MkmDfbREEhpLVqAIJfF43L9jXPgAdHGSiwkfZWwfzNZei4XUO1wnrjlV/6jFtK7T LcihwHhkOGvjwRRZTaLdkq+4K2uld+hMbo6CGfYX9Wr+OmoSyknDDpas3kR7X17n NsGdRQiLoKDJXo/RQZ6XcDSR+X9YcdSQ -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:27 2025 by rpki-client