$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft File: Hhb4PQxAM115a-W6IckMvumXWbw.mft (raw, json) Hash identifier: 3SATb2FwGpyVOxp8z8iC4plfy3YQ5mIdkuZJzXj49bg= Subject key identifier: FC:75:7B:48:B9:8E:E8:11:D9:4B:C0:35:6B:8E:E7:BD:99:C1:B0:23 Authority key identifier: 1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC Certificate issuer: /CN=A91D5606/serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Certificate serial: 06B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft Manifest number: 068F Signing time: Thu 24 Apr 2025 22:05:50 +0000 Manifest this update: Thu 24 Apr 2025 22:05:50 +0000 Manifest next update: Thu 01 May 2025 22:05:50 +0000 Files and hashes: 1: Hhb4PQxAM115a-W6IckMvumXWbw.crl (hash: OpTljFuCLync3+FPBsmAnRY6NiOVkLonYkSic87gFeM=) 2: 1745A0504D7F11EE8487CA3CC4F9AE02.roa (hash: u+ofbKLYcAYXay4QDo5J92308RfIUZYffrakAkc1/w0=) 3: 7E11B25E632A11EEA4BAF91FC4F9AE02.roa (hash: 00yFzXA+JQ5htpGD8ADiNSIhDTumFOoTTNXL9w2q2PM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5606, serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Validity Not Before: Apr 24 22:05:50 2025 GMT Not After : May 1 22:05:50 2025 GMT Subject: CN=680ab5be-79c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:30:bf:a6:2d:2c:1f:8e:a0:0c:d6:1d:02:89: 47:71:c2:98:9c:3a:7a:c8:35:73:62:ed:c3:80:c5: 6f:46:59:6e:fa:15:03:37:25:ae:dd:a0:9b:a9:a5: 06:93:a5:4f:d9:bd:80:d7:17:37:13:1b:a1:a7:28: 00:2b:bf:cb:c8:a0:5c:2b:32:72:e2:28:5c:36:ed: f0:a4:df:77:70:a1:3c:09:99:5a:42:41:cb:d4:d6: 62:7a:48:4c:8c:f1:4b:0b:e7:3e:b3:ea:df:1c:00: 99:bd:0d:b7:da:60:43:6a:c0:56:13:27:e6:bd:22: 64:11:d2:bd:4e:b8:54:61:36:16:b5:70:a4:7a:76: c7:cf:ee:55:8b:4a:6f:f9:a5:3b:e6:b7:37:a2:6c: ac:e5:d4:c0:1c:e9:4b:65:2e:bc:dd:9b:ad:c1:f8: db:ae:78:fd:72:80:ec:56:5e:0e:7a:80:61:03:15: 50:db:14:38:a5:5c:e7:18:6a:d7:21:a0:87:7a:22: 44:e0:eb:10:67:52:23:f8:04:c5:be:e1:15:0a:42: 46:6c:3f:c2:11:51:28:2b:34:59:e3:3e:b7:14:fc: 71:41:04:f6:00:4f:56:10:ff:59:8f:50:35:06:59: 67:c0:0a:99:7e:a1:c7:56:8f:74:32:9c:85:a6:1a: 17:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:75:7B:48:B9:8E:E8:11:D9:4B:C0:35:6B:8E:E7:BD:99:C1:B0:23 X509v3 Authority Key Identifier: keyid:1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:b3:d3:91:80:5c:c3:fc:61:6e:94:fb:fc:66:3e:c0:d0:7a: d2:cc:26:47:b9:a7:cf:c4:49:40:14:0f:3b:f6:e3:2e:f1:09: 79:16:db:72:d4:aa:02:77:33:7f:d9:71:e0:43:08:15:a3:38: b2:63:ec:5b:03:6d:05:bd:bd:6a:a6:ef:19:4e:e8:d2:5b:f6: 98:5d:f6:8f:40:74:3a:16:c9:11:37:26:70:81:bc:eb:35:52: a0:f3:dc:72:0d:49:7c:c9:19:21:06:38:aa:46:09:ff:ad:3b: c5:a4:1a:ab:8c:52:60:f7:55:a0:db:cf:20:ea:ed:ec:87:40: 53:f7:b9:ae:12:e4:8a:cf:78:eb:c0:c8:68:c0:aa:ec:e2:02: bc:25:5c:d4:05:79:54:74:38:25:a5:f9:34:da:d0:05:40:c0: 7a:11:ef:80:bb:45:0e:cf:93:d3:52:9b:96:8e:35:18:be:ea: 94:9c:2f:80:6b:f2:51:14:27:9e:a4:a0:3f:e5:59:dc:7a:7e: 02:98:0a:92:7a:1a:a0:b5:43:0b:88:ce:84:c2:a6:f8:73:64: 36:11:a7:58:d3:56:d7:1a:1c:db:a1:77:0c:bc:1d:9a:36:fa: 4c:f5:34:60:28:5d:4a:c4:e0:b3:2a:f8:2f:78:ac:0d:5f:1d: c4:eb:7e:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2MDYxMTAvBgNVBAUTKDFFMTZGODNEMEM0MDMzNUQ3OTZCRTVCQTIxQzkwQ0JF RTk5NzU5QkMwHhcNMjUwNDI0MjIwNTUwWhcNMjUwNTAxMjIwNTUwWjAYMRYwFAYD VQQDEw02ODBhYjViZS03OWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zC/pi0sH46gDNYdAolHccKYnDp6yDVzYu3DgMVvRllu+hUDNyWu3aCbqaUG k6VP2b2A1xc3ExuhpygAK7/LyKBcKzJy4ihcNu3wpN93cKE8CZlaQkHL1NZiekhM jPFLC+c+s+rfHACZvQ232mBDasBWEyfmvSJkEdK9TrhUYTYWtXCkenbHz+5Vi0pv +aU75rc3omys5dTAHOlLZS683Zutwfjbrnj9coDsVl4OeoBhAxVQ2xQ4pVznGGrX IaCHeiJE4OsQZ1Ij+ATFvuEVCkJGbD/CEVEoKzRZ4z63FPxxQQT2AE9WEP9Zj1A1 BllnwAqZfqHHVo90MpyFphoXaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPx1e0i5 jugR2UvANWuO572ZwbAjMB8GA1UdIwQYMBaAFB4W+D0MQDNdeWvluiHJDL7pl1m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTYwNi85NDBDNUQ5Qzcx MDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0xMTVhLVc2SWNrTXZ1bVhX YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hoYjRQUXhBTTExNWEtVzZJY2tNdnVtWFdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTYwNi85NDBDNUQ5QzcxMDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0x MTVhLVc2SWNrTXZ1bVhXYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCes9ORgFzD/GFulPv8Zj7A0HrSzCZHuafPxElAFA879uMu8Ql5Ftty 1KoCdzN/2XHgQwgVoziyY+xbA20Fvb1qpu8ZTujSW/aYXfaPQHQ6FskRNyZwgbzr NVKg89xyDUl8yRkhBjiqRgn/rTvFpBqrjFJg91Wg288g6u3sh0BT97muEuSKz3jr wMhowKrs4gK8JVzUBXlUdDglpfk02tAFQMB6Ee+Au0UOz5PTUpuWjjUYvuqUnC+A a/JRFCeepKA/5Vncen4CmAqSehqgtUMLiM6Ewqb4c2Q2EadY01bXGhzboXcMvB2a NvpM9TRgKF1KxOCzKvgveKwNXx3E634E -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:00 2025 by rpki-client