$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft File: hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft (raw, json) Hash identifier: rddC34xOOYigUn6gpkl5Vjxkn9qQ+Y0m3JlamgKGP1g= Subject key identifier: 19:67:DE:2D:6A:2D:76:4A:60:A6:66:73:7C:25:58:52:D7:87:FA:99 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft Manifest number: C1 Signing time: Fri 25 Apr 2025 04:55:00 +0000 Manifest this update: Fri 25 Apr 2025 04:54:59 +0000 Manifest next update: Fri 02 May 2025 04:54:59 +0000 Files and hashes: 1: hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl (hash: hDCWc/7+zrPu16Qm6+OufJ1+QX+rqT/VSu6UXRYpiqE=) 2: 61A59876012A11EFB75C350FC4F9AE02.roa (hash: eAATcw+wwIntluEWHwykA3g4lnWZ04SXuQGRkoYM9h4=) 3: 612992C6012A11EFB75C350FC4F9AE02.roa (hash: kIIwTAeW+pDEZ3yhH1JwOUrEmJAAi9ldowt4J7C/CXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F, serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Apr 25 04:54:59 2025 GMT Not After : May 2 04:54:59 2025 GMT Subject: CN=680b15a4-fd69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0a:90:a5:54:a6:7d:02:c8:59:38:c8:1e:85: 9c:b6:c6:98:3c:6c:94:b5:1a:c2:8d:2e:d3:f5:90: 92:8d:54:0b:7a:b5:28:01:31:0c:5a:dd:d4:7c:f8: b1:61:81:b9:de:4f:31:cd:4b:1b:b6:9d:9b:bb:e1: e6:9a:20:a6:0d:1e:9a:c3:2c:b5:f8:95:db:89:2b: 87:59:e7:5c:c0:bf:61:74:5f:48:06:53:35:bd:0f: bb:20:c8:34:6c:1a:6e:15:20:60:20:5c:29:72:7a: 4b:37:ee:67:ae:cb:6f:e8:c9:42:e0:39:72:c4:29: 68:9e:ef:66:33:7a:95:59:0b:47:58:1b:48:3c:dd: 1e:ba:02:44:c7:1e:5d:b0:42:de:ea:3c:43:a7:03: af:6d:b9:84:48:e9:8f:85:48:b3:2b:9e:2a:e9:9c: e7:90:eb:43:70:15:d9:7e:93:6a:56:28:c9:2c:76: d2:a2:0a:02:76:f6:46:27:69:2c:42:3f:39:37:6f: 8b:c8:f0:a8:c9:0a:81:1f:f1:7e:76:bd:b7:79:dd: 62:20:12:42:a5:b8:12:ef:35:e6:47:9e:0b:14:aa: 05:24:3e:c9:2d:b5:55:5b:cb:9f:f7:05:4d:fa:1a: a6:4c:bc:3f:4c:5f:47:e1:b6:a8:35:fc:e1:12:73: fd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:67:DE:2D:6A:2D:76:4A:60:A6:66:73:7C:25:58:52:D7:87:FA:99 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:51:5e:b9:d7:dd:2b:27:88:92:ca:b3:d4:d0:05:fc:af:18: a4:93:2b:8e:cc:80:3a:7e:dd:78:8b:ed:8a:3d:e6:7b:84:10: 5b:88:03:38:23:2c:3d:fe:80:6c:a5:fe:56:60:91:c0:53:d2: af:ef:39:7e:50:17:bf:02:c5:d9:36:78:34:ec:9d:12:64:ec: 68:dc:83:77:0b:6a:bc:19:4e:be:19:51:45:1a:8c:62:01:3c: 1d:db:7e:05:9c:89:e1:ac:bd:0f:7c:b8:c7:a1:8e:c6:92:93: 9d:da:a0:98:4f:16:69:0a:de:6c:ad:ae:f8:a9:f1:7d:61:c2: b4:aa:16:38:4e:63:38:f4:48:35:b4:a4:d7:ba:1b:8b:5b:7d: 18:f0:48:6e:b1:4f:ae:da:90:e0:4b:a1:9c:53:c8:4c:4e:4f: e1:d0:e7:fc:de:60:b2:a3:84:f7:be:05:b4:20:03:ad:a8:78: a7:95:c0:f0:5c:c1:b0:42:5e:2e:21:c5:20:96:5a:14:7c:f9: b5:04:41:25:92:42:a6:d8:8c:a5:b6:58:17:a9:1d:01:9e:37: 1c:22:b3:46:0f:d3:35:c5:18:80:f4:be:ae:5c:4c:7f:00:33: 5a:b4:51:60:ce:5c:eb:63:12:3e:b2:ab:0b:e3:8f:e7:f7:6a: 1d:b4:09:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUwNDI1MDQ1NDU5WhcNMjUwNTAyMDQ1NDU5WjAYMRYwFAYD VQQDEw02ODBiMTVhNC1mZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugqQpVSmfQLIWTjIHoWctsaYPGyUtRrCjS7T9ZCSjVQLerUoATEMWt3UfPix YYG53k8xzUsbtp2bu+HmmiCmDR6awyy1+JXbiSuHWedcwL9hdF9IBlM1vQ+7IMg0 bBpuFSBgIFwpcnpLN+5nrstv6MlC4DlyxClonu9mM3qVWQtHWBtIPN0eugJExx5d sELe6jxDpwOvbbmESOmPhUizK54q6ZznkOtDcBXZfpNqVijJLHbSogoCdvZGJ2ks Qj85N2+LyPCoyQqBH/F+dr23ed1iIBJCpbgS7zXmR54LFKoFJD7JLbVVW8uf9wVN +hqmTLw/TF9H4baoNfzhEnP9HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBln3i1q LXZKYKZmc3wlWFLXh/qZMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFK Z05sLVFiczVIOHlZVVB5M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7UV65190rJ4iSyrPU0AX8rxikkyuOzIA6ft14i+2KPeZ7hBBbiAM4 Iyw9/oBspf5WYJHAU9Kv7zl+UBe/AsXZNng07J0SZOxo3IN3C2q8GU6+GVFFGoxi ATwd234FnInhrL0PfLjHoY7GkpOd2qCYTxZpCt5sra74qfF9YcK0qhY4TmM49Eg1 tKTXuhuLW30Y8EhusU+u2pDgS6GcU8hMTk/h0Of83mCyo4T3vgW0IAOtqHinlcDw XMGwQl4uIcUglloUfPm1BEElkkKm2IyltlgXqR0BnjccIrNGD9M1xRiA9L6uXEx/ ADNatFFgzlzrYxI+sqsL44/n92odtAne -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:47 2025 by rpki-client