$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: IEAaE2kb4SP1RX+t8jY/KOfF9IwvNHyXEQG0IFjetIM= Subject key identifier: 2B:B9:F8:38:F8:0D:81:B2:CF:1C:EA:28:87:8D:92:AD:C4:80:F1:A5 Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0D02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0CFA Signing time: Thu 24 Apr 2025 18:03:16 +0000 Manifest this update: Thu 24 Apr 2025 18:03:15 +0000 Manifest next update: Thu 01 May 2025 18:03:15 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: ugzvOE7GQmqp1lKYUO76cuKOmZ+odn13A+Q/XYLaN9I=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: iNF26PQV2QDxZAqXThwlTn9eA9VPYLTtDdkUTHz7O7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3330 (0xd02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Apr 24 18:03:15 2025 GMT Not After : May 1 18:03:15 2025 GMT Subject: CN=680a7ce3-e47b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c0:37:80:a6:6e:29:6f:2a:37:36:f2:10:16: 0f:42:95:55:f1:d3:25:5d:c8:9a:44:61:0c:25:32: 5e:8f:43:72:41:4d:e7:33:61:4d:d0:83:0a:98:c5: a9:ba:d8:db:a4:c0:5d:e5:7d:94:c8:7f:e9:f3:cb: 3b:d3:a8:b9:2f:16:8c:70:8a:ca:33:fc:ae:9c:00: 8a:a4:7f:ff:46:41:e4:7b:e6:57:4d:de:0c:a6:64: 7c:71:2d:17:7f:ff:9d:f0:c8:ce:81:7f:3a:d3:ee: 31:60:c2:dc:0a:bf:d1:24:94:82:c3:de:01:e4:d5: d8:85:9e:1d:de:f3:be:d5:7d:2f:39:7c:bd:18:0a: cc:59:fc:cf:eb:22:3a:2c:b7:2f:a9:39:cb:44:51: d0:0c:be:7b:fd:44:f4:b7:3f:89:75:bd:8d:45:65: 18:2d:01:43:16:33:fc:72:39:3c:82:2a:01:80:40: 5c:f1:0a:5b:0c:ca:bc:75:49:5d:a2:5f:9e:30:5e: 9b:0f:c9:5a:15:5c:45:c0:30:b8:a2:0b:70:bd:a6: 81:7a:33:97:e7:ab:e6:95:15:49:f6:e6:1a:98:22: 8f:a4:89:46:40:a8:94:67:4e:5e:a3:26:9e:d8:93: 29:4b:2e:70:eb:f2:7f:3e:38:dc:22:6d:8f:7d:7b: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B9:F8:38:F8:0D:81:B2:CF:1C:EA:28:87:8D:92:AD:C4:80:F1:A5 X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:b5:4a:30:96:c2:da:7a:43:70:34:8c:8f:f6:72:04:c2:b5: bf:18:56:87:5a:13:44:09:2c:b6:85:1d:00:97:29:a6:c7:f5: b6:24:d9:52:a9:7b:1a:de:05:45:13:aa:dd:6e:7f:fd:b8:0b: bb:11:e4:01:b3:67:b4:f0:59:90:e2:8f:f7:b7:9f:8a:19:5a: 84:64:5c:d3:24:12:8e:22:29:de:67:56:9b:b3:b5:9d:8e:58: 22:b9:14:6f:65:2d:4a:7b:ce:3e:ff:3c:42:39:52:6f:25:25: a9:b9:f3:c8:f5:e9:c2:21:61:cb:07:24:c9:18:69:b8:1c:08: e4:a5:f6:3f:3f:4e:3e:d9:cd:6f:34:19:b0:6a:39:f2:71:6d: 87:9a:3c:62:ba:97:6a:8a:6b:d2:21:06:00:c3:1e:9b:a3:56: b7:68:0c:b9:b7:87:5a:64:6e:2c:b2:78:f9:c4:c1:95:e6:2a: e0:e0:f6:67:1b:2b:eb:79:bc:97:bb:61:7d:7f:c4:19:0a:82: 38:20:10:39:4b:b6:04:27:f8:02:89:8d:25:76:28:6b:c3:3e: 27:3c:85:c8:7d:fc:d1:83:49:43:1e:bf:dd:46:c6:a0:93:0b: a7:5f:01:93:57:9a:d3:e8:e8:26:df:3b:dd:4d:75:36:5e:2e: 84:31:a2:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjUwNDI0MTgwMzE1WhcNMjUwNTAxMTgwMzE1WjAYMRYwFAYD VQQDEw02ODBhN2NlMy1lNDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAksA3gKZuKW8qNzbyEBYPQpVV8dMlXciaRGEMJTJej0NyQU3nM2FN0IMKmMWp utjbpMBd5X2UyH/p88s706i5LxaMcIrKM/yunACKpH//RkHke+ZXTd4MpmR8cS0X f/+d8MjOgX860+4xYMLcCr/RJJSCw94B5NXYhZ4d3vO+1X0vOXy9GArMWfzP6yI6 LLcvqTnLRFHQDL57/UT0tz+Jdb2NRWUYLQFDFjP8cjk8gioBgEBc8QpbDMq8dUld ol+eMF6bD8laFVxFwDC4ogtwvaaBejOX56vmlRVJ9uYamCKPpIlGQKiUZ05eoyae 2JMpSy5w6/J/PjjcIm2PfXuDoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCu5+Dj4 DYGyzxzqKIeNkq3EgPGlMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrtUowlsLaekNwNIyP9nIEwrW/GFaHWhNECSy2hR0Alymmx/W2JNlS qXsa3gVFE6rdbn/9uAu7EeQBs2e08FmQ4o/3t5+KGVqEZFzTJBKOIineZ1abs7Wd jlgiuRRvZS1Ke84+/zxCOVJvJSWpufPI9enCIWHLByTJGGm4HAjkpfY/P04+2c1v NBmwajnycW2HmjxiupdqimvSIQYAwx6bo1a3aAy5t4daZG4ssnj5xMGV5irg4PZn GyvrebyXu2F9f8QZCoI4IBA5S7YEJ/gCiY0ldihrwz4nPIXIffzRg0lDHr/dRsag kwunXwGTV5rT6Ogm3zvdTXU2Xi6EMaJw -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:31 2025 by rpki-client