$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: 7DYxs4Vr4/vSqb3Mk/UmJP21oVfMSJK9/l6cEAw3Ze4= Subject key identifier: 79:27:47:BC:9E:59:91:EA:A6:F5:8A:20:51:5F:20:4C:C5:5E:D5:04 Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 0499 Signing time: Thu 24 Apr 2025 23:45:14 +0000 Manifest this update: Thu 24 Apr 2025 23:45:14 +0000 Manifest next update: Thu 01 May 2025 23:45:14 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: aqdTL7hhp+MJkJcp+eiG12i9Ee12eXP2VAI6QtdFRc8=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: Do6OgnR2E8Iy4DGGhWcszr7SeA/TupAI+DlFPIrWpNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Apr 24 23:45:14 2025 GMT Not After : May 1 23:45:14 2025 GMT Subject: CN=680acd0a-3ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:84:da:17:67:ba:4d:1e:72:e2:04:6a:63:32: c3:3d:9c:30:24:27:a2:d6:e5:ca:e9:b6:6d:11:ca: 81:76:5c:e6:41:ee:6a:24:75:28:9d:ea:18:33:07: 96:31:06:e3:f0:ca:79:34:86:bc:61:d0:e4:2c:24: 89:52:cb:e5:c1:e3:7e:e2:97:bb:f8:af:31:20:77: 01:98:2e:83:5b:71:a9:fb:f5:81:77:01:5b:36:51: 7f:2e:9f:72:fa:e3:08:18:ec:de:de:b5:54:b8:fe: c4:a6:06:bb:7a:8d:d2:5d:97:88:09:31:66:d2:b4: f7:62:e1:1e:21:70:50:b0:3c:9e:0e:fb:6b:c2:b7: 6e:e4:91:35:14:c3:8b:01:3a:6c:a0:33:42:ba:fb: e3:85:c1:31:b4:05:4c:2e:c6:4d:3c:19:16:65:e1: 8e:25:37:73:e2:0f:f0:fb:8d:6a:cd:fb:b0:64:6e: 91:50:02:22:b5:b2:48:f9:bd:eb:b6:48:2d:6e:2e: 70:65:67:49:81:39:93:40:55:6f:c7:6e:32:22:3b: 37:d3:7e:22:17:e6:5e:40:00:47:77:b7:7f:8b:22: 5d:12:b9:ec:fd:9e:96:1d:94:9d:b9:ff:4d:79:4d: 62:af:23:02:b1:0f:50:70:fc:10:1a:18:e2:3c:29: 29:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:27:47:BC:9E:59:91:EA:A6:F5:8A:20:51:5F:20:4C:C5:5E:D5:04 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:fc:a2:80:b2:35:eb:bd:ad:f4:64:b4:23:41:c2:24:92:58: a9:7b:a4:fd:dd:c9:e7:47:64:22:75:e8:e7:4f:89:a7:83:a1: 73:6b:15:e8:d1:f3:5b:0f:7a:f2:17:52:18:e7:5d:1a:4a:b8: 16:c3:86:1a:38:34:61:47:e7:61:f1:9b:74:46:26:3d:51:cf: f3:f2:ea:aa:a8:06:07:b2:c0:c5:4a:52:96:97:02:39:4a:92: c6:5e:fc:37:11:17:69:d6:79:a7:18:f1:f0:c3:00:2d:1e:46: 2b:1e:31:a2:99:26:19:65:bb:82:0b:27:d7:41:b8:dc:16:69: 07:e6:b4:bb:64:8a:fc:17:ff:27:5d:d7:4e:80:f1:04:6f:f0: 38:a9:82:04:d6:1c:dd:1d:d8:e7:7d:48:08:83:8b:fa:98:53: ef:a4:ac:5f:0c:7a:ef:9b:12:0c:50:3e:c8:ff:86:f5:45:44: 19:02:f2:c4:aa:91:89:b5:82:43:d8:92:d3:6a:f2:d7:15:d4: 73:65:eb:f9:48:3c:d9:8c:f5:81:5e:3b:c4:09:d4:10:ee:4f: ab:bd:d5:97:1b:6d:ad:c6:a0:e6:74:0a:54:60:e0:1e:ca:50: da:07:61:20:96:fe:01:c2:f6:d9:c5:67:5d:6f:e6:e9:56:f6: 52:4c:f3:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUwNDI0MjM0NTE0WhcNMjUwNTAxMjM0NTE0WjAYMRYwFAYD VQQDEw02ODBhY2QwYS0zYWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04TaF2e6TR5y4gRqYzLDPZwwJCei1uXK6bZtEcqBdlzmQe5qJHUoneoYMweW MQbj8Mp5NIa8YdDkLCSJUsvlweN+4pe7+K8xIHcBmC6DW3Gp+/WBdwFbNlF/Lp9y +uMIGOze3rVUuP7Epga7eo3SXZeICTFm0rT3YuEeIXBQsDyeDvtrwrdu5JE1FMOL ATpsoDNCuvvjhcExtAVMLsZNPBkWZeGOJTdz4g/w+41qzfuwZG6RUAIitbJI+b3r tkgtbi5wZWdJgTmTQFVvx24yIjs3034iF+ZeQABHd7d/iyJdErns/Z6WHZSduf9N eU1iryMCsQ9QcPwQGhjiPCkp4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHknR7ye WZHqpvWKIFFfIEzFXtUEMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs/KKAsjXrva30ZLQjQcIkklipe6T93cnnR2QidejnT4mng6FzaxXo 0fNbD3ryF1IY510aSrgWw4YaODRhR+dh8Zt0RiY9Uc/z8uqqqAYHssDFSlKWlwI5 SpLGXvw3ERdp1nmnGPHwwwAtHkYrHjGimSYZZbuCCyfXQbjcFmkH5rS7ZIr8F/8n XddOgPEEb/A4qYIE1hzdHdjnfUgIg4v6mFPvpKxfDHrvmxIMUD7I/4b1RUQZAvLE qpGJtYJD2JLTavLXFdRzZev5SDzZjPWBXjvECdQQ7k+rvdWXG22txqDmdApUYOAe ylDaB2Eglv4BwvbZxWddb+bpVvZSTPMG -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:56 2025 by rpki-client