$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft File: HT2u99J4g3Pt38sa1cTCNWxXre0.mft (raw, json) Hash identifier: 7UChCvD+5HclSwFTjKAEYQOzo8TznOkpLlytCajvcH8= Subject key identifier: ED:BB:13:53:05:A2:7D:58:7A:75:A3:16:B4:A4:18:4B:3E:96:A8:B8 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft Manifest number: 3C Signing time: Fri 25 Apr 2025 06:33:13 +0000 Manifest this update: Fri 25 Apr 2025 06:33:12 +0000 Manifest next update: Fri 02 May 2025 06:33:12 +0000 Files and hashes: 1: HT2u99J4g3Pt38sa1cTCNWxXre0.crl (hash: 0ycNjSyERRCAqB9F9UCvNMGOHP74zXxbWIX41BqzGTQ=) 2: 8B349526E61B11EFA5CFAA1CC4F9AE02.roa (hash: ne8tUgudan5gCr0Fj4AbK9IugW5sTtsGHmdJgQPhqp8=) 3: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (hash: vLRSLWwCPlw1XgMXqIwjNZRh5iifhLT67LBNrNkXRO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Validity Not Before: Apr 25 06:33:12 2025 GMT Not After : May 2 06:33:12 2025 GMT Subject: CN=680b2ca9-ff23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2a:61:29:5c:73:16:20:8e:b8:0f:69:09:98: ec:7b:20:fb:d8:12:8b:37:a3:f4:8d:8a:e4:15:b7: 56:cd:2c:36:82:98:f8:bb:40:d3:96:fb:fd:49:79: 4a:70:2e:cb:7f:d4:dd:00:2e:8f:c7:e5:81:ea:c0: f2:e5:d8:f5:46:46:05:14:3d:c9:dc:e8:a1:c8:dd: 8e:53:1b:63:bb:6e:f6:dd:c3:5e:f7:c2:65:41:cd: a3:c2:a4:11:bb:06:e1:03:59:a4:07:d2:91:18:63: 42:8d:e6:9a:cc:ed:08:4f:17:ef:54:ea:97:6e:2a: 19:cf:d4:98:47:73:7f:63:5e:79:3c:42:a3:b7:34: 10:c5:5b:aa:db:21:1a:55:09:ab:b5:01:74:87:92: b7:15:63:58:c5:95:0b:1c:1e:bd:bf:81:29:c9:e5: a3:b4:72:22:a7:c8:cd:e9:3d:d9:9d:df:40:e6:c8: dc:ea:51:a1:45:94:aa:b9:60:cd:21:95:d3:c3:0f: 3c:54:76:a3:7d:34:13:fe:4a:b9:ba:1c:db:76:b9: ff:70:78:e5:31:71:75:f6:87:63:a6:04:cd:77:74: be:d1:61:ea:74:d9:8f:1f:e2:73:cd:fe:a2:95:40: e8:05:61:ae:d7:51:a4:4e:71:c2:58:17:9d:28:e2: cd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BB:13:53:05:A2:7D:58:7A:75:A3:16:B4:A4:18:4B:3E:96:A8:B8 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:cb:44:0b:dd:c5:f5:ad:e4:ad:30:49:e2:9f:49:95:47:1b: 33:b7:f1:06:cd:ef:96:d6:9a:17:64:83:fc:e2:de:2e:58:61: 52:b4:50:e5:7f:bf:2f:20:bb:b4:da:f1:85:fa:6c:e9:ca:c5: 45:8a:ca:d2:f4:15:0a:85:f0:98:cf:d3:12:9d:e9:ad:19:2e: 0e:bb:b5:a3:57:a9:c1:f0:ab:b1:0a:dc:12:cf:47:3b:25:db: 54:f1:bd:1d:88:2d:2c:ad:8f:78:d6:fd:ad:97:87:5c:df:a0: ba:f4:aa:1f:31:64:c2:10:0e:92:f9:bf:91:6e:9c:d9:74:bb: a2:92:e8:68:10:ff:8c:b3:3f:72:d6:e3:e2:99:99:8a:ab:98: 44:f6:ab:0b:96:23:63:14:99:ec:2e:18:aa:da:b8:24:84:0a: 6b:4f:22:fd:7f:09:36:2d:3c:cc:8c:a5:32:cc:a1:33:c9:fe: 09:1b:74:7f:fc:96:b9:7f:e8:f9:bf:bf:82:18:55:93:29:c1: e3:01:3d:24:b6:1b:fe:9f:94:cc:8e:02:79:22:d7:b0:11:a0: 44:5d:50:06:2e:09:82:53:28:a2:04:82:3b:0f:51:fe:43:5f: c5:e2:f4:28:4f:b8:47:a2:d8:6b:67:41:24:36:da:87:c7:e5: 25:08:71:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDU3ODExMC8GA1UEBRMoMUQzREFFRjdEMjc4ODM3M0VEREZDQjFBRDVDNEMyMzU2 QzU3QURFRDAeFw0yNTA0MjUwNjMzMTJaFw0yNTA1MDIwNjMzMTJaMBgxFjAUBgNV BAMTDTY4MGIyY2E5LWZmMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8KmEpXHMWII64D2kJmOx7IPvYEos3o/SNiuQVt1bNLDaCmPi7QNOW+/1JeUpw Lst/1N0ALo/H5YHqwPLl2PVGRgUUPcnc6KHI3Y5TG2O7bvbdw173wmVBzaPCpBG7 BuEDWaQH0pEYY0KN5prM7QhPF+9U6pduKhnP1JhHc39jXnk8QqO3NBDFW6rbIRpV Cau1AXSHkrcVY1jFlQscHr2/gSnJ5aO0ciKnyM3pPdmd30DmyNzqUaFFlKq5YM0h ldPDDzxUdqN9NBP+Srm6HNt2uf9weOUxcXX2h2OmBM13dL7RYep02Y8f4nPN/qKV QOgFYa7XUaROccJYF50o4s0hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7bsTUwWi fVh6daMWtKQYSz6WqLgwHwYDVR0jBBgwFoAUHT2u99J4g3Pt38sa1cTCNWxXre0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNTc4LzAwM0E3OURBQ0Yz RDExRUY5MTM4MEUxMUM0RjlBRTAyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSFQydTk5SjRnM1B0MzhzYTFjVENOV3hYcmUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw NTc4LzAwM0E3OURBQ0YzRDExRUY5MTM4MEUxMUM0RjlBRTAyL0hUMnU5OUo0ZzNQ dDM4c2ExY1RDTld4WHJlMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIfLRAvdxfWt5K0wSeKfSZVHGzO38QbN75bWmhdkg/zi3i5YYVK0UOV/ vy8gu7Ta8YX6bOnKxUWKytL0FQqF8JjP0xKd6a0ZLg67taNXqcHwq7EK3BLPRzsl 21TxvR2ILSytj3jW/a2Xh1zfoLr0qh8xZMIQDpL5v5FunNl0u6KS6GgQ/4yzP3LW 4+KZmYqrmET2qwuWI2MUmewuGKrauCSECmtPIv1/CTYtPMyMpTLMoTPJ/gkbdH/8 lrl/6Pm/v4IYVZMpweMBPSS2G/6flMyOAnki17ARoERdUAYuCYJTKKIEgjsPUf5D X8Xi9ChPuEei2GtnQSQ22ofH5SUIcaI= -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:36 2025 by rpki-client