$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft File: HpsNFjzgqhHpHVVg9aPMZp4yke8.mft (raw, json) Hash identifier: jZPDM6VzXUN1SVKBR5jSqLROXTVeYVDkkYNNcsaYAF4= Subject key identifier: 27:61:3A:BD:CC:FD:AD:8B:AB:21:88:46:F2:C2:B5:4A:66:B4:61:5E Authority key identifier: 1E:9B:0D:16:3C:E0:AA:11:E9:1D:55:60:F5:A3:CC:66:9E:32:91:EF Certificate issuer: /CN=A91F0578/serialNumber=1E9B0D163CE0AA11E91D5560F5A3CC669E3291EF Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HpsNFjzgqhHpHVVg9aPMZp4yke8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft Manifest number: 38 Signing time: Fri 25 Apr 2025 06:33:10 +0000 Manifest this update: Fri 25 Apr 2025 06:33:10 +0000 Manifest next update: Fri 02 May 2025 06:33:10 +0000 Files and hashes: 1: HpsNFjzgqhHpHVVg9aPMZp4yke8.crl (hash: FQ3ToKOeg0I0aj/u/9zVHu9d1h0E6I7J7OA7gTdbtbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.crl rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HpsNFjzgqhHpHVVg9aPMZp4yke8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1E9B0D163CE0AA11E91D5560F5A3CC669E3291EF Validity Not Before: Apr 25 06:33:10 2025 GMT Not After : May 2 06:33:10 2025 GMT Subject: CN=680b2ca6-672c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:46:4c:c1:f7:cb:80:07:6e:81:a7:14:d8:3b: e4:75:48:44:e6:c3:48:22:e2:d8:85:a5:4d:a6:06: 0b:30:bc:cc:ea:a1:f9:2e:1b:2e:a3:cd:56:70:da: 56:4c:aa:34:3c:16:13:21:1d:08:fc:16:7c:08:b8: ac:99:34:8e:0b:a5:04:4a:e0:7e:8d:75:cf:f4:1b: 54:48:6f:25:da:f7:55:69:c6:9f:c5:8b:bd:b2:3f: fb:2b:32:6e:5f:9d:d4:97:2c:9d:7c:71:03:5f:93: f6:e6:b1:23:6d:1e:b6:72:3c:0b:c3:0d:35:d3:21: 37:0a:88:09:97:8f:65:f5:46:b9:f0:17:98:37:8c: 23:2d:22:67:f2:a1:01:8d:e1:99:86:f0:59:f2:3b: cb:54:ee:df:11:a9:f4:37:1d:8f:9a:bd:49:3f:77: 0d:fd:b7:dc:b5:d2:3b:d2:de:8e:8f:0a:8d:30:d3: 4b:08:6a:36:50:69:a4:29:88:6f:6b:6b:fa:80:27: df:04:08:5a:82:00:95:de:23:83:39:c0:0c:0e:bd: 4c:36:07:6b:ff:e2:1c:2d:20:1c:27:fb:2f:fb:30: 1f:cc:f1:31:96:49:08:19:a6:f0:cb:2d:51:47:3d: 20:30:08:8e:a6:cd:59:02:09:f1:ce:3b:e1:81:46: 8e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:61:3A:BD:CC:FD:AD:8B:AB:21:88:46:F2:C2:B5:4A:66:B4:61:5E X509v3 Authority Key Identifier: keyid:1E:9B:0D:16:3C:E0:AA:11:E9:1D:55:60:F5:A3:CC:66:9E:32:91:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HpsNFjzgqhHpHVVg9aPMZp4yke8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:88:31:b2:57:06:18:88:cd:48:89:ed:ec:d3:61:d6:e4:ce: 81:29:bc:f0:7f:81:a8:de:de:5d:01:2e:bc:b7:ea:6d:22:26: dc:a1:52:5f:d9:ac:f6:97:40:48:aa:23:be:e7:d1:61:b4:60: cb:2c:97:c0:0e:d5:56:8b:d4:a1:f9:45:dd:bc:ac:0d:50:7c: 91:8b:5c:20:67:da:a4:36:e5:72:e3:c6:b4:c4:21:25:06:73: 2f:68:c2:c5:92:28:d1:aa:ed:ef:f5:bc:77:9c:92:31:d5:0c: 56:8d:34:9a:a7:86:b8:59:f0:c5:6d:4d:e5:d7:5c:9b:df:01: 76:a0:2f:cf:32:db:0c:08:b6:70:48:7d:61:8e:f2:df:52:c9: c0:53:7e:2d:1d:5f:6d:6e:8b:82:a7:23:d7:a6:c1:e5:d0:99: f3:7a:eb:dc:bb:58:85:a2:e1:4b:70:f3:2d:0d:4c:f2:57:c1: 98:42:de:47:9b:a3:f0:bd:5e:ed:9d:78:21:e3:23:7d:dd:9a: 04:86:9a:11:99:e2:20:6e:3c:96:4d:0c:94:e4:97:44:bd:64: 8d:14:dd:71:fa:60:97:14:d3:1f:a4:e1:76:01:a2:77:22:f9: 4f:5f:c0:63:16:86:a7:cf:ff:8e:ab:4f:ed:75:7d:8f:d6:c6: 3a:c6:ff:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDU3ODExMC8GA1UEBRMoMUU5QjBEMTYzQ0UwQUExMUU5MUQ1NTYwRjVBM0NDNjY5 RTMyOTFFRjAeFw0yNTA0MjUwNjMzMTBaFw0yNTA1MDIwNjMzMTBaMBgxFjAUBgNV BAMTDTY4MGIyY2E2LTY3MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtRkzB98uAB26BpxTYO+R1SETmw0gi4tiFpU2mBgswvMzqofkuGy6jzVZw2lZM qjQ8FhMhHQj8FnwIuKyZNI4LpQRK4H6Ndc/0G1RIbyXa91Vpxp/Fi72yP/srMm5f ndSXLJ18cQNfk/bmsSNtHrZyPAvDDTXTITcKiAmXj2X1RrnwF5g3jCMtImfyoQGN 4ZmG8FnyO8tU7t8RqfQ3HY+avUk/dw39t9y10jvS3o6PCo0w00sIajZQaaQpiG9r a/qAJ98ECFqCAJXeI4M5wAwOvUw2B2v/4hwtIBwn+y/7MB/M8TGWSQgZpvDLLVFH PSAwCI6mzVkCCfHOO+GBRo63AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ2E6vcz9 rYurIYhG8sK1Sma0YV4wHwYDVR0jBBgwFoAUHpsNFjzgqhHpHVVg9aPMZp4yke8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNTc4LzA5NTMwQThDQ0Yz RDExRUY5MTM4MEUxMUM0RjlBRTAyL0hwc05GanpncWhIcEhWVmc5YVBNWnA0eWtl OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSHBzTkZqemdxaEhwSFZWZzlhUE1acDR5a2U4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw NTc4LzA5NTMwQThDQ0YzRDExRUY5MTM4MEUxMUM0RjlBRTAyL0hwc05GanpncWhI cEhWVmc5YVBNWnA0eWtlOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANGIMbJXBhiIzUiJ7ezTYdbkzoEpvPB/gaje3l0BLry36m0iJtyhUl/Z rPaXQEiqI77n0WG0YMssl8AO1VaL1KH5Rd28rA1QfJGLXCBn2qQ25XLjxrTEISUG cy9owsWSKNGq7e/1vHeckjHVDFaNNJqnhrhZ8MVtTeXXXJvfAXagL88y2wwItnBI fWGO8t9SycBTfi0dX21ui4KnI9emweXQmfN669y7WIWi4Utw8y0NTPJXwZhC3keb o/C9Xu2deCHjI33dmgSGmhGZ4iBuPJZNDJTkl0S9ZI0U3XH6YJcU0x+k4XYBonci +U9fwGMWhqfP/46rT+11fY/WxjrG/zg= -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:01 2025 by rpki-client