$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: h8q7lrd2H2RH0wL48p1oR0Mv+TW7j2OQzUGGGUF1fq8= Subject key identifier: 4C:43:2F:C6:A9:41:79:96:03:94:A9:7F:78:DA:4C:4B:5B:4C:A5:2A Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 39 Signing time: Fri 25 Apr 2025 06:32:25 +0000 Manifest this update: Fri 25 Apr 2025 06:32:24 +0000 Manifest next update: Fri 02 May 2025 06:32:24 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: bo1Os5ktm5NQX3PHThbraKWpCcyHy00RGvchNLe1AX0=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Apr 25 06:32:24 2025 GMT Not After : May 2 06:32:24 2025 GMT Subject: CN=680b2c79-f215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:56:83:4d:54:32:05:3d:cc:00:50:07:3b:85: ef:63:0d:b7:7a:8e:61:60:cb:89:71:ab:d7:36:de: 7d:19:23:10:a3:81:11:4a:de:b2:57:ac:0f:47:8c: bc:66:00:ec:f4:66:5f:07:ba:0c:e6:6f:e7:10:23: 2b:f2:29:46:09:7d:34:fd:74:2d:c1:9c:88:b5:ad: cd:3d:e1:3d:e5:3f:29:8e:cd:04:56:41:38:e0:7d: 74:47:f8:a3:d3:48:d6:5c:bc:b6:65:48:0a:ea:4a: 13:8e:cc:05:4d:bd:89:ab:3d:5f:16:46:65:18:07: 18:6c:08:43:98:3b:b8:c0:b3:4f:b3:cc:5a:6e:38: 34:54:30:b0:b1:08:b7:23:19:19:68:cd:eb:e3:b6: 3c:39:c4:9e:cd:cb:ae:5b:e0:9c:38:70:6e:96:1b: 3b:70:fc:eb:73:a4:9d:e7:f4:f8:25:2c:53:54:47: b1:90:cb:54:27:84:c0:94:5e:fc:35:7c:2e:a7:35: a0:03:8b:d7:e3:e0:81:6a:1d:3b:1a:09:72:57:d3: 61:0e:cb:0d:78:8d:48:0b:31:16:3f:3a:49:e0:76: 3f:2a:c9:89:75:0f:9b:f1:d9:83:e1:45:c0:3e:50: 9e:24:41:14:f3:f4:c3:97:c8:7f:d4:9e:9f:1e:a6: bc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:43:2F:C6:A9:41:79:96:03:94:A9:7F:78:DA:4C:4B:5B:4C:A5:2A X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:00:a8:ae:5e:ca:fb:ac:ed:b8:81:6e:2d:01:c9:81:32:fe: 03:79:3f:20:93:a9:a9:42:4b:42:9d:ef:4f:26:a6:00:45:7f: 7a:55:f6:df:b1:fe:47:d0:ee:13:6a:95:0a:09:4d:16:a4:de: 8e:4c:a1:b5:2d:bd:9b:a5:49:22:e3:bb:97:ee:ed:04:d4:3e: 46:ad:bd:07:3f:b2:b0:1c:1c:94:02:27:ec:2a:23:28:a2:c4: f6:d2:f5:f5:cf:ac:5d:0c:87:6e:6c:40:dc:9a:8b:05:eb:48: 03:ac:a0:c8:5d:24:5e:cb:ce:a5:4f:5b:99:b1:f0:c7:1e:a9: a2:58:49:9d:34:4f:3e:cc:c1:9c:81:07:c3:48:e2:1b:14:0f: a4:a6:31:bc:4b:95:26:a2:08:d6:48:b4:41:ac:2c:82:21:0e: bc:5b:95:de:4d:20:70:8f:38:eb:89:9e:a6:97:1d:91:b7:d7: b2:49:0b:99:4d:fa:f8:47:51:6e:1d:40:6f:8b:48:9f:19:96: 8e:f9:d1:16:07:8d:c7:6c:d4:57:7d:08:1f:e5:3b:ac:ea:c9: 21:36:4b:04:4a:0c:87:a6:09:dc:2c:b7:8f:de:0e:5d:26:ff: a5:d9:7f:1f:68:5f:4e:6f:ea:dd:b2:35:e3:66:3e:8d:fc:ed: ed:52:3b:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NUJDQzExMC8GA1UEBRMoMUU0OEVGRTUzRTYyRUQyMDRCQTdBNjk0Mzg0Q0JBQzky NDY3OTRBNzAeFw0yNTA0MjUwNjMyMjRaFw0yNTA1MDIwNjMyMjRaMBgxFjAUBgNV BAMTDTY4MGIyYzc5LWYyMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtVoNNVDIFPcwAUAc7he9jDbd6jmFgy4lxq9c23n0ZIxCjgRFK3rJXrA9HjLxm AOz0Zl8Hugzmb+cQIyvyKUYJfTT9dC3BnIi1rc094T3lPymOzQRWQTjgfXRH+KPT SNZcvLZlSArqShOOzAVNvYmrPV8WRmUYBxhsCEOYO7jAs0+zzFpuODRUMLCxCLcj GRlozevjtjw5xJ7Ny65b4Jw4cG6WGztw/OtzpJ3n9PglLFNUR7GQy1QnhMCUXvw1 fC6nNaADi9fj4IFqHTsaCXJX02EOyw14jUgLMRY/Okngdj8qyYl1D5vx2YPhRcA+ UJ4kQRTz9MOXyH/Unp8epryJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTEMvxqlB eZYDlKl/eNpMS1tMpSowHwYDVR0jBBgwFoAUHkjv5T5i7SBLp6aUOEy6ySRnlKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1QkNDL0I5NTg4QkFDQ0U3 ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGtqdjVUNWk3U0JMcDZhVU9FeTZ5U1JubEtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 QkNDL0I5NTg4QkFDQ0U3ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NC THA2YVVPRXk2eVNSbmxLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUAqK5eyvus7biBbi0ByYEy/gN5PyCTqalCS0Kd708mpgBFf3pV9t+x /kfQ7hNqlQoJTRak3o5MobUtvZulSSLju5fu7QTUPkatvQc/srAcHJQCJ+wqIyii xPbS9fXPrF0Mh25sQNyaiwXrSAOsoMhdJF7LzqVPW5mx8MceqaJYSZ00Tz7MwZyB B8NI4hsUD6SmMbxLlSaiCNZItEGsLIIhDrxbld5NIHCPOOuJnqaXHZG317JJC5lN +vhHUW4dQG+LSJ8Zlo750RYHjcds1Fd9CB/lO6zqySE2SwRKDIemCdwst4/eDl0m /6XZfx9oX05v6t2yNeNmPo387e1SO7Y= -----END CERTIFICATE-----Generated at Sat Apr 26 05:22:22 2025 by rpki-client