$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: 2YnD5SdemnOms/HCU5aw9uR53sAjuexGrtL0Rx3bThM= Subject key identifier: 94:59:AC:97:73:E0:7E:21:69:7A:05:B5:E2:5A:68:CA:D7:0F:CA:37 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 09E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 09DC Signing time: Thu 24 Apr 2025 19:49:01 +0000 Manifest this update: Thu 24 Apr 2025 19:49:00 +0000 Manifest next update: Thu 01 May 2025 19:49:00 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: auecRh3d47t0E7GA/c4hxgycgao4/vPu3vXlw02M9Mo=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: pkQyF6/gfOZsdS2FZ7pXb1wwkEQgEQkFPici094hylM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2534 (0x9e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Apr 24 19:49:00 2025 GMT Not After : May 1 19:49:00 2025 GMT Subject: CN=680a95ac-20d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0a:2a:56:84:11:14:53:ed:50:bf:50:e0:28: 56:ef:7d:03:f5:57:ee:9b:23:5c:a9:2e:aa:18:44: fe:df:de:08:ae:aa:c7:04:1c:5b:6b:4f:8e:31:fa: 7d:08:90:b9:f3:07:b1:90:8e:da:a0:8c:2b:99:c3: f7:ac:d6:9d:1f:4d:95:61:69:b4:f3:4a:66:50:39: fc:bb:36:3b:df:d8:f7:56:ea:4c:02:69:de:9b:86: 66:4c:54:88:36:6f:f9:24:db:76:40:f4:6e:89:af: 0e:6d:65:cc:30:95:9e:ac:33:c6:fb:5c:fc:dd:a5: 6e:35:88:b3:87:a4:da:4c:bc:df:1f:14:da:47:9c: 41:fd:7b:f0:f5:28:f8:5d:cc:cb:b2:5b:5c:cf:6c: a7:f4:40:c9:c2:fb:b5:f8:b7:26:b6:0a:f1:83:57: 94:4a:fc:46:c1:c7:08:ba:7b:93:8c:f9:79:58:26: 78:10:6b:b6:4d:99:b1:51:05:6b:89:17:c5:a5:af: e7:00:4a:75:bf:ef:62:0e:14:fc:99:b1:27:04:22: ac:9e:dd:da:7e:8d:8a:f6:5f:83:5b:8d:09:cb:a7: 8c:ff:22:46:4e:17:58:88:1b:00:57:bd:d1:58:cc: f7:8c:4a:66:2d:b6:da:22:d0:f9:fb:53:61:50:72: 4a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:59:AC:97:73:E0:7E:21:69:7A:05:B5:E2:5A:68:CA:D7:0F:CA:37 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:49:24:65:72:de:fd:ff:57:fb:11:6b:07:6a:fd:ff:bf:8e: ba:6e:e7:66:04:82:9f:26:e6:b2:d0:dc:4f:eb:4a:41:62:68: 60:27:dc:fc:64:00:1e:a1:77:fe:e3:59:55:70:9c:04:fd:d5: fe:40:f0:4a:9b:c1:64:09:a9:54:54:d9:22:be:bb:2b:2e:86: 97:c8:6b:2e:63:80:b3:6c:27:19:75:85:1e:1c:36:3e:cf:d7: 23:93:ae:c5:4e:4f:ad:10:ba:cd:70:21:e7:94:f3:0a:e7:0d: 1d:40:d1:50:e8:25:f3:18:26:e1:de:58:ad:86:9d:03:32:f6: ad:4e:55:ec:6c:77:d1:8b:37:34:a5:35:d3:68:da:4f:bb:da: 05:5a:0a:3c:70:9d:e4:fa:08:4d:ec:8f:18:57:7a:71:9c:cc: fd:b0:a8:88:a8:11:aa:8f:b5:32:89:f7:5c:80:00:39:c8:ea: 05:bd:1e:02:3e:5c:f7:e3:ec:f4:24:06:3f:e7:41:f6:d5:b9: 5c:f4:f3:bc:7b:17:42:8d:9e:6a:fd:2e:5e:ec:9c:fa:3f:9d: 05:d1:07:fd:22:1f:ff:bd:78:9c:e7:9a:d9:11:f5:3d:5e:1f: c5:0d:06:21:24:cd:39:2a:07:bc:4b:45:4e:af:08:f3:1e:58: 0c:6c:1b:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUwNDI0MTk0OTAwWhcNMjUwNTAxMTk0OTAwWjAYMRYwFAYD VQQDEw02ODBhOTVhYy0yMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAoqVoQRFFPtUL9Q4ChW730D9VfumyNcqS6qGET+394IrqrHBBxba0+OMfp9 CJC58wexkI7aoIwrmcP3rNadH02VYWm080pmUDn8uzY739j3VupMAmnem4ZmTFSI Nm/5JNt2QPRuia8ObWXMMJWerDPG+1z83aVuNYizh6TaTLzfHxTaR5xB/Xvw9Sj4 XczLsltcz2yn9EDJwvu1+Lcmtgrxg1eUSvxGwccIunuTjPl5WCZ4EGu2TZmxUQVr iRfFpa/nAEp1v+9iDhT8mbEnBCKsnt3afo2K9l+DW40Jy6eM/yJGThdYiBsAV73R WMz3jEpmLbbaItD5+1NhUHJKjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRZrJdz 4H4haXoFteJaaMrXD8o3MB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdSSRlct79/1f7EWsHav3/v466budmBIKfJuay0NxP60pBYmhgJ9z8 ZAAeoXf+41lVcJwE/dX+QPBKm8FkCalUVNkivrsrLoaXyGsuY4CzbCcZdYUeHDY+ z9cjk67FTk+tELrNcCHnlPMK5w0dQNFQ6CXzGCbh3lithp0DMvatTlXsbHfRizc0 pTXTaNpPu9oFWgo8cJ3k+ghN7I8YV3pxnMz9sKiIqBGqj7UyifdcgAA5yOoFvR4C Plz34+z0JAY/50H21blc9PO8exdCjZ5q/S5e7Jz6P50F0Qf9Ih//vXic55rZEfU9 Xh/FDQYhJM05Kge8S0VOrwjzHlgMbBso -----END CERTIFICATE-----Generated at Sat Apr 26 14:37:15 2025 by rpki-client