$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft File: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft (raw, json) Hash identifier: 9lLP8Gm4yAayKEzFjOJ7bGSZd8ibWk6c0A/ROzzsBhM= Subject key identifier: 07:8B:66:FE:7D:B0:D7:D5:D0:E7:94:D7:1A:06:A6:10:0B:77:15:2D Authority key identifier: 1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C Certificate issuer: /CN=A91F7BE4/serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Certificate serial: 0FCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft Manifest number: 0FC6 Signing time: Thu 24 Apr 2025 17:29:29 +0000 Manifest this update: Thu 24 Apr 2025 17:29:29 +0000 Manifest next update: Thu 01 May 2025 17:29:29 +0000 Files and hashes: 1: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl (hash: ymJwKxab5V3es51g/ALEzdHAiRFjPO7xfD0wlkDbUfY=) 2: DB63DD0C511311E998B6E814C4F9AE02.roa (hash: Mh1zi5YD9Zt1qZTGwDKJ/p09AgZsGk5KhqRaFO5mGTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4047 (0xfcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7BE4, serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Validity Not Before: Apr 24 17:29:29 2025 GMT Not After : May 1 17:29:29 2025 GMT Subject: CN=680a74f9-4920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:07:89:93:8b:cc:46:de:91:5c:55:44:79:bd: 09:b1:58:06:89:59:1c:86:85:6e:03:92:87:90:59: 5f:84:cc:72:2c:2c:00:f6:eb:e3:8b:06:09:c0:fb: b3:b8:91:7e:43:95:d4:43:82:b1:f2:68:09:7c:ae: ad:aa:12:47:9a:3d:5d:dd:d2:79:a2:41:5a:95:b9: 90:04:70:11:fc:fc:c6:28:87:44:d4:ac:73:b2:ad: f5:9a:b6:67:2e:8a:b6:fd:38:41:d8:b7:51:23:57: 72:d3:8f:59:8c:8e:76:cc:21:0c:89:18:07:47:c1: 6f:b7:e4:16:92:7d:5d:ba:0e:88:37:d0:94:3d:95: ed:46:80:e0:9e:29:d7:de:fe:a0:c7:6f:52:2e:a3: 44:c9:51:80:ec:a4:18:31:d0:79:44:9c:3d:61:5c: 3e:37:84:77:da:96:bc:7f:99:7b:c3:da:79:ad:04: 55:d3:9a:69:91:f1:c8:e9:fa:07:e5:dd:ad:00:f9: 89:dc:ad:54:58:15:72:28:82:66:50:23:78:52:3f: 07:0d:c2:ae:c3:f9:5a:fc:60:17:60:4f:ff:21:c8: f9:f0:9d:42:94:0b:d3:1b:c1:83:c3:61:9b:66:25: f7:d6:f6:6b:60:a1:9f:54:b4:bb:11:aa:e4:42:8a: 47:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8B:66:FE:7D:B0:D7:D5:D0:E7:94:D7:1A:06:A6:10:0B:77:15:2D X509v3 Authority Key Identifier: keyid:1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f1:cd:ca:22:71:04:9a:b6:66:f3:85:9c:6f:e6:13:e3:49: 0f:6e:72:24:46:34:9d:30:d6:23:e2:8f:2e:d6:9a:5b:a7:11: 58:c5:c9:9a:d7:da:da:b8:0e:be:30:0f:f3:7e:ea:2f:c1:f8: 45:b3:22:cd:7b:1c:be:a7:59:37:18:1e:af:5f:fd:b4:aa:3b: 18:89:b2:23:67:43:bb:d1:0b:65:ea:21:b4:62:9a:75:cd:2b: b2:bd:67:28:3f:88:df:1e:7e:65:4e:1f:1b:93:b2:de:5b:85: 4d:54:64:45:2e:01:be:80:2c:51:51:14:2d:8b:52:51:c0:40: 25:ec:7f:9d:94:27:16:07:7f:97:6d:5c:3b:cf:cc:80:78:1e: 68:81:dc:fe:7d:e6:87:ce:ef:f8:67:82:41:50:a3:7a:b2:29: 60:32:a3:77:6f:6c:5d:bd:10:57:47:5c:76:c8:13:a9:ae:04: bd:49:04:7c:73:a5:7f:c8:7f:5b:67:11:af:b9:e7:5e:8e:ec: e0:5f:7a:f3:7f:03:64:aa:21:ff:e0:5b:cf:a9:3a:d5:58:d2: 1b:6b:90:8f:4a:bd:51:ad:83:71:f2:96:af:d9:2f:6c:17:1b: 10:00:7a:8f:dc:ce:23:d4:f0:0d:68:02:85:c9:ac:cf:90:84: 3b:e9:f5:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdCRTQxMTAvBgNVBAUTKDFFNkIzOTQ0QjY3ODhFOTBFOTk3RDhBOEU4MDY3QzU5 NjlCODg5OEMwHhcNMjUwNDI0MTcyOTI5WhcNMjUwNTAxMTcyOTI5WjAYMRYwFAYD VQQDEw02ODBhNzRmOS00OTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsweJk4vMRt6RXFVEeb0JsVgGiVkchoVuA5KHkFlfhMxyLCwA9uvjiwYJwPuz uJF+Q5XUQ4Kx8mgJfK6tqhJHmj1d3dJ5okFalbmQBHAR/PzGKIdE1Kxzsq31mrZn Loq2/ThB2LdRI1dy049ZjI52zCEMiRgHR8Fvt+QWkn1dug6IN9CUPZXtRoDgninX 3v6gx29SLqNEyVGA7KQYMdB5RJw9YVw+N4R32pa8f5l7w9p5rQRV05ppkfHI6foH 5d2tAPmJ3K1UWBVyKIJmUCN4Uj8HDcKuw/la/GAXYE//Icj58J1ClAvTG8GDw2Gb ZiX31vZrYKGfVLS7EarkQopH2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeLZv59 sNfV0OeU1xoGphALdxUtMB8GA1UdIwQYMBaAFB5rOUS2eI6Q6ZfYqOgGfFlpuImM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0JFNC9BMDYzMDVDMjUx MTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpwRHBsOWlvNkFaOFdXbTRp WXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htczVSTFo0anBEcGw5aW82QVo4V1dtNGlZdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0JFNC9BMDYzMDVDMjUxMTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpw RHBsOWlvNkFaOFdXbTRpWXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH8c3KInEEmrZm84Wcb+YT40kPbnIkRjSdMNYj4o8u1ppbpxFYxcma 19rauA6+MA/zfuovwfhFsyLNexy+p1k3GB6vX/20qjsYibIjZ0O70Qtl6iG0Ypp1 zSuyvWcoP4jfHn5lTh8bk7LeW4VNVGRFLgG+gCxRURQti1JRwEAl7H+dlCcWB3+X bVw7z8yAeB5ogdz+feaHzu/4Z4JBUKN6silgMqN3b2xdvRBXR1x2yBOprgS9SQR8 c6V/yH9bZxGvuedejuzgX3rzfwNkqiH/4FvPqTrVWNIba5CPSr1RrYNx8pav2S9s FxsQAHqP3M4j1PANaAKFyazPkIQ76fXK -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:08 2025 by rpki-client