$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: 47WY9YogBs7TvDFgbkHSCDKZceBtYe3AyF9uzaEl5ZU= Subject key identifier: 53:45:89:48:5A:37:DD:53:7B:D4:A7:96:96:B4:78:B0:3A:B5:1D:4F Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0BB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0BAF Signing time: Thu 24 Apr 2025 18:50:05 +0000 Manifest this update: Thu 24 Apr 2025 18:50:05 +0000 Manifest next update: Thu 01 May 2025 18:50:05 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: ZtFvO0/iqbxh1Q8nDnptzA6jdzH1muqxsDSTaPmGNtc=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: EeQ1Nt52m1hyZ6VPZEPVHxza1Z77ig7QYE1EDDBnm08=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: TRjcmxyqZohfOlB4LLbzqsFvH4uXUeHEH5tCE+DExYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Apr 24 18:50:05 2025 GMT Not After : May 1 18:50:05 2025 GMT Subject: CN=680a87dd-3c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ea:05:ab:67:d1:0a:9a:d6:64:64:28:36:3d: d8:91:b2:ca:d8:2c:0e:36:27:4f:39:9f:d3:e9:55: 89:a5:e6:6f:bc:88:d3:b1:d3:51:f2:9a:b7:5e:33: 97:b3:a5:62:09:ad:7f:9e:d6:cf:74:cf:b0:97:de: b0:6e:c4:23:8c:c1:ae:98:14:f5:af:1c:10:e0:98: 3a:18:84:6e:45:00:3c:16:37:ae:c6:f3:02:40:18: 84:e8:7e:a6:a0:54:a4:57:1d:36:03:09:de:f3:b6: 3e:39:1b:5b:37:5d:9f:04:7c:86:77:f1:f6:29:6f: 33:51:2a:23:83:7d:ba:14:61:83:e7:c3:de:61:e3: 1b:55:7f:09:2c:d2:04:86:b5:47:4d:0a:94:33:3c: 04:a4:bc:84:a9:d5:ad:cd:af:af:0d:cc:4f:56:37: 6f:1f:59:84:3a:89:73:b4:3c:5a:2a:8b:14:6a:5b: a0:94:9f:2c:6f:32:db:cb:9b:19:92:67:09:53:72: b9:3b:f8:fe:77:72:fc:82:ce:bf:e0:19:57:1f:c8: d4:5e:01:0b:53:06:0a:1f:a9:17:88:7f:35:e2:4c: c0:30:93:5d:da:8d:1d:2b:45:1c:92:01:31:27:b5: 1b:06:5c:50:74:c6:fb:7d:cc:91:30:35:7f:82:30: 12:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:45:89:48:5A:37:DD:53:7B:D4:A7:96:96:B4:78:B0:3A:B5:1D:4F X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:1e:26:68:ce:3b:cb:4e:fd:1e:55:e5:f6:e4:92:6e:96:5b: ab:c9:8a:33:46:98:a6:a5:e0:38:64:35:a8:f6:c8:0a:56:70: e5:de:a9:f2:1e:dc:ea:7c:3b:22:1e:85:b6:ae:96:d3:a2:1f: 96:b8:06:06:c1:6f:39:2d:7c:b2:7c:8f:0a:52:98:1f:89:05: 97:f0:14:17:6e:41:36:db:f0:7d:ef:d6:f6:90:60:c4:e4:cd: b6:5e:15:73:6c:f1:e5:6b:67:57:36:12:81:3c:0a:c5:f3:2b: 43:13:73:77:2a:6c:b1:46:1f:53:6e:bb:34:02:18:9e:29:d6: 09:ba:84:0a:ec:3c:a9:05:cf:fc:25:40:69:01:fe:73:43:97: bc:98:69:bc:41:34:1f:45:80:db:e6:2f:6d:dc:61:f0:cc:6e: b1:f6:b8:01:08:b2:06:6f:9b:58:1f:63:8a:11:35:ed:c1:72: 06:d4:33:a3:3c:0c:c1:be:23:e6:23:73:41:4d:c8:b4:65:38: 63:27:d0:2c:16:85:ee:d3:ce:43:79:38:1f:c8:6b:b0:cc:40: 2e:1a:00:57:b4:1f:c2:ce:28:76:18:1b:e9:6e:af:6e:eb:17: da:a5:eb:3c:b7:40:3c:e5:87:f9:00:d0:f9:fd:60:8e:6a:c2: 31:5a:c8:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUwNDI0MTg1MDA1WhcNMjUwNTAxMTg1MDA1WjAYMRYwFAYD VQQDEw02ODBhODdkZC0zYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+oFq2fRCprWZGQoNj3YkbLK2CwONidPOZ/T6VWJpeZvvIjTsdNR8pq3XjOX s6ViCa1/ntbPdM+wl96wbsQjjMGumBT1rxwQ4Jg6GIRuRQA8FjeuxvMCQBiE6H6m oFSkVx02Awne87Y+ORtbN12fBHyGd/H2KW8zUSojg326FGGD58PeYeMbVX8JLNIE hrVHTQqUMzwEpLyEqdWtza+vDcxPVjdvH1mEOolztDxaKosUaluglJ8sbzLby5sZ kmcJU3K5O/j+d3L8gs6/4BlXH8jUXgELUwYKH6kXiH814kzAMJNd2o0dK0UckgEx J7UbBlxQdMb7fcyRMDV/gjASvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNFiUha N91Te9Snlpa0eLA6tR1PMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6HiZozjvLTv0eVeX25JJulluryYozRpimpeA4ZDWo9sgKVnDl3qny HtzqfDsiHoW2rpbToh+WuAYGwW85LXyyfI8KUpgfiQWX8BQXbkE22/B979b2kGDE 5M22XhVzbPHla2dXNhKBPArF8ytDE3N3KmyxRh9Tbrs0AhieKdYJuoQK7DypBc/8 JUBpAf5zQ5e8mGm8QTQfRYDb5i9t3GHwzG6x9rgBCLIGb5tYH2OKETXtwXIG1DOj PAzBviPmI3NBTci0ZThjJ9AsFoXu085DeTgfyGuwzEAuGgBXtB/Czih2GBvpbq9u 6xfapes8t0A85Yf5AND5/WCOasIxWsh1 -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:54 2025 by rpki-client