$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: IlbKJiWnktN06j7oqKuy0U6A5HkONlIqTryb5zseW24= Subject key identifier: A0:33:EF:01:61:29:53:DA:52:68:62:2F:4A:DA:D9:59:BB:E4:96:1C Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0198 Signing time: Sat 29 Mar 2025 04:35:35 +0000 Manifest this update: Sat 29 Mar 2025 04:35:35 +0000 Manifest next update: Sat 05 Apr 2025 04:35:35 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: hTV2pHvyd4DyvQjrSaDAWwkuH6Hq/FxfJ27eQmqEfn8=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F Validity Not Before: Mar 29 04:35:35 2025 GMT Not After : Apr 5 04:35:35 2025 GMT Subject: CN=67e77897-c7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f3:19:8e:b8:8d:45:74:30:32:f6:c3:6f:49: 2d:09:5f:2e:77:9c:96:77:11:64:1f:9e:0c:cd:70: 37:e6:e7:47:ed:a9:c0:b6:cd:5c:79:36:33:85:7a: 7e:2b:ef:10:cb:6a:28:98:e1:fa:a9:99:af:10:7e: b9:e7:6f:aa:ff:f8:7b:ee:d6:24:80:a4:3f:fc:10: 7e:c9:a7:12:d2:13:3e:04:ab:2d:6f:b9:1b:58:18: 23:47:dc:a7:87:3b:f0:02:b4:b2:a8:a2:82:c2:4c: 2d:ae:c6:13:49:55:7b:b1:36:f2:b4:fa:a4:05:12: 39:2e:48:19:ae:d3:a6:5d:cf:08:12:bc:04:49:b0: 68:5e:5e:b6:86:45:37:b3:e0:89:31:01:38:eb:30: cd:99:d1:1a:72:a4:c1:ce:82:11:cb:b9:0b:af:ff: 1c:a7:d1:f5:ee:3e:3f:26:be:29:7c:a4:bb:7a:00: 68:75:57:92:2c:e1:04:12:53:4b:b5:b5:a2:00:4e: 6d:f9:a6:cc:8b:0a:e9:d7:3c:45:a8:7c:30:13:36: e4:6d:31:a5:98:73:e1:02:38:ee:93:9f:77:53:d9: f5:de:a2:36:f7:28:39:38:1c:74:93:69:cd:e4:59: f2:52:2e:17:f2:fa:d5:c8:d7:01:a4:58:a2:d8:7b: 68:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:33:EF:01:61:29:53:DA:52:68:62:2F:4A:DA:D9:59:BB:E4:96:1C X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:55:f8:e2:91:85:24:3b:b7:d3:1a:77:b4:2c:ff:91:c5:ca: 69:d3:72:1b:93:b8:92:38:b4:d2:dc:60:a8:bc:71:4c:14:f1: 64:c6:a2:2a:45:f3:25:fb:ca:40:ec:a8:c4:cd:b1:33:e0:50: 6c:c8:4d:fb:e6:11:25:86:71:ad:3c:02:f6:84:52:71:eb:75: 4b:67:85:af:50:98:37:41:7f:e9:53:f5:f6:c2:f6:f0:56:48: 44:9e:29:2c:80:d1:48:f1:b3:03:3c:5f:e8:1d:9f:ec:bc:ac: 89:03:a5:f7:53:72:65:24:04:b7:e4:b6:e1:7f:38:cb:db:e4: 88:c5:13:ef:e3:6b:72:73:ea:b6:f5:01:13:2a:ee:d3:11:15: 60:62:12:cc:bb:cc:c7:a6:57:b3:4c:a6:6d:fe:cd:91:cf:e0: 3b:0e:07:78:bb:0d:ae:ec:b7:d0:66:1b:1c:fa:24:c7:39:d0: 6d:7a:42:4e:d6:92:37:85:a6:3d:2a:cd:bf:27:54:df:c1:60: ac:16:ad:eb:76:d6:2e:4c:7c:ba:bd:85:80:ce:e9:01:7b:b0: 0c:c5:09:50:55:e4:69:9f:a0:61:60:e9:a6:da:04:74:79:93: dd:36:36:13:b8:28:ce:34:fb:94:2f:43:d1:33:a6:e9:d4:ae: f7:26:0c:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUwMzI5MDQzNTM1WhcNMjUwNDA1MDQzNTM1WjAYMRYwFAYD VQQDEw02N2U3Nzg5Ny1jN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlPMZjriNRXQwMvbDb0ktCV8ud5yWdxFkH54MzXA35udH7anAts1ceTYzhXp+ K+8Qy2oomOH6qZmvEH6552+q//h77tYkgKQ//BB+yacS0hM+BKstb7kbWBgjR9yn hzvwArSyqKKCwkwtrsYTSVV7sTbytPqkBRI5LkgZrtOmXc8IErwESbBoXl62hkU3 s+CJMQE46zDNmdEacqTBzoIRy7kLr/8cp9H17j4/Jr4pfKS7egBodVeSLOEEElNL tbWiAE5t+abMiwrp1zxFqHwwEzbkbTGlmHPhAjjuk593U9n13qI29yg5OBx0k2nN 5FnyUi4X8vrVyNcBpFii2HtoXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAz7wFh KVPaUmhiL0ra2Vm75JYcMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZVfjikYUkO7fTGne0LP+Rxcpp03Ibk7iSOLTS3GCovHFMFPFkxqIq RfMl+8pA7KjEzbEz4FBsyE375hElhnGtPAL2hFJx63VLZ4WvUJg3QX/pU/X2wvbw VkhEniksgNFI8bMDPF/oHZ/svKyJA6X3U3JlJAS35LbhfzjL2+SIxRPv42tyc+q2 9QETKu7TERVgYhLMu8zHplezTKZt/s2Rz+A7Dgd4uw2u7LfQZhsc+iTHOdBtekJO 1pI3haY9Ks2/J1TfwWCsFq3rdtYuTHy6vYWAzukBe7AMxQlQVeRpn6BhYOmm2gR0 eZPdNjYTuCjONPuUL0PRM6bp1K73JgyH -----END CERTIFICATE-----Generated at Sat Apr 5 01:55:11 2025 by rpki-client