$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: CbEdKzzNfzDB9CBKyAzKGj8iu2w6in+LvXnATu6kxcY= Subject key identifier: E5:A7:69:98:B6:44:37:AA:DF:AE:B7:FE:BD:A3:24:CB:BD:AE:A9:7A Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 010A Signing time: Sat 05 Apr 2025 04:19:41 +0000 Manifest this update: Sat 05 Apr 2025 04:19:40 +0000 Manifest next update: Sat 12 Apr 2025 04:19:40 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: EjrzI1m/38JaEVkMDgsIUmvIPa4TDmqrfhzyh1OWhkk=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B Validity Not Before: Apr 5 04:19:40 2025 GMT Not After : Apr 12 04:19:40 2025 GMT Subject: CN=67f0af5d-2277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:32:94:65:3b:69:6b:43:c2:cb:7b:a2:e7:f8: c2:13:82:8f:25:d7:88:ba:37:0f:56:1d:1d:06:e3: 20:05:fe:d8:58:f9:5e:7c:74:44:3f:d7:87:e8:6e: 9c:8b:06:2c:b0:44:c6:83:73:f5:7d:57:f2:84:07: f7:1f:cf:d2:46:b1:9d:85:37:13:bd:c8:95:3d:9d: e5:45:7f:5f:b3:99:b6:e3:5c:3f:51:ea:49:f8:1b: b2:ca:a6:97:f3:43:0b:df:31:14:53:c6:05:d5:98: 11:ba:b7:c8:d3:6b:e4:9d:79:97:71:a0:74:dd:a2: ee:7b:22:c7:ae:29:3f:1b:61:db:1e:58:a8:ce:f8: db:74:d4:23:5e:9f:46:3b:66:60:11:0e:83:3d:5a: b6:da:f0:40:4e:f8:5e:5e:51:97:d1:ac:ad:2e:21: c3:92:5f:a4:c4:3f:f1:e3:4a:e7:1d:cd:9f:04:fe: a5:73:a8:f8:03:da:1e:63:7d:05:26:79:6c:51:8d: 99:52:1d:af:8e:a7:29:54:b3:8a:4a:9e:d4:3e:3f: 18:3c:79:fa:bb:cc:34:28:e6:1d:b4:db:16:91:8b: de:2c:e4:a4:ae:77:f6:e3:61:da:a0:7b:2c:27:8f: c9:bf:44:36:23:db:df:38:99:83:57:58:f9:ec:63: 34:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A7:69:98:B6:44:37:AA:DF:AE:B7:FE:BD:A3:24:CB:BD:AE:A9:7A X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:e8:a1:86:d8:56:06:15:58:dd:33:a9:66:88:ea:11:d3:65: bb:5e:18:51:91:66:fb:a3:a7:a0:bf:ee:ee:35:26:5a:cc:6d: d6:93:06:6b:e4:43:56:c0:45:64:7b:a9:2a:4d:b7:05:73:ac: ba:80:78:8c:c4:ed:e5:dc:68:ab:4b:93:85:05:47:74:c8:1c: 25:86:69:d6:23:71:22:c6:41:e2:05:e3:df:c2:98:f5:d5:d6: 13:30:f4:90:0b:7f:39:ed:a6:38:49:04:da:d9:c9:4e:51:86: 72:29:e1:e2:1d:bb:8f:3e:73:92:fa:e2:39:9f:c0:4a:0f:e1: 52:31:b9:c2:37:e6:f2:26:c2:91:cd:7e:ee:9a:70:25:ca:3c: 08:c4:ee:28:9e:4c:b1:4d:88:47:27:db:21:61:50:d2:6e:04: f6:c5:8e:46:90:a7:a3:be:07:af:28:db:32:a2:4a:73:1a:51: f2:7e:2f:36:d9:3e:3b:d5:4b:c3:63:42:17:bb:6a:bb:37:b2: fc:e0:d9:3c:2d:3e:69:47:98:8d:1d:c0:af:d1:24:f5:d4:19: bb:6a:b5:6d:c7:46:f3:a4:d7:46:44:15:ca:6b:7c:f7:9d:de: 9a:f8:b1:2b:31:a3:4e:28:37:af:3d:bc:2c:ba:4b:1d:fe:56: 65:90:2d:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUwNDA1MDQxOTQwWhcNMjUwNDEyMDQxOTQwWjAYMRYwFAYD VQQDEw02N2YwYWY1ZC0yMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DKUZTtpa0PCy3ui5/jCE4KPJdeIujcPVh0dBuMgBf7YWPlefHREP9eH6G6c iwYssETGg3P1fVfyhAf3H8/SRrGdhTcTvciVPZ3lRX9fs5m241w/UepJ+BuyyqaX 80ML3zEUU8YF1ZgRurfI02vknXmXcaB03aLueyLHrik/G2HbHliozvjbdNQjXp9G O2ZgEQ6DPVq22vBATvheXlGX0aytLiHDkl+kxD/x40rnHc2fBP6lc6j4A9oeY30F JnlsUY2ZUh2vjqcpVLOKSp7UPj8YPHn6u8w0KOYdtNsWkYveLOSkrnf242HaoHss J4/Jv0Q2I9vfOJmDV1j57GM0dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWnaZi2 RDeq3663/r2jJMu9rql6MB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ6KGG2FYGFVjdM6lmiOoR02W7XhhRkWb7o6egv+7uNSZazG3WkwZr 5ENWwEVke6kqTbcFc6y6gHiMxO3l3GirS5OFBUd0yBwlhmnWI3EixkHiBePfwpj1 1dYTMPSQC3857aY4SQTa2clOUYZyKeHiHbuPPnOS+uI5n8BKD+FSMbnCN+byJsKR zX7umnAlyjwIxO4onkyxTYhHJ9shYVDSbgT2xY5GkKejvgevKNsyokpzGlHyfi82 2T471UvDY0IXu2q7N7L84Nk8LT5pR5iNHcCv0ST11Bm7arVtx0bzpNdGRBXKa3z3 nd6a+LErMaNOKDevPbwsuksd/lZlkC3Q -----END CERTIFICATE-----Generated at Mon Apr 7 01:53:06 2025 by rpki-client