$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft File: hnHJZ--Azj0S3OowSRuUb9cGh8A.mft (raw, json) Hash identifier: MafXQq689vQC7fb0zRLRGUq5jn/HhqpaA0Fhp+M6dl8= Subject key identifier: 79:F9:41:1D:C0:3E:4F:9F:99:0A:67:16:AA:94:A2:6A:37:FC:5A:E6 Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 1396 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft Manifest number: 1366 Signing time: Fri 04 Apr 2025 17:06:04 +0000 Manifest this update: Fri 04 Apr 2025 17:06:03 +0000 Manifest next update: Fri 11 Apr 2025 17:06:03 +0000 Files and hashes: 1: hnHJZ--Azj0S3OowSRuUb9cGh8A.crl (hash: OeiGlGyAa10/fbrYu+0BTX169Cu/zEd8SQXFD58gaTM=) 2: F046E896E9B411EFADF57822C4F9AE02.roa (hash: GMfaRkgZtU0bibSF5X1yqmKnNBnQN18neJaY0c9lA5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:06:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5014 (0x1396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E Validity Not Before: Apr 4 17:06:03 2025 GMT Not After : Apr 11 17:06:03 2025 GMT Subject: CN=67f0117c-5e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:ef:d3:ac:e7:5f:b1:29:81:3d:be:72:df: c3:f6:96:14:48:fa:20:4f:ae:63:99:74:9f:f8:32: b7:95:09:b4:15:52:2f:fe:6b:f9:e4:c7:9d:0d:80: 51:5d:25:91:75:20:d7:77:e9:a7:01:7a:23:51:0d: 77:63:1e:37:8d:aa:a1:8b:de:05:4d:69:a4:49:bb: ae:f6:29:1e:a6:ad:e0:dd:9d:ff:18:87:05:90:6c: 07:df:df:4b:e5:6e:1f:e4:ec:c4:45:91:d2:91:bc: 1b:d9:af:d9:c4:62:1f:84:ee:5b:2b:b9:73:c3:4e: 0c:d9:de:15:8f:a2:db:f5:6a:d2:f3:d4:1c:9c:81: 8b:52:8f:2e:ed:ad:8d:ef:94:54:b2:c2:09:7f:c5: 5d:e7:d8:4d:8a:34:26:42:96:23:a3:d9:4e:93:ef: 45:e8:1d:a9:ac:ac:70:a5:3e:3a:44:50:2b:ef:d1: 79:79:b0:78:50:1e:56:1f:0d:f3:18:66:46:3e:75: 19:97:ef:cb:85:cf:c3:72:d6:ed:03:06:d4:57:d8: fa:7a:fc:6e:01:9b:b3:fe:77:c4:df:9e:3e:7f:3c: ae:9d:43:4b:7e:b7:bf:26:6b:08:8c:9c:a9:4b:aa: 56:c4:53:03:c3:3a:f9:a2:84:bb:c2:83:9e:06:c6: 59:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F9:41:1D:C0:3E:4F:9F:99:0A:67:16:AA:94:A2:6A:37:FC:5A:E6 X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:2c:15:30:0a:ef:e9:8f:f0:04:ec:98:17:69:30:b8:88:2c: e0:6a:ab:d2:46:8f:b3:e9:e1:a7:e6:ce:ad:8d:4d:71:a5:42: f8:15:da:ca:f4:7f:5c:88:3a:47:5e:7a:7e:76:4b:62:0a:e9: 3e:4b:b0:e8:07:f9:81:ca:57:c9:dd:a3:d7:e8:b9:7e:6b:9b: 49:c6:23:95:44:1d:11:9a:67:54:26:83:72:8e:eb:63:8f:12: 59:65:ba:57:e4:93:93:dd:87:9f:b1:16:97:fb:47:28:fe:a5: 88:15:64:81:c2:86:dc:f8:86:80:40:92:4c:55:d3:e8:a9:ea: 68:90:89:5a:21:63:44:80:87:32:b9:00:81:47:b7:be:d5:8e: ba:d3:77:62:29:c8:c2:43:b2:0a:af:f7:c2:ee:ff:c7:7d:e9: 0b:08:d1:67:39:86:2f:46:9e:4c:93:ef:95:8f:67:96:dd:65: c4:c5:36:47:87:f2:ab:36:a7:25:25:f1:2c:59:60:8c:1a:ad: 3c:34:5c:1e:f4:48:cf:06:3a:a3:6a:d9:35:44:76:b0:da:fb: c3:d1:6b:5a:41:eb:d3:bd:4a:85:e6:f0:c1:74:68:97:89:d5: 46:3f:82:6b:8f:d6:c5:8a:b6:cc:b9:74:18:96:ec:6a:2e:6c: 8f:80:47:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjUwNDA0MTcwNjAzWhcNMjUwNDExMTcwNjAzWjAYMRYwFAYD VQQDEw02N2YwMTE3Yy01ZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+Hv06znX7EpgT2+ct/D9pYUSPogT65jmXSf+DK3lQm0FVIv/mv55MedDYBR XSWRdSDXd+mnAXojUQ13Yx43jaqhi94FTWmkSbuu9ikepq3g3Z3/GIcFkGwH399L 5W4f5OzERZHSkbwb2a/ZxGIfhO5bK7lzw04M2d4Vj6Lb9WrS89QcnIGLUo8u7a2N 75RUssIJf8Vd59hNijQmQpYjo9lOk+9F6B2prKxwpT46RFAr79F5ebB4UB5WHw3z GGZGPnUZl+/Lhc/DctbtAwbUV9j6evxuAZuz/nfE354+fzyunUNLfre/JmsIjJyp S6pWxFMDwzr5ooS7woOeBsZZhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHn5QR3A Pk+fmQpnFqqUomo3/FrmMB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQwRS84RTcxNDk4NEEzNUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpq MFMzT293U1J1VWI5Y0doOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTLBUwCu/pj/AE7JgXaTC4iCzgaqvSRo+z6eGn5s6tjU1xpUL4FdrK 9H9ciDpHXnp+dktiCuk+S7DoB/mBylfJ3aPX6Ll+a5tJxiOVRB0RmmdUJoNyjutj jxJZZbpX5JOT3YefsRaX+0co/qWIFWSBwobc+IaAQJJMVdPoqepokIlaIWNEgIcy uQCBR7e+1Y6603diKcjCQ7IKr/fC7v/HfekLCNFnOYYvRp5Mk++Vj2eW3WXExTZH h/KrNqclJfEsWWCMGq08NFwe9EjPBjqjatk1RHaw2vvD0WtaQevTvUqF5vDBdGiX idVGP4Jrj9bFirbMuXQYluxqLmyPgEcB -----END CERTIFICATE-----Generated at Sat Apr 5 08:16:15 2025 by rpki-client