$ rpki-client -vvf rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft File: Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft (raw, json) Hash identifier: hw1QkWIcTALSN9qx1sy0D9M+HEFQaNkbIv1leKKGkmE= Subject key identifier: 1A:D2:A5:F9:F1:62:69:06:B8:D2:10:9B:A2:22:4A:CA:29:E5:2B:55 Authority key identifier: 1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4 Certificate issuer: /CN=A913B5C2/serialNumber=1EED263F0428D84E3FBE51753D16D4B3D62797C4 Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft Manifest number: 0713 Signing time: Wed 02 Apr 2025 21:54:35 +0000 Manifest this update: Wed 02 Apr 2025 21:54:35 +0000 Manifest next update: Wed 09 Apr 2025 21:54:35 +0000 Files and hashes: 1: Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.crl (hash: zSpyjmCQ5hpaWe7gRW1+A9Z+gkd+zP2TYMPd995sZYI=) 2: 5010A55A8C6411EE9E586967C4F9AE02.roa (hash: cR9HV4rxiZkRev09g9uB9No5I0ecIOFxwxebh4lOO6g=) 3: F704E032765811EE8C17A621C4F9AE02.roa (hash: jaF3A9cUsRhUGHc64JXnfHLoj/WN7EYD3IvlJOsMOnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.crl rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B5C2 Validity Not Before: Apr 2 21:54:35 2025 GMT Not After : Apr 9 21:54:35 2025 GMT Subject: CN=67edb21b-1bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:00:20:35:5b:39:f2:74:68:01:cb:72:fc:70: b8:99:9b:18:54:32:b1:5f:e1:1d:e2:fb:94:ef:fe: 66:67:0a:a0:23:51:e3:17:0c:f7:2f:bb:d0:d9:8e: e3:64:8d:10:f1:3b:10:6c:e3:23:5a:2c:3b:e0:44: c4:28:84:08:2f:25:78:df:5f:f9:bc:b5:a3:ad:87: 75:24:58:7c:79:d4:f9:d7:b4:94:95:2b:e5:01:ef: 75:1c:3c:d4:13:a4:6a:5a:fb:10:e0:c7:f8:aa:95: 0a:2e:07:d5:ed:30:3d:bc:9e:b0:5c:9e:d1:a7:a6: 25:33:28:10:7d:15:1c:92:11:e7:74:5c:9c:c8:ab: f8:57:c7:0c:12:c6:51:ce:e4:b4:03:44:94:e7:0b: 68:fe:44:3a:86:fd:ea:77:13:82:35:95:ae:ae:e3: 2f:24:03:8b:2d:15:6a:e5:24:f6:1e:e0:fa:30:4c: cf:c0:c5:43:c1:81:f2:85:57:85:70:4d:70:fb:85: f0:2c:26:96:5e:cd:78:4e:9c:03:7f:07:4b:d2:cc: dd:75:ad:b1:c4:e0:2e:37:65:15:a6:fc:9a:a0:fd: 3b:84:64:e1:c7:76:bc:5e:7f:c2:49:56:03:ea:30: 46:3e:9f:70:bf:13:5f:57:22:35:23:6c:f5:49:da: d0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D2:A5:F9:F1:62:69:06:B8:D2:10:9B:A2:22:4A:CA:29:E5:2B:55 X509v3 Authority Key Identifier: keyid:1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:07:99:6d:95:5d:0c:2f:4e:ee:42:2a:98:15:52:a6:49:a9: e3:2a:5d:1f:e0:6c:42:34:18:91:c8:02:13:44:ab:9b:29:9f: f6:06:89:a2:62:c0:37:1f:1d:b3:f2:fc:a2:df:78:25:63:79: ca:88:ea:ed:f3:17:86:27:b6:ae:e4:b9:99:1b:51:ae:41:df: 6b:0e:f9:e4:d4:cd:d2:a5:24:35:18:56:38:be:59:46:ab:70: 1f:a1:56:9a:08:32:9f:84:cf:88:0f:09:99:2d:86:d8:33:99: cb:66:ef:c3:0e:f4:75:00:3d:6d:01:f6:bb:60:ce:35:31:fe: 17:ed:79:c9:cc:aa:1b:c0:53:a8:bc:a4:da:79:33:f3:56:76: fb:dd:09:6a:bf:b9:07:92:11:a4:25:a1:d9:31:41:ea:4f:a8: 2e:e1:e7:4c:20:1d:a5:a0:2e:91:7b:b7:17:bc:c5:51:da:20: 03:e1:70:61:6a:5e:1e:2d:0f:a6:bf:29:08:96:ec:7e:5a:5b: 64:83:70:53:3d:de:84:81:06:4f:64:3e:b9:43:d2:d2:14:de: d7:58:3b:3b:74:83:bb:07:1e:99:33:0b:e2:ec:dc:e2:66:3a: da:93:db:f3:30:dc:0b:1f:7c:43:cb:5d:99:7e:97:00:0a:3d: b3:43:27:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I1QzIxMTAvBgNVBAUTKDFFRUQyNjNGMDQyOEQ4NEUzRkJFNTE3NTNEMTZENEIz RDYyNzk3QzQwHhcNMjUwNDAyMjE1NDM1WhcNMjUwNDA5MjE1NDM1WjAYMRYwFAYD VQQDEw02N2VkYjIxYi0xYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwAgNVs58nRoActy/HC4mZsYVDKxX+Ed4vuU7/5mZwqgI1HjFwz3L7vQ2Y7j ZI0Q8TsQbOMjWiw74ETEKIQILyV431/5vLWjrYd1JFh8edT517SUlSvlAe91HDzU E6RqWvsQ4Mf4qpUKLgfV7TA9vJ6wXJ7Rp6YlMygQfRUckhHndFycyKv4V8cMEsZR zuS0A0SU5wto/kQ6hv3qdxOCNZWuruMvJAOLLRVq5ST2HuD6MEzPwMVDwYHyhVeF cE1w+4XwLCaWXs14TpwDfwdL0szdda2xxOAuN2UVpvyaoP07hGThx3a8Xn/CSVYD 6jBGPp9wvxNfVyI1I2z1SdrQ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrSpfnx YmkGuNIQm6IiSsop5StVMB8GA1UdIwQYMBaAFB7tJj8EKNhOP75RdT0W1LPWJ5fE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjVDMi83NzlEMDRBMDM2 NDExMUVCODQ5OUQyMTlDNEY5QUUwMi9IdTBtUHdRbzJFNF92bEYxUFJiVXM5WW5s OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1MG1Qd1FvMkU0X3ZsRjFQUmJVczlZbmw4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjVDMi83NzlEMDRBMDM2NDExMUVCODQ5OUQyMTlDNEY5QUUwMi9IdTBtUHdRbzJF NF92bEYxUFJiVXM5WW5sOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByB5ltlV0ML07uQiqYFVKmSanjKl0f4GxCNBiRyAITRKubKZ/2Bomi YsA3Hx2z8vyi33glY3nKiOrt8xeGJ7au5LmZG1GuQd9rDvnk1M3SpSQ1GFY4vllG q3AfoVaaCDKfhM+IDwmZLYbYM5nLZu/DDvR1AD1tAfa7YM41Mf4X7XnJzKobwFOo vKTaeTPzVnb73Qlqv7kHkhGkJaHZMUHqT6gu4edMIB2loC6Re7cXvMVR2iAD4XBh al4eLQ+mvykIlux+Wltkg3BTPd6EgQZPZD65Q9LSFN7XWDs7dIO7Bx6ZMwvi7Nzi Zjrak9vzMNwLH3xDy12ZfpcACj2zQyci -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:48 2025 by rpki-client