$ rpki-client -vvf rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft File: HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft (raw, json) Hash identifier: hgaEwG90XbbiCaVSyZEXyNXOBArRja1Ef4+y2GyCF/k= Subject key identifier: ED:0D:21:4B:1B:13:CA:7C:41:17:3E:C4:A7:5C:47:3B:06:F8:85:DA Authority key identifier: 1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A Certificate issuer: /CN=A91707D0/serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft Manifest number: 14 Signing time: Thu 17 Apr 2025 06:50:23 +0000 Manifest this update: Thu 17 Apr 2025 06:50:23 +0000 Manifest next update: Thu 24 Apr 2025 06:50:23 +0000 Files and hashes: 1: HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl (hash: yEnJcDslIZ3ONhHVUTtdLu08ejdT4fXt3ukNOOs30tc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 06:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91707D0, serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Validity Not Before: Apr 17 06:50:23 2025 GMT Not After : Apr 24 06:50:23 2025 GMT Subject: CN=6800a4af-d156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:d5:1c:8c:08:61:00:d0:e3:55:86:40:29: b2:1a:f1:a6:f8:fe:74:3e:27:24:7f:90:a0:a3:3f: 17:4b:b7:ab:42:90:c0:ed:53:64:e2:ec:f3:7b:ff: 38:3d:3a:51:6d:a8:01:4d:d4:56:c2:a0:e4:33:46: ef:84:1a:f5:3d:dd:42:f3:67:90:a4:73:2b:38:a1: 6e:26:02:78:90:f7:35:01:6b:89:70:b3:9a:f3:25: 14:87:87:cc:25:f6:a4:23:6c:fa:2e:56:e0:a9:e9: 40:c1:9e:34:90:4a:2c:6e:34:ab:77:c1:10:f0:55: 44:a1:ff:be:ff:25:bd:88:25:fb:d4:e1:64:c7:08: b6:cf:17:a2:1e:ad:d4:93:39:62:48:64:43:8d:ee: da:6b:8c:da:0c:c9:0b:bf:2d:17:f3:e4:0e:60:2b: d9:a9:ac:33:8f:3f:5d:0b:bf:07:b5:42:9f:09:e9: 73:ec:e4:a3:c1:27:e8:5e:89:eb:b9:31:e0:ef:97: 39:e6:0c:f2:a4:78:b8:10:0b:1d:45:27:32:cc:3b: 76:12:46:fa:b4:6b:05:62:30:a4:6b:65:64:4c:7d: 2b:63:7e:dd:79:31:5e:9b:3e:55:27:54:e5:ba:7b: b5:60:34:73:57:4c:89:12:b9:d3:13:ce:d4:a9:c7: ee:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:0D:21:4B:1B:13:CA:7C:41:17:3E:C4:A7:5C:47:3B:06:F8:85:DA X509v3 Authority Key Identifier: keyid:1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:62:d3:e6:f1:4e:1e:ac:fb:eb:e4:98:57:55:c0:8f:6d:61: 0c:21:83:6e:9d:3f:49:b5:3d:25:a2:b0:16:7b:c3:c6:9f:ec: 48:d6:99:ff:74:2e:44:02:65:5a:4b:b6:ef:fb:fd:aa:74:84: 82:2d:d2:c7:55:3b:8b:39:c7:0c:55:29:4c:2c:e8:a2:c2:3d: cb:4f:4f:27:69:ca:66:9a:31:d1:60:64:d5:ad:8d:82:e9:0d: 30:5b:3e:44:29:cf:56:2f:52:b7:ec:63:bb:45:ee:7a:d9:bd: eb:6b:eb:15:a2:89:8d:37:65:af:f0:72:8a:b7:71:f6:00:33: 3d:2e:ee:0a:d4:5a:7b:f5:27:37:99:67:3f:bf:1f:63:7c:1b: a2:3b:bf:8a:c6:33:ff:05:34:a5:5b:a7:be:6e:de:a8:c9:a2: 57:12:ba:e0:f6:42:f0:c0:e4:07:ef:db:ab:08:19:7e:22:52: 3f:4e:7f:cc:80:a9:61:e5:0b:b7:ac:d8:22:69:d5:d6:fd:c2: 07:e7:9b:53:0a:45:c3:05:9b:06:ac:e3:74:64:33:f7:2d:07: 6c:fe:47:82:52:e1:f5:17:97:c8:18:53:e8:8d:29:c8:d4:64: 79:e5:9d:ba:07:51:e3:8d:78:f0:36:07:cf:dd:db:c7:4c:65: 27:d4:3c:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDdEMDExMC8GA1UEBRMoMUQ2MzQxNkM0NzNCMEMwOTEyQkRBQjM3MTAyNzAxMDk1 RkM2QzM1QTAeFw0yNTA0MTcwNjUwMjNaFw0yNTA0MjQwNjUwMjNaMBgxFjAUBgNV BAMTDTY4MDBhNGFmLWQxNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2nNUcjAhhANDjVYZAKbIa8ab4/nQ+JyR/kKCjPxdLt6tCkMDtU2Ti7PN7/zg9 OlFtqAFN1FbCoOQzRu+EGvU93ULzZ5Ckcys4oW4mAniQ9zUBa4lws5rzJRSHh8wl 9qQjbPouVuCp6UDBnjSQSixuNKt3wRDwVUSh/77/Jb2IJfvU4WTHCLbPF6IerdST OWJIZEON7tprjNoMyQu/LRfz5A5gK9mprDOPP10Lvwe1Qp8J6XPs5KPBJ+heieu5 MeDvlznmDPKkeLgQCx1FJzLMO3YSRvq0awViMKRrZWRMfStjft15MV6bPlUnVOW6 e7VgNHNXTIkSudMTztSpx+7bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7Q0hSxsT ynxBFz7Ep1xHOwb4hdowHwYDVR0jBBgwFoAUHWNBbEc7DAkSvas3ECcBCV/Gw1ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwN0QwLzY1QjY4RTk2MDA3 MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFrU3ZhczNFQ2NCQ1ZfR3cx by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFdOQmJFYzdEQWtTdmFzM0VDY0JDVl9HdzFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw N0QwLzY1QjY4RTk2MDA3MjExRjBCMzYzREY1RUM0RjlBRTAyL0hXTkJiRWM3REFr U3ZhczNFQ2NCQ1ZfR3cxby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB9i0+bxTh6s++vkmFdVwI9tYQwhg26dP0m1PSWisBZ7w8af7EjWmf90 LkQCZVpLtu/7/ap0hIIt0sdVO4s5xwxVKUws6KLCPctPTydpymaaMdFgZNWtjYLp DTBbPkQpz1YvUrfsY7tF7nrZvetr6xWiiY03Za/wcoq3cfYAMz0u7grUWnv1JzeZ Zz+/H2N8G6I7v4rGM/8FNKVbp75u3qjJolcSuuD2QvDA5Afv26sIGX4iUj9Of8yA qWHlC7es2CJp1db9wgfnm1MKRcMFmwas43RkM/ctB2z+R4JS4fUXl8gYU+iNKcjU ZHnlnboHUeONePA2B8/d28dMZSfUPEk= -----END CERTIFICATE-----Generated at Fri Apr 18 06:09:31 2025 by rpki-client