$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: TQUrsot5l2NMLz8RCgKYJ50bM6a9zI8G+Atu0TuNWMQ= Subject key identifier: 7D:0C:D3:5A:BA:F2:F7:36:08:FA:22:7A:16:35:C8:23:75:17:1B:16 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 152E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 14E9 Signing time: Fri 04 Apr 2025 16:59:52 +0000 Manifest this update: Fri 04 Apr 2025 16:59:52 +0000 Manifest next update: Fri 11 Apr 2025 16:59:52 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: mebTCBOX34TC+8qTndZHAsGAlq9yIKQq3PAeiRiDavs=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: 1gfBWxubtAHaO2L7yyFmTjuANtEXOgERKbVVtHqz/Y4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:59:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5422 (0x152e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678 Validity Not Before: Apr 4 16:59:52 2025 GMT Not After : Apr 11 16:59:52 2025 GMT Subject: CN=67f01008-701b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:96:d9:5f:12:85:fe:83:22:99:d2:c6:e4:af: a9:3c:54:ba:82:75:04:81:10:bd:de:08:14:28:3e: 7d:32:2c:62:a3:05:e7:86:c4:0a:5e:aa:a4:b2:3a: c2:2f:1a:0a:29:8a:29:42:a3:6a:03:2c:cc:c9:f4: f9:48:2f:ad:ef:79:28:cc:2a:22:3b:b9:aa:b4:d5: 39:44:ff:43:0c:db:b5:3b:65:22:e1:4e:e4:5a:a5: 41:5b:f2:60:e3:fb:c4:79:db:53:2f:f4:03:89:e3: 97:94:8d:ae:5c:3c:53:c5:f0:6e:85:ae:a2:f2:78: fa:a0:5d:b7:54:48:dd:5b:f1:69:47:df:4b:4e:89: a9:c9:f4:08:01:e9:40:da:e3:f5:c3:82:e7:1b:c7: 17:80:60:ae:7c:a4:6c:7e:9a:64:fe:42:e5:07:47: 13:f4:5c:56:0a:e3:fa:88:cb:33:6d:96:b8:0d:51: 39:cb:b8:50:90:11:9f:ba:ae:55:f7:73:87:a2:8c: 71:c2:08:82:9d:9b:d1:9a:9d:79:e8:15:33:13:2e: b6:19:88:68:72:39:a2:0c:40:8b:7c:3e:68:05:cc: 56:89:16:e8:27:99:5d:d8:68:d0:b9:55:b7:ed:89: d6:f8:86:21:55:34:09:1d:1e:4c:91:b7:98:0b:17: db:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0C:D3:5A:BA:F2:F7:36:08:FA:22:7A:16:35:C8:23:75:17:1B:16 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:31:40:aa:6e:c1:d1:46:85:fe:d7:24:80:4d:b5:0b:a1:2b: e4:f9:db:53:37:d0:d1:80:18:c2:5d:e9:30:21:11:5c:0d:c7: cc:4e:cd:0a:b3:fc:34:ad:ef:3f:ee:2a:5c:0b:43:ca:c9:71: 65:ec:53:5f:e2:5c:f9:46:aa:f6:59:97:26:cc:ef:db:04:5c: dd:d7:c6:68:ec:04:60:37:ee:64:8a:b0:6c:b9:a1:24:0a:11: f1:cf:7f:18:75:d4:a0:fd:10:19:98:22:9f:66:34:39:0f:d4: cc:ac:37:67:86:7d:45:1a:e5:a6:25:51:e0:c8:7a:4c:f5:27: fb:d1:b3:f5:1a:6d:e9:0f:95:91:6b:63:56:c6:14:04:d4:6b: f6:52:14:43:26:44:87:3a:34:a5:fb:38:a8:59:f2:48:33:2b: 86:35:95:7a:08:17:13:01:3e:82:65:ef:3d:fc:a2:c9:82:44: df:8e:a0:f7:3b:bd:6b:24:1b:45:72:b6:8b:24:43:bf:e9:8f: 89:2c:14:d5:96:c3:f9:d2:63:fb:61:e7:db:63:6e:c9:38:4b: 20:e2:8c:9c:47:35:2d:1a:52:49:a9:0b:d9:02:b9:11:33:77: 4a:b1:79:e1:56:a0:84:09:53:99:4a:c7:db:e4:ec:12:cd:94: 19:b9:72:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUwNDA0MTY1OTUyWhcNMjUwNDExMTY1OTUyWjAYMRYwFAYD VQQDEw02N2YwMTAwOC03MDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45bZXxKF/oMimdLG5K+pPFS6gnUEgRC93ggUKD59MixiowXnhsQKXqqksjrC LxoKKYopQqNqAyzMyfT5SC+t73kozCoiO7mqtNU5RP9DDNu1O2Ui4U7kWqVBW/Jg 4/vEedtTL/QDieOXlI2uXDxTxfBuha6i8nj6oF23VEjdW/FpR99LTompyfQIAelA 2uP1w4LnG8cXgGCufKRsfppk/kLlB0cT9FxWCuP6iMszbZa4DVE5y7hQkBGfuq5V 93OHooxxwgiCnZvRmp156BUzEy62GYhocjmiDECLfD5oBcxWiRboJ5ld2GjQuVW3 7YnW+IYhVTQJHR5MkbeYCxfbEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0M01q6 8vc2CPoiehY1yCN1FxsWMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwMUCqbsHRRoX+1ySATbULoSvk+dtTN9DRgBjCXekwIRFcDcfMTs0K s/w0re8/7ipcC0PKyXFl7FNf4lz5Rqr2WZcmzO/bBFzd18Zo7ARgN+5kirBsuaEk ChHxz38YddSg/RAZmCKfZjQ5D9TMrDdnhn1FGuWmJVHgyHpM9Sf70bP1Gm3pD5WR a2NWxhQE1Gv2UhRDJkSHOjSl+zioWfJIMyuGNZV6CBcTAT6CZe89/KLJgkTfjqD3 O71rJBtFcraLJEO/6Y+JLBTVlsP50mP7YefbY27JOEsg4oycRzUtGlJJqQvZArkR M3dKsXnhVqCECVOZSsfb5OwSzZQZuXKe -----END CERTIFICATE-----Generated at Sat Apr 5 08:24:59 2025 by rpki-client