$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft File: s-hiKkEGGf2XI_nR28U1fhX6fcw.mft (raw, json) Hash identifier: ErwmT6jUK/FBAuTypoc4awQdZtGUo88CrJWo+AXrVVU= Subject key identifier: DB:4B:3D:B4:5C:77:54:82:09:48:9D:18:7B:A8:8B:8B:56:D4:F6:A3 Authority key identifier: B3:E8:62:2A:41:06:19:FD:97:23:F9:D1:DB:C5:35:7E:15:FA:7D:CC Certificate issuer: /CN=A91A85CF/serialNumber=B3E8622A410619FD9723F9D1DBC5357E15FA7DCC Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-hiKkEGGf2XI_nR28U1fhX6fcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft Manifest number: 2D Signing time: Sat 29 Mar 2025 06:59:47 +0000 Manifest this update: Sat 29 Mar 2025 06:59:47 +0000 Manifest next update: Sat 05 Apr 2025 06:59:47 +0000 Files and hashes: 1: s-hiKkEGGf2XI_nR28U1fhX6fcw.crl (hash: nTpNlMV4x5ZtbMEd2zmdAx1IhElSeZ2BUdLbZxtwsWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.crl rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-hiKkEGGf2XI_nR28U1fhX6fcw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85CF Validity Not Before: Mar 29 06:59:47 2025 GMT Not After : Apr 5 06:59:47 2025 GMT Subject: CN=67e79a63-83e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a4:63:68:16:de:8b:e0:ef:22:20:09:6b:7c: 10:07:17:cb:44:c9:66:51:dd:6a:d1:1f:6d:7e:f3: fc:2b:7c:37:8b:68:3d:b3:07:45:b7:72:43:d4:71: a6:87:5b:8d:2c:7f:79:88:91:5e:11:c1:ea:c0:ad: 96:eb:51:33:a3:aa:c7:f8:b9:cd:61:a3:df:ff:8b: e7:9e:ae:33:94:c0:8b:c7:df:46:10:a3:26:0f:62: c4:30:2b:aa:ec:0d:9f:7f:09:70:43:57:cd:21:eb: db:66:f9:bc:3c:5d:40:50:eb:1b:e8:fb:73:3b:d6: af:7f:97:49:c2:af:fb:8b:57:a7:19:8e:f1:48:97: 54:f6:4b:26:7f:ea:20:2f:0a:13:2d:a0:88:66:dc: 2b:33:d1:12:77:1b:fd:39:a5:2f:d4:32:a1:de:75: 6c:2a:e4:0d:40:c4:73:90:48:9f:90:7c:c6:2c:cd: 96:77:e1:45:f5:c7:1f:1a:dc:64:c4:b8:e5:14:06: bf:90:8f:77:8e:85:28:8a:70:ed:2c:03:f4:75:de: e2:df:c0:6d:d7:b0:75:ea:fe:4e:4a:a2:36:39:6b: f0:78:26:fb:71:be:1d:56:dc:ae:99:64:ad:71:c7: 7b:e5:3a:8a:06:54:4e:8e:b7:3a:43:30:93:0a:0d: 52:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4B:3D:B4:5C:77:54:82:09:48:9D:18:7B:A8:8B:8B:56:D4:F6:A3 X509v3 Authority Key Identifier: keyid:B3:E8:62:2A:41:06:19:FD:97:23:F9:D1:DB:C5:35:7E:15:FA:7D:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-hiKkEGGf2XI_nR28U1fhX6fcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85CF/F0009774CAE211EFAF8F1011C4F9AE02/s-hiKkEGGf2XI_nR28U1fhX6fcw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:2d:8d:31:d3:37:a4:40:bb:22:01:b4:79:45:45:4c:cf:7c: 4a:7b:5c:12:23:15:92:2c:db:af:77:67:6f:6a:5b:da:08:2f: 1b:83:1d:0d:19:a6:bc:64:16:a8:d8:61:5c:56:a6:f4:30:22: bb:aa:61:8b:5c:b6:da:e2:6b:48:fc:ce:ba:a8:16:b6:71:c2: 2d:95:ba:c9:22:25:53:91:f0:19:95:82:21:6e:c1:5e:0e:26: 6e:17:41:e3:66:d5:9c:2e:0e:7c:2e:4c:c0:f0:15:ad:18:f8: 25:c0:5b:72:e3:e9:d6:c4:8d:4f:af:cd:0f:03:00:0d:53:13: 14:e4:f6:c7:b2:89:5d:a6:6f:6e:1d:5a:1f:01:76:80:e9:f8: ac:f0:79:5a:99:11:38:17:86:6e:39:3b:da:98:65:ec:61:60: 91:c7:03:2a:11:0e:b8:d6:e0:44:50:89:04:bf:fe:28:54:3e: d5:2d:86:b8:f5:81:d1:84:d2:57:56:56:dc:b8:70:7b:7c:47: c5:1e:ac:9e:2b:0e:82:f4:50:98:24:86:38:b9:f1:bf:ca:02: cc:00:52:aa:60:35:d7:14:5f:43:ab:ab:d7:12:0a:24:d9:72: 46:5a:f5:4d:2f:8c:2a:f7:a8:22:fa:85:76:94:0f:23:3a:7d: 64:46:8b:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODVDRjExMC8GA1UEBRMoQjNFODYyMkE0MTA2MTlGRDk3MjNGOUQxREJDNTM1N0Ux NUZBN0RDQzAeFw0yNTAzMjkwNjU5NDdaFw0yNTA0MDUwNjU5NDdaMBgxFjAUBgNV BAMTDTY3ZTc5YTYzLTgzZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMpGNoFt6L4O8iIAlrfBAHF8tEyWZR3WrRH21+8/wrfDeLaD2zB0W3ckPUcaaH W40sf3mIkV4RwerArZbrUTOjqsf4uc1ho9//i+eerjOUwIvH30YQoyYPYsQwK6rs DZ9/CXBDV80h69tm+bw8XUBQ6xvo+3M71q9/l0nCr/uLV6cZjvFIl1T2SyZ/6iAv ChMtoIhm3Csz0RJ3G/05pS/UMqHedWwq5A1AxHOQSJ+QfMYszZZ34UX1xx8a3GTE uOUUBr+Qj3eOhSiKcO0sA/R13uLfwG3XsHXq/k5KojY5a/B4Jvtxvh1W3K6ZZK1x x3vlOooGVE6OtzpDMJMKDVIhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU20s9tFx3 VIIJSJ0Ye6iLi1bU9qMwHwYDVR0jBBgwFoAUs+hiKkEGGf2XI/nR28U1fhX6fcww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4NUNGL0YwMDA5Nzc0Q0FF MjExRUZBRjhGMTAxMUM0RjlBRTAyL3MtaGlLa0VHR2YyWElfblIyOFUxZmhYNmZj dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcy1oaUtrRUdHZjJYSV9uUjI4VTFmaFg2ZmN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 NUNGL0YwMDA5Nzc0Q0FFMjExRUZBRjhGMTAxMUM0RjlBRTAyL3MtaGlLa0VHR2Yy WElfblIyOFUxZmhYNmZjdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIctjTHTN6RAuyIBtHlFRUzPfEp7XBIjFZIs2693Z29qW9oILxuDHQ0Z prxkFqjYYVxWpvQwIruqYYtcttria0j8zrqoFrZxwi2VuskiJVOR8BmVgiFuwV4O Jm4XQeNm1ZwuDnwuTMDwFa0Y+CXAW3Lj6dbEjU+vzQ8DAA1TExTk9seyiV2mb24d Wh8BdoDp+KzweVqZETgXhm45O9qYZexhYJHHAyoRDrjW4ERQiQS//ihUPtUthrj1 gdGE0ldWVty4cHt8R8UerJ4rDoL0UJgkhji58b/KAswAUqpgNdcUX0Orq9cSCiTZ ckZa9U0vjCr3qCL6hXaUDyM6fWRGiwU= -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:55 2025 by rpki-client