$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft File: HWw-nEchLuSN-fVOZJCpphbUEYk.mft (raw, json) Hash identifier: wUQxRxOFpXNkrHWilOKGQqSGuBMij5Sk8USCADPdH6I= Subject key identifier: D6:1D:51:E4:29:2A:40:2E:37:FF:63:3B:9E:72:2C:B4:D6:97:D6:F9 Authority key identifier: 1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 Certificate issuer: /CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft Manifest number: 01C1 Signing time: Mon 07 Apr 2025 01:59:35 +0000 Manifest this update: Mon 07 Apr 2025 01:59:35 +0000 Manifest next update: Mon 14 Apr 2025 01:59:35 +0000 Files and hashes: 1: HWw-nEchLuSN-fVOZJCpphbUEYk.crl (hash: McrObqrsL5AWbYwgxu27Ew6Gs4rIRD4nOj+TkNMvh2c=) 2: 3B7794D2664A11EDB095B812C4F9AE02.roa (hash: ne9O+G9qSru/U2exZgVGXkHzQTflawcam407PNhnI+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6AEE Validity Not Before: Apr 7 01:59:35 2025 GMT Not After : Apr 14 01:59:35 2025 GMT Subject: CN=67f33187-2ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1b:33:90:55:5c:20:18:2b:5a:9d:44:f1:17: d0:ec:a7:af:42:6b:3d:d7:79:d2:2c:4f:eb:6a:4c: 7d:9f:45:02:85:73:c2:e3:07:f9:d1:e2:c3:0b:67: d4:09:09:de:bc:fd:90:dc:38:1d:2d:e7:6b:1b:b7: 24:5c:eb:99:2d:4c:b3:4b:26:46:a9:ba:a8:1a:7c: a3:66:8a:b3:b1:66:17:8b:1a:34:ad:dd:e0:b7:14: 1b:f4:a5:70:c6:a5:d5:08:9c:f6:3a:aa:08:fa:0c: 76:bd:9f:af:c4:a8:80:ff:be:d2:0e:a1:02:b7:ef: 51:aa:23:be:6d:b1:72:dd:75:cf:e5:c8:8c:d3:8e: 4d:42:83:68:4a:c0:d4:c5:78:ff:7e:f1:db:52:76: c7:c6:a1:95:a2:68:47:31:e6:4b:8b:75:dc:5e:c1: 96:1b:78:05:ba:2f:54:77:d8:d8:fe:a5:2c:51:64: f3:58:63:30:bd:bb:17:b9:5b:b3:46:b1:9f:fe:69: 65:2c:1b:2c:83:f6:56:97:2f:7c:cf:cd:9b:f9:7e: c2:26:9a:06:1d:6a:e8:99:f2:eb:d8:ff:dd:00:fe: 60:16:5f:fd:19:3b:c0:db:2c:f6:46:08:22:bb:13: 7f:66:c3:43:fa:7d:c8:11:08:23:fd:c6:61:fd:e6: ab:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:1D:51:E4:29:2A:40:2E:37:FF:63:3B:9E:72:2C:B4:D6:97:D6:F9 X509v3 Authority Key Identifier: keyid:1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:56:78:f0:7b:be:1f:f7:c1:60:bd:4f:5a:2e:c0:e8:69:f1: cd:62:e8:5f:0d:ae:11:4c:de:f5:22:c2:85:4d:01:eb:65:6f: e0:e0:85:1f:8f:2a:6c:12:a8:4b:6a:31:0b:6a:84:bb:34:91: 2b:18:f8:e1:ac:2c:03:f3:f7:20:5f:6c:5c:74:5b:ca:90:e3: 06:9a:4d:c9:fe:f2:4f:78:86:83:69:f7:27:d2:4b:44:70:a4: 37:4a:82:e6:5d:5c:b0:d8:65:bb:af:3f:e6:95:42:e0:ad:b0: 1c:06:e2:55:4e:58:2d:97:b5:46:69:5b:82:df:b7:5f:24:d0: 66:23:51:a6:b8:d1:be:cf:38:d4:c4:78:e9:b3:36:cb:19:14: 5f:b6:07:2f:91:85:36:61:c1:0c:63:bd:fc:d5:fe:f8:68:07: f4:40:16:a3:bb:a9:e2:88:c5:5f:51:90:44:65:34:42:6b:ae: e8:9d:62:ee:c0:aa:02:65:a7:89:0d:5b:47:09:f7:1b:5e:c7: 3b:8a:f8:f9:1f:68:7a:d6:2b:6b:d1:24:bd:dc:9a:c7:1e:c7: 09:85:f9:0a:0d:b4:f1:c5:52:5f:a2:ac:96:63:87:37:51:43: 85:b4:3e:d7:03:86:1e:1f:58:c6:8a:3c:b7:a6:36:b1:43:ba: 21:fd:d6:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZBRUUxMTAvBgNVBAUTKDFENkMzRTlDNDcyMTJFRTQ4REY5RjU0RTY0OTBBOUE2 MTZENDExODkwHhcNMjUwNDA3MDE1OTM1WhcNMjUwNDE0MDE1OTM1WjAYMRYwFAYD VQQDEw02N2YzMzE4Ny0yYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRszkFVcIBgrWp1E8RfQ7KevQms913nSLE/rakx9n0UChXPC4wf50eLDC2fU CQnevP2Q3DgdLedrG7ckXOuZLUyzSyZGqbqoGnyjZoqzsWYXixo0rd3gtxQb9KVw xqXVCJz2OqoI+gx2vZ+vxKiA/77SDqECt+9RqiO+bbFy3XXP5ciM045NQoNoSsDU xXj/fvHbUnbHxqGVomhHMeZLi3XcXsGWG3gFui9Ud9jY/qUsUWTzWGMwvbsXuVuz RrGf/mllLBssg/ZWly98z82b+X7CJpoGHWromfLr2P/dAP5gFl/9GTvA2yz2Rggi uxN/ZsND+n3IEQgj/cZh/earWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYdUeQp KkAuN/9jO55yLLTWl9b5MB8GA1UdIwQYMBaAFB1sPpxHIS7kjfn1TmSQqaYW1BGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkFFRS80RjMzMjg4MjY2 NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1U04tZlZPWkpDcHBoYlVF WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXdy1uRWNoTHVTTi1mVk9aSkNwcGhiVUVZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkFFRS80RjMzMjg4MjY2NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1 U04tZlZPWkpDcHBoYlVFWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Vnjwe74f98FgvU9aLsDoafHNYuhfDa4RTN71IsKFTQHrZW/g4IUf jypsEqhLajELaoS7NJErGPjhrCwD8/cgX2xcdFvKkOMGmk3J/vJPeIaDafcn0ktE cKQ3SoLmXVyw2GW7rz/mlULgrbAcBuJVTlgtl7VGaVuC37dfJNBmI1GmuNG+zzjU xHjpszbLGRRftgcvkYU2YcEMY7381f74aAf0QBaju6niiMVfUZBEZTRCa67onWLu wKoCZaeJDVtHCfcbXsc7ivj5H2h61itr0SS93JrHHscJhfkKDbTxxVJfoqyWY4c3 UUOFtD7XA4YeH1jGijy3pjaxQ7oh/dYi -----END CERTIFICATE-----Generated at Tue Apr 8 15:36:00 2025 by rpki-client