$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: TxIBeRxwJ0TER2+oMdRnNVc5xyJVvvEZRZQg3gyPmyY= Subject key identifier: D1:FA:10:CD:6B:D1:48:0D:A9:DC:A5:5D:7F:D0:5E:5D:FF:07:C8:B6 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 58 Signing time: Tue 15 Apr 2025 05:55:17 +0000 Manifest this update: Tue 15 Apr 2025 05:55:17 +0000 Manifest next update: Tue 22 Apr 2025 05:55:17 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: q84gDCDFR8Swa3DdL2iJT6qCHio0R5xH2Ogg53BCHRc=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 05:55:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Apr 15 05:55:17 2025 GMT Not After : Apr 22 05:55:17 2025 GMT Subject: CN=67fdf4c5-4f60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:90:a7:14:19:c1:b7:37:fc:58:59:8b:9e: 6e:d0:66:c6:38:53:96:c0:db:bf:12:c2:01:ef:2a: 22:9f:48:88:b2:0a:7a:6a:3e:78:a1:6e:14:a7:6c: 74:a4:cf:67:3f:04:d1:3f:68:32:f1:f5:a6:11:9f: f3:5a:87:eb:b7:ca:ee:5f:4b:f9:d6:07:5d:53:7c: 3b:ed:32:8e:ff:4c:d9:8c:2c:25:00:66:ee:18:63: a5:28:2a:b6:8a:3c:4d:88:f3:0a:2c:92:96:b2:57: b0:7c:fd:6b:a5:51:0d:c8:25:e5:97:01:ab:82:a4: 69:07:ba:2f:b2:6c:f2:4f:dc:05:d3:be:bd:72:d5: 38:96:47:6c:4e:59:a1:c0:17:df:76:f7:92:fa:10: 55:37:2f:50:d7:12:84:ff:51:25:0e:0b:57:46:10: 5a:a3:68:a0:d0:50:c9:82:29:23:7f:74:49:ca:58: b9:6c:19:1b:d8:8b:5b:0f:d6:be:39:33:0e:ba:75: e4:23:d4:51:f6:24:3b:94:e5:e9:70:c7:00:3f:eb: 03:1f:c9:90:47:a9:ce:7a:49:f5:77:59:98:e4:5c: 5c:dd:40:11:33:31:12:8f:b7:9d:c2:54:74:25:e3: 80:74:a8:d1:1b:d3:49:29:71:bf:14:bb:db:38:92: e1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FA:10:CD:6B:D1:48:0D:A9:DC:A5:5D:7F:D0:5E:5D:FF:07:C8:B6 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:b2:47:fb:be:8c:77:5d:97:6f:d4:5e:47:f1:60:92:8f:55: 68:2c:75:c0:85:9f:80:db:7f:a7:d6:dd:4e:b7:4a:54:c5:da: c7:83:7b:d2:90:16:37:86:08:05:f2:b6:43:01:cb:b4:f8:3a: 11:d6:96:f0:bf:51:bb:9f:d4:14:2b:2f:b7:ca:fc:d9:f5:e6: bd:ae:c3:1b:e1:48:dd:34:72:35:d9:44:c6:a9:a3:d1:3e:63: 29:d6:0c:bf:4b:15:2a:2d:50:2d:5e:15:ed:56:03:40:d0:24: cc:21:13:05:5f:3b:94:0c:5b:14:fe:9e:c3:dc:13:bc:09:d2: d3:15:57:ef:80:80:4f:c7:56:2f:56:be:98:e6:99:4f:da:de: 0d:e7:b1:9a:34:26:fc:22:10:95:d6:14:36:29:3e:7e:19:69: d7:04:b7:8e:de:85:b1:ea:33:dc:09:3a:5f:c5:fc:b7:87:33: a6:38:d5:d0:1c:a6:68:18:d8:c3:b5:2e:bc:33:3e:4f:cb:c2: ed:50:39:20:b7:14:26:9a:e3:63:fc:cb:20:f4:30:2c:a5:6f: fd:2e:37:9b:69:58:59:a3:a2:72:a1:bb:db:03:70:19:77:d1: 53:28:2a:ee:a7:58:49:48:11:11:c5:a1:e5:fc:52:9d:bb:34: 35:ac:97:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNTA0MTUwNTU1MTdaFw0yNTA0MjIwNTU1MTdaMBgxFjAUBgNV BAMTDTY3ZmRmNGM1LTRmNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1PpCnFBnBtzf8WFmLnm7QZsY4U5bA278SwgHvKiKfSIiyCnpqPnihbhSnbHSk z2c/BNE/aDLx9aYRn/Nah+u3yu5fS/nWB11TfDvtMo7/TNmMLCUAZu4YY6UoKraK PE2I8woskpayV7B8/WulUQ3IJeWXAauCpGkHui+ybPJP3AXTvr1y1TiWR2xOWaHA F99295L6EFU3L1DXEoT/USUOC1dGEFqjaKDQUMmCKSN/dEnKWLlsGRvYi1sP1r45 Mw66deQj1FH2JDuU5elwxwA/6wMfyZBHqc56SfV3WZjkXFzdQBEzMRKPt53CVHQl 44B0qNEb00kpcb8Uu9s4kuGXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0foQzWvR SA2p3KVdf9BeXf8HyLYwHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL2yR/u+jHddl2/UXkfxYJKPVWgsdcCFn4Dbf6fW3U63SlTF2seDe9KQ FjeGCAXytkMBy7T4OhHWlvC/Ubuf1BQrL7fK/Nn15r2uwxvhSN00cjXZRMapo9E+ YynWDL9LFSotUC1eFe1WA0DQJMwhEwVfO5QMWxT+nsPcE7wJ0tMVV++AgE/HVi9W vpjmmU/a3g3nsZo0JvwiEJXWFDYpPn4ZadcEt47ehbHqM9wJOl/F/LeHM6Y41dAc pmgY2MO1LrwzPk/Lwu1QOSC3FCaa42P8yyD0MCylb/0uN5tpWFmjonKhu9sDcBl3 0VMoKu6nWElIERHFoeX8Up27NDWsl6A= -----END CERTIFICATE-----Generated at Wed Apr 16 17:16:35 2025 by rpki-client