$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft File: Hy55yPeszIoD-1tKOvzF9pMbN4I.mft (raw, json) Hash identifier: Ug0Gg8R5VCD7cjcNxsqWF78BgJYJHwXYIkpLrQ0eVOI= Subject key identifier: D1:18:DE:55:FF:71:52:D7:D5:75:3A:8E:14:97:8C:BA:1D:DB:41:64 Authority key identifier: 1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 Certificate issuer: /CN=A91BB09C/serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Certificate serial: 171C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft Manifest number: 1712 Signing time: Sat 12 Apr 2025 16:34:21 +0000 Manifest this update: Sat 12 Apr 2025 16:34:21 +0000 Manifest next update: Sat 19 Apr 2025 16:34:21 +0000 Files and hashes: 1: Hy55yPeszIoD-1tKOvzF9pMbN4I.crl (hash: 2+cB0Ec0d/dE6DEq18DKGhuumLSVVRyhC0aBruY5E4U=) 2: 02181C4CE13511E7B0D71C83C4F9AE02.roa (hash: kYdi56Vh70Qo/SN0C8R4CSPhNox0X9SfOcU95n5XzCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 16:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5916 (0x171c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB09C, serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Validity Not Before: Apr 12 16:34:21 2025 GMT Not After : Apr 19 16:34:21 2025 GMT Subject: CN=67fa960d-cfbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e3:cc:1c:00:c3:e8:ee:bb:b3:28:53:b9:a7: be:d5:6b:3f:9c:3a:09:dc:5f:7c:c2:3b:e5:c1:9d: 61:e6:5e:dd:36:da:d8:07:4c:46:ca:38:31:c7:73: 76:97:8e:fc:f8:01:92:51:07:ef:23:d4:ee:23:21: 44:7d:a1:73:72:d6:c7:8d:0b:78:0b:d4:80:6a:ad: 3c:fa:18:4e:ac:64:fa:4d:38:f2:65:10:bd:0e:be: d0:cb:04:fd:47:8b:99:ed:d3:8f:2e:23:82:a9:98: 1b:5e:9e:5f:a7:0f:09:46:0f:f0:b4:16:8c:90:83: 23:8a:93:4e:29:e4:9b:80:fe:7c:ad:02:b9:28:d0: df:8e:1c:50:d3:92:2d:94:f8:24:30:3c:3c:ea:36: eb:0d:8b:e0:ae:75:47:eb:21:46:a5:3f:eb:e6:18: 8a:b1:76:79:ca:3d:47:38:67:2d:91:55:0e:92:6b: d1:ca:68:86:85:f9:a7:10:0d:88:02:9a:9b:44:79: db:0f:09:83:97:90:93:42:9d:02:3b:f6:7e:33:be: 29:f7:86:1e:70:c4:b4:78:78:59:7a:0d:fa:01:85: 08:61:47:f8:7d:df:89:77:dc:2c:52:56:83:f0:8f: 69:31:8a:b4:65:98:75:6f:55:0a:9c:cd:2c:e5:a9: 8b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:18:DE:55:FF:71:52:D7:D5:75:3A:8E:14:97:8C:BA:1D:DB:41:64 X509v3 Authority Key Identifier: keyid:1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ca:5d:bd:3f:e1:f6:85:b7:6c:5d:63:18:67:b1:b0:37:43: f7:84:c3:6b:f0:17:89:60:b9:fd:d2:33:9e:8c:0e:f3:8b:92: 77:2e:70:e4:0d:96:7c:56:dc:14:63:16:90:c7:17:e1:1d:32: df:83:79:ec:8f:04:4c:a7:ff:f9:11:f7:31:4a:46:af:f6:c8: 91:1e:e7:90:c6:5a:d6:29:87:4c:3d:39:47:23:6b:d4:7e:1f: a7:7b:7c:ed:72:80:c8:19:1e:5b:cd:d3:f3:72:67:e1:96:b4: 36:e3:d6:3b:bb:01:10:bf:96:12:43:01:61:c6:d3:3d:f8:eb: 8f:a9:9e:a1:72:3c:37:07:f8:75:f9:75:48:54:b8:5d:63:39: 3d:0f:17:06:a0:89:38:2d:38:ef:0b:3f:27:60:ef:41:1b:42: 9c:9b:b1:60:b4:ac:0f:91:b7:b1:80:26:60:fa:6b:b0:61:81: 41:58:33:e6:5d:7f:05:ce:32:a2:22:1b:a5:87:44:af:07:e7: 39:a1:1a:b6:03:5a:3b:3b:f0:a5:4b:74:48:28:21:02:ee:26: 12:7c:9b:bd:72:90:4f:93:3e:ee:9a:90:8d:4e:ae:31:65:cb: 04:8a:98:8f:05:83:10:60:52:45:6a:f2:85:43:ec:a1:7f:74: 24:9a:88:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIwOUMxMTAvBgNVBAUTKDFGMkU3OUM4RjdBQ0NDOEEwM0ZCNUI0QTNBRkNDNUY2 OTMxQjM3ODIwHhcNMjUwNDEyMTYzNDIxWhcNMjUwNDE5MTYzNDIxWjAYMRYwFAYD VQQDEw02N2ZhOTYwZC1jZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+PMHADD6O67syhTuae+1Ws/nDoJ3F98wjvlwZ1h5l7dNtrYB0xGyjgxx3N2 l478+AGSUQfvI9TuIyFEfaFzctbHjQt4C9SAaq08+hhOrGT6TTjyZRC9Dr7QywT9 R4uZ7dOPLiOCqZgbXp5fpw8JRg/wtBaMkIMjipNOKeSbgP58rQK5KNDfjhxQ05It lPgkMDw86jbrDYvgrnVH6yFGpT/r5hiKsXZ5yj1HOGctkVUOkmvRymiGhfmnEA2I ApqbRHnbDwmDl5CTQp0CO/Z+M74p94YecMS0eHhZeg36AYUIYUf4fd+Jd9wsUlaD 8I9pMYq0ZZh1b1UKnM0s5amLYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEY3lX/ cVLX1XU6jhSXjLod20FkMB8GA1UdIwQYMBaAFB8uecj3rMyKA/tbSjr8xfaTGzeC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjA5Qy8xRkNEMTVFMEUx MzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJb0QtMXRLT3Z6RjlwTWJO NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h5NTV5UGVzeklvRC0xdEtPdnpGOXBNYk40SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjA5Qy8xRkNEMTVFMEUxMzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJ b0QtMXRLT3Z6RjlwTWJONEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIyl29P+H2hbdsXWMYZ7GwN0P3hMNr8BeJYLn90jOejA7zi5J3LnDk DZZ8VtwUYxaQxxfhHTLfg3nsjwRMp//5EfcxSkav9siRHueQxlrWKYdMPTlHI2vU fh+ne3ztcoDIGR5bzdPzcmfhlrQ249Y7uwEQv5YSQwFhxtM9+OuPqZ6hcjw3B/h1 +XVIVLhdYzk9DxcGoIk4LTjvCz8nYO9BG0Kcm7FgtKwPkbexgCZg+muwYYFBWDPm XX8FzjKiIhulh0SvB+c5oRq2A1o7O/ClS3RIKCEC7iYSfJu9cpBPkz7umpCNTq4x ZcsEipiPBYMQYFJFavKFQ+yhf3Qkmogt -----END CERTIFICATE-----Generated at Sun Apr 13 03:49:11 2025 by rpki-client