$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: AGEkjUFGR32Me5qK+9LUwdSdE9LYRLPUBgsU9roC39I= Subject key identifier: 1E:94:AA:E3:FD:EC:F7:53:07:9F:37:3D:2A:F1:2B:20:E9:92:13:F5 Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 01F4 Signing time: Thu 03 Apr 2025 02:15:41 +0000 Manifest this update: Thu 03 Apr 2025 02:15:40 +0000 Manifest next update: Thu 10 Apr 2025 02:15:40 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: tAAlm1o+69p5Oxf5UkCdGgVmXZNCxhndQZr9WPhxhr8=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: bOpqrbhh4Bh4AWp/OZ52rop88bWyVMsrGceDfsrfghM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F Validity Not Before: Apr 3 02:15:40 2025 GMT Not After : Apr 10 02:15:40 2025 GMT Subject: CN=67edef4d-bc0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b1:52:46:45:ae:2b:3b:f0:93:22:6b:44:2a: c1:61:74:64:a1:98:50:95:8e:0e:46:86:4e:f9:fc: e8:c8:12:25:f2:7b:63:6b:fa:48:01:45:ab:90:de: 3f:77:33:bf:e6:56:a2:38:2b:b3:2b:02:9a:8e:d1: a3:96:e9:b2:d7:1c:5c:9a:f5:f6:12:26:e2:80:4c: b8:c3:70:87:03:45:79:6b:97:de:4c:a2:f4:8f:3d: fa:5f:b4:7a:ed:bd:e4:83:19:f4:a9:02:a9:c6:39: 5a:fa:29:50:32:3d:5d:8d:b8:e6:26:23:8f:59:a2: 19:7b:1a:33:e7:5c:d8:45:09:bd:7c:79:6d:68:d1: e0:d8:df:92:35:ce:93:ab:66:1b:c9:33:d3:80:a9: 8d:b2:c8:c8:3f:78:bc:8d:80:1f:a2:57:08:f4:57: bb:2e:de:1e:ea:a1:3b:f5:3d:fb:94:dd:61:22:e1: ea:9e:f9:28:03:59:52:48:f8:24:f0:d8:2b:b0:18: fd:02:a6:ff:b8:f0:a5:95:5e:c1:25:7f:2d:af:a1: ed:cb:ca:ec:e2:17:67:31:0e:b9:e0:9a:e0:9b:70: 81:3a:9a:0f:36:24:dd:0d:0b:69:d8:1c:d5:7d:5a: bd:26:8c:5d:2b:8f:00:c4:2b:06:16:0a:e1:3f:7e: 20:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:94:AA:E3:FD:EC:F7:53:07:9F:37:3D:2A:F1:2B:20:E9:92:13:F5 X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d3:71:dc:f7:74:8b:f6:dc:6f:f8:18:88:90:f0:91:a3:81: 73:56:48:4e:89:3d:eb:da:dc:0e:30:e8:8e:74:39:3b:84:8c: e7:4d:ad:2f:e9:aa:2b:fb:a9:a6:c5:47:9c:be:20:18:32:20: d5:41:b9:39:1b:09:5c:8d:2a:e4:9a:4c:c9:90:2a:91:44:90: d8:d9:3c:81:7d:f4:3c:62:a7:ca:ae:d6:17:c5:d2:00:9c:b3: 50:0e:85:08:d3:99:fa:0f:61:fc:0f:1a:8b:2e:07:b2:d8:02: ef:06:f8:1a:33:39:4f:08:96:ee:0d:55:86:e8:a4:7f:66:8a: 71:a4:73:0c:a0:f7:2c:63:59:2e:b7:73:2d:31:63:46:20:6b: 5f:f6:2a:e0:c8:92:89:79:11:13:a5:c4:1b:fa:8a:d8:8a:b7: 8a:ae:d4:d7:0c:e7:12:1d:e0:ad:0d:7d:3c:2e:9c:f8:66:9b: 15:34:6e:ac:b1:2b:a9:14:e9:09:59:78:f6:e7:9f:15:c0:aa: 17:1e:8f:59:e0:72:77:d8:cf:42:b2:6d:be:5d:7d:0a:e2:70: 75:38:b7:4d:2f:68:3a:a9:30:40:23:b6:23:62:28:a6:b3:a2: b4:a4:2b:25:2c:11:d0:dd:2f:82:e4:e8:63:a6:3b:a8:19:b4: 83:64:ae:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjUwNDAzMDIxNTQwWhcNMjUwNDEwMDIxNTQwWjAYMRYwFAYD VQQDEw02N2VkZWY0ZC1iYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbFSRkWuKzvwkyJrRCrBYXRkoZhQlY4ORoZO+fzoyBIl8ntja/pIAUWrkN4/ dzO/5laiOCuzKwKajtGjlumy1xxcmvX2EibigEy4w3CHA0V5a5feTKL0jz36X7R6 7b3kgxn0qQKpxjla+ilQMj1djbjmJiOPWaIZexoz51zYRQm9fHltaNHg2N+SNc6T q2YbyTPTgKmNssjIP3i8jYAfolcI9Fe7Lt4e6qE79T37lN1hIuHqnvkoA1lSSPgk 8NgrsBj9Aqb/uPCllV7BJX8tr6Hty8rs4hdnMQ654Jrgm3CBOpoPNiTdDQtp2BzV fVq9JoxdK48AxCsGFgrhP34gNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6UquP9 7PdTB583PSrxKyDpkhP1MB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk03Hc93SL9txv+BiIkPCRo4FzVkhOiT3r2twOMOiOdDk7hIznTa0v 6aor+6mmxUecviAYMiDVQbk5GwlcjSrkmkzJkCqRRJDY2TyBffQ8YqfKrtYXxdIA nLNQDoUI05n6D2H8DxqLLgey2ALvBvgaMzlPCJbuDVWG6KR/ZopxpHMMoPcsY1ku t3MtMWNGIGtf9irgyJKJeRETpcQb+orYireKrtTXDOcSHeCtDX08Lpz4ZpsVNG6s sSupFOkJWXj2558VwKoXHo9Z4HJ32M9Csm2+XX0K4nB1OLdNL2g6qTBAI7YjYiim s6K0pCslLBHQ3S+C5OhjpjuoGbSDZK70 -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:49 2025 by rpki-client