$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft File: HtdycKSBilV07-7Kyvt0g812iCE.mft (raw, json) Hash identifier: wpwFEZhITzzjDci4KPbo7hYU158VtlTHGDUlUVuFOqY= Subject key identifier: DE:48:02:BD:03:0E:8E:25:EF:C1:AE:47:29:48:23:03:2E:1D:54:C4 Authority key identifier: 1E:D7:72:70:A4:81:8A:55:74:EF:EE:CA:CA:FB:74:83:CD:76:88:21 Certificate issuer: /CN=A91CFE58/serialNumber=1ED77270A4818A5574EFEECACAFB7483CD768821 Certificate serial: 0A43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft Manifest number: 0A3C Signing time: Mon 14 Apr 2025 19:36:52 +0000 Manifest this update: Mon 14 Apr 2025 19:36:52 +0000 Manifest next update: Mon 21 Apr 2025 19:36:52 +0000 Files and hashes: 1: HtdycKSBilV07-7Kyvt0g812iCE.crl (hash: v6SiMvDT4Ph2vCV5Hw2RBckYaXKMtp5TykSuMpUwEcw=) 2: 7C29A45A669A11EA9A11434FC4F9AE02.roa (hash: zKN4F2avq+xJ9yq6Og5mmKvaFyZB2rEl8x2OZ87RL7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.crl rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 19:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2627 (0xa43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE58, serialNumber=1ED77270A4818A5574EFEECACAFB7483CD768821 Validity Not Before: Apr 14 19:36:52 2025 GMT Not After : Apr 21 19:36:52 2025 GMT Subject: CN=67fd63d4-719f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c0:41:56:6b:1b:3f:11:eb:55:82:93:76:6f: 20:64:b6:75:25:2b:c6:b8:6d:a2:ef:20:27:8d:84: ec:98:d4:c8:e6:f4:62:13:00:3c:e1:15:b8:a0:7e: b8:bb:b6:85:1a:d3:cb:e2:d2:9d:c9:89:a6:5e:9c: af:bc:12:66:9d:f9:9e:7b:aa:49:0d:fb:97:7b:1b: c8:fa:06:0c:b3:97:92:ec:a7:b6:38:18:12:9d:02: f7:02:13:6a:1f:67:bb:b3:ee:f1:c1:d6:f1:6b:d8: cc:19:0d:bb:e2:d4:bf:2f:7c:4a:9d:43:91:82:b9: 6b:28:ed:93:52:36:a9:d5:aa:7d:f5:3d:c3:b9:94: 1d:47:28:28:96:7b:6a:97:01:cc:33:20:77:13:b2: bb:0d:16:a7:55:e6:8d:05:35:25:41:23:67:f9:0a: f8:e9:b3:d8:3f:4f:46:f1:f9:f5:f1:63:bd:bc:80: 7b:e8:22:5d:86:48:83:a2:46:07:ac:48:6f:cb:0f: 5b:7c:fc:62:ba:2d:0a:57:f9:39:4b:56:12:c4:c2: 68:0c:57:30:de:d5:d5:af:ba:fb:29:9d:c2:af:bd: 01:f1:1a:ba:a6:59:a5:a5:d6:e3:6f:e8:fc:a3:d1: 1d:2c:17:ea:b1:b6:b0:54:62:32:3a:54:86:8a:f5: 24:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:48:02:BD:03:0E:8E:25:EF:C1:AE:47:29:48:23:03:2E:1D:54:C4 X509v3 Authority Key Identifier: keyid:1E:D7:72:70:A4:81:8A:55:74:EF:EE:CA:CA:FB:74:83:CD:76:88:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:ba:41:45:17:eb:f2:c6:15:41:10:46:11:50:9a:fa:ca:6b: 35:67:22:ec:68:a1:c2:80:17:e9:65:91:22:a1:1b:68:fd:07: 20:85:40:40:f3:d0:a3:b7:13:8a:e8:22:fd:86:82:ea:e5:ba: 5a:1e:72:9a:f7:b9:35:b7:a9:a1:85:18:e4:ab:7f:1e:79:3b: 70:3d:1a:34:51:42:f6:f7:29:f9:5e:f1:7a:fe:0f:38:37:48: 19:f7:7d:ec:24:61:17:f4:31:8a:99:cf:40:83:12:28:8a:95: 01:29:03:94:2f:92:3b:99:20:33:78:36:b2:a9:93:c1:48:b3: 87:61:54:81:eb:97:aa:54:07:28:fd:77:b6:de:42:b0:f5:6b: 95:d4:07:23:96:99:e4:5c:39:f1:7a:48:6b:33:21:c2:3a:84: 1d:9b:7d:10:4e:a0:8e:d3:c3:ab:cf:b8:ba:39:73:3d:af:a1: 7f:ab:07:91:62:98:1b:fc:c5:43:0d:a1:eb:77:18:cb:88:a7: f8:38:6a:89:50:91:f8:0f:02:46:65:b6:df:bb:e5:98:04:ea: 47:ef:e8:dd:25:7c:fa:ea:bb:b9:7a:d8:99:39:23:f7:df:9c: c6:35:25:29:98:b5:30:ee:ab:c8:0a:40:ed:e0:ce:ac:3d:27: 34:c0:be:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFNTgxMTAvBgNVBAUTKDFFRDc3MjcwQTQ4MThBNTU3NEVGRUVDQUNBRkI3NDgz Q0Q3Njg4MjEwHhcNMjUwNDE0MTkzNjUyWhcNMjUwNDIxMTkzNjUyWjAYMRYwFAYD VQQDEw02N2ZkNjNkNC03MTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMBBVmsbPxHrVYKTdm8gZLZ1JSvGuG2i7yAnjYTsmNTI5vRiEwA84RW4oH64 u7aFGtPL4tKdyYmmXpyvvBJmnfmee6pJDfuXexvI+gYMs5eS7Ke2OBgSnQL3AhNq H2e7s+7xwdbxa9jMGQ274tS/L3xKnUORgrlrKO2TUjap1ap99T3DuZQdRygolntq lwHMMyB3E7K7DRanVeaNBTUlQSNn+Qr46bPYP09G8fn18WO9vIB76CJdhkiDokYH rEhvyw9bfPxiui0KV/k5S1YSxMJoDFcw3tXVr7r7KZ3Cr70B8Rq6plmlpdbjb+j8 o9EdLBfqsbawVGIyOlSGivUkXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5IAr0D Do4l78GuRylIIwMuHVTEMB8GA1UdIwQYMBaAFB7XcnCkgYpVdO/uysr7dIPNdogh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkU1OC82MDMzQ0Y2QTY2 OTkxMUVBQkYxM0M5NERDNEY5QUUwMi9IdGR5Y0tTQmlsVjA3LTdLeXZ0MGc4MTJp Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZHljS1NCaWxWMDctN0t5dnQwZzgxMmlDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkU1OC82MDMzQ0Y2QTY2OTkxMUVBQkYxM0M5NERDNEY5QUUwMi9IdGR5Y0tTQmls VjA3LTdLeXZ0MGc4MTJpQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTukFFF+vyxhVBEEYRUJr6yms1ZyLsaKHCgBfpZZEioRto/QcghUBA 89CjtxOK6CL9hoLq5bpaHnKa97k1t6mhhRjkq38eeTtwPRo0UUL29yn5XvF6/g84 N0gZ933sJGEX9DGKmc9AgxIoipUBKQOUL5I7mSAzeDayqZPBSLOHYVSB65eqVAco /Xe23kKw9WuV1AcjlpnkXDnxekhrMyHCOoQdm30QTqCO08Orz7i6OXM9r6F/qweR Ypgb/MVDDaHrdxjLiKf4OGqJUJH4DwJGZbbfu+WYBOpH7+jdJXz66ru5etiZOSP3 35zGNSUpmLUw7qvICkDt4M6sPSc0wL5t -----END CERTIFICATE-----Generated at Wed Apr 16 17:16:35 2025 by rpki-client