$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft File: hpk8iGXMBr2Yu5T0pukGEieCgAA.mft (raw, json) Hash identifier: zr2v3hP0p6K/hgtPPO07m6Nd2YZhTXIFtIjtfGLRWf0= Subject key identifier: 16:8B:0A:AD:13:D1:4B:1E:FE:7C:D9:F0:4C:07:C9:FA:F9:8A:83:9A Authority key identifier: 86:99:3C:88:65:CC:06:BD:98:BB:94:F4:A6:E9:06:12:27:82:80:00 Certificate issuer: /CN=A91DC6AD/serialNumber=86993C8865CC06BD98BB94F4A6E9061227828000 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft Manifest number: 0127 Signing time: Mon 21 Apr 2025 03:33:47 +0000 Manifest this update: Mon 21 Apr 2025 03:33:47 +0000 Manifest next update: Mon 28 Apr 2025 03:33:47 +0000 Files and hashes: 1: hpk8iGXMBr2Yu5T0pukGEieCgAA.crl (hash: eCwAvKLyDjXkgNeeTMHgdzDxqZ3Xw4ip8i0C/dWCID0=) 2: E2ECBFC65DF211EEB46BCB27C4F9AE02.roa (hash: VLTTYVtZCZ689N9IR847Wk29ehkfdaAv1fIzpOf8NmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.crl rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 03:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC6AD, serialNumber=86993C8865CC06BD98BB94F4A6E9061227828000 Validity Not Before: Apr 21 03:33:47 2025 GMT Not After : Apr 28 03:33:47 2025 GMT Subject: CN=6805bc9b-4dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0e:a0:d2:dd:30:de:ef:f4:f7:eb:4d:d9:b8: fc:b3:b0:84:fb:88:ce:19:ab:0e:9f:17:0a:6f:94: b2:70:94:9c:00:c1:36:94:b9:0c:26:06:6c:14:c8: 4a:5c:71:b3:ea:d3:4c:be:7f:69:b9:fb:b4:ec:e9: 74:4b:f1:9a:5e:2d:1b:dc:6b:6c:97:36:6e:9d:06: d3:1a:9c:25:11:29:96:6f:86:90:73:69:a4:3f:08: 80:e5:ea:7a:f4:cd:80:84:ee:e1:b6:6c:68:df:5f: 84:c7:e6:42:51:75:33:34:e3:b2:79:da:da:0f:59: 31:e6:e6:dc:a0:0e:07:ce:11:94:5c:d1:85:25:3a: 54:bf:d5:88:85:88:f4:b2:f0:78:46:38:ea:8d:03: 36:5c:1f:97:a5:c8:1f:fc:3a:06:9b:39:a6:27:31: a4:8b:2f:ac:40:dc:85:44:76:e6:c4:08:a4:13:16: 34:69:b2:96:84:d7:d7:91:16:ae:27:39:da:05:33: 6e:e3:05:0c:e5:18:92:d7:18:d3:1b:4d:19:1b:68: 95:25:15:7d:f4:e6:01:e8:c0:0e:9b:18:8c:ad:c6: c7:ac:87:53:2e:e9:09:e0:0c:dd:11:70:eb:26:8d: 75:89:28:12:30:ca:de:10:8d:ee:fb:bb:0d:11:15: 0c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8B:0A:AD:13:D1:4B:1E:FE:7C:D9:F0:4C:07:C9:FA:F9:8A:83:9A X509v3 Authority Key Identifier: keyid:86:99:3C:88:65:CC:06:BD:98:BB:94:F4:A6:E9:06:12:27:82:80:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:69:b8:5b:c4:73:bd:16:64:d9:1f:cb:6c:f5:0d:93:44:0f: ee:46:b9:52:ca:cf:0b:5c:7d:bc:00:2a:76:22:0a:49:98:6c: ff:9c:1b:71:da:0c:c4:11:f5:69:e7:f8:f3:63:85:49:19:e0: 34:33:71:a2:08:0d:89:c5:05:ad:90:b4:f5:86:e7:d1:a3:e0: 81:79:b5:49:42:0f:99:10:bd:91:29:22:97:9d:71:87:84:42: d1:12:56:75:7d:4f:c5:9a:d0:4b:7e:f2:34:fe:6c:2a:66:5c: 05:9a:c1:43:a9:39:77:4a:f2:86:eb:a4:4d:2b:12:70:31:ef: ee:9f:d1:3c:90:63:70:d2:3a:13:66:06:75:67:31:7b:8e:a7: 1d:b5:f2:86:1e:81:e8:04:db:f5:1a:ea:df:6e:4f:ec:b2:cf: 7e:4a:54:f3:b6:e9:b1:e9:70:75:9f:8b:d5:65:6b:fd:c5:81: e3:d8:72:9a:7e:92:82:62:35:87:2d:94:6c:39:1d:39:6c:d7: ef:76:b9:6c:1f:ef:89:d8:1a:d6:46:01:b4:71:97:74:ff:52: b7:91:c3:fa:93:8e:00:66:d0:2c:90:70:6c:27:f2:a0:58:52: 22:7a:5f:01:6d:33:25:71:c9:80:5d:50:d2:1b:50:ab:d0:dd: a3:8a:7d:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM2QUQxMTAvBgNVBAUTKDg2OTkzQzg4NjVDQzA2QkQ5OEJCOTRGNEE2RTkwNjEy Mjc4MjgwMDAwHhcNMjUwNDIxMDMzMzQ3WhcNMjUwNDI4MDMzMzQ3WjAYMRYwFAYD VQQDEw02ODA1YmM5Yi00ZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Q6g0t0w3u/09+tN2bj8s7CE+4jOGasOnxcKb5SycJScAME2lLkMJgZsFMhK XHGz6tNMvn9pufu07Ol0S/GaXi0b3GtslzZunQbTGpwlESmWb4aQc2mkPwiA5ep6 9M2AhO7htmxo31+Ex+ZCUXUzNOOyedraD1kx5ubcoA4HzhGUXNGFJTpUv9WIhYj0 svB4RjjqjQM2XB+Xpcgf/DoGmzmmJzGkiy+sQNyFRHbmxAikExY0abKWhNfXkRau JznaBTNu4wUM5RiS1xjTG00ZG2iVJRV99OYB6MAOmxiMrcbHrIdTLukJ4AzdEXDr Jo11iSgSMMreEI3u+7sNERUMTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaLCq0T 0Use/nzZ8EwHyfr5ioOaMB8GA1UdIwQYMBaAFIaZPIhlzAa9mLuU9KbpBhIngoAA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzZBRC81MzlGMjNDQzVE RjIxMUVFOUIwNDQzMEVDNEY5QUUwMi9ocGs4aUdYTUJyMll1NVQwcHVrR0VpZUNn QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hwazhpR1hNQnIyWXU1VDBwdWtHRWllQ2dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzZBRC81MzlGMjNDQzVERjIxMUVFOUIwNDQzMEVDNEY5QUUwMi9ocGs4aUdYTUJy Mll1NVQwcHVrR0VpZUNnQUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMabhbxHO9FmTZH8ts9Q2TRA/uRrlSys8LXH28ACp2IgpJmGz/nBtx 2gzEEfVp5/jzY4VJGeA0M3GiCA2JxQWtkLT1hufRo+CBebVJQg+ZEL2RKSKXnXGH hELRElZ1fU/FmtBLfvI0/mwqZlwFmsFDqTl3SvKG66RNKxJwMe/un9E8kGNw0joT ZgZ1ZzF7jqcdtfKGHoHoBNv1Gurfbk/sss9+SlTztumx6XB1n4vVZWv9xYHj2HKa fpKCYjWHLZRsOR05bNfvdrlsH++J2BrWRgG0cZd0/1K3kcP6k44AZtAskHBsJ/Kg WFIiel8BbTMlccmAXVDSG1Cr0N2jin1y -----END CERTIFICATE-----Generated at Tue Apr 22 02:59:49 2025 by rpki-client