$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: HeubEyjBUd+lyEvJZJhoVMAezu0sbV7lb/wOjb/wflw= Subject key identifier: 82:52:58:BA:39:12:DE:FF:42:2D:32:37:BB:F3:68:84:17:21:04:38 Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 01D3 Signing time: Sat 05 Apr 2025 02:20:51 +0000 Manifest this update: Sat 05 Apr 2025 02:20:50 +0000 Manifest next update: Sat 12 Apr 2025 02:20:50 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: 4An2cjVf3/YO9Fmg4AEZHjaL4MuKjuB1lj08dT4Lna4=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: f6YvpcInK7aMZI/gTlnIjzNzS2LMqoG/bSzJ7lAf9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4 Validity Not Before: Apr 5 02:20:50 2025 GMT Not After : Apr 12 02:20:50 2025 GMT Subject: CN=67f09382-ac1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:95:a6:4b:11:cc:45:2c:79:69:66:43:3a:03: b6:16:2a:14:ef:9f:19:99:09:fa:44:04:1e:0e:4f: f4:39:20:8f:61:75:7a:fa:63:7f:f7:ae:71:0e:f4: 04:e4:47:00:88:4b:17:a8:e2:cc:80:ae:99:ee:37: df:75:ad:42:2e:98:60:7f:c3:1e:11:1a:3e:4c:cc: 43:25:d2:3f:23:ce:18:1f:89:b9:15:0c:95:df:a1: 8d:c0:10:43:c5:f9:ff:22:85:56:a5:db:da:91:64: 21:b5:1b:84:09:96:96:17:b8:02:95:6f:b1:83:eb: e0:4a:4d:15:2b:f4:42:bd:06:d5:db:8e:5f:ba:43: f7:1d:92:28:83:94:45:5c:88:9c:0d:aa:28:1b:59: e6:dc:c6:97:2d:37:24:2b:cc:84:35:1e:e1:ef:b5: df:ce:8b:5f:fd:d0:ff:35:39:7e:3e:a2:5b:6c:73: 38:c3:ea:6a:f8:83:88:36:6a:67:bb:35:9e:5d:0e: 86:97:1a:82:73:48:bd:71:d1:4f:7a:b3:3c:06:4d: fd:35:bd:4b:82:3f:ad:37:5a:64:36:5a:e9:83:61: df:d6:6f:a3:43:d0:80:f9:d4:3c:27:86:2c:6b:a7: b4:32:da:dd:d3:d9:17:5a:86:fb:ac:2a:6e:c4:f5: 60:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:52:58:BA:39:12:DE:FF:42:2D:32:37:BB:F3:68:84:17:21:04:38 X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:02:88:37:cb:6a:af:40:99:76:01:36:8d:a0:89:ff:82:7d: 1f:92:12:c6:53:ad:34:d6:4d:48:2a:ef:8f:34:03:e1:4b:a9: 16:a3:e1:1a:bd:cf:ee:77:fd:cc:a7:fc:ff:51:6e:bc:53:d8: 24:af:13:6d:b8:ce:62:11:85:8e:93:01:b2:2b:08:7f:5d:91: f7:4d:40:e4:20:64:31:c6:27:72:2a:79:80:ee:34:7f:16:d3: 79:17:10:94:1f:86:34:a6:7e:b2:7d:0d:ba:dc:e0:6e:1d:56: 0a:5f:96:d9:44:be:b0:1d:49:8d:09:62:a5:cb:10:83:9b:e3: 27:39:24:5a:98:6a:cd:c0:49:83:aa:ad:60:c6:ab:00:ea:cb: 12:3f:74:27:e8:b7:2f:c2:91:b3:76:86:63:51:23:c0:ad:95: 98:79:4c:5c:1e:16:87:56:dd:1e:90:55:ed:48:87:de:c7:03: 3c:31:b9:d7:92:ca:00:5b:3d:64:e5:63:79:dd:03:7d:f3:d3: 43:ec:6f:b2:ac:f4:15:a9:3d:3f:c1:81:e8:36:6e:1a:13:9c: c2:6b:db:ea:4e:c4:57:86:d4:e9:72:4f:66:1b:f8:af:04:2d: 3a:0b:22:fb:5e:ff:1a:89:66:aa:7a:f5:1a:82:51:6c:8e:66: 7f:f7:8f:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUwNDA1MDIyMDUwWhcNMjUwNDEyMDIyMDUwWjAYMRYwFAYD VQQDEw02N2YwOTM4Mi1hYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5WmSxHMRSx5aWZDOgO2FioU758ZmQn6RAQeDk/0OSCPYXV6+mN/965xDvQE 5EcAiEsXqOLMgK6Z7jffda1CLphgf8MeERo+TMxDJdI/I84YH4m5FQyV36GNwBBD xfn/IoVWpdvakWQhtRuECZaWF7gClW+xg+vgSk0VK/RCvQbV245fukP3HZIog5RF XIicDaooG1nm3MaXLTckK8yENR7h77Xfzotf/dD/NTl+PqJbbHM4w+pq+IOINmpn uzWeXQ6GlxqCc0i9cdFPerM8Bk39Nb1Lgj+tN1pkNlrpg2Hf1m+jQ9CA+dQ8J4Ys a6e0Mtrd09kXWob7rCpuxPVgvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJSWLo5 Et7/Qi0yN7vzaIQXIQQ4MB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiAog3y2qvQJl2ATaNoIn/gn0fkhLGU6001k1IKu+PNAPhS6kWo+Ea vc/ud/3Mp/z/UW68U9gkrxNtuM5iEYWOkwGyKwh/XZH3TUDkIGQxxidyKnmA7jR/ FtN5FxCUH4Y0pn6yfQ263OBuHVYKX5bZRL6wHUmNCWKlyxCDm+MnOSRamGrNwEmD qq1gxqsA6ssSP3Qn6LcvwpGzdoZjUSPArZWYeUxcHhaHVt0ekFXtSIfexwM8MbnX ksoAWz1k5WN53QN989ND7G+yrPQVqT0/wYHoNm4aE5zCa9vqTsRXhtTpck9mG/iv BC06CyL7Xv8aiWaqevUaglFsjmZ/949f -----END CERTIFICATE-----Generated at Sat Apr 5 21:55:33 2025 by rpki-client