$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: iEJKbr4V7pShikOCrTZw/QQaF49N4oSnU6kINPlhl3Y= Subject key identifier: 76:B0:37:DD:FD:47:AB:6F:DC:DF:40:B5:EE:27:0A:D5:58:12:6A:26 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 0837 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 0832 Signing time: Thu 10 Apr 2025 20:43:38 +0000 Manifest this update: Thu 10 Apr 2025 20:43:37 +0000 Manifest next update: Thu 17 Apr 2025 20:43:37 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: ymM2FHpAFLEJYYi9ava4G39t0w65jf08MVt+OwsDYks=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: rarNamT8etGmrzl2oBorgmdNrF9oOnpcrAlb12sZ65o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 20:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A Validity Not Before: Apr 10 20:43:37 2025 GMT Not After : Apr 17 20:43:37 2025 GMT Subject: CN=67f82d7a-b8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:9c:c9:b1:48:74:ff:db:59:3b:b5:aa:da: a7:e1:6f:e9:28:73:7f:8f:07:d0:59:68:81:b0:b6: ad:12:85:06:97:aa:9e:49:fc:1e:8c:ad:3d:e6:d6: bc:98:27:a8:d9:8e:59:23:4a:8b:e4:1c:e9:a1:d9: 5b:29:b9:d3:dd:76:50:ec:74:df:67:be:b7:df:dd: a3:20:49:dc:23:8f:12:64:de:1b:21:52:6e:ad:0a: 47:06:7c:98:28:3c:71:5f:41:0b:66:95:9f:1e:d9: 13:a8:1a:42:c0:c7:cb:06:3d:69:09:a3:eb:e2:7f: 59:07:40:a6:fa:09:80:f3:83:b5:cd:f0:4e:13:9f: c4:7c:95:05:8f:ed:41:d4:b3:9c:0f:10:06:b4:70: d5:16:9d:57:58:2d:fa:5e:5c:13:60:21:ca:98:7a: 94:9b:07:69:3f:c1:2e:04:76:3a:a2:12:a9:ba:0f: ce:20:18:e0:0b:5f:b2:c3:dc:f8:0f:95:73:2e:bf: 8c:ec:cc:79:65:9a:4a:b7:7d:98:8f:7f:6b:b0:63: 6e:f3:85:c3:30:52:c4:26:12:fc:80:d6:d6:73:6d: d8:50:06:6e:7e:ea:3c:d5:25:75:3c:69:3e:7c:f6: d2:fe:88:90:1c:0f:63:68:d2:3d:ae:5d:00:39:54: 51:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B0:37:DD:FD:47:AB:6F:DC:DF:40:B5:EE:27:0A:D5:58:12:6A:26 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:72:e0:9b:36:83:ec:ae:91:ef:14:7b:13:9b:4d:12:91:ec: 65:c7:92:62:29:4f:79:d3:c0:7e:82:d1:8d:3d:8b:72:bd:e2: 03:3f:83:f2:e2:a2:31:d2:fd:d4:aa:11:4b:58:02:f8:78:81: aa:eb:38:ae:e1:c2:c1:23:32:40:98:5a:f9:6b:e2:c6:94:80: 84:6d:77:cc:bb:15:1d:7d:a0:c6:46:60:41:74:7a:79:20:8c: 7f:cf:f1:18:9a:d0:47:fc:0c:36:a1:4e:1b:11:0f:ae:30:3a: 57:22:30:87:f7:b2:86:c9:0b:46:e2:bd:96:fd:a4:b7:a4:fe: f7:3c:64:c2:29:14:a1:3f:23:d4:4c:f8:a5:bd:66:82:39:2e: 19:8b:10:d8:e0:b7:46:8b:a3:7a:d4:2e:7d:0c:19:bf:28:5d: 6a:fe:f4:3c:9d:87:b1:cc:f1:08:00:32:88:21:b7:e6:42:b8: b1:38:f4:69:a2:71:04:f0:08:cf:78:85:f5:49:1c:7d:60:7f: b8:d1:c2:03:d2:60:cc:5f:9d:fa:65:1d:cc:ce:6c:35:86:63: a6:6a:08:fc:c3:cf:21:03:13:47:06:f9:4f:5a:92:63:73:c0: 26:22:ca:4e:cb:d6:6b:22:6d:b9:b9:2f:6f:fd:74:f5:ac:be: 26:ac:9e:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjUwNDEwMjA0MzM3WhcNMjUwNDE3MjA0MzM3WjAYMRYwFAYD VQQDEw02N2Y4MmQ3YS1iOGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmicybFIdP/bWTu1qtqn4W/pKHN/jwfQWWiBsLatEoUGl6qeSfwejK095ta8 mCeo2Y5ZI0qL5BzpodlbKbnT3XZQ7HTfZ763392jIEncI48SZN4bIVJurQpHBnyY KDxxX0ELZpWfHtkTqBpCwMfLBj1pCaPr4n9ZB0Cm+gmA84O1zfBOE5/EfJUFj+1B 1LOcDxAGtHDVFp1XWC36XlwTYCHKmHqUmwdpP8EuBHY6ohKpug/OIBjgC1+yw9z4 D5VzLr+M7Mx5ZZpKt32Yj39rsGNu84XDMFLEJhL8gNbWc23YUAZufuo81SV1PGk+ fPbS/oiQHA9jaNI9rl0AOVRRVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHawN939 R6tv3N9Ate4nCtVYEmomMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABcuCbNoPsrpHvFHsTm00Skexlx5JiKU9508B+gtGNPYtyveIDP4Py 4qIx0v3UqhFLWAL4eIGq6ziu4cLBIzJAmFr5a+LGlICEbXfMuxUdfaDGRmBBdHp5 IIx/z/EYmtBH/Aw2oU4bEQ+uMDpXIjCH97KGyQtG4r2W/aS3pP73PGTCKRShPyPU TPilvWaCOS4ZixDY4LdGi6N61C59DBm/KF1q/vQ8nYexzPEIADKIIbfmQrixOPRp onEE8AjPeIX1SRx9YH+40cID0mDMX536ZR3Mzmw1hmOmagj8w88hAxNHBvlPWpJj c8AmIspOy9ZrIm25uS9v/XT1rL4mrJ6+ -----END CERTIFICATE-----Generated at Sat Apr 12 02:18:15 2025 by rpki-client