$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft File: hrKx0eeCRIuE9pgY8WofcHtUyGw.mft (raw, json) Hash identifier: mOgepNgVC4632tYzqYxgGNtyf4qq4ER0K9WILjTnIcI= Subject key identifier: 5B:C4:38:D0:A6:14:A0:1D:49:19:17:55:FC:DD:98:9E:A5:71:B4:DB Authority key identifier: 86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C Certificate issuer: /CN=A91EC979/serialNumber=86B2B1D1E782448B84F69818F16A1F707B54C86C Certificate serial: 06B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft Manifest number: 06A4 Signing time: Fri 04 Apr 2025 22:21:33 +0000 Manifest this update: Fri 04 Apr 2025 22:21:33 +0000 Manifest next update: Fri 11 Apr 2025 22:21:33 +0000 Files and hashes: 1: hrKx0eeCRIuE9pgY8WofcHtUyGw.crl (hash: nTm2gQ0Blp2ouaOXlfBXcJIlsm6z0fEAOblU0tJ+Mdg=) 2: 956449BEFBF411EDBEAD0A26C4F9AE02.roa (hash: DKHDOAj7+AXAvfjvZlh+voUSgeSh4L2VBg+pbuzzE70=) 3: 7A27A6E45FDB11EBA5C9EA7CC4F9AE02.roa (hash: HPFeGwKq86ZcwbWrB7sqcvfz9Xbe89k8mMFhGyrTd2o=) 4: C5186FA283D311EEADE09225C4F9AE02.roa (hash: OSo59yjptase6UYWjPMVEsoK3BFfSOe7jd8A1zwV3Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.crl rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC979 Validity Not Before: Apr 4 22:21:33 2025 GMT Not After : Apr 11 22:21:33 2025 GMT Subject: CN=67f05b6d-78d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:cd:f0:55:dc:69:33:18:17:06:cd:8a:19: 04:f8:f5:f0:e5:15:72:a6:65:2c:f6:5c:cf:2d:53: 00:10:f4:8e:16:37:8b:5a:25:9c:81:f8:83:ba:ce: 4c:27:30:f5:2f:6c:3a:2f:1c:b0:75:56:59:24:5f: 0f:0b:79:e4:94:e1:8b:9d:bf:21:a9:78:db:59:70: 38:fc:e7:70:ed:57:71:65:7d:ab:23:d4:1d:1d:72: a3:53:67:b8:b6:7d:80:42:f9:a6:09:7e:e0:09:52: 97:39:bc:32:66:8e:f3:6b:fb:55:d9:99:8d:1f:6f: 03:71:7f:cf:5e:bd:56:5a:90:48:66:ec:0d:24:76: da:6a:8e:05:99:bd:ab:07:40:39:93:07:1b:8c:a6: 36:6c:bf:50:e8:eb:18:a5:b1:04:d9:33:29:70:6e: 4b:ab:1c:9f:e0:b1:17:44:9d:69:5e:ae:f2:e7:99: 3c:c5:dc:fd:66:f6:c8:3e:5c:91:54:59:a8:7f:74: 59:9b:0a:93:4e:04:02:cc:5d:cd:f3:fc:3b:8f:f8: 41:ee:bb:9c:9d:48:e8:f0:0a:2d:4a:88:ca:c8:b4: 03:61:0c:d7:9e:d3:23:36:81:e5:f0:d6:54:62:64: 4a:6a:03:f7:fe:f3:43:e7:b6:27:8f:66:1d:df:31: 2b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C4:38:D0:A6:14:A0:1D:49:19:17:55:FC:DD:98:9E:A5:71:B4:DB X509v3 Authority Key Identifier: keyid:86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ee:e1:34:20:eb:68:df:e2:67:f2:c5:67:ab:3e:26:89:94: 33:11:2e:76:c2:24:bc:4c:b2:04:a5:5f:8c:b7:52:60:05:8d: 4f:32:0d:cc:76:02:c8:c0:64:de:25:26:88:26:62:7c:74:7a: 24:54:9b:8d:2c:f9:37:55:58:02:e9:9d:9e:cb:ab:99:45:25: a7:64:fa:c0:f0:99:9e:64:fd:d2:0f:ba:1c:bf:16:cc:24:eb: e2:97:8b:86:45:c7:f5:f7:99:45:9b:ed:48:fb:40:db:f9:53: ce:93:8d:5a:f2:86:26:54:5c:0f:ae:d4:f6:48:7f:ee:b6:43: c0:0d:7f:16:7c:3e:bf:92:13:74:64:ae:b0:7a:b6:5c:11:b7: 35:c6:3e:47:34:a6:79:95:4e:d6:48:69:3c:4f:97:14:90:85: 81:cb:2d:d0:1a:12:6a:ca:f4:68:26:c7:67:cc:00:be:7d:0a: 6f:e0:8d:65:b5:05:03:e2:6a:15:7b:2b:91:66:72:0c:36:4b: 93:fa:5a:ab:93:09:80:ce:dd:95:80:c8:dd:7a:69:d7:37:92: 53:b9:88:50:5d:b5:40:a3:51:0d:d8:d3:23:7e:9e:5b:39:aa: 29:d9:4b:e0:48:f1:46:c0:5f:aa:f8:3d:66:fb:c2:8a:b3:9e: 8f:e2:8b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5NzkxMTAvBgNVBAUTKDg2QjJCMUQxRTc4MjQ0OEI4NEY2OTgxOEYxNkExRjcw N0I1NEM4NkMwHhcNMjUwNDA0MjIyMTMzWhcNMjUwNDExMjIyMTMzWjAYMRYwFAYD VQQDEw02N2YwNWI2ZC03OGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fHN8FXcaTMYFwbNihkE+PXw5RVypmUs9lzPLVMAEPSOFjeLWiWcgfiDus5M JzD1L2w6LxywdVZZJF8PC3nklOGLnb8hqXjbWXA4/Odw7VdxZX2rI9QdHXKjU2e4 tn2AQvmmCX7gCVKXObwyZo7za/tV2ZmNH28DcX/PXr1WWpBIZuwNJHbaao4Fmb2r B0A5kwcbjKY2bL9Q6OsYpbEE2TMpcG5Lqxyf4LEXRJ1pXq7y55k8xdz9ZvbIPlyR VFmof3RZmwqTTgQCzF3N8/w7j/hB7rucnUjo8AotSojKyLQDYQzXntMjNoHl8NZU YmRKagP3/vND57Ynj2Yd3zErnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvEONCm FKAdSRkXVfzdmJ6lcbTbMB8GA1UdIwQYMBaAFIaysdHngkSLhPaYGPFqH3B7VMhs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzk3OS9FRDYzM0U4NjVG RDkxMUVCQTMwRUUzN0JDNEY5QUUwMi9ockt4MGVlQ1JJdUU5cGdZOFdvZmNIdFV5 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hyS3gwZWVDUkl1RTlwZ1k4V29mY0h0VXlHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Qzk3OS9FRDYzM0U4NjVGRDkxMUVCQTMwRUUzN0JDNEY5QUUwMi9ockt4MGVlQ1JJ dUU5cGdZOFdvZmNIdFV5R3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA47uE0IOto3+Jn8sVnqz4miZQzES52wiS8TLIEpV+Mt1JgBY1PMg3M dgLIwGTeJSaIJmJ8dHokVJuNLPk3VVgC6Z2ey6uZRSWnZPrA8JmeZP3SD7ocvxbM JOvil4uGRcf195lFm+1I+0Db+VPOk41a8oYmVFwPrtT2SH/utkPADX8WfD6/khN0 ZK6werZcEbc1xj5HNKZ5lU7WSGk8T5cUkIWByy3QGhJqyvRoJsdnzAC+fQpv4I1l tQUD4moVeyuRZnIMNkuT+lqrkwmAzt2VgMjdemnXN5JTuYhQXbVAo1EN2NMjfp5b Oaop2UvgSPFGwF+q+D1m+8KKs56P4os0 -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:25 2025 by rpki-client