$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: F8KUXBE1EFGwmmpfoAivPW6VZDFsUmOtzqCyhl0GGQc= Subject key identifier: D9:FF:D6:3F:2F:DA:4F:EC:1B:2C:DA:D5:97:6F:30:41:BD:F0:6B:2F Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 09DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 09D2 Signing time: Fri 04 Apr 2025 20:06:26 +0000 Manifest this update: Fri 04 Apr 2025 20:06:25 +0000 Manifest next update: Fri 11 Apr 2025 20:06:25 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: c09ELMQbFm2ir5nyf+7WaEbVLvaWm2lNwys++9nVhpM=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: pkQyF6/gfOZsdS2FZ7pXb1wwkEQgEQkFPici094hylM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2524 (0x9dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227 Validity Not Before: Apr 4 20:06:25 2025 GMT Not After : Apr 11 20:06:25 2025 GMT Subject: CN=67f03bc1-43b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:34:35:28:9f:bc:bb:9c:59:ef:3c:c4:e1:89: 07:30:bb:a6:9c:33:f4:e3:f2:07:e4:6d:e2:cb:c1: 57:5c:1c:ce:00:83:3f:42:3a:3c:ea:79:16:40:80: ed:dd:dd:24:9b:b7:53:9e:ba:f4:84:1f:ef:88:f9: d0:5d:f7:91:d4:d7:ac:16:31:ad:8b:9b:0a:48:3d: 16:f9:cd:5f:7d:d5:e9:b0:0d:05:37:7e:79:03:c5: bc:7b:ad:a0:c1:4e:41:3d:cd:b6:97:79:e8:15:7f: 57:79:a9:84:31:91:93:81:75:30:39:b4:74:de:b3: 91:53:46:b6:52:de:4b:84:48:62:0f:6a:f6:e5:89: af:a0:56:40:5b:e6:80:47:8c:65:a4:66:75:b9:79: c8:16:ab:f9:6c:af:8f:ef:48:4f:55:d7:ba:f1:90: ca:b2:27:61:67:a0:11:ab:85:ad:55:4e:73:5b:94: ea:4b:a8:7d:4d:d7:5a:17:35:ec:ea:60:1c:94:18: 9b:4c:39:b8:d8:87:cc:c3:a6:db:65:50:b9:53:7a: 46:c3:af:8f:c4:1b:96:43:6e:88:c1:93:1d:bd:9f: b2:93:99:e4:0a:9a:a6:da:88:5d:9f:08:a9:c0:16: 61:27:e5:cc:7f:74:dd:02:01:41:04:1a:05:14:fb: 43:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FF:D6:3F:2F:DA:4F:EC:1B:2C:DA:D5:97:6F:30:41:BD:F0:6B:2F X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:56:11:4e:c8:bc:ad:9b:44:b0:f8:59:16:99:a0:cf:40:b2: 2e:14:04:a4:db:bb:4f:ef:0d:42:b8:23:52:7d:35:cf:a7:a0: bc:37:eb:d3:57:1e:1e:87:2b:b8:4a:b8:e1:80:03:76:db:a1: 13:26:62:9d:64:28:76:e7:d8:6b:f7:c0:19:a8:00:70:c5:56: a2:b5:98:1f:f7:1a:70:bc:8f:d7:1d:d6:02:12:7b:17:e0:f3: 14:18:98:5b:d9:28:1f:1a:f9:d1:66:8d:9b:0b:bc:30:ce:e2: a8:5c:c2:f9:db:9c:61:d3:7e:04:c8:02:d7:2b:d4:6d:39:ba: c7:45:ef:4d:28:1a:3e:aa:52:36:2a:7b:cb:b3:fd:ee:0e:f7: cd:23:41:2f:a6:23:bf:53:90:c2:1f:e7:0d:57:31:94:43:6d: 84:e2:49:f3:75:aa:5a:55:61:43:41:e4:b3:aa:c2:c5:e1:05: 30:dd:b2:8c:e5:ae:23:eb:49:dc:d2:2c:36:a2:4a:27:6f:bd: cb:9b:11:ac:50:93:e1:31:4d:96:e1:f4:7a:95:e0:8d:53:ed: 47:b8:85:9e:bb:58:bb:5c:48:5c:43:7c:21:f8:57:dc:e8:bc: 81:63:90:c0:9b:a8:d3:60:18:d0:b0:6a:76:ec:3d:96:c8:c7: ca:4e:4c:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUwNDA0MjAwNjI1WhcNMjUwNDExMjAwNjI1WjAYMRYwFAYD VQQDEw02N2YwM2JjMS00M2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TQ1KJ+8u5xZ7zzE4YkHMLumnDP04/IH5G3iy8FXXBzOAIM/Qjo86nkWQIDt 3d0km7dTnrr0hB/viPnQXfeR1NesFjGti5sKSD0W+c1ffdXpsA0FN355A8W8e62g wU5BPc22l3noFX9XeamEMZGTgXUwObR03rORU0a2Ut5LhEhiD2r25YmvoFZAW+aA R4xlpGZ1uXnIFqv5bK+P70hPVde68ZDKsidhZ6ARq4WtVU5zW5TqS6h9TddaFzXs 6mAclBibTDm42IfMw6bbZVC5U3pGw6+PxBuWQ26IwZMdvZ+yk5nkCpqm2ohdnwip wBZhJ+XMf3TdAgFBBBoFFPtDQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNn/1j8v 2k/sGyza1ZdvMEG98GsvMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXVhFOyLytm0Sw+FkWmaDPQLIuFASk27tP7w1CuCNSfTXPp6C8N+vT Vx4ehyu4SrjhgAN226ETJmKdZCh259hr98AZqABwxVaitZgf9xpwvI/XHdYCEnsX 4PMUGJhb2SgfGvnRZo2bC7wwzuKoXML525xh034EyALXK9RtObrHRe9NKBo+qlI2 KnvLs/3uDvfNI0EvpiO/U5DCH+cNVzGUQ22E4knzdapaVWFDQeSzqsLF4QUw3bKM 5a4j60nc0iw2okonb73LmxGsUJPhMU2W4fR6leCNU+1HuIWeu1i7XEhcQ3wh+Ffc 6LyBY5DAm6jTYBjQsGp27D2WyMfKTkxS -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:16 2025 by rpki-client