$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft File: hYtkVOIiRseB5RNSswVkEJhoV34.mft (raw, json) Hash identifier: fMBd6cs+Gz9GdkWbnNOI7Rz0phRF5DU3q8aJg5aG+IE= Subject key identifier: B9:27:43:13:C5:15:CE:1C:B8:2D:75:02:EA:A4:1C:6A:62:50:5F:C4 Authority key identifier: 85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E Certificate issuer: /CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft Manifest number: E1 Signing time: Sat 19 Apr 2025 04:35:53 +0000 Manifest this update: Sat 19 Apr 2025 04:35:52 +0000 Manifest next update: Sat 26 Apr 2025 04:35:52 +0000 Files and hashes: 1: hYtkVOIiRseB5RNSswVkEJhoV34.crl (hash: JMsDuSvWTIotP5xABffiQVK0poaTJmWuguTDazX2LDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 04:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65C7, serialNumber=858B6454E22246C781E51352B30564109868577E Validity Not Before: Apr 19 04:35:52 2025 GMT Not After : Apr 26 04:35:52 2025 GMT Subject: CN=68032829-1518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d2:3e:52:2e:8e:75:6b:b3:a7:a9:7a:e9:92: e9:e1:29:48:5b:4c:6b:0e:f9:1a:15:d8:5f:0a:39: db:32:8b:dc:be:6f:2d:13:a7:11:22:41:50:cd:6a: 0b:b3:d0:a5:a0:0e:dc:5b:10:c2:19:ae:a7:91:16: 33:df:52:61:a1:87:7c:cc:82:14:f4:07:8a:09:01: cd:ed:b9:37:37:25:22:85:b3:ec:b4:c9:85:ec:35: 51:73:0d:19:f5:a9:1b:34:4b:2f:78:91:db:42:77: 71:32:bf:c4:eb:ae:d2:a9:a2:4e:3f:a0:ca:12:a0: 83:0e:ea:d2:c1:cf:30:21:fe:ac:21:89:84:d0:34: d8:d4:4b:2e:3a:ff:3d:18:17:3b:a9:17:87:c7:9d: 2c:65:68:b6:d2:41:6c:fb:96:20:5c:9a:0b:28:d0: 7f:c8:ce:3e:a9:dc:70:c0:9c:bf:81:cc:aa:d8:3c: c1:54:1d:9d:55:f0:9d:ec:ad:d1:33:f0:00:48:af: 16:c1:37:eb:b6:7d:f3:92:51:f1:e0:29:1c:82:68: 78:0a:a4:cb:2f:71:8f:19:b8:28:ac:f5:5d:fd:2e: d3:8a:5c:f0:10:85:07:08:60:4a:d6:40:e8:7c:9d: db:0b:5e:08:0d:00:a2:c0:e9:1d:3a:65:7b:bb:de: c0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:27:43:13:C5:15:CE:1C:B8:2D:75:02:EA:A4:1C:6A:62:50:5F:C4 X509v3 Authority Key Identifier: keyid:85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:82:57:76:73:68:54:8d:37:a4:bd:41:6c:0d:c3:5f:15:7b: 06:60:24:d3:e3:4a:82:13:6d:7b:ed:72:5e:80:f6:31:32:bf: 6a:80:c4:16:a0:e5:90:ba:31:b4:6a:6d:9e:0f:2b:9b:59:c7: 18:7b:d0:9a:78:87:9d:c5:74:37:56:8e:17:28:f9:64:ea:6a: 9b:ad:ac:bd:99:f1:d6:54:b9:4b:13:c2:85:19:ef:84:8c:2e: 61:6e:51:63:d6:0b:60:2e:09:8e:b8:2e:fc:e0:76:44:9c:88: b2:ff:2c:7a:74:45:98:0f:48:0e:7c:9b:88:97:dd:d5:80:a4: 9e:9c:7f:71:9f:fa:fa:66:00:99:75:29:29:fe:62:7a:5c:e4: f0:87:fc:61:ba:01:4a:da:4e:69:3b:75:d5:11:cf:a5:a8:b0: f2:f1:07:7f:b0:63:9a:9d:b0:cd:27:f1:4c:ad:19:84:2c:d7: 0e:b6:12:11:52:78:6a:ff:2b:95:9e:98:b1:b2:87:be:85:46: e6:21:10:37:9a:d2:d9:05:a1:65:fe:7a:2e:75:6a:05:cf:7e: 00:23:9b:2b:fd:35:47:17:7c:59:45:f4:34:cb:bb:a2:26:30: d8:b1:fc:6d:1a:78:94:fd:4c:30:a4:c1:dd:e6:7b:f4:fa:05: 41:41:8c:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1QzcxMTAvBgNVBAUTKDg1OEI2NDU0RTIyMjQ2Qzc4MUU1MTM1MkIzMDU2NDEw OTg2ODU3N0UwHhcNMjUwNDE5MDQzNTUyWhcNMjUwNDI2MDQzNTUyWjAYMRYwFAYD VQQDEw02ODAzMjgyOS0xNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dI+Ui6OdWuzp6l66ZLp4SlIW0xrDvkaFdhfCjnbMovcvm8tE6cRIkFQzWoL s9CloA7cWxDCGa6nkRYz31JhoYd8zIIU9AeKCQHN7bk3NyUihbPstMmF7DVRcw0Z 9akbNEsveJHbQndxMr/E667SqaJOP6DKEqCDDurSwc8wIf6sIYmE0DTY1EsuOv89 GBc7qReHx50sZWi20kFs+5YgXJoLKNB/yM4+qdxwwJy/gcyq2DzBVB2dVfCd7K3R M/AASK8WwTfrtn3zklHx4Ckcgmh4CqTLL3GPGbgorPVd/S7TilzwEIUHCGBK1kDo fJ3bC14IDQCiwOkdOmV7u97AdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLknQxPF Fc4cuC11AuqkHGpiUF/EMB8GA1UdIwQYMBaAFIWLZFTiIkbHgeUTUrMFZBCYaFd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVDNy9FRDBGQjY4NkMz RTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJzZUI1Uk5Tc3dWa0VKaG9W MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZdGtWT0lpUnNlQjVSTlNzd1ZrRUpob1YzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVDNy9FRDBGQjY4NkMzRTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJz ZUI1Uk5Tc3dWa0VKaG9WMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtgld2c2hUjTekvUFsDcNfFXsGYCTT40qCE2177XJegPYxMr9qgMQW oOWQujG0am2eDyubWccYe9CaeIedxXQ3Vo4XKPlk6mqbray9mfHWVLlLE8KFGe+E jC5hblFj1gtgLgmOuC784HZEnIiy/yx6dEWYD0gOfJuIl93VgKSenH9xn/r6ZgCZ dSkp/mJ6XOTwh/xhugFK2k5pO3XVEc+lqLDy8Qd/sGOanbDNJ/FMrRmELNcOthIR Unhq/yuVnpixsoe+hUbmIRA3mtLZBaFl/noudWoFz34AI5sr/TVHF3xZRfQ0y7ui JjDYsfxtGniU/UwwpMHd5nv0+gVBQYxG -----END CERTIFICATE-----Generated at Sun Apr 20 14:03:01 2025 by rpki-client