$ rpki-client -vvf rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft File: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft (raw, json) Hash identifier: h9IPUGn/X9BxbuZoGwvgXjK9F8VhQCYmzaGS17CTbgs= Subject key identifier: C1:56:C5:7D:7A:2B:51:7F:A9:3F:33:2B:5B:69:71:7D:C1:47:54:B4 Authority key identifier: 87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 Certificate issuer: /CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft Manifest number: 49 Signing time: Sat 05 Apr 2025 06:47:56 +0000 Manifest this update: Sat 05 Apr 2025 06:47:55 +0000 Manifest next update: Sat 12 Apr 2025 06:47:55 +0000 Files and hashes: 1: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl (hash: FxaVyhVoFsJrNTwMG154Gu1T/1rpi5rZgEMVfvt9wos=) 2: F33309A2B72011EFB3A5D772C4F9AE02.roa (hash: B6GTUBQJjZfy0L/2y0BwFYd9G60axGsfhhHtTmQD3Vw=) 3: 3A8C7518B72111EFA9A92F26C4F9AE02.roa (hash: MaCtkavFP9h6cbzbI+/48yQalN3EQ9/HSWusPsbFrP0=) 4: 98AEAB84B72111EF8A087D30C4F9AE02.roa (hash: 8ewBwE8XstXeeqmSvgrbIwTd2CEtwyCXsNRMX6ARDE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982EF Validity Not Before: Apr 5 06:47:55 2025 GMT Not After : Apr 12 06:47:55 2025 GMT Subject: CN=67f0d21b-4653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0e:d8:e1:9a:9c:ce:7b:62:ea:ef:79:b8:13: 8c:ab:14:b2:b4:ce:1b:20:e4:86:4d:15:5c:1e:5e: 43:9a:1b:04:e6:a4:ff:c1:0e:0a:51:d5:83:90:2c: 14:07:4f:6f:d4:f6:7f:aa:c9:57:91:64:d0:67:a7: e4:d0:f2:2f:36:83:9b:7d:18:07:06:a4:ca:de:81: f6:b9:f3:91:9f:6b:0f:dd:c7:d0:21:ae:dd:ed:33: 2f:f0:f5:ec:f1:65:42:2b:a0:55:0a:83:0d:65:96: 0c:a4:4f:aa:90:af:9e:54:64:9a:37:61:e2:fc:07: 75:f2:f4:3c:c6:b6:63:d0:71:c3:50:30:5a:42:99: e1:21:cd:b7:b0:e5:08:1c:61:fb:53:95:a7:50:0b: 48:4b:4e:fc:15:9e:c9:99:ed:a0:3f:16:1c:a9:30: ff:21:1f:c4:d3:4b:9f:1b:7b:52:9e:22:6b:cb:6b: 7f:e3:71:71:24:7c:94:e8:93:c2:34:22:32:91:4f: 0e:75:06:c6:c4:3f:6b:82:ac:37:7c:b6:15:28:58: 2f:ec:d4:f9:2a:67:85:4e:c1:7b:68:40:5a:c4:7a: bc:be:4e:c3:54:97:9b:53:13:b5:e6:55:4c:a6:e4: 71:75:64:06:3e:6a:df:e0:a1:d9:f2:30:1a:5b:a5: bd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:56:C5:7D:7A:2B:51:7F:A9:3F:33:2B:5B:69:71:7D:C1:47:54:B4 X509v3 Authority Key Identifier: keyid:87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:7c:5d:a7:de:5f:10:42:55:a1:cb:ad:14:f4:ba:42:ef:17: 79:0d:cf:ce:39:33:14:60:37:b1:6c:a3:a7:0f:07:5e:f7:4c: 05:40:d2:a9:a4:08:16:b0:ec:9b:35:da:79:5f:54:ad:e0:1d: 1f:c1:eb:f8:16:5b:72:30:ca:8d:1d:44:9a:28:af:0c:12:35: d9:55:f0:f1:3f:f0:44:75:04:da:e0:0a:ac:e8:99:48:19:bd: 7a:59:41:70:44:7c:26:b6:60:64:f8:dc:94:42:96:68:38:84: b4:25:5f:99:8c:8b:52:bc:38:3e:de:cc:d6:63:62:29:12:3e: c7:56:14:96:1d:cc:f2:9f:34:c1:c0:3c:95:fb:33:41:85:ac: 5e:6a:60:69:29:7d:9e:5b:ef:60:4f:74:cd:9d:c4:cb:33:fa: 5f:ca:99:81:f9:96:7b:95:2b:ec:ab:63:41:b7:58:b1:04:c0: 2b:c3:cb:26:fb:de:84:78:f9:be:e6:11:68:60:d0:93:0e:79: b3:30:2c:89:70:1b:bf:ee:e5:b3:3b:45:99:fa:a2:d4:26:8a: 27:fb:c7:56:f8:b0:e8:ed:6c:89:7d:fd:45:f6:14:88:2f:8a: 87:96:b1:df:7d:6e:7c:7e:f6:ce:80:74:d5:68:00:be:23:d3: 39:9d:c1:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJFRjExMC8GA1UEBRMoODcxOTdGRDU0NkRDMzE1MjMxMTFERDkzOTBCMUJBM0Yz RDcwMjY1NjAeFw0yNTA0MDUwNjQ3NTVaFw0yNTA0MTIwNjQ3NTVaMBgxFjAUBgNV BAMTDTY3ZjBkMjFiLTQ2NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoDtjhmpzOe2Lq73m4E4yrFLK0zhsg5IZNFVweXkOaGwTmpP/BDgpR1YOQLBQH T2/U9n+qyVeRZNBnp+TQ8i82g5t9GAcGpMregfa585Gfaw/dx9Ahrt3tMy/w9ezx ZUIroFUKgw1llgykT6qQr55UZJo3YeL8B3Xy9DzGtmPQccNQMFpCmeEhzbew5Qgc YftTladQC0hLTvwVnsmZ7aA/FhypMP8hH8TTS58be1KeImvLa3/jcXEkfJTok8I0 IjKRTw51BsbEP2uCrDd8thUoWC/s1PkqZ4VOwXtoQFrEery+TsNUl5tTE7XmVUym 5HF1ZAY+at/godnyMBpbpb2jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwVbFfXor UX+pPzMrW2lxfcFHVLQwHwYDVR0jBBgwFoAUhxl/1UbcMVIxEd2TkLG6Pz1wJlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkVGL0ZDNjUwQjcyQjcx RDExRUY4OTgyQzQwQ0M0RjlBRTAyL2h4bF8xVWJjTVZJeEVkMlRrTEc2UHoxd0ps WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHhsXzFVYmNNVkl4RWQyVGtMRzZQejF3SmxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkVGL0ZDNjUwQjcyQjcxRDExRUY4OTgyQzQwQ0M0RjlBRTAyL2h4bF8xVWJjTVZJ eEVkMlRrTEc2UHoxd0psWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF98XafeXxBCVaHLrRT0ukLvF3kNz845MxRgN7Fso6cPB173TAVA0qmk CBaw7Js12nlfVK3gHR/B6/gWW3Iwyo0dRJoorwwSNdlV8PE/8ER1BNrgCqzomUgZ vXpZQXBEfCa2YGT43JRClmg4hLQlX5mMi1K8OD7ezNZjYikSPsdWFJYdzPKfNMHA PJX7M0GFrF5qYGkpfZ5b72BPdM2dxMsz+l/KmYH5lnuVK+yrY0G3WLEEwCvDyyb7 3oR4+b7mEWhg0JMOebMwLIlwG7/u5bM7RZn6otQmiif7x1b4sOjtbIl9/UX2FIgv ioeWsd99bnx+9s6AdNVoAL4j0zmdwbM= -----END CERTIFICATE-----Generated at Sat Apr 5 08:18:51 2025 by rpki-client