$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: 62GL1fsZ5t8yTeBW/Bf5QtCeW+rz4xc6DJL3S7FaY7I= Subject key identifier: 91:9F:3E:DC:E1:FF:DB:6B:6A:F3:B6:66:A3:EE:4C:3C:E7:CB:D7:AA Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: 44 Signing time: Sat 31 May 2025 06:59:51 +0000 Manifest this update: Sat 31 May 2025 06:59:51 +0000 Manifest next update: Sat 07 Jun 2025 06:59:51 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: vba/DfphJbq+yjbeb+plBO7yPieGsyjzkSETSJJIFqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: May 31 06:59:51 2025 GMT Not After : Jun 7 06:59:51 2025 GMT Subject: CN=683aa8e7-3cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:94:24:27:0e:c8:bd:0f:c9:e2:69:2b:f1:b0: 20:01:77:48:c8:fb:93:d2:06:73:b1:18:95:f1:7c: 45:2e:c3:d2:93:ae:d1:1e:74:45:4d:0b:80:b4:5a: 23:c2:02:bf:d4:65:10:e0:0e:0d:60:d7:91:2b:4f: b4:20:20:69:72:62:25:4e:49:50:2e:17:90:d9:fc: 98:5f:c5:79:62:a8:aa:bf:87:7f:c6:df:47:f3:65: b7:37:86:e1:e1:d2:77:71:62:46:7d:c9:2f:7f:33: 81:3b:de:8f:18:ec:4d:4d:45:5d:3e:6d:77:62:89: 40:64:5a:ec:9f:c5:76:63:ce:98:38:03:ef:03:47: 0a:49:fc:4d:ad:13:fc:23:42:78:69:2c:4a:8b:ee: f0:80:df:aa:a8:71:fc:57:18:9a:96:7e:2f:e3:00: 52:34:5d:70:f8:3c:3d:57:1d:be:84:f1:b8:c8:18: 69:e6:87:ab:3b:52:47:ab:a2:c1:3e:f0:00:e7:5d: 0d:65:2d:74:8f:08:f3:87:33:d9:18:f5:17:15:89: c4:10:96:9e:98:fb:53:c1:c9:f2:b2:99:fd:4d:90: 6a:d0:7a:d5:f9:89:0a:31:e8:9d:97:ca:dc:4d:51: ab:b7:4d:3b:a8:71:c6:c4:15:84:b7:db:04:b3:5b: 2d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9F:3E:DC:E1:FF:DB:6B:6A:F3:B6:66:A3:EE:4C:3C:E7:CB:D7:AA X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:e7:0c:76:e6:af:76:89:f1:2f:da:0c:80:72:7f:6d:5d:87: 58:a8:0d:da:8e:84:d0:67:78:b0:d1:b6:cb:77:b1:e3:c2:4d: 85:34:95:c1:4e:e5:18:46:25:61:d7:46:99:44:25:68:5f:1f: 3f:c3:74:21:15:0d:48:c4:43:c8:2e:bc:96:cf:42:34:2b:43: 42:13:fc:27:71:30:d9:66:54:ff:ca:ca:6e:f8:d1:6a:c3:a8: 6d:5e:92:8b:76:8f:24:8d:da:f0:64:58:e2:51:25:cd:b1:71: 2b:7a:1a:25:0a:cf:a9:97:11:33:bf:1e:05:92:a1:b7:5a:25: ac:0f:ad:4a:d7:d4:29:8d:d8:2e:b4:c6:d8:9d:9b:de:ea:94: 69:4a:db:23:ad:2a:d8:34:b4:d5:ef:40:5b:dd:d6:06:7c:40: 5b:6b:50:01:9d:e0:e0:d4:90:8a:1e:cf:7c:82:41:d7:3e:19: fc:13:46:78:23:3c:37:a3:1e:bd:84:dc:79:17:d8:f5:68:ec: ce:bc:b3:57:2d:78:e8:94:5c:88:94:a4:ce:e0:85:3c:e7:fd: 1d:2e:6f:2b:f6:de:96:f1:06:b6:a5:2e:52:a4:a9:a7:ef:cb: f8:c9:22:84:8a:83:00:f1:08:46:5a:23:ff:ad:33:de:4c:32: c7:e5:88:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoOTg3QTI0MDM1QzE1MzkxNzAyMEI2NTFEQjk4RjA5MUYw QUFBMzIyNzAeFw0yNTA1MzEwNjU5NTFaFw0yNTA2MDcwNjU5NTFaMBgxFjAUBgNV BAMTDTY4M2FhOGU3LTNjZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCylCQnDsi9D8niaSvxsCABd0jI+5PSBnOxGJXxfEUuw9KTrtEedEVNC4C0WiPC Ar/UZRDgDg1g15ErT7QgIGlyYiVOSVAuF5DZ/JhfxXliqKq/h3/G30fzZbc3huHh 0ndxYkZ9yS9/M4E73o8Y7E1NRV0+bXdiiUBkWuyfxXZjzpg4A+8DRwpJ/E2tE/wj QnhpLEqL7vCA36qocfxXGJqWfi/jAFI0XXD4PD1XHb6E8bjIGGnmh6s7UkerosE+ 8ADnXQ1lLXSPCPOHM9kY9RcVicQQlp6Y+1PByfKymf1NkGrQetX5iQox6J2XytxN Uau3TTuoccbEFYS32wSzWy27AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkZ8+3OH/ 22tq87Zmo+5MPOfL16owHwYDVR0jBBgwFoAUmHokA1wVORcCC2UduY8JHwqqMicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0FGREVGRTU0RDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1p Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUhva0Exd1ZPUmNDQzJVZHVZOEpId3FxTWljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0FGREVGRTU0RDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1Jj Q0MyVWR1WThKSHdxcU1pYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADPnDHbmr3aJ8S/aDIByf21dh1ioDdqOhNBneLDRtst3sePCTYU0lcFO 5RhGJWHXRplEJWhfHz/DdCEVDUjEQ8guvJbPQjQrQ0IT/CdxMNlmVP/Kym740WrD qG1ekot2jySN2vBkWOJRJc2xcSt6GiUKz6mXETO/HgWSobdaJawPrUrX1CmN2C60 xtidm97qlGlK2yOtKtg0tNXvQFvd1gZ8QFtrUAGd4ODUkIoez3yCQdc+GfwTRngj PDejHr2E3HkX2PVo7M68s1cteOiUXIiUpM7ghTzn/R0ubyv23pbxBralLlKkqafv y/jJIoSKgwDxCEZaI/+tM95MMsfliLA= -----END CERTIFICATE-----Generated at Sat May 31 16:36:46 2025 by rpki-client