$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: QaZkv6z29QGcOfJxilmfB0jNs2JTQxDHyU3y3txGzvo= Subject key identifier: 37:9E:27:F8:88:88:38:88:40:E8:D3:95:31:79:EF:D5:80:A9:2F:1C Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 4A Signing time: Sat 31 May 2025 06:54:08 +0000 Manifest this update: Sat 31 May 2025 06:54:07 +0000 Manifest next update: Sat 07 Jun 2025 06:54:07 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: iqkbeMD4bG1p6cB2leMSsF9QJqKEJd3VyG6GXqpNghY=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: May 31 06:54:07 2025 GMT Not After : Jun 7 06:54:07 2025 GMT Subject: CN=683aa790-3f99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5a:a0:d1:d3:51:36:1b:ed:03:7f:37:f1:39: a0:a3:6f:aa:99:5f:f9:9c:b7:c1:f1:b0:54:44:29: 08:a9:c9:fe:00:d5:18:d6:83:fb:bb:e1:22:4c:70: e8:f0:2d:1d:64:7b:5f:8b:e5:b2:ab:86:04:70:f6: ae:25:ac:5d:4c:6a:76:d8:5a:7d:9e:69:49:50:62: 78:26:62:83:f8:e2:ef:3b:bd:4f:bf:e1:fe:93:8e: 0f:02:a0:78:c0:5e:27:72:32:e3:e6:86:da:b6:cd: 34:c0:52:42:a5:34:82:6a:1c:7e:2c:00:e5:4b:fc: d9:1d:c3:0e:46:23:35:18:4b:42:e2:0b:c6:f9:fc: 07:b7:ec:1a:ba:c4:a5:40:60:f2:e2:ad:91:ca:8d: 30:39:f5:c5:72:58:ed:92:7a:e4:05:cd:35:67:25: dd:57:ec:e2:c5:5c:cc:1d:3e:5d:fb:d5:bd:49:96: f3:05:95:ee:6f:14:7c:4f:d4:89:f0:63:ab:b4:79: a9:30:c8:69:78:68:57:01:db:7f:f5:03:d3:67:93: 87:3f:ae:aa:1d:a3:b4:e4:5d:a2:82:0a:ba:84:07: 2a:dd:7c:a5:d2:3d:42:5f:51:7c:59:d8:90:4c:42: 1d:d1:37:23:af:0a:01:b2:37:b7:46:b9:23:1f:e2: 21:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9E:27:F8:88:88:38:88:40:E8:D3:95:31:79:EF:D5:80:A9:2F:1C X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:57:50:15:fc:73:97:71:ee:4e:c6:df:27:7b:c6:a2:24:30: bb:61:91:9e:b2:93:1e:c0:40:bb:f3:42:92:98:58:f6:3b:76: b7:3e:44:75:57:7a:5a:0a:d0:ab:0c:b4:a9:a0:46:54:68:dc: 84:e5:0d:06:91:3d:87:71:91:26:6d:f7:f5:d9:b5:4d:3b:be: 46:54:59:9a:14:4d:c2:d9:c3:31:fe:21:d4:f9:61:17:13:ce: 1a:51:83:8d:0c:44:43:33:6b:bf:23:cb:18:f3:aa:24:c8:cc: 35:84:4c:81:cc:ef:01:36:c8:b5:67:f2:8e:37:c2:2e:36:64: 77:f7:84:8e:ec:7e:5c:a5:0b:cc:36:73:d9:b6:f4:15:6e:91: e9:e4:88:b4:c3:33:ae:b9:52:4b:65:71:72:a6:f4:dc:88:21: 00:cc:e5:29:16:52:c9:df:d5:be:cb:24:84:5f:d5:19:95:b8: 11:7f:e4:ac:b9:ff:10:9d:f0:b5:b9:78:20:79:21:75:a7:0b: 47:90:1f:57:69:13:a7:30:32:fb:76:af:5b:fc:15:6a:aa:7b: 6d:87:a8:e9:47:16:f6:67:1b:0f:f9:69:6a:e6:ba:dd:3b:8f: 72:ef:a9:35:ca:c7:95:27:21:c3:e6:c4:b8:62:bd:bd:c8:2f: 6f:15:ec:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoODUyMDQ2OTE1MTg1Rjg1NUUwOUVCMzQ0Nzg4MTM5NDMw RTc0MEYwNzAeFw0yNTA1MzEwNjU0MDdaFw0yNTA2MDcwNjU0MDdaMBgxFjAUBgNV BAMTDTY4M2FhNzkwLTNmOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMWqDR01E2G+0DfzfxOaCjb6qZX/mct8HxsFREKQipyf4A1RjWg/u74SJMcOjw LR1ke1+L5bKrhgRw9q4lrF1ManbYWn2eaUlQYngmYoP44u87vU+/4f6Tjg8CoHjA XidyMuPmhtq2zTTAUkKlNIJqHH4sAOVL/Nkdww5GIzUYS0LiC8b5/Ae37Bq6xKVA YPLirZHKjTA59cVyWO2SeuQFzTVnJd1X7OLFXMwdPl371b1JlvMFle5vFHxP1Inw Y6u0eakwyGl4aFcB23/1A9Nnk4c/rqodo7TkXaKCCrqEByrdfKXSPUJfUXxZ2JBM Qh3RNyOvCgGyN7dGuSMf4iE9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN54n+IiI OIhA6NOVMXnv1YCpLxwwHwYDVR0jBBgwFoAUhSBGkVGF+FXgnrNEeIE5Qw50Dwcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0U2MzVGNzk2Q0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFNCR2tWR0YtRlhnbnJORWVJRTVRdzUwRHdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0U2MzVGNzk2Q0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZY Z25yTkVlSUU1UXc1MER3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFhXUBX8c5dx7k7G3yd7xqIkMLthkZ6ykx7AQLvzQpKYWPY7drc+RHVX eloK0KsMtKmgRlRo3ITlDQaRPYdxkSZt9/XZtU07vkZUWZoUTcLZwzH+IdT5YRcT zhpRg40MREMza78jyxjzqiTIzDWETIHM7wE2yLVn8o43wi42ZHf3hI7sflylC8w2 c9m29BVukenkiLTDM665UktlcXKm9NyIIQDM5SkWUsnf1b7LJIRf1RmVuBF/5Ky5 /xCd8LW5eCB5IXWnC0eQH1dpE6cwMvt2r1v8FWqqe22HqOlHFvZnGw/5aWrmut07 j3LvqTXKx5UnIcPmxLhivb3IL28V7Hc= -----END CERTIFICATE-----Generated at Sat May 31 16:32:17 2025 by rpki-client