$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: 5JmxU9WGxbfxgb0t/TQ9I2g7F6OG5RsxVMbPQfgEkZ8= Subject key identifier: 45:D9:E2:3B:48:6B:16:0A:C7:AF:8F:4B:1C:09:9D:09:65:C0:BF:44 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 72 Signing time: Sat 07 Jun 2025 06:19:50 +0000 Manifest this update: Sat 07 Jun 2025 06:19:49 +0000 Manifest next update: Sat 14 Jun 2025 06:19:49 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: pqCqnEDH4aVdVVJ5lRV5mQahXV36+DYodWxMFtFx57s=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 06:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Jun 7 06:19:49 2025 GMT Not After : Jun 14 06:19:49 2025 GMT Subject: CN=6843da05-e8c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:22:a6:e3:4c:8a:f7:d4:1b:38:23:ae:41:35: dd:de:e9:6b:e5:79:0e:a2:7f:ee:ad:ae:33:96:cd: 09:91:bb:4c:e5:3a:f5:a5:d4:69:4e:53:85:20:7b: 88:61:0c:54:e2:63:d0:14:4e:be:7f:58:56:87:07: fd:23:e0:33:ff:e6:94:d1:5b:38:42:a7:9f:b4:49: fb:74:af:cf:93:4a:57:5a:d8:b2:ff:9b:11:17:9c: 66:e0:13:75:65:04:a8:95:03:0a:00:3f:fc:7b:ca: b1:4d:b7:2a:d5:73:9b:c4:9e:de:2c:e5:60:9d:91: fe:af:2c:9f:a2:a5:43:ac:31:a7:af:a5:ab:2e:8b: cc:24:5d:b5:24:f2:b6:ac:e1:30:df:b4:bb:38:2a: 5a:10:5a:c3:87:bb:60:df:f8:7b:76:69:25:98:7b: 64:34:7c:8b:af:23:ac:88:19:23:8f:56:4f:26:e1: 48:bc:d2:2e:71:e8:67:50:bc:a9:90:b3:16:fe:de: fb:87:b9:e8:cb:7e:60:aa:94:bc:1a:48:16:14:f2: 67:e1:ef:71:a6:c5:c9:c7:c5:ae:ab:0f:df:ee:67: dd:5f:31:58:d8:38:77:54:3d:2a:85:89:cc:41:e8: 25:22:66:d9:84:62:a3:ce:32:cf:3b:34:7d:81:fc: 81:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D9:E2:3B:48:6B:16:0A:C7:AF:8F:4B:1C:09:9D:09:65:C0:BF:44 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:0a:52:d8:97:e5:3e:41:86:e6:af:b5:06:28:2c:92:8a:b0: d8:61:70:3c:53:8d:d8:bc:f8:9b:b4:78:92:53:68:74:b1:cf: 35:8f:f9:9b:68:37:dd:2f:ed:d4:03:97:0f:f0:f8:87:d3:26: 65:e7:f0:3c:e6:26:93:eb:17:5a:ed:e6:48:1b:1b:7a:43:c3: f2:be:ee:bd:eb:41:1b:70:72:e4:89:d6:74:2e:66:9c:d2:38: 09:cd:fb:8e:29:5b:64:b6:56:67:1b:3b:c0:02:a0:27:8e:f5: 77:f0:a9:b0:b1:5d:20:f1:a3:33:91:20:9d:0a:8f:ea:c7:09: c2:88:5c:d2:eb:a3:14:b4:4d:a3:dc:eb:6d:d4:05:48:39:68: 3d:5a:40:36:e1:f2:e6:a8:bb:93:71:37:ee:ba:45:df:7d:2e: c1:5f:ae:4e:9e:fb:62:24:55:49:c7:8d:5f:e4:54:4e:39:9c: 5e:73:db:38:29:83:14:66:37:1c:e2:a6:76:e8:40:53:09:e3: 2a:9a:e4:ab:8d:a4:88:30:61:7d:eb:05:e1:3f:8e:89:33:39: d8:ff:a2:eb:2e:9c:1c:cc:ef:da:00:ea:e8:dc:36:73:35:0c: 77:84:32:68:35:09:76:28:6a:52:04:3c:c8:6e:a5:9c:e4:92: 7b:f1:36:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNTA2MDcwNjE5NDlaFw0yNTA2MTQwNjE5NDlaMBgxFjAUBgNV BAMTDTY4NDNkYTA1LWU4YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwIqbjTIr31Bs4I65BNd3e6WvleQ6if+6trjOWzQmRu0zlOvWl1GlOU4Uge4hh DFTiY9AUTr5/WFaHB/0j4DP/5pTRWzhCp5+0Sft0r8+TSlda2LL/mxEXnGbgE3Vl BKiVAwoAP/x7yrFNtyrVc5vEnt4s5WCdkf6vLJ+ipUOsMaevpasui8wkXbUk8ras 4TDftLs4KloQWsOHu2Df+Ht2aSWYe2Q0fIuvI6yIGSOPVk8m4Ui80i5x6GdQvKmQ sxb+3vuHuejLfmCqlLwaSBYU8mfh73GmxcnHxa6rD9/uZ91fMVjYOHdUPSqFicxB 6CUiZtmEYqPOMs87NH2B/IGbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURdniO0hr FgrHr49LHAmdCWXAv0QwHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALcKUtiX5T5BhuavtQYoLJKKsNhhcDxTjdi8+Ju0eJJTaHSxzzWP+Zto N90v7dQDlw/w+IfTJmXn8DzmJpPrF1rt5kgbG3pDw/K+7r3rQRtwcuSJ1nQuZpzS OAnN+44pW2S2VmcbO8ACoCeO9XfwqbCxXSDxozORIJ0Kj+rHCcKIXNLroxS0TaPc 623UBUg5aD1aQDbh8uaou5NxN+66Rd99LsFfrk6e+2IkVUnHjV/kVE45nF5z2zgp gxRmNxzipnboQFMJ4yqa5KuNpIgwYX3rBeE/jokzOdj/ousunBzM79oA6ujcNnM1 DHeEMmg1CXYoalIEPMhupZzkknvxNmI= -----END CERTIFICATE-----Generated at Mon Jun 9 01:31:34 2025 by rpki-client