$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: U3VaLi6JpEuMGRaCOpAZxATyQ9ZPSU3Z1ng6PnWR7FI= Subject key identifier: 46:AF:F9:27:0C:36:89:F2:F7:C8:89:53:2C:FB:57:FC:23:AA:74:44 Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 3483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 3483 Signing time: Fri 30 May 2025 14:59:14 +0000 Manifest this update: Fri 30 May 2025 14:59:14 +0000 Manifest next update: Fri 06 Jun 2025 14:59:14 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: MYS5sADjQZ2jj/xTVdovKoOwJjXL7JBy4oJLKKW2bGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13443 (0x3483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: May 30 14:59:14 2025 GMT Not After : Jun 6 14:59:14 2025 GMT Subject: CN=6839c7c2-8bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:21:d7:b9:8b:9a:2e:93:c8:54:19:d4:e9:fe: 34:bc:57:b8:60:90:21:4b:46:92:da:f4:aa:af:a3: 6b:7b:71:27:68:42:d5:3d:78:e7:b6:ec:bc:2e:5e: d3:19:fa:58:d7:7f:61:0f:37:da:f7:07:9b:6a:7e: 45:b2:53:0d:c1:33:22:93:29:a7:05:f6:7c:de:31: c6:07:1a:d4:64:01:61:11:0e:a4:45:5d:b9:d3:26: d5:9a:5d:04:ca:71:52:d8:44:f5:87:3c:7b:a0:af: 7f:bb:cc:b6:2f:56:03:3f:9f:9b:8f:50:46:45:e8: a2:89:64:12:03:d2:22:2a:41:cf:19:9d:7a:12:4c: 9d:93:8e:4a:96:a2:03:a5:40:f5:6e:4b:66:30:17: e0:b3:93:08:72:63:20:ce:e4:7b:bb:ab:76:27:21: d1:27:a8:48:26:36:ba:ae:76:69:4e:80:ba:a6:71: 37:29:b1:4a:9f:c7:b3:21:c3:7f:59:9b:6c:bf:d9: 40:ac:b6:e8:47:e4:81:06:0a:c0:3d:2e:4c:e7:f4: b9:2c:dd:70:e9:13:62:38:7b:dd:ac:ca:6d:40:29: cf:25:cc:46:e1:b7:39:99:e8:8b:b1:b1:7c:47:90: 26:26:8a:ab:cd:ab:a2:3e:fa:b4:23:98:86:ef:b3: ee:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:AF:F9:27:0C:36:89:F2:F7:C8:89:53:2C:FB:57:FC:23:AA:74:44 X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:31:14:54:02:20:06:70:1c:65:38:47:c2:7e:96:97:e7:02: 4a:22:23:56:3b:5a:af:fd:88:0c:87:6f:00:d8:7c:1e:0b:a3: 11:0e:e5:5b:4c:71:d4:37:37:9f:a7:36:3c:16:68:9b:fe:1b: f7:62:fb:db:1a:4f:e3:d0:9c:51:bd:2b:9c:0a:9c:83:16:0d: eb:3d:45:a6:7f:11:42:62:26:f0:60:1c:4d:91:fb:a6:f5:b4: dd:5c:3b:27:97:60:4b:d9:58:44:00:ea:4a:5d:8d:86:35:fb: 61:28:30:da:5b:31:f6:58:ae:39:99:a4:ec:58:09:e9:30:93: 40:57:42:77:bf:01:ab:16:44:24:95:c8:78:c8:8b:ec:b8:9c: 4f:94:7c:1e:2d:1d:03:de:95:29:57:cb:17:80:00:3d:f2:f2: d3:fd:eb:3b:fd:f5:74:7d:1a:80:30:44:0d:60:54:a0:89:33: f4:63:9a:cc:fa:ed:7b:25:4e:77:a6:cf:59:6a:b5:f3:0a:a1: 3d:82:dd:f2:c5:f5:88:52:3d:bc:c4:48:b0:ce:81:ad:93:42: ee:6a:55:34:dc:57:d8:48:2d:7a:5a:11:82:aa:59:75:14:5e: 5b:54:38:ee:bf:ae:ed:10:f9:4f:06:23:10:c9:6c:95:9f:b3: 4a:f0:d8:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjUwNTMwMTQ1OTE0WhcNMjUwNjA2MTQ1OTE0WjAYMRYwFAYD VQQDEw02ODM5YzdjMi04YmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCHXuYuaLpPIVBnU6f40vFe4YJAhS0aS2vSqr6Nre3EnaELVPXjntuy8Ll7T GfpY139hDzfa9weban5FslMNwTMikymnBfZ83jHGBxrUZAFhEQ6kRV250ybVml0E ynFS2ET1hzx7oK9/u8y2L1YDP5+bj1BGReiiiWQSA9IiKkHPGZ16Ekydk45KlqID pUD1bktmMBfgs5MIcmMgzuR7u6t2JyHRJ6hIJja6rnZpToC6pnE3KbFKn8ezIcN/ WZtsv9lArLboR+SBBgrAPS5M5/S5LN1w6RNiOHvdrMptQCnPJcxG4bc5meiLsbF8 R5AmJoqrzauiPvq0I5iG77PuCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEav+ScM Nony98iJUyz7V/wjqnREMB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9MRRUAiAGcBxlOEfCfpaX5wJKIiNWO1qv/YgMh28A2HweC6MRDuVb THHUNzefpzY8Fmib/hv3YvvbGk/j0JxRvSucCpyDFg3rPUWmfxFCYibwYBxNkfum 9bTdXDsnl2BL2VhEAOpKXY2GNfthKDDaWzH2WK45maTsWAnpMJNAV0J3vwGrFkQk lch4yIvsuJxPlHweLR0D3pUpV8sXgAA98vLT/es7/fV0fRqAMEQNYFSgiTP0Y5rM +u17JU53ps9ZarXzCqE9gt3yxfWIUj28xEiwzoGtk0LualU03FfYSC16WhGCqll1 FF5bVDjuv67tEPlPBiMQyWyVn7NK8NgL -----END CERTIFICATE-----Generated at Sat May 31 16:28:43 2025 by rpki-client