$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: L6mb4N5u+rBTG/I8UpI8ucQfxLZqY3m+IqsCPXLo+dQ= Subject key identifier: B5:70:69:E5:32:F9:30:0B:5E:F8:82:D0:51:1B:FD:0F:A7:FC:3C:48 Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: 5B Signing time: Mon 07 Apr 2025 05:58:36 +0000 Manifest this update: Mon 07 Apr 2025 05:58:35 +0000 Manifest next update: Mon 14 Apr 2025 05:58:35 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: 7SLl3Un/nNC2bHAdMMFnfZQkWxkPrHjSMVi2a0fR9XY=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319 Validity Not Before: Apr 7 05:58:35 2025 GMT Not After : Apr 14 05:58:35 2025 GMT Subject: CN=67f3698c-2506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:18:8a:c1:c1:b5:66:98:f4:13:b3:ee:fb:e8: d3:df:be:ab:70:93:50:6b:e6:aa:a7:7e:1d:dd:87: 9d:f1:15:4b:2f:95:2c:7c:b5:02:e9:41:ed:8e:0e: 50:69:c9:74:b0:ad:43:82:13:61:4f:b8:c6:db:0c: 3c:2d:0d:3d:74:f0:61:57:90:c4:8a:84:02:75:5e: 04:82:c7:6b:d9:9c:08:47:e3:c8:ba:11:33:02:88: 6c:1f:ce:72:4f:7b:68:22:f5:08:5e:ad:13:56:d6: e8:75:26:81:0b:d4:29:1a:80:28:b3:ca:21:35:f8: 50:a8:cb:03:89:7b:c5:3a:10:0f:dd:8e:5c:cb:ed: a8:ad:87:15:ee:66:f8:9d:a2:bb:52:d6:a0:dc:2f: d8:65:f4:7e:92:b9:a0:47:ed:1d:22:aa:15:dc:d3: ab:86:9b:02:ce:0a:e1:85:80:50:e9:6e:92:ef:88: 1f:c6:0c:7c:a1:c2:fe:9b:4b:be:87:76:b3:de:0f: 36:bd:31:4c:67:5a:44:45:ed:15:6e:e5:7f:e7:22: 81:7b:fa:24:a2:8d:f1:23:9d:1c:a2:14:11:ca:0d: c7:2b:f7:df:39:b9:8e:f8:54:42:48:a2:07:25:3f: dc:cc:6f:72:58:f3:cf:35:e2:14:11:a1:f0:8c:62: 91:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:70:69:E5:32:F9:30:0B:5E:F8:82:D0:51:1B:FD:0F:A7:FC:3C:48 X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3e:40:23:bc:65:9f:3d:12:37:ae:54:f6:83:a2:4f:1a:e3: 7c:8e:eb:1c:d5:07:d9:6a:bf:22:8f:a6:10:97:81:bc:b8:7d: 91:86:d2:c7:1a:f6:b5:80:45:bb:40:1e:d8:3a:92:98:a5:fb: 33:3a:cd:9c:38:24:4f:2c:36:8b:7c:7c:fb:2d:90:1f:60:98: 4a:05:72:2d:46:5a:59:36:fc:f5:c6:39:e2:6a:6d:1b:8a:5a: f4:06:84:28:ed:3c:e6:34:ea:ca:d3:f3:ce:b1:64:53:77:4f: d0:26:cb:98:be:0a:4e:8e:47:38:de:28:8b:eb:8e:4f:a8:00: d6:03:b6:0f:69:13:2f:0b:c0:60:77:6a:fd:47:54:d2:89:70: 0b:6e:25:eb:c1:7b:2a:ff:ce:35:ad:58:7d:4d:b3:a6:19:6d: 21:57:6a:ad:03:3e:03:1c:85:c7:56:96:5b:2c:6d:e8:d4:fd: c8:11:61:aa:0b:c3:9e:6e:ba:76:ff:3d:cc:57:50:fc:9e:78: 2f:df:b7:51:1a:89:5e:80:bc:72:ad:be:91:21:3c:f5:b9:3e: af:68:02:c2:79:c2:d9:e0:17:35:48:39:97:a3:98:9e:78:08: 49:af:4a:7c:30:38:1a:44:af:54:83:a2:d6:05:81:a1:38:b5: 6d:30:2f:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoMUREMzNBNjhCQzBCNUM5MzEwRkZGNTJBRDczOTQxMjBE MTAyQTYyNzAeFw0yNTA0MDcwNTU4MzVaFw0yNTA0MTQwNTU4MzVaMBgxFjAUBgNV BAMTDTY3ZjM2OThjLTI1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqGIrBwbVmmPQTs+776NPfvqtwk1Br5qqnfh3dh53xFUsvlSx8tQLpQe2ODlBp yXSwrUOCE2FPuMbbDDwtDT108GFXkMSKhAJ1XgSCx2vZnAhH48i6ETMCiGwfznJP e2gi9QherRNW1uh1JoEL1CkagCizyiE1+FCoywOJe8U6EA/djlzL7aithxXuZvid ortS1qDcL9hl9H6SuaBH7R0iqhXc06uGmwLOCuGFgFDpbpLviB/GDHyhwv6bS76H drPeDza9MUxnWkRF7RVu5X/nIoF7+iSijfEjnRyiFBHKDccr9985uY74VEJIogcl P9zMb3JY88814hQRofCMYpGjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtXBp5TL5 MAte+ILQURv9D6f8PEgwHwYDVR0jBBgwFoAUHdM6aLwLXJMQ//Uq1zlBINECpicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5L0Y5NEQ0MUM4OEMy QzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3Bp Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSGRNNmFMd0xYSk1RX19VcTF6bEJJTkVDcGljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 MzE5L0Y5NEQ0MUM4OEMyQzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpN UV9fVXExemxCSU5FQ3BpYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKU+QCO8ZZ89EjeuVPaDok8a43yO6xzVB9lqvyKPphCXgby4fZGG0sca 9rWARbtAHtg6kpil+zM6zZw4JE8sNot8fPstkB9gmEoFci1GWlk2/PXGOeJqbRuK WvQGhCjtPOY06srT886xZFN3T9Amy5i+Ck6ORzjeKIvrjk+oANYDtg9pEy8LwGB3 av1HVNKJcAtuJevBeyr/zjWtWH1Ns6YZbSFXaq0DPgMchcdWllssbejU/cgRYaoL w55uunb/PcxXUPyeeC/ft1EaiV6AvHKtvpEhPPW5Pq9oAsJ5wtngFzVIOZejmJ54 CEmvSnwwOBpEr1SDotYFgaE4tW0wL90= -----END CERTIFICATE-----Generated at Tue Apr 8 13:57:27 2025 by rpki-client