$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: dzIUCyoC0nbfVndR3N+FCtSJG45ZUJOMte9j7BTFSUE= Subject key identifier: 59:C1:57:D7:85:F4:78:F6:0C:FD:A7:69:B0:6F:19:0D:F7:A8:40:A9 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 52 Signing time: Sat 15 Feb 2025 08:32:53 +0000 Manifest this update: Sat 15 Feb 2025 08:32:52 +0000 Manifest next update: Sat 22 Feb 2025 08:32:52 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: Q4YyVFeLXQQZ+6xSl/UUC0LDDgBJTyUf6nmeh28hmkE=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD Validity Not Before: Feb 15 08:32:52 2025 GMT Not After : Feb 22 08:32:52 2025 GMT Subject: CN=67b05134-1d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3d:ac:b9:02:16:89:d7:57:d1:59:98:75:5b: 17:2d:26:b2:d3:1a:03:bd:c1:8b:37:d7:a5:ce:92: 14:59:d3:ad:52:ad:dd:81:34:14:d8:8f:a5:d9:15: df:04:a2:09:f8:12:44:8d:03:af:05:f2:43:63:f6: 08:09:fb:7d:95:49:49:e4:45:10:c0:6d:db:7c:e4: 5a:25:49:d7:a5:b0:82:c3:31:d9:7a:f5:b9:fd:64: 73:10:30:70:c9:b4:20:fd:f5:c9:bb:e3:52:b9:1c: ee:eb:dd:c0:b9:b8:b1:7a:65:94:8e:17:57:30:3f: e1:8e:62:0f:f8:d7:0b:48:eb:45:a3:eb:eb:cc:de: e5:ee:0c:46:b8:fe:7b:99:74:7a:23:f5:d7:18:01: e1:be:88:dc:3a:37:7c:11:f3:78:35:4b:f8:9c:36: 4b:1e:02:15:62:2b:23:4f:50:87:42:8c:e6:e6:46: aa:b3:30:60:fa:cb:cb:b6:26:0c:db:6d:fd:da:cd: ad:1d:56:0b:e4:14:9a:8f:55:73:65:14:63:0b:8b: 98:83:2e:f3:5e:57:2a:8c:99:2d:43:8e:83:d4:9d: da:d0:cd:32:97:17:15:f6:fb:93:4d:4d:b2:ba:4a: 1a:f0:42:07:78:6f:11:66:5c:b6:22:47:66:37:34: 6c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C1:57:D7:85:F4:78:F6:0C:FD:A7:69:B0:6F:19:0D:F7:A8:40:A9 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:bb:61:f7:5f:bf:79:af:ff:5a:67:f9:43:2e:b2:b1:40:be: 93:74:6a:16:e2:b2:af:d5:28:9b:06:5e:65:2d:f1:e4:2d:db: 0a:0c:9a:68:93:7c:af:ac:89:0a:4c:ea:c8:28:31:34:84:bd: c7:f8:ec:2a:ac:5a:0b:23:e1:f4:df:7b:27:2d:c7:f6:12:7e: ae:8b:57:e1:3b:da:53:de:cf:ea:10:d1:12:e7:06:2d:fa:e0: 8d:3d:56:7a:c8:b1:dc:1d:97:f5:c4:39:73:d3:50:0f:2a:29: 43:9b:cf:a2:5b:62:d1:4f:d8:c1:d4:7b:4d:91:4b:70:18:d1: c8:98:08:32:22:52:64:4b:6d:9c:0f:32:f0:35:21:bd:fc:8d: d7:92:f2:cf:a7:4c:bf:91:c8:70:6b:5a:71:f6:cb:33:eb:87: 63:98:01:ef:c4:9c:e3:d7:58:e6:f8:69:55:96:dc:31:f5:3d: 55:dd:c0:0c:31:c4:b6:69:8b:62:2f:a4:20:7b:e8:42:63:d6: b3:b6:9e:73:32:32:36:e0:34:c1:72:be:c7:7f:38:33:30:e0: 89:d2:d4:af:bc:54:1f:e8:11:33:d7:33:00:4b:31:f8:d7:af: 16:3c:54:e9:58:0b:e4:19:a7:96:80:73:1e:be:c6:02:cc:31: 7e:ee:ed:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEFDRDExMC8GA1UEBRMoODY5MDREMkQwMkRCOEEwNTlCRUQ5MzhGMkY4RUFFRjND NDIwNkZEMDAeFw0yNTAyMTUwODMyNTJaFw0yNTAyMjIwODMyNTJaMBgxFjAUBgNV BAMTDTY3YjA1MTM0LTFkMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWPay5AhaJ11fRWZh1WxctJrLTGgO9wYs316XOkhRZ061Srd2BNBTYj6XZFd8E ogn4EkSNA68F8kNj9ggJ+32VSUnkRRDAbdt85FolSdelsILDMdl69bn9ZHMQMHDJ tCD99cm741K5HO7r3cC5uLF6ZZSOF1cwP+GOYg/41wtI60Wj6+vM3uXuDEa4/nuZ dHoj9dcYAeG+iNw6N3wR83g1S/icNkseAhViKyNPUIdCjObmRqqzMGD6y8u2Jgzb bf3aza0dVgvkFJqPVXNlFGMLi5iDLvNeVyqMmS1DjoPUndrQzTKXFxX2+5NNTbK6 ShrwQgd4bxFmXLYiR2Y3NGz7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWcFX14X0 ePYM/adpsG8ZDfeoQKkwHwYDVR0jBBgwFoAUhpBNLQLbigWb7ZOPL46u88Qgb9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0QUNELzFGNTM1NjlFNzU2 RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHBCTkxRTGJpZ1diN1pPUEw0NnU4OFFnYjlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 QUNELzFGNTM1NjlFNzU2RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdX YjdaT1BMNDZ1ODhRZ2I5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGm7Yfdfv3mv/1pn+UMusrFAvpN0ahbisq/VKJsGXmUt8eQt2woMmmiT fK+siQpM6sgoMTSEvcf47CqsWgsj4fTfeyctx/YSfq6LV+E72lPez+oQ0RLnBi36 4I09VnrIsdwdl/XEOXPTUA8qKUObz6JbYtFP2MHUe02RS3AY0ciYCDIiUmRLbZwP MvA1Ib38jdeS8s+nTL+RyHBrWnH2yzPrh2OYAe/EnOPXWOb4aVWW3DH1PVXdwAwx xLZpi2IvpCB76EJj1rO2nnMyMjbgNMFyvsd/ODMw4InS1K+8VB/oETPXMwBLMfjX rxY8VOlYC+QZp5aAcx6+xgLMMX7u7Tg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:48:54 2025 by rpki-client