$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: xLfpzTa/cKaEKVBKUSq44ui9PMEYiN+YiPyg4PIV8Vw= Subject key identifier: E1:8C:3B:24:48:18:37:B2:AC:ED:F9:E6:B3:FC:46:97:9E:76:D1:40 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 5F Signing time: Thu 13 Mar 2025 05:10:25 +0000 Manifest this update: Thu 13 Mar 2025 05:10:24 +0000 Manifest next update: Thu 20 Mar 2025 05:10:24 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: wnqnZMfeUewDs5lpxMRsVYx1NjpANYApJrag48ESZp0=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD Validity Not Before: Mar 13 05:10:24 2025 GMT Not After : Mar 20 05:10:24 2025 GMT Subject: CN=67d268c1-a0d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c7:5a:be:d0:56:ec:da:f5:13:f8:12:96:aa: 33:86:42:b3:9c:49:a5:d0:7d:4e:d2:56:f4:f8:9b: 55:08:3e:7e:6c:9b:7b:a5:6f:f8:ac:ba:a5:cb:72: c4:f2:6a:80:be:d9:46:45:e6:03:3b:e5:f0:e5:4b: 41:79:1f:18:3e:46:85:83:43:26:75:60:a4:13:bb: 58:f4:3f:1d:14:77:cc:db:9f:77:47:72:25:ef:b3: 74:ed:98:00:47:8c:f6:ac:46:0a:6c:89:bf:e7:e4: ee:d7:e8:5c:e1:6f:73:82:2a:9e:cc:5b:37:b5:1e: d9:fc:39:94:2e:6d:e4:f7:a9:06:83:01:79:51:59: 1b:82:c4:3b:47:4a:c6:94:fa:96:a3:54:29:9b:ff: 55:32:52:3f:cd:f9:4a:bc:f6:80:16:5d:eb:1e:be: ca:c6:82:43:97:1c:37:4d:7f:7c:00:85:13:60:79: 85:09:f5:5e:c5:00:3d:2a:79:17:f6:98:da:ad:5e: 48:ce:e8:1b:ac:98:3b:bd:7c:87:0f:3f:ec:87:fa: e8:7e:f2:62:6c:99:cb:e2:8d:a5:99:ad:9f:8a:49: 12:5c:54:6d:a2:6c:9f:46:d8:4f:51:f8:53:4e:82: b9:53:bb:6d:b8:d9:80:37:a6:af:6b:7e:df:97:93: cb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8C:3B:24:48:18:37:B2:AC:ED:F9:E6:B3:FC:46:97:9E:76:D1:40 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:73:2f:24:7e:48:a4:7f:e3:9f:3c:88:db:d0:9b:dc:51:96: fb:39:d2:cd:e7:85:7c:a1:72:25:79:c6:9b:e8:be:1a:cd:51: f9:15:e1:24:5a:89:df:5d:d2:5b:08:33:c5:71:0e:5f:e0:e6: 5c:3a:f3:9d:c8:b1:f6:16:4c:4e:c8:29:eb:a5:ba:c7:18:e1: 54:e3:e5:ed:2a:78:5f:c2:41:48:64:30:d5:4d:fe:d1:d7:4b: 9a:42:7b:60:70:07:52:62:99:37:49:9f:c6:3a:bd:c9:dc:63: 97:eb:17:79:9c:b5:70:97:fa:78:1b:1f:67:d9:01:58:81:aa: 73:55:b3:19:aa:7c:63:73:7d:10:c5:e4:18:d6:fb:dc:10:ab: 33:d7:d5:8a:33:73:96:76:7c:8d:e2:97:e8:6b:ff:a5:55:3d: 17:c9:da:1d:e8:fc:84:8b:d4:16:b7:71:5e:6f:ab:70:a0:eb: 9b:e5:3e:4c:36:72:1d:a9:95:a4:b8:cc:b1:3a:11:5f:ba:d7: a8:60:39:7e:6c:3a:16:a0:44:5c:44:68:a2:b7:94:41:73:9c: 9b:cc:f6:5a:fd:85:69:f6:15:34:11:b8:b1:cf:98:fa:ab:e2: 13:78:65:9e:58:b8:d7:97:26:62:e4:dc:8b:ad:75:b8:90:56: 42:59:33:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEFDRDExMC8GA1UEBRMoODY5MDREMkQwMkRCOEEwNTlCRUQ5MzhGMkY4RUFFRjND NDIwNkZEMDAeFw0yNTAzMTMwNTEwMjRaFw0yNTAzMjAwNTEwMjRaMBgxFjAUBgNV BAMTDTY3ZDI2OGMxLWEwZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQx1q+0Fbs2vUT+BKWqjOGQrOcSaXQfU7SVvT4m1UIPn5sm3ulb/isuqXLcsTy aoC+2UZF5gM75fDlS0F5Hxg+RoWDQyZ1YKQTu1j0Px0Ud8zbn3dHciXvs3TtmABH jPasRgpsib/n5O7X6Fzhb3OCKp7MWze1Htn8OZQubeT3qQaDAXlRWRuCxDtHSsaU +pajVCmb/1UyUj/N+Uq89oAWXesevsrGgkOXHDdNf3wAhRNgeYUJ9V7FAD0qeRf2 mNqtXkjO6BusmDu9fIcPP+yH+uh+8mJsmcvijaWZrZ+KSRJcVG2ibJ9G2E9R+FNO grlTu2242YA3pq9rft+Xk8vDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4Yw7JEgY N7Ks7fnms/xGl5520UAwHwYDVR0jBBgwFoAUhpBNLQLbigWb7ZOPL46u88Qgb9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0QUNELzFGNTM1NjlFNzU2 RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHBCTkxRTGJpZ1diN1pPUEw0NnU4OFFnYjlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 QUNELzFGNTM1NjlFNzU2RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdX YjdaT1BMNDZ1ODhRZ2I5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAhzLyR+SKR/4588iNvQm9xRlvs50s3nhXyhciV5xpvovhrNUfkV4SRa id9d0lsIM8VxDl/g5lw6853IsfYWTE7IKeuluscY4VTj5e0qeF/CQUhkMNVN/tHX S5pCe2BwB1JimTdJn8Y6vcncY5frF3mctXCX+ngbH2fZAViBqnNVsxmqfGNzfRDF 5BjW+9wQqzPX1Yozc5Z2fI3il+hr/6VVPRfJ2h3o/ISL1Ba3cV5vq3Cg65vlPkw2 ch2plaS4zLE6EV+616hgOX5sOhagRFxEaKK3lEFznJvM9lr9hWn2FTQRuLHPmPqr 4hN4ZZ5YuNeXJmLk3IutdbiQVkJZMzU= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:03 2025 by rpki-client