$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: 5grablBE9wauC39U0cmPsu6yY0hrCbKVaDzjqL2k+ro= Subject key identifier: 78:64:FD:EC:B2:20:D8:F5:8D:A8:C7:7B:00:0B:FD:6C:8C:CE:98:67 Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 04AC Signing time: Sat 31 May 2025 00:07:37 +0000 Manifest this update: Sat 31 May 2025 00:07:36 +0000 Manifest next update: Sat 07 Jun 2025 00:07:36 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: vfNxezxQELlmC+0y4l7oaTQ4hOXZRzrPDRmeCeWRyJI=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: May 31 00:07:36 2025 GMT Not After : Jun 7 00:07:36 2025 GMT Subject: CN=683a4848-e649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2e:71:db:69:9d:d1:8e:30:2b:92:b7:d3:eb: ef:23:db:c4:80:29:ed:59:e1:a1:25:a6:2b:e3:37: 64:0d:7b:e6:21:31:88:23:1f:da:c0:74:50:fa:d0: ea:b8:3a:21:ff:4c:a2:7f:f3:0d:bc:09:b9:36:30: f9:a9:92:14:5f:e6:cc:7f:94:6e:c1:8a:5b:6e:36: cf:0c:3d:45:1e:7b:78:48:f9:b9:87:90:95:94:fa: 31:3a:bf:72:f8:4e:8e:9f:49:79:da:cb:0e:9c:a5: d7:16:57:d0:65:b7:b0:b5:0d:d2:1e:95:fd:86:1d: 9b:21:e9:37:82:dc:0c:1c:93:6e:2b:1c:28:cf:24: bd:9c:fa:f0:76:c2:29:eb:91:40:5c:4f:db:3b:9e: ea:e8:8d:10:71:9a:eb:15:6c:7e:0d:08:80:87:de: 88:0a:4e:99:48:8c:84:8a:03:d8:ad:1f:98:d5:d6: 75:28:cf:ea:17:b1:8e:80:40:83:44:07:df:f8:9a: f9:da:31:59:90:65:4e:4f:3c:06:db:4c:a2:37:b5: d8:ce:82:76:c5:98:f1:6f:3e:34:43:fb:d1:56:d6: cc:6c:13:8f:35:3d:77:a9:5b:29:13:28:70:5d:3f: 66:19:73:b4:81:87:d8:b6:f7:f1:07:12:0e:ff:2f: 5b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:64:FD:EC:B2:20:D8:F5:8D:A8:C7:7B:00:0B:FD:6C:8C:CE:98:67 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:4d:ca:92:b4:c4:c7:92:61:e8:12:74:de:2e:00:f9:4f:b3: b5:2c:c2:93:8f:95:c8:5d:a2:3c:bf:c8:0c:43:16:cc:22:e9: c0:63:de:27:ee:e7:06:1c:0f:f9:36:85:21:a7:0d:46:8e:9e: 4a:4d:de:18:22:50:d6:7e:30:4a:5a:21:59:bc:6f:61:cd:fb: 76:a7:e2:5d:62:a6:5b:d2:73:82:37:c5:a2:b7:6b:ac:fa:a6: f5:b8:c4:f2:50:5b:37:ec:28:ee:b2:5c:e9:46:93:bc:d0:c6: f6:89:4b:34:ba:43:1e:a9:65:2b:90:46:ef:f1:bb:f6:d3:3f: dd:4b:b6:a5:8a:bf:c5:a1:33:e1:4c:b1:6e:90:1f:76:1f:8d: 35:02:e0:c9:91:18:82:16:2f:7d:96:7f:ff:fe:a2:fb:83:6d: 71:d0:9d:75:0a:18:d3:74:47:c3:97:b0:fb:8a:3e:1d:ff:c3: 53:82:5c:93:ef:b4:16:77:18:f3:8d:18:82:02:bc:5f:13:b5: 26:79:bf:c8:a1:5a:f0:cf:66:8a:bf:f9:96:a8:77:48:87:6f: 14:95:bd:f1:5f:83:1d:8b:36:13:cf:de:6c:65:c1:03:ea:c5: 9b:93:6a:ff:90:d5:8d:fe:24:99:42:89:e5:62:50:85:8b:9d: 21:ad:4c:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUwNTMxMDAwNzM2WhcNMjUwNjA3MDAwNzM2WjAYMRYwFAYD VQQDEw02ODNhNDg0OC1lNjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy5x22md0Y4wK5K30+vvI9vEgCntWeGhJaYr4zdkDXvmITGIIx/awHRQ+tDq uDoh/0yif/MNvAm5NjD5qZIUX+bMf5RuwYpbbjbPDD1FHnt4SPm5h5CVlPoxOr9y +E6On0l52ssOnKXXFlfQZbewtQ3SHpX9hh2bIek3gtwMHJNuKxwozyS9nPrwdsIp 65FAXE/bO57q6I0QcZrrFWx+DQiAh96ICk6ZSIyEigPYrR+Y1dZ1KM/qF7GOgECD RAff+Jr52jFZkGVOTzwG20yiN7XYzoJ2xZjxbz40Q/vRVtbMbBOPNT13qVspEyhw XT9mGXO0gYfYtvfxBxIO/y9bswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhk/eyy INj1jajHewAL/WyMzphnMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKTcqStMTHkmHoEnTeLgD5T7O1LMKTj5XIXaI8v8gMQxbMIunAY94n 7ucGHA/5NoUhpw1Gjp5KTd4YIlDWfjBKWiFZvG9hzft2p+JdYqZb0nOCN8Wit2us +qb1uMTyUFs37CjuslzpRpO80Mb2iUs0ukMeqWUrkEbv8bv20z/dS7alir/FoTPh TLFukB92H401AuDJkRiCFi99ln///qL7g21x0J11ChjTdEfDl7D7ij4d/8NTglyT 77QWdxjzjRiCArxfE7Umeb/IoVrwz2aKv/mWqHdIh28Ulb3xX4MdizYTz95sZcED 6sWbk2r/kNWN/iSZQonlYlCFi50hrUwa -----END CERTIFICATE-----Generated at Sat May 31 16:36:54 2025 by rpki-client