$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: OofiFB2L78vI7/lu5eCsgAb0DBfc3W/FfvCGrJAi/Pc= Subject key identifier: 4F:56:E0:56:70:1E:F6:F0:C7:CC:85:36:6E:A8:84:9A:08:F9:B6:C6 Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 45 Signing time: Sat 31 May 2025 06:59:16 +0000 Manifest this update: Sat 31 May 2025 06:59:16 +0000 Manifest next update: Sat 07 Jun 2025 06:59:16 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: LwXH/gIPUsCi6k4tnOoJpdxFHsuXiB6MvgqzXiYBe2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: May 31 06:59:16 2025 GMT Not After : Jun 7 06:59:16 2025 GMT Subject: CN=683aa8c4-3f14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:37:49:de:19:23:d5:6e:f5:bf:28:4a:c9:48: 81:c6:ca:66:04:86:86:06:86:e3:12:31:5b:0c:2a: e2:f1:a4:d7:e9:34:25:42:e5:9c:d6:15:d0:30:a9: dc:53:3a:5b:68:bb:83:b6:27:de:5a:7c:ef:b2:10: f4:9a:87:a0:85:d2:92:23:33:48:48:a9:16:2e:e3: d0:69:43:1d:b1:c0:06:8d:77:e2:6f:bf:07:46:16: 6d:59:a6:e1:4c:95:7a:d7:bd:24:4e:ac:08:2f:d8: 46:36:2d:97:70:6e:7b:1f:92:51:a6:9e:49:ac:8f: 60:fb:3a:a3:41:82:f0:b1:17:da:ce:43:6d:65:4f: a5:23:7d:46:4b:05:0a:82:9f:02:00:e5:31:e9:64: f2:31:82:40:e9:1a:aa:1a:01:9d:a6:3b:c5:89:0f: 75:e5:c6:56:bc:d8:23:dc:c6:5e:ea:11:8c:f3:b7: 08:47:6f:32:38:a3:0c:71:b8:1f:91:87:cc:bc:c4: 8f:48:8d:42:12:45:9b:5b:67:9f:f7:4c:a7:80:fa: ec:64:1a:5e:93:b2:5c:10:ae:ea:06:3a:4e:81:dc: 87:6f:d1:8c:db:2b:2c:9b:e4:02:aa:51:04:1b:2c: 19:7f:a9:5e:24:5e:32:46:d1:60:c2:d7:a7:7a:cd: 32:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:56:E0:56:70:1E:F6:F0:C7:CC:85:36:6E:A8:84:9A:08:F9:B6:C6 X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:06:cb:64:3e:98:fd:b0:75:68:3d:18:b9:11:6f:20:6e:b4: 00:68:70:f4:6e:f9:90:1d:18:06:fd:2c:67:55:cd:91:9b:14: 6e:d7:61:81:d4:86:59:28:bf:3f:4d:00:06:68:78:1d:e5:0c: 02:d4:ed:8b:5f:f7:05:2c:da:ee:cf:26:e5:0f:81:89:3f:92: 4e:92:bf:f9:8d:1b:7e:a8:78:92:f1:4c:5f:ec:cb:62:76:cb: bc:c0:f1:5d:9c:e1:32:94:17:c1:e9:d1:f9:37:61:e7:f0:12: 1a:91:04:5a:dc:54:6d:36:18:8e:8f:30:82:f4:a0:95:38:f3: 2a:1d:fb:11:8f:48:94:ff:4d:51:c1:b1:6f:05:51:e6:85:88: 33:ba:d2:95:e4:e8:25:c6:bb:e5:03:89:f9:2c:74:a8:a2:7b: ac:19:e4:b3:19:35:f7:5a:da:74:9f:6b:25:45:a2:73:d4:3d: 76:4b:36:4f:56:7d:c6:d2:54:1f:4a:a3:9c:1d:a1:da:63:b2: 7f:6d:b0:2c:88:31:a0:a1:eb:29:98:34:bf:7e:79:20:41:88: 3a:14:86:e5:21:22:79:34:87:d2:16:32:d9:81:0a:8a:7a:fd: e8:a9:43:24:b8:15:88:f9:7f:7b:cc:7c:7e:a3:8f:ad:5d:1f: eb:aa:36:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoODU3NzkwNEM0M0MyQTlCRTExOEZEREQ1QkE3QkI4QjYw NDQzODBGRTAeFw0yNTA1MzEwNjU5MTZaFw0yNTA2MDcwNjU5MTZaMBgxFjAUBgNV BAMTDTY4M2FhOGM0LTNmMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9N0neGSPVbvW/KErJSIHGymYEhoYGhuMSMVsMKuLxpNfpNCVC5ZzWFdAwqdxT Oltou4O2J95afO+yEPSah6CF0pIjM0hIqRYu49BpQx2xwAaNd+JvvwdGFm1ZpuFM lXrXvSROrAgv2EY2LZdwbnsfklGmnkmsj2D7OqNBgvCxF9rOQ21lT6UjfUZLBQqC nwIA5THpZPIxgkDpGqoaAZ2mO8WJD3Xlxla82CPcxl7qEYzztwhHbzI4owxxuB+R h8y8xI9IjUISRZtbZ5/3TKeA+uxkGl6TslwQruoGOk6B3Idv0YzbKyyb5AKqUQQb LBl/qV4kXjJG0WDC16d6zTIlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT1bgVnAe 9vDHzIU2bqiEmgj5tsYwHwYDVR0jBBgwFoAUhXeQTEPCqb4Rj93Vunu4tgRDgP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0VDQTJDN0Q2RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhlUVRFUENxYjRSajkzVnVudTR0Z1JEZ1A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0VDQTJDN0Q2RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0 Umo5M1Z1bnU0dGdSRGdQNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIMGy2Q+mP2wdWg9GLkRbyButABocPRu+ZAdGAb9LGdVzZGbFG7XYYHU hlkovz9NAAZoeB3lDALU7Ytf9wUs2u7PJuUPgYk/kk6Sv/mNG36oeJLxTF/sy2J2 y7zA8V2c4TKUF8Hp0fk3YefwEhqRBFrcVG02GI6PMIL0oJU48yod+xGPSJT/TVHB sW8FUeaFiDO60pXk6CXGu+UDifksdKiie6wZ5LMZNfda2nSfayVFonPUPXZLNk9W fcbSVB9Ko5wdodpjsn9tsCyIMaCh6ymYNL9+eSBBiDoUhuUhInk0h9IWMtmBCop6 /eipQyS4FYj5f3vMfH6jj61dH+uqNiU= -----END CERTIFICATE-----Generated at Sat May 31 16:52:13 2025 by rpki-client