$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: D2m8O5MkAG9TFxNSRq4bgdO0PPBR1123kUqiDaul9Ec= Subject key identifier: E1:6B:EB:AC:39:D3:18:BE:95:C5:39:8E:1F:B8:08:BC:AD:3F:F1:89 Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 4A Signing time: Sat 31 May 2025 06:54:42 +0000 Manifest this update: Sat 31 May 2025 06:54:41 +0000 Manifest next update: Sat 07 Jun 2025 06:54:41 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: EewUd/au+X86TMmbvYBRklEQVZynX/YXAjTdzoZbRPs=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: May 31 06:54:41 2025 GMT Not After : Jun 7 06:54:41 2025 GMT Subject: CN=683aa7b1-e9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fb:d6:d6:39:1e:03:71:55:99:8d:3f:64:ed: df:bd:ff:23:53:23:bb:2d:50:40:a2:d6:e7:f2:e8: ad:aa:fa:d1:c7:3a:1e:51:4d:1e:bd:b3:9a:84:85: 3e:9c:56:ec:01:d2:75:d3:97:d3:3a:79:92:81:43: e5:2d:46:e7:71:1b:5c:2c:e5:b3:61:73:6e:f7:17: fa:21:1d:2c:d7:d7:41:80:5f:c5:f3:aa:ef:a6:97: 67:ac:d4:77:e2:fb:c5:45:02:7a:50:9e:d0:a9:6e: 67:11:13:64:50:a6:21:d0:28:39:92:0e:40:0f:e7: 8d:73:e9:2f:cb:dc:0f:60:6b:59:75:40:4f:0e:56: 3f:8a:95:46:7e:22:85:8d:ae:4e:70:f7:df:6c:01: 50:1e:f5:44:e0:bc:e6:95:ff:99:0c:05:e3:0b:9b: a6:b9:c0:9f:8a:0f:ab:0a:16:98:38:2e:c3:5a:dd: a4:cf:61:30:b3:3b:3d:81:76:a0:d3:e3:60:ef:06: 8c:37:52:85:c8:7e:3e:f9:b9:f3:92:63:51:7d:07: 9b:8b:96:48:13:41:80:91:a7:01:9a:84:39:5c:a4: a0:a1:18:f8:4a:f0:2d:db:b0:78:8e:d9:ab:6c:c2: 2d:58:7e:d7:b3:c5:cb:f8:2e:fc:57:31:fb:13:d5: f1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6B:EB:AC:39:D3:18:BE:95:C5:39:8E:1F:B8:08:BC:AD:3F:F1:89 X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:c9:f2:cb:ce:14:d4:6b:01:00:32:31:d9:67:30:4c:38:46: 89:b5:69:77:d1:62:50:10:92:11:ac:02:ae:1f:61:63:6b:7d: 3d:5a:27:f2:d2:6e:0c:ec:ef:7e:3e:78:19:ac:f9:93:2a:c6: 00:a9:0c:8a:88:32:f7:ab:39:51:7c:88:7f:11:9f:9d:a6:5b: f3:a2:39:f4:61:b0:b4:79:82:26:99:0e:bd:c3:ba:7a:37:51: fe:7f:55:df:0f:22:81:d8:cd:2e:66:cc:71:af:90:88:eb:e1: a7:0c:7d:49:8a:b4:b9:c5:00:dd:9c:71:38:34:0e:08:2e:04: b9:41:ab:d2:8f:de:fa:3c:d6:dd:95:4b:f8:c6:b4:b4:03:a5: 83:2a:b5:7d:65:2a:dd:fe:f0:92:04:0d:ce:21:38:cc:58:43: ec:8a:94:da:07:b4:5e:8c:30:5a:db:ef:9a:e1:57:ad:a3:1e: fd:9d:54:d6:96:64:ce:7e:04:8f:55:79:5d:58:6d:34:6a:d2: d0:c4:79:76:ea:1e:14:ac:b7:dc:93:f5:44:f8:5c:88:d3:cf: 69:e4:1e:99:57:0c:c8:bf:7b:49:81:4a:2a:24:d1:db:ea:47: c3:0d:20:36:02:03:be:49:bd:b0:85:16:ea:cd:7e:1b:06:a6: 1b:d4:4b:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NUJDQzExMC8GA1UEBRMoMUU0OEVGRTUzRTYyRUQyMDRCQTdBNjk0Mzg0Q0JBQzky NDY3OTRBNzAeFw0yNTA1MzEwNjU0NDFaFw0yNTA2MDcwNjU0NDFaMBgxFjAUBgNV BAMTDTY4M2FhN2IxLWU5ZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA+9bWOR4DcVWZjT9k7d+9/yNTI7stUECi1ufy6K2q+tHHOh5RTR69s5qEhT6c VuwB0nXTl9M6eZKBQ+UtRudxG1ws5bNhc273F/ohHSzX10GAX8Xzqu+ml2es1Hfi +8VFAnpQntCpbmcRE2RQpiHQKDmSDkAP541z6S/L3A9ga1l1QE8OVj+KlUZ+IoWN rk5w999sAVAe9UTgvOaV/5kMBeMLm6a5wJ+KD6sKFpg4LsNa3aTPYTCzOz2BdqDT 42DvBow3UoXIfj75ufOSY1F9B5uLlkgTQYCRpwGahDlcpKChGPhK8C3bsHiO2ats wi1Yftezxcv4LvxXMfsT1fFLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4WvrrDnT GL6VxTmOH7gIvK0/8YkwHwYDVR0jBBgwFoAUHkjv5T5i7SBLp6aUOEy6ySRnlKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1QkNDL0I5NTg4QkFDQ0U3 ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGtqdjVUNWk3U0JMcDZhVU9FeTZ5U1JubEtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 QkNDL0I5NTg4QkFDQ0U3ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NC THA2YVVPRXk2eVNSbmxLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABXJ8svOFNRrAQAyMdlnMEw4Rom1aXfRYlAQkhGsAq4fYWNrfT1aJ/LS bgzs734+eBms+ZMqxgCpDIqIMverOVF8iH8Rn52mW/OiOfRhsLR5giaZDr3Duno3 Uf5/Vd8PIoHYzS5mzHGvkIjr4acMfUmKtLnFAN2ccTg0DgguBLlBq9KP3vo81t2V S/jGtLQDpYMqtX1lKt3+8JIEDc4hOMxYQ+yKlNoHtF6MMFrb75rhV62jHv2dVNaW ZM5+BI9VeV1YbTRq0tDEeXbqHhSst9yT9UT4XIjTz2nkHplXDMi/e0mBSiok0dvq R8MNIDYCA75JvbCFFurNfhsGphvUS58= -----END CERTIFICATE-----Generated at Sat May 31 17:12:54 2025 by rpki-client