$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: mGmC8ygY7huYIkCi8PNqvvY/CYvrUuGnO2tuJ1yG/Js= Subject key identifier: 19:19:EC:85:24:3B:66:06:3C:44:0B:1C:9F:10:18:1D:53:21:3A:F0 Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 10 Signing time: Wed 05 Feb 2025 06:27:42 +0000 Manifest this update: Wed 05 Feb 2025 06:27:42 +0000 Manifest next update: Wed 12 Feb 2025 06:27:42 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: oVzioWUSgxjSK0bzDgPWPPpXDVyQxlEOJbZccCKxl4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC Validity Not Before: Feb 5 06:27:42 2025 GMT Not After : Feb 12 06:27:42 2025 GMT Subject: CN=67a304de-160d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4b:a2:76:61:39:50:3c:22:00:f7:be:e6:d5: 56:6f:68:1a:ef:bc:35:cf:1d:28:89:c3:e3:19:f3: eb:70:19:5b:6c:3b:4a:aa:8e:0f:d1:9c:d2:a6:4c: 2a:a8:88:39:65:91:ca:1e:ed:cd:88:2e:42:82:04: 3f:e1:78:0e:cf:c5:36:84:56:7f:7e:76:15:e4:50: 10:fe:90:16:12:fe:44:c9:2e:8f:a9:bc:62:c9:24: 46:f9:4a:cc:d1:90:12:b6:3c:7e:b0:d7:c8:81:bd: f5:93:67:ce:c8:e8:47:b8:1f:fa:cb:d6:e9:70:e4: 1b:5f:04:2d:f9:d8:7f:bc:a2:2f:7e:56:4e:15:4d: 94:3d:10:59:11:c5:42:82:2c:f5:59:7f:fd:ff:32: 39:6c:5f:fd:8b:1a:6c:b5:ca:0e:b9:7a:57:86:24: 77:83:4e:61:76:76:dd:26:63:fb:b6:90:34:eb:54: c7:7a:46:2a:fc:3d:34:02:82:68:64:32:49:c3:8a: 2d:81:10:9f:be:59:0d:52:4d:bd:18:8b:d0:c1:ee: 76:af:7e:75:35:f4:ab:2d:1e:99:31:aa:d3:92:05: bd:57:6a:3a:ae:9d:92:3d:22:23:f1:70:fa:35:a4: bf:49:18:03:32:20:07:ec:40:b0:65:c0:2a:34:da: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:19:EC:85:24:3B:66:06:3C:44:0B:1C:9F:10:18:1D:53:21:3A:F0 X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:de:36:f9:87:40:9a:6c:fc:17:26:82:65:65:93:ce:ab:8b: 17:dc:c1:40:12:38:01:9d:31:43:31:21:4e:4b:3c:09:cb:99: 2c:a9:90:fb:65:c8:6d:32:b2:7d:a0:ce:53:3c:84:0e:84:ba: 23:33:ad:d7:d9:d9:6e:58:ea:2a:bf:4c:32:1c:09:1f:c4:9d: 29:8c:99:d1:09:15:c1:41:22:be:6c:84:69:1c:0e:7d:6e:db: e0:55:96:b3:52:c7:8f:0c:23:b7:c2:6a:43:06:aa:dc:5e:ce: 47:6f:9b:a7:3a:9e:1e:ac:17:aa:37:42:99:34:57:38:ae:d0: 5d:c4:a2:f4:42:ff:65:52:a8:94:af:ff:64:18:18:72:0f:37: 6e:79:65:f9:f4:6a:2b:8b:10:8a:03:3e:98:a4:eb:9e:2b:14: da:f1:14:e9:04:76:cf:eb:2e:3c:31:1c:be:9f:62:5e:2f:1a: 51:a0:d9:bf:c6:eb:ef:91:bb:15:6b:c4:26:b8:4f:a7:66:69: 29:04:f4:33:9d:92:3b:93:87:3b:cf:2c:81:ea:0f:37:bb:9c: 2d:07:56:f6:9d:0c:af:c5:c1:a8:09:9b:80:f4:76:09:a9:74: 65:b6:9a:1e:16:2d:7a:3f:b1:64:3a:d0:e2:f2:b2:90:4a:92: a5:db:b3:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NUJDQzExMC8GA1UEBRMoMUU0OEVGRTUzRTYyRUQyMDRCQTdBNjk0Mzg0Q0JBQzky NDY3OTRBNzAeFw0yNTAyMDUwNjI3NDJaFw0yNTAyMTIwNjI3NDJaMBgxFjAUBgNV BAMTDTY3YTMwNGRlLTE2MGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWS6J2YTlQPCIA977m1VZvaBrvvDXPHSiJw+MZ8+twGVtsO0qqjg/RnNKmTCqo iDllkcoe7c2ILkKCBD/heA7PxTaEVn9+dhXkUBD+kBYS/kTJLo+pvGLJJEb5SszR kBK2PH6w18iBvfWTZ87I6Ee4H/rL1ulw5BtfBC352H+8oi9+Vk4VTZQ9EFkRxUKC LPVZf/3/MjlsX/2LGmy1yg65eleGJHeDTmF2dt0mY/u2kDTrVMd6Rir8PTQCgmhk MknDii2BEJ++WQ1STb0Yi9DB7navfnU19KstHpkxqtOSBb1XajqunZI9IiPxcPo1 pL9JGAMyIAfsQLBlwCo02qTvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGRnshSQ7 ZgY8RAscnxAYHVMhOvAwHwYDVR0jBBgwFoAUHkjv5T5i7SBLp6aUOEy6ySRnlKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1QkNDL0I5NTg4QkFDQ0U3 ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGtqdjVUNWk3U0JMcDZhVU9FeTZ5U1JubEtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 QkNDL0I5NTg4QkFDQ0U3ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NC THA2YVVPRXk2eVNSbmxLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALTeNvmHQJps/BcmgmVlk86rixfcwUASOAGdMUMxIU5LPAnLmSypkPtl yG0ysn2gzlM8hA6EuiMzrdfZ2W5Y6iq/TDIcCR/EnSmMmdEJFcFBIr5shGkcDn1u 2+BVlrNSx48MI7fCakMGqtxezkdvm6c6nh6sF6o3Qpk0Vziu0F3EovRC/2VSqJSv /2QYGHIPN255Zfn0aiuLEIoDPpik654rFNrxFOkEds/rLjwxHL6fYl4vGlGg2b/G 6++RuxVrxCa4T6dmaSkE9DOdkjuThzvPLIHqDze7nC0HVvadDK/FwagJm4D0dgmp dGW2mh4WLXo/sWQ60OLyspBKkqXbs74= -----END CERTIFICATE-----Generated at Thu Feb 6 04:44:57 2025 by rpki-client