$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: YwZcB1a11OR13YJkIiM5O+Lm8BBC9vB4DTmgfRRHmus= Subject key identifier: 68:E8:76:0A:8D:30:16:0C:49:7F:A4:63:CB:6D:07:79:A2:21:55:10 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0823 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 081E Signing time: Mon 12 May 2025 20:38:28 +0000 Manifest this update: Mon 12 May 2025 20:38:28 +0000 Manifest next update: Mon 19 May 2025 20:38:28 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: CQyNsr2F669iixBDWCevW4tzvHzExQxbdOYS8hPn0cI=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: BTpWw7F/XbdMRveGgpGDkDR4BmkxDYTL8O9GDvpyiEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2083 (0x823) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: May 12 20:38:28 2025 GMT Not After : May 19 20:38:28 2025 GMT Subject: CN=68225c44-186d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3e:7f:af:e7:9f:5c:2f:80:81:4c:fc:f4:e2: f6:86:22:46:59:be:60:fd:7b:26:30:bc:a5:83:92: 07:8b:ac:7e:62:a5:a6:29:f9:01:bb:8b:4f:f0:66: 41:79:ca:01:8e:d5:bf:8c:c9:09:ad:bf:9b:13:99: 80:eb:75:76:67:6f:52:14:9d:2c:b0:7d:37:5b:3b: 8c:24:97:25:06:0b:03:a2:91:a7:61:4a:bd:18:9f: e4:38:32:2e:d1:3c:cc:03:e6:7e:24:24:8d:2b:85: aa:18:bc:02:14:08:af:85:13:1e:9a:ee:27:e9:76: b8:31:74:d6:6c:c1:b9:df:0c:44:fa:19:44:77:eb: f9:d3:d2:93:9c:0d:87:df:61:de:b6:74:cc:db:e5: 8c:9f:22:c2:39:58:c8:36:f9:db:40:35:52:89:62: 73:23:44:dd:ef:77:7d:54:1f:59:e9:0f:f4:52:d1: 7e:b6:e4:f5:9d:e2:47:3f:ed:48:a5:e5:43:0d:59: 0e:16:bf:c0:ad:d1:71:48:e2:4d:3c:6f:e7:d0:e3: 8f:a7:bb:63:19:45:57:54:fd:5a:84:80:68:f5:ed: 93:67:46:0e:83:c9:9a:b6:18:67:91:f5:1c:2c:90: 29:09:62:36:be:4e:c8:78:bc:ba:e1:7e:75:26:39: d0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E8:76:0A:8D:30:16:0C:49:7F:A4:63:CB:6D:07:79:A2:21:55:10 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:11:29:c2:ba:02:fb:12:c6:02:a1:df:32:3c:22:26:3b:84: 22:a1:72:59:5a:b0:1d:b1:bd:80:0c:48:6f:5e:40:30:2c:33: f8:e1:b2:69:79:73:b6:ef:45:01:35:fb:3d:d3:24:0c:f6:b1: 6e:ca:b1:19:00:2d:79:a8:ac:e3:db:21:3d:2f:d8:a5:36:bd: d2:d2:c1:14:7d:a3:6f:f8:bc:9f:f1:10:72:fb:ca:26:63:b9: 6f:57:e9:ad:a6:02:97:e5:d7:23:dc:57:fd:c1:7a:bc:6e:71: c3:19:a1:1b:11:ed:72:32:ef:44:3f:a2:5a:1c:81:17:8f:3b: 55:cf:18:da:b7:d4:1d:0f:cb:58:72:0a:5b:05:9f:f7:76:b8: 78:4e:de:a2:6b:11:7b:95:d1:4d:56:da:ec:6f:87:3d:6b:e7: ba:a2:e2:8f:8e:82:d5:3f:97:78:69:41:07:40:f6:45:45:25: 4e:cb:58:cb:7a:f7:91:76:4f:6c:de:78:c6:f5:e2:09:34:63: 66:2d:08:33:5a:c6:15:8d:8f:4d:8b:e3:52:9d:e9:3a:02:99: 75:c0:ab:71:bd:fd:f4:cc:ff:78:4a:d0:f9:e5:22:ab:a0:5d: 37:7b:11:8b:f7:9c:df:af:f5:08:09:31:b3:bb:53:bc:38:99: c6:65:df:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUwNTEyMjAzODI4WhcNMjUwNTE5MjAzODI4WjAYMRYwFAYD VQQDEw02ODIyNWM0NC0xODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz5/r+efXC+AgUz89OL2hiJGWb5g/XsmMLylg5IHi6x+YqWmKfkBu4tP8GZB ecoBjtW/jMkJrb+bE5mA63V2Z29SFJ0ssH03WzuMJJclBgsDopGnYUq9GJ/kODIu 0TzMA+Z+JCSNK4WqGLwCFAivhRMemu4n6Xa4MXTWbMG53wxE+hlEd+v509KTnA2H 32HetnTM2+WMnyLCOVjINvnbQDVSiWJzI0Td73d9VB9Z6Q/0UtF+tuT1neJHP+1I peVDDVkOFr/ArdFxSOJNPG/n0OOPp7tjGUVXVP1ahIBo9e2TZ0YOg8mathhnkfUc LJApCWI2vk7IeLy64X51JjnQDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjodgqN MBYMSX+kY8ttB3miIVUQMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6ESnCugL7EsYCod8yPCImO4QioXJZWrAdsb2ADEhvXkAwLDP44bJp eXO270UBNfs90yQM9rFuyrEZAC15qKzj2yE9L9ilNr3S0sEUfaNv+Lyf8RBy+8om Y7lvV+mtpgKX5dcj3Ff9wXq8bnHDGaEbEe1yMu9EP6JaHIEXjztVzxjat9QdD8tY cgpbBZ/3drh4Tt6iaxF7ldFNVtrsb4c9a+e6ouKPjoLVP5d4aUEHQPZFRSVOy1jL eveRdk9s3njG9eIJNGNmLQgzWsYVjY9Ni+NSnek6Apl1wKtxvf30zP94StD55SKr oF03exGL95zfr/UICTGzu1O8OJnGZd9i -----END CERTIFICATE-----Generated at Tue May 13 00:08:16 2025 by rpki-client