$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: myQt9W+UcLsRRFpeeh5SsO4G4eWibp8ho2Jqsu+ya9I= Subject key identifier: 16:40:1E:59:8C:B8:0E:5F:0A:64:C5:E8:F7:7A:38:0C:64:4E:72:08 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 6A Signing time: Fri 09 May 2025 06:03:26 +0000 Manifest this update: Fri 09 May 2025 06:03:25 +0000 Manifest next update: Fri 16 May 2025 06:03:25 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: xnkv5/cp2PkDaQYLRLKlElDkJ5cp/h/qFTRPA55lZGo=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 3tPU5Z40ENmKrBN3OAXsHJVkK9J8E3240xOs2Cjr+YQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: May 9 06:03:25 2025 GMT Not After : May 16 06:03:25 2025 GMT Subject: CN=681d9aae-dadc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fe:41:81:9f:01:a1:93:29:61:a7:48:22:73: 1e:ea:a1:13:4a:74:a6:d8:c6:81:35:88:d4:ff:70: 0a:ce:8a:37:71:b9:35:c4:0c:8e:34:a3:83:cf:f8: 8e:20:02:66:da:06:2c:b8:f9:7d:03:c8:25:22:e7: b4:12:89:4b:ac:46:53:96:60:75:10:43:18:c6:17: 69:4b:31:e9:6b:78:35:62:19:28:e0:9a:e3:2f:60: 9d:4f:bc:fd:60:8e:bf:9b:e8:50:d1:b7:4c:b4:6c: 3e:4c:89:c6:a9:3c:cc:df:8a:b2:e9:58:c3:79:ca: c5:d1:94:9a:66:9c:57:6c:4f:55:20:14:da:ac:ee: eb:67:68:2a:b8:fc:53:17:db:b3:39:cf:d0:49:79: df:79:26:77:f4:1f:3f:80:b3:4f:48:a1:fc:5c:10: be:0a:4a:3c:03:1b:91:b7:f7:ca:a9:d7:4f:cc:ee: cb:38:4c:b5:ee:19:14:78:a0:0c:8b:91:9f:5c:e4: 49:81:cb:52:7b:41:a2:06:3c:2b:41:cd:2a:97:6a: 0d:f6:d5:12:60:fb:64:ab:6b:1d:52:24:b9:65:bd: 31:b7:96:0b:e4:43:8d:e6:a9:a5:c9:cf:20:23:e9: 20:d7:bf:76:4d:f4:96:64:eb:3b:59:c7:b1:58:61: 97:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:40:1E:59:8C:B8:0E:5F:0A:64:C5:E8:F7:7A:38:0C:64:4E:72:08 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:22:e3:ef:9b:38:6f:59:69:53:0b:5f:0f:9b:a6:0c:4c:fa: c0:83:2e:94:40:99:97:5b:ea:ed:7f:19:02:94:e1:79:b2:6a: f8:a5:7e:97:e8:48:f1:bc:ff:1a:6c:32:8d:66:d9:40:2b:6c: d2:14:aa:3d:a6:c8:be:87:46:4a:b8:39:26:28:4d:6e:fe:4d: bf:94:7c:e8:19:56:22:eb:50:e2:67:32:69:f1:1f:6c:1e:b4: 00:37:1c:5e:0d:a8:0c:e1:48:37:17:45:99:82:e4:7a:c7:c9: 25:19:3e:f8:91:c6:ee:6f:9f:05:37:f8:65:c8:b6:12:9f:70: 97:6e:fc:f6:01:a2:64:17:10:8c:17:06:f8:82:9d:c1:48:b7: f4:57:04:65:3e:6b:8c:0d:94:90:82:2f:ba:cc:55:fb:2b:cd: 9d:97:9b:f9:a9:47:ef:4d:ad:54:7e:3c:94:87:cb:ff:e1:43: d5:e2:64:be:0a:6c:ba:dc:23:64:a6:d3:e7:40:87:a6:51:9e: 56:e6:6a:e3:4f:95:00:a4:f7:78:3d:0c:8c:a9:89:68:91:25: 9a:63:94:48:00:27:1f:e2:f5:95:24:86:c3:ed:aa:5b:28:54: 71:cf:26:aa:db:68:6a:ca:5e:10:ad:44:8e:49:45:22:13:89: 1f:e0:19:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDg0ODExMC8GA1UEBRMoMUREMUI4Njg3ODg2OTI0QzQ2MTMxMTYwNTBFRTkwRTlE NDk0MjY5RTAeFw0yNTA1MDkwNjAzMjVaFw0yNTA1MTYwNjAzMjVaMBgxFjAUBgNV BAMTDTY4MWQ5YWFlLWRhZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4/kGBnwGhkylhp0gicx7qoRNKdKbYxoE1iNT/cArOijdxuTXEDI40o4PP+I4g AmbaBiy4+X0DyCUi57QSiUusRlOWYHUQQxjGF2lLMelreDViGSjgmuMvYJ1PvP1g jr+b6FDRt0y0bD5MicapPMzfirLpWMN5ysXRlJpmnFdsT1UgFNqs7utnaCq4/FMX 27M5z9BJed95Jnf0Hz+As09IofxcEL4KSjwDG5G398qp10/M7ss4TLXuGRR4oAyL kZ9c5EmBy1J7QaIGPCtBzSqXag321RJg+2Srax1SJLllvTG3lgvkQ43mqaXJzyAj 6SDXv3ZN9JZk6ztZx7FYYZcPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFkAeWYy4 Dl8KZMXo93o4DGROcggwHwYDVR0jBBgwFoAUHdG4aHiGkkxGExFgUO6Q6dSUJp4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEODQ4L0MyNTFCNUIyOUIx MDExRUZBNzJCQTAyMEM0RjlBRTAyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGRHNGFIaUdra3hHRXhGZ1VPNlE2ZFNVSnA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE ODQ4L0MyNTFCNUIyOUIxMDExRUZBNzJCQTAyMEM0RjlBRTAyL0hkRzRhSGlHa2t4 R0V4RmdVTzZRNmRTVUpwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJYi4++bOG9ZaVMLXw+bpgxM+sCDLpRAmZdb6u1/GQKU4Xmyavilfpfo SPG8/xpsMo1m2UArbNIUqj2myL6HRkq4OSYoTW7+Tb+UfOgZViLrUOJnMmnxH2we tAA3HF4NqAzhSDcXRZmC5HrHySUZPviRxu5vnwU3+GXIthKfcJdu/PYBomQXEIwX BviCncFIt/RXBGU+a4wNlJCCL7rMVfsrzZ2Xm/mpR+9NrVR+PJSHy//hQ9XiZL4K bLrcI2Sm0+dAh6ZRnlbmauNPlQCk93g9DIypiWiRJZpjlEgAJx/i9ZUkhsPtqlso VHHPJqrbaGrKXhCtRI5JRSITiR/gGZM= -----END CERTIFICATE-----Generated at Sat May 10 08:58:39 2025 by rpki-client