$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft File: hnHJZ--Azj0S3OowSRuUb9cGh8A.mft (raw, json) Hash identifier: jgEiWNVlgZjRcUlQ9gMjYernkTpp8dAc8WF5XJOWj58= Subject key identifier: 28:5B:F4:BE:6B:6D:DB:EE:21:04:15:03:8F:02:BB:E3:EA:6F:56:EE Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 13AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft Manifest number: 137B Signing time: Fri 16 May 2025 17:14:38 +0000 Manifest this update: Fri 16 May 2025 17:14:37 +0000 Manifest next update: Fri 23 May 2025 17:14:37 +0000 Files and hashes: 1: hnHJZ--Azj0S3OowSRuUb9cGh8A.crl (hash: NLlD8/7nnxbmAj0re6r/YGllF7omejdCB7xsmGHtWXY=) 2: F046E896E9B411EFADF57822C4F9AE02.roa (hash: GMfaRkgZtU0bibSF5X1yqmKnNBnQN18neJaY0c9lA5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:14:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5035 (0x13ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E, serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Validity Not Before: May 16 17:14:37 2025 GMT Not After : May 23 17:14:37 2025 GMT Subject: CN=6827727d-dd45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:c7:d8:61:41:2e:f1:25:c2:5e:88:ac:5d:07: ea:73:70:1b:2d:a4:3f:eb:ab:48:88:de:3c:f2:fc: aa:80:af:f2:c2:16:76:c7:33:a1:74:83:48:a1:26: c8:c6:7a:41:e6:7b:93:27:5c:89:5e:6c:29:96:b2: 56:2f:d1:53:3c:f7:d0:d9:51:fb:81:47:13:49:4e: 9b:07:83:6c:ba:99:23:fe:da:ec:1d:89:a3:cb:76: 2f:7b:8a:31:da:0f:7c:3e:54:86:2a:4b:a5:7e:ea: 1a:5a:c6:67:24:31:c8:ae:e2:99:2b:c1:94:96:b0: d5:39:73:05:06:c1:bc:a3:0a:5e:0d:2e:d5:f6:6e: 02:a9:4c:a1:05:6f:be:ce:c7:29:01:ca:e8:b1:88: a9:de:3a:75:fe:5b:2c:74:4b:e7:1f:a6:70:ec:79: df:71:3d:29:9e:b4:61:2a:f4:1d:3f:fb:4f:ef:e0: 84:d5:05:f8:9a:cd:2b:82:76:04:06:9d:38:42:d6: 7e:1d:c1:8f:85:ec:eb:a9:3a:4f:f1:bd:00:9e:3d: 3c:0f:08:ae:3f:e7:e6:1e:da:7f:86:f0:55:02:22: ec:2e:18:0f:77:46:e2:89:a0:5a:4d:fd:3e:8f:c8: 2b:25:38:87:0b:f6:ee:e6:44:ec:cd:b6:f3:65:1c: d0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:5B:F4:BE:6B:6D:DB:EE:21:04:15:03:8F:02:BB:E3:EA:6F:56:EE X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:38:82:7e:92:93:42:5c:f1:d1:95:c4:29:36:ec:56:a7:e7: 88:82:bc:68:6e:e7:18:cd:10:a7:b4:00:b9:6a:1c:3a:75:2a: ad:4f:e2:8e:dc:fc:93:fc:90:eb:05:6f:05:9f:7e:fa:d3:de: ed:9e:9c:2b:df:1c:5b:20:e8:68:e2:29:15:1d:66:92:f7:b3: 85:e0:b8:78:81:85:8a:99:9e:ae:e7:58:a4:9b:7a:27:34:ab: 0f:5d:92:0c:98:94:82:11:07:3b:d7:85:cd:d9:eb:24:7c:f9: d2:f4:cb:78:47:19:4c:0f:aa:4c:12:df:c6:08:d6:a5:d7:dd: 59:9f:9f:e1:3e:94:c0:2d:dd:5c:39:9f:09:06:cf:0a:23:b8: b5:b3:7d:fd:3a:97:c1:bc:9a:ab:b7:ad:7a:9c:0e:dc:e7:c9: 78:96:f4:22:25:81:2b:f4:27:2a:61:32:55:d5:18:e6:7d:e8: de:d1:db:6d:04:81:e8:4c:e6:6d:8c:ef:8b:df:08:2e:ba:80: ac:ca:9d:25:70:04:1f:05:db:b9:40:17:18:3a:bf:86:d2:06: e3:09:c0:cc:66:45:18:48:24:72:b1:a5:27:63:41:fb:fb:52: e3:1a:ed:f5:a9:27:dd:2c:03:7f:e5:a9:75:b9:7a:2c:15:2b: 07:97:4e:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjUwNTE2MTcxNDM3WhcNMjUwNTIzMTcxNDM3WjAYMRYwFAYD VQQDEw02ODI3NzI3ZC1kZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+cfYYUEu8SXCXoisXQfqc3AbLaQ/66tIiN488vyqgK/ywhZ2xzOhdINIoSbI xnpB5nuTJ1yJXmwplrJWL9FTPPfQ2VH7gUcTSU6bB4Nsupkj/trsHYmjy3Yve4ox 2g98PlSGKkulfuoaWsZnJDHIruKZK8GUlrDVOXMFBsG8owpeDS7V9m4CqUyhBW++ zscpAcrosYip3jp1/lssdEvnH6Zw7HnfcT0pnrRhKvQdP/tP7+CE1QX4ms0rgnYE Bp04QtZ+HcGPhezrqTpP8b0Anj08DwiuP+fmHtp/hvBVAiLsLhgPd0biiaBaTf0+ j8grJTiHC/bu5kTszbbzZRzQRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChb9L5r bdvuIQQVA48Cu+Pqb1buMB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQwRS84RTcxNDk4NEEzNUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpq MFMzT293U1J1VWI5Y0doOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfOIJ+kpNCXPHRlcQpNuxWp+eIgrxobucYzRCntAC5ahw6dSqtT+KO 3PyT/JDrBW8Fn376097tnpwr3xxbIOho4ikVHWaS97OF4Lh4gYWKmZ6u51ikm3on NKsPXZIMmJSCEQc714XN2eskfPnS9Mt4RxlMD6pMEt/GCNal191Zn5/hPpTALd1c OZ8JBs8KI7i1s339OpfBvJqrt616nA7c58l4lvQiJYEr9CcqYTJV1Rjmfeje0dtt BIHoTOZtjO+L3wguuoCsyp0lcAQfBdu5QBcYOr+G0gbjCcDMZkUYSCRysaUnY0H7 +1LjGu31qSfdLAN/5al1uXosFSsHl04Y -----END CERTIFICATE-----Generated at Sat May 17 16:46:39 2025 by rpki-client