$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: zPH1IZmjLM9pWDKb4k65xIhT904QaPxezfvLFSS9jbc= Subject key identifier: 89:47:EC:FB:C7:BF:E1:4E:1A:D9:85:40:B9:F9:4C:A8:0A:60:AC:4F Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: 5E Signing time: Sun 11 May 2025 05:51:05 +0000 Manifest this update: Sun 11 May 2025 05:51:05 +0000 Manifest next update: Sun 18 May 2025 05:51:05 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: fSASnE1Nn4iamyAXSCUrNLETzEG4PB9iXkhyAco26BU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: May 11 05:51:05 2025 GMT Not After : May 18 05:51:05 2025 GMT Subject: CN=68203ac9-cf4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7a:a2:70:a5:f3:76:38:3f:04:dc:af:fb:88: d4:b8:23:f0:1f:3b:3b:5d:dc:29:30:3f:7c:19:39: f8:c9:37:29:a3:af:87:40:e7:b5:77:ca:75:01:d4: 43:2d:ef:be:38:97:11:c5:6f:27:64:ec:bb:16:fb: d3:fe:40:f5:82:4c:39:a7:47:07:5c:6c:36:37:6a: 3e:0b:a1:3e:3f:3a:08:20:1f:e1:70:80:c2:ae:cb: 0c:5a:35:c6:a0:1c:9f:40:d9:a7:0e:a0:6d:b9:bd: ac:18:e3:b2:13:37:4b:57:20:e6:7b:9f:cb:7d:e1: d3:ad:da:07:5a:1a:56:99:c4:c3:12:b1:c4:31:a9: cf:db:84:93:a3:67:7e:e0:28:72:c4:10:6f:0d:1e: 4d:e6:87:8e:6b:66:82:41:f2:db:c8:96:3d:11:f8: 30:aa:6e:de:b6:48:ab:08:bd:e3:ba:05:c5:16:3e: 0a:d5:b9:3a:10:8b:09:59:ec:7d:61:da:20:25:c6: ac:7a:6d:09:6e:1b:e9:f3:f5:7f:a3:c9:9e:5f:9b: be:18:e7:78:66:69:94:64:d9:60:fd:76:4d:dc:b0: e5:ae:02:33:41:77:db:cb:a4:af:3d:9c:62:9a:83: 6a:ec:93:86:82:41:82:f4:8f:1c:fc:45:c0:c8:cb: 21:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:47:EC:FB:C7:BF:E1:4E:1A:D9:85:40:B9:F9:4C:A8:0A:60:AC:4F X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:e5:52:5e:33:37:a1:eb:08:f6:fa:a3:8c:98:65:4f:45:b4: f4:cb:88:25:76:6b:c4:46:32:0c:a8:38:6a:21:d5:ad:a2:dd: 63:64:a5:fa:74:83:b1:71:f3:ca:96:1b:76:31:df:06:9a:74: bc:38:5b:94:f0:62:c5:1e:9f:3c:c5:6f:fc:0d:e3:a1:7d:15: 33:ea:0b:ec:bf:c4:04:2e:fa:cf:25:46:44:73:9b:6a:8c:a1: e4:c9:2f:3e:1e:d2:46:ba:5a:15:ed:3d:8d:da:25:d2:e2:b0: 04:23:3c:c6:af:d2:bd:50:f9:83:d9:63:d4:7d:ca:34:fb:9b: 33:c0:12:4d:6d:d2:e9:de:df:9d:ec:93:08:f5:fe:da:d8:5b: 2f:ee:08:05:74:ba:a2:ca:8a:2d:32:64:d0:4f:9e:89:b9:2c: f8:33:66:99:3b:33:e3:13:b1:5c:61:e1:29:36:86:0f:d8:ff: d7:42:f5:55:a2:91:1d:c9:d6:28:4b:6d:f9:bf:78:e5:e6:b1: 36:1c:92:ed:d9:56:40:4a:d7:ea:e7:42:63:c7:a3:f9:4a:d7: 68:8f:fd:35:47:4d:cf:b3:95:25:96:d5:05:67:28:0d:76:61: 81:42:f3:21:6e:7b:3d:2d:04:9a:40:f1:42:07:33:74:3e:4e: 05:ac:0d:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUEzRjExMC8GA1UEBRMoODZBNjRGMkFEMkRERTJCN0Q5NjI0RTY5MjI3QUQwOUIx Nzc4QzZDMTAeFw0yNTA1MTEwNTUxMDVaFw0yNTA1MTgwNTUxMDVaMBgxFjAUBgNV BAMTDTY4MjAzYWM5LWNmNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0eqJwpfN2OD8E3K/7iNS4I/AfOztd3CkwP3wZOfjJNymjr4dA57V3ynUB1EMt 7744lxHFbydk7LsW+9P+QPWCTDmnRwdcbDY3aj4LoT4/OgggH+FwgMKuywxaNcag HJ9A2acOoG25vawY47ITN0tXIOZ7n8t94dOt2gdaGlaZxMMSscQxqc/bhJOjZ37g KHLEEG8NHk3mh45rZoJB8tvIlj0R+DCqbt62SKsIveO6BcUWPgrVuToQiwlZ7H1h 2iAlxqx6bQluG+nz9X+jyZ5fm74Y53hmaZRk2WD9dk3csOWuAjNBd9vLpK89nGKa g2rsk4aCQYL0jxz8RcDIyyHXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiUfs+8e/ 4U4a2YVAuflMqApgrE8wHwYDVR0jBBgwFoAUhqZPKtLd4rfZYk5pInrQmxd4xsEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5QTNGLzlCMjc1NEY2QTI0 RjExRUZCNkIwRkY0OUM0RjlBRTAyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhz RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHFaUEt0TGQ0cmZaWWs1cEluclFteGQ0eHNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 QTNGLzlCMjc1NEY2QTI0RjExRUZCNkIwRkY0OUM0RjlBRTAyL2hxWlBLdExkNHJm WllrNXBJbnJRbXhkNHhzRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACXlUl4zN6HrCPb6o4yYZU9FtPTLiCV2a8RGMgyoOGoh1a2i3WNkpfp0 g7Fx88qWG3Yx3waadLw4W5TwYsUenzzFb/wN46F9FTPqC+y/xAQu+s8lRkRzm2qM oeTJLz4e0ka6WhXtPY3aJdLisAQjPMav0r1Q+YPZY9R9yjT7mzPAEk1t0une353s kwj1/trYWy/uCAV0uqLKii0yZNBPnom5LPgzZpk7M+MTsVxh4Sk2hg/Y/9dC9VWi kR3J1ihLbfm/eOXmsTYcku3ZVkBK1+rnQmPHo/lK12iP/TVHTc+zlSWW1QVnKA12 YYFC8yFuez0tBJpA8UIHM3Q+TgWsDc8= -----END CERTIFICATE-----Generated at Mon May 12 23:09:55 2025 by rpki-client