$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: 03k4bDUkEv7XhVTUEfa25yc3aCnznqaekihnpSWMPwA= Subject key identifier: 24:F9:7E:2F:D4:25:ED:49:1F:1F:D4:48:BD:4E:B0:F9:98:30:90:D5 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 21 Signing time: Tue 13 May 2025 07:07:30 +0000 Manifest this update: Tue 13 May 2025 07:07:29 +0000 Manifest next update: Tue 20 May 2025 07:07:29 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: vG9S9eDD75i/WUabAYkNISCs6fg0cTOV47HJq6ZmhrE=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: May 13 07:07:29 2025 GMT Not After : May 20 07:07:29 2025 GMT Subject: CN=6822efb2-14b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:30:68:7c:0d:e4:6f:e8:92:bf:12:14:61:c7: a8:fc:7b:32:54:28:6c:af:d5:5a:6f:39:15:28:60: bc:00:06:3a:9f:05:51:36:3f:d2:d1:2f:94:35:28: ee:5b:ce:6c:c8:93:f4:3c:f1:bd:53:0d:b1:f9:d4: 99:c0:84:14:dd:6c:f0:4b:93:d6:49:7f:dd:69:fa: 4f:ee:b5:9e:84:34:0f:a3:92:8a:cb:93:65:7d:10: de:9c:bf:72:2a:8a:60:3c:42:f6:6c:9e:a9:fd:ab: 35:86:99:2d:ea:a1:42:09:bb:3a:e6:c7:ab:14:b8: fc:9e:9e:71:b7:5e:fc:10:df:c9:da:7e:f5:a8:0a: b1:a4:79:25:64:fb:54:87:57:51:35:cd:2e:41:51: 5d:ac:10:c4:2a:93:f9:92:d2:c8:3d:4d:9e:6e:3d: da:a4:fd:ae:90:97:55:d7:e1:df:5f:32:46:cb:05: 94:e2:82:29:d9:a8:97:56:f4:79:db:d9:06:e7:b3: 7f:28:d3:9b:3c:82:91:f0:d2:db:e0:18:61:1f:d9: 69:61:a6:87:8e:2d:75:57:6a:f1:1f:af:9e:a1:10: a1:bc:f0:24:3c:74:6c:f6:60:87:0e:70:cc:92:01: e2:b1:28:23:e6:a6:24:d2:f2:b0:8c:0a:13:3a:a6: 98:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F9:7E:2F:D4:25:ED:49:1F:1F:D4:48:BD:4E:B0:F9:98:30:90:D5 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d0:eb:1d:23:cc:a7:8a:6a:78:95:f6:df:1b:71:c5:80:17: c8:51:78:fc:1f:2c:9c:84:b7:b3:20:8d:f7:e8:dc:45:28:df: 7d:00:1a:16:1c:7b:a2:7a:dc:f2:d2:68:15:dd:87:f0:da:19: 4c:98:5d:82:2d:49:c4:30:ce:eb:89:32:02:25:7f:1f:ac:9a: 9c:39:8b:2f:8b:c2:08:54:7f:57:75:ab:ab:a4:f3:9f:3e:10: 41:e2:b2:0d:ae:b4:95:1e:54:02:cd:1d:b4:80:93:f3:5e:f2: aa:9a:68:cf:6f:14:eb:20:d6:6e:e4:6c:6d:60:80:ab:d7:77: 84:54:b6:f6:be:65:e1:e5:99:6b:ee:be:e9:6e:30:ee:81:7a: fd:93:b2:79:de:30:08:1a:c0:6a:3d:22:c6:02:9d:36:ba:6a: b3:52:48:33:e9:59:bf:36:c5:3f:81:46:e1:b0:4e:d6:0a:45: b9:40:bf:a5:31:fe:03:c8:d7:ef:04:23:12:c3:51:1c:c6:5a: 9c:5e:30:ef:61:64:6a:1c:ba:54:b7:50:45:f1:20:15:9a:c6: c2:97:a7:7e:f3:a7:3e:e8:a9:06:af:08:00:d9:a1:c2:b2:82: 27:34:6c:a3:9d:b5:5a:27:ec:94:7e:01:cb:e7:a4:31:79:f1: 4e:42:e0:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA1MTMwNzA3MjlaFw0yNTA1MjAwNzA3MjlaMBgxFjAUBgNV BAMTDTY4MjJlZmIyLTE0YjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUMGh8DeRv6JK/EhRhx6j8ezJUKGyv1VpvORUoYLwABjqfBVE2P9LRL5Q1KO5b zmzIk/Q88b1TDbH51JnAhBTdbPBLk9ZJf91p+k/utZ6ENA+jkorLk2V9EN6cv3Iq imA8QvZsnqn9qzWGmS3qoUIJuzrmx6sUuPyennG3XvwQ38nafvWoCrGkeSVk+1SH V1E1zS5BUV2sEMQqk/mS0sg9TZ5uPdqk/a6Ql1XX4d9fMkbLBZTiginZqJdW9Hnb 2Qbns38o05s8gpHw0tvgGGEf2WlhpoeOLXVXavEfr56hEKG88CQ8dGz2YIcOcMyS AeKxKCPmpiTS8rCMChM6pphPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJPl+L9Ql 7UkfH9RIvU6w+ZgwkNUwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACXQ6x0jzKeKaniV9t8bccWAF8hRePwfLJyEt7Mgjffo3EUo330AGhYc e6J63PLSaBXdh/DaGUyYXYItScQwzuuJMgIlfx+smpw5iy+LwghUf1d1q6uk858+ EEHisg2utJUeVALNHbSAk/Ne8qqaaM9vFOsg1m7kbG1ggKvXd4RUtva+ZeHlmWvu vuluMO6Bev2TsnneMAgawGo9IsYCnTa6arNSSDPpWb82xT+BRuGwTtYKRblAv6Ux /gPI1+8EIxLDURzGWpxeMO9hZGoculS3UEXxIBWaxsKXp37zpz7oqQavCADZocKy gic0bKOdtVon7JR+AcvnpDF58U5C4E8= -----END CERTIFICATE-----Generated at Tue May 13 19:04:46 2025 by rpki-client