$ rpki-client -vvf rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft File: HgeR690MlMNWujc9fg8BYQPUC5I.mft (raw, json) Hash identifier: RZ7VPeVlrGjEjysDIRCzlRToI4QvEZfAnHdtFbliKFI= Subject key identifier: CF:75:B6:CA:99:83:5C:C9:04:94:4A:67:A4:D4:FA:96:7A:C7:C2:CE Authority key identifier: 1E:07:91:EB:DD:0C:94:C3:56:BA:37:3D:7E:0F:01:61:03:D4:0B:92 Certificate issuer: /CN=A916D07E/serialNumber=1E0791EBDD0C94C356BA373D7E0F016103D40B92 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgeR690MlMNWujc9fg8BYQPUC5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft Manifest number: 14 Signing time: Tue 13 May 2025 07:16:32 +0000 Manifest this update: Tue 13 May 2025 07:16:31 +0000 Manifest next update: Tue 20 May 2025 07:16:31 +0000 Files and hashes: 1: HgeR690MlMNWujc9fg8BYQPUC5I.crl (hash: huOsyk8TlLbO0Rczw9zXQf1UU6rbxXWEmy3GRwwbuSk=) 2: 6014E88A257E11F08DB64644C4F9AE02.roa (hash: nOUBr+CqAJHxGP5VlXuW/aGl6J+jLJf/ElMdL6qIZFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.crl rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgeR690MlMNWujc9fg8BYQPUC5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D07E, serialNumber=1E0791EBDD0C94C356BA373D7E0F016103D40B92 Validity Not Before: May 13 07:16:31 2025 GMT Not After : May 20 07:16:31 2025 GMT Subject: CN=6822f1d0-5b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c5:0f:f7:a1:b1:65:24:26:cd:e9:e0:be:ad: 8e:69:e0:b5:81:ce:35:1d:d3:9e:ad:c7:06:60:89: 49:97:81:ff:50:61:ba:12:50:34:37:2e:47:57:2c: 1b:3d:b4:0b:b4:ee:cb:4e:fb:e5:ec:49:58:8b:03: 5e:6a:c8:b5:40:57:f8:36:97:a3:60:de:97:20:4c: ac:46:e5:71:4d:ca:d2:4c:da:4f:d1:06:64:ab:0b: 22:4d:65:e3:d3:83:6c:41:a5:4a:91:f4:97:15:9f: 2e:8e:2b:92:31:e1:b3:dd:43:7a:81:71:84:c0:37: 51:a4:24:9d:fd:1f:81:f4:ef:23:b7:2e:b8:b7:64: 51:54:56:5a:e4:40:34:d6:a0:6c:9a:e7:4c:d0:d1: f2:92:a2:0b:7e:4d:a7:ed:50:6d:c4:e7:d1:9d:4d: 5f:5f:a7:7b:a1:d5:a1:36:09:e3:80:68:b4:58:6b: 5e:a8:9c:13:88:3d:8f:d3:8a:88:d2:aa:de:8d:59: 4d:f0:96:27:b3:94:28:2c:14:dd:d5:39:c1:fe:54: fc:b7:c7:9e:a4:b5:69:49:4e:e9:8b:9b:41:46:3a: 28:15:c5:41:9d:0c:4f:db:e3:2e:95:05:37:86:f6: 6d:59:ae:f7:50:ea:97:68:44:7a:a0:1a:47:20:a5: 75:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:75:B6:CA:99:83:5C:C9:04:94:4A:67:A4:D4:FA:96:7A:C7:C2:CE X509v3 Authority Key Identifier: keyid:1E:07:91:EB:DD:0C:94:C3:56:BA:37:3D:7E:0F:01:61:03:D4:0B:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgeR690MlMNWujc9fg8BYQPUC5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D07E/E023F21E150711F085FB4455C4F9AE02/HgeR690MlMNWujc9fg8BYQPUC5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7f:1d:b3:2b:08:88:9e:87:9c:62:53:67:75:b9:89:a0:ed: a9:55:ae:ae:9c:5f:5d:6a:45:32:a3:93:f7:7d:d8:d5:5d:84: 4a:1e:fc:52:9b:35:0a:60:94:fc:a9:27:24:2e:a2:fb:ae:45: a6:5e:df:56:c3:51:da:59:d0:6d:9e:81:65:36:61:c2:d4:cc: 7c:0f:fc:9d:e6:4d:c2:75:af:3f:c3:50:5c:68:24:30:3c:0a: 28:85:4e:cd:f9:5d:b7:85:54:e0:78:f0:c0:d1:22:42:e8:79: a4:16:0e:19:5d:25:9c:76:78:57:c7:db:e4:2d:e3:c1:20:89: d6:fe:52:09:ef:8d:4f:d3:c0:24:09:a3:d1:94:b9:c5:0e:db: 68:c1:5c:f5:47:8d:cd:d1:2f:40:51:0b:28:a2:ad:d2:c3:2d: 72:81:ef:28:65:90:1e:5a:01:7f:11:0a:88:66:6d:3d:de:f0: 96:32:1e:98:2e:62:f0:e9:c3:71:eb:ca:2e:a9:55:16:22:6c: f5:81:d8:55:e6:94:86:bb:18:6e:1b:4d:67:1c:8b:11:f0:72: 4b:14:26:db:5d:96:54:6c:5e:a8:e3:0a:b1:52:0d:70:b6:cd: f4:4b:41:63:03:05:e9:73:ef:17:5d:1d:18:c3:08:eb:1c:00: 33:06:77:22 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RDA3RTExMC8GA1UEBRMoMUUwNzkxRUJERDBDOTRDMzU2QkEzNzNEN0UwRjAxNjEw M0Q0MEI5MjAeFw0yNTA1MTMwNzE2MzFaFw0yNTA1MjAwNzE2MzFaMBgxFjAUBgNV BAMTDTY4MjJmMWQwLTViMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2xQ/3obFlJCbN6eC+rY5p4LWBzjUd056txwZgiUmXgf9QYboSUDQ3LkdXLBs9 tAu07stO++XsSViLA15qyLVAV/g2l6Ng3pcgTKxG5XFNytJM2k/RBmSrCyJNZePT g2xBpUqR9JcVny6OK5Ix4bPdQ3qBcYTAN1GkJJ39H4H07yO3Lri3ZFFUVlrkQDTW oGya50zQ0fKSogt+TaftUG3E59GdTV9fp3uh1aE2CeOAaLRYa16onBOIPY/TiojS qt6NWU3wliezlCgsFN3VOcH+VPy3x56ktWlJTumLm0FGOigVxUGdDE/b4y6VBTeG 9m1ZrvdQ6pdoRHqgGkcgpXVvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz3W2ypmD XMkElEpnpNT6lnrHws4wHwYDVR0jBBgwFoAUHgeR690MlMNWujc9fg8BYQPUC5Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZEMDdFL0UwMjNGMjFFMTUw NzExRjA4NUZCNDQ1NUM0RjlBRTAyL0hnZVI2OTBNbE1OV3VqYzlmZzhCWVFQVUM1 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGdlUjY5ME1sTU5XdWpjOWZnOEJZUVBVQzVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE MDdFL0UwMjNGMjFFMTUwNzExRjA4NUZCNDQ1NUM0RjlBRTAyL0hnZVI2OTBNbE1O V3VqYzlmZzhCWVFQVUM1SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEZ/HbMrCIieh5xiU2d1uYmg7alVrq6cX11qRTKjk/d92NVdhEoe/FKb NQpglPypJyQuovuuRaZe31bDUdpZ0G2egWU2YcLUzHwP/J3mTcJ1rz/DUFxoJDA8 CiiFTs35XbeFVOB48MDRIkLoeaQWDhldJZx2eFfH2+Qt48Egidb+UgnvjU/TwCQJ o9GUucUO22jBXPVHjc3RL0BRCyiirdLDLXKB7yhlkB5aAX8RCohmbT3e8JYyHpgu YvDpw3Hryi6pVRYibPWB2FXmlIa7GG4bTWccixHwcksUJttdllRsXqjjCrFSDXC2 zfRLQWMDBelz7xddHRjDCOscADMGdyI= -----END CERTIFICATE-----Generated at Wed May 14 18:04:40 2025 by rpki-client