$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: xhuxqaFfeTOIcZeuSPHhZSA586IEN7MlNAC+J1K8QsQ= Subject key identifier: 6C:EF:BC:E9:76:E0:11:3D:84:C6:A8:AA:FB:88:45:FE:C5:B7:EA:DC Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 21 Signing time: Sat 03 May 2025 07:08:45 +0000 Manifest this update: Sat 03 May 2025 07:08:44 +0000 Manifest next update: Sat 10 May 2025 07:08:44 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: RAxcJupSFOSqOaTAqRkEOHMcGIJfAO2Ji2xnqbOCRnE=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 07:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: May 3 07:08:44 2025 GMT Not After : May 10 07:08:44 2025 GMT Subject: CN=6815c0fc-d283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f9:6f:09:84:e3:d7:30:fd:83:cd:f8:2b:95: 65:a7:7e:3e:93:1e:9b:bb:f5:b8:4f:47:6d:d5:51: 28:0a:88:ba:70:11:fa:58:6b:13:b7:61:2f:21:e7: de:7a:5d:c8:6d:a1:a2:e6:63:dc:ba:61:c3:a7:7e: 6e:78:fe:4d:32:73:e9:51:9a:fc:87:19:82:14:de: ea:6c:3b:66:b2:72:61:8f:94:fc:b3:6a:4d:8b:43: 13:e2:8a:78:d4:8d:d3:fd:4f:c3:b6:5c:6c:ec:52: f5:c0:22:65:50:e4:71:ee:cb:7c:88:69:c2:1a:10: 3f:fb:c5:db:4c:88:9c:a1:92:30:c7:15:76:00:75: 8b:5d:02:a3:27:de:89:f9:c1:d1:a7:c7:36:13:c3: 52:58:9a:ac:13:cf:b1:cc:af:33:1b:87:39:ac:65: 03:18:98:03:f4:4c:c1:aa:b0:5c:f0:60:46:56:f2: 31:45:97:cf:d3:10:a1:d9:97:79:75:59:a5:a6:44: 01:e4:3d:f9:71:15:a4:f8:40:d7:d3:b1:53:c3:d7: 70:fc:e8:69:35:8b:3c:d3:66:3e:e2:56:07:3d:6f: 86:8a:05:31:45:ac:b2:85:15:2b:65:76:05:07:96: b0:2f:0b:ac:b8:6e:19:3b:8a:51:e0:08:dd:97:3c: 6b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EF:BC:E9:76:E0:11:3D:84:C6:A8:AA:FB:88:45:FE:C5:B7:EA:DC X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f8:5a:c7:07:fa:9b:61:44:72:bc:3b:5c:38:a0:dd:d1:55: 44:3b:7e:4d:f6:33:f4:ca:b6:fc:45:f3:03:25:37:71:50:b2: 3c:65:0e:a8:3c:8a:23:62:9a:fd:a4:c4:5b:50:61:4b:42:4e: d1:3e:2b:50:3c:df:9b:16:b5:d9:97:33:36:d0:cf:14:6d:56: 0a:80:e1:92:56:52:98:3a:a9:1f:f7:dc:90:cd:f3:d9:a2:43: 61:47:db:f1:f3:c2:dd:22:9e:90:10:85:fd:6b:79:64:8c:71: ff:aa:69:7a:da:57:96:95:24:0e:31:a7:f8:3c:ae:1c:b4:28: 04:c6:ae:6b:7d:18:7c:3e:f0:00:91:35:4e:b1:18:f6:d5:26: 7f:7e:3b:6e:01:2d:ca:21:c5:5c:d1:62:19:54:ac:58:90:6f: d2:03:61:2b:25:e1:15:00:87:c5:c9:c8:3c:4e:5f:69:27:a6: d0:2d:b6:9b:24:61:5f:9f:11:62:83:5c:aa:bf:57:02:f5:38: d0:bd:10:56:70:36:24:2a:30:df:39:4e:57:55:99:06:18:bd: 02:f0:1a:5e:70:2a:a0:83:bb:d1:b9:5f:77:11:62:99:f8:f6: 82:be:0a:29:48:5e:51:0a:82:03:91:3c:6d:19:7d:86:a8:b0: 67:ff:ab:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA1MDMwNzA4NDRaFw0yNTA1MTAwNzA4NDRaMBgxFjAUBgNV BAMTDTY4MTVjMGZjLWQyODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE+W8JhOPXMP2DzfgrlWWnfj6THpu79bhPR23VUSgKiLpwEfpYaxO3YS8h5956 XchtoaLmY9y6YcOnfm54/k0yc+lRmvyHGYIU3upsO2aycmGPlPyzak2LQxPiinjU jdP9T8O2XGzsUvXAImVQ5HHuy3yIacIaED/7xdtMiJyhkjDHFXYAdYtdAqMn3on5 wdGnxzYTw1JYmqwTz7HMrzMbhzmsZQMYmAP0TMGqsFzwYEZW8jFFl8/TEKHZl3l1 WaWmRAHkPflxFaT4QNfTsVPD13D86Gk1izzTZj7iVgc9b4aKBTFFrLKFFStldgUH lrAvC6y4bhk7ilHgCN2XPGv/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbO+86Xbg ET2Exqiq+4hF/sW36twwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADb4WscH+pthRHK8O1w4oN3RVUQ7fk32M/TKtvxF8wMlN3FQsjxlDqg8 iiNimv2kxFtQYUtCTtE+K1A835sWtdmXMzbQzxRtVgqA4ZJWUpg6qR/33JDN89mi Q2FH2/Hzwt0inpAQhf1reWSMcf+qaXraV5aVJA4xp/g8rhy0KATGrmt9GHw+8ACR NU6xGPbVJn9+O24BLcohxVzRYhlUrFiQb9IDYSsl4RUAh8XJyDxOX2knptAttpsk YV+fEWKDXKq/VwL1ONC9EFZwNiQqMN85TldVmQYYvQLwGl5wKqCDu9G5X3cRYpn4 9oK+CilIXlEKggORPG0ZfYaosGf/q8g= -----END CERTIFICATE-----Generated at Mon May 5 03:30:08 2025 by rpki-client