$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: gWEZ04t+vGfgX4zIDyLAm5XJWgdTzkyiLQH925yoWBY= Subject key identifier: 78:92:94:6B:67:21:CA:E2:A0:97:B4:84:AA:DE:E5:23:BF:36:5A:FE Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0BD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0BCE Signing time: Fri 16 May 2025 19:03:23 +0000 Manifest this update: Fri 16 May 2025 19:03:23 +0000 Manifest next update: Fri 23 May 2025 19:03:23 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: Yuv1K8XqVZGP/fyCesrqWkn7o2Xb333lH3m61aWTomQ=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3029 (0xbd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: May 16 19:03:23 2025 GMT Not After : May 23 19:03:23 2025 GMT Subject: CN=68278bfb-613e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8c:95:e0:c8:9c:58:41:1d:85:35:f1:d2:15: 2d:ed:92:ad:b2:01:ee:a1:12:a4:09:2d:00:af:e0: 5d:ac:f3:aa:1a:84:6a:8d:eb:70:55:0c:1e:a8:9c: 16:cb:f2:a0:6c:49:08:12:f5:ab:9f:8d:be:8d:b0: 11:08:7e:cd:53:ed:27:19:45:de:11:f6:92:f4:73: 3f:b2:60:4f:ad:f3:1b:e5:3c:fb:35:1c:3e:72:0d: 55:51:70:1a:11:9e:23:f6:5d:a3:f5:13:03:c7:ed: c7:61:b8:2d:6d:c3:89:a4:36:8a:5d:1b:b6:c7:8c: 21:e3:19:ff:09:75:9e:2d:af:37:bf:1e:98:d2:8e: 69:28:c7:9a:13:0f:8a:71:09:24:76:3a:5d:49:09: bd:ba:ad:49:fd:83:5b:c5:b7:77:a9:04:b4:49:27: 52:5f:85:41:ff:5e:ea:41:af:ee:ef:c8:b0:3e:f2: 1d:d1:e1:70:90:a3:a7:9f:4d:08:58:34:2e:31:f9: a2:06:81:5a:dd:46:10:35:85:e1:89:c1:54:16:06: e0:15:19:3e:14:9c:72:71:45:1e:85:15:90:43:28: f4:c6:6f:ca:da:0d:e4:c8:0e:fe:30:cc:96:43:dd: e7:a2:64:09:77:bc:b7:23:f8:fa:89:97:ca:6f:17: 6b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:92:94:6B:67:21:CA:E2:A0:97:B4:84:AA:DE:E5:23:BF:36:5A:FE X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:13:33:4c:40:b0:3a:1c:e7:8b:88:c1:4e:32:37:d0:b8:84: a4:39:4b:0a:46:a4:d4:88:21:32:38:6c:91:1d:e5:f9:b9:1e: c2:4f:2d:27:c0:50:7e:77:06:4c:cf:be:25:d3:81:d7:fa:27: 3b:66:6b:2c:d0:b6:43:54:f1:53:10:49:7c:d3:f0:4d:32:d0: 6a:2c:e1:fe:b5:a8:6f:69:f3:fd:37:17:d5:83:9d:f1:bb:03: 02:01:23:51:22:c9:48:da:6b:c4:e0:6d:07:c2:66:d6:9a:52: 6a:32:1e:52:2c:b5:aa:96:ff:96:72:2b:d8:d8:a1:a3:a3:df: ef:e1:e6:9d:02:68:1d:a3:5a:f1:f7:34:b9:a5:e1:ea:71:57: 87:74:42:a5:18:66:c3:6b:9b:aa:eb:84:56:7f:51:e4:cf:ca: 24:83:ae:ed:76:80:71:ed:64:3d:1a:03:a7:51:64:74:43:00: d4:29:a5:d1:0e:6a:ac:b9:9e:a5:91:94:df:1b:80:68:b8:10: 9c:2e:b1:e7:4c:71:a6:d0:cb:03:95:c1:d9:2a:a5:77:cd:68: 2c:6d:77:3a:d7:64:bc:4a:02:7d:47:b1:25:42:f6:bb:90:d8: 75:67:74:a4:53:44:67:20:66:ad:61:f7:b7:e8:64:8b:6a:a2: d1:2c:dd:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUwNTE2MTkwMzIzWhcNMjUwNTIzMTkwMzIzWjAYMRYwFAYD VQQDEw02ODI3OGJmYi02MTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4yV4MicWEEdhTXx0hUt7ZKtsgHuoRKkCS0Ar+BdrPOqGoRqjetwVQweqJwW y/KgbEkIEvWrn42+jbARCH7NU+0nGUXeEfaS9HM/smBPrfMb5Tz7NRw+cg1VUXAa EZ4j9l2j9RMDx+3HYbgtbcOJpDaKXRu2x4wh4xn/CXWeLa83vx6Y0o5pKMeaEw+K cQkkdjpdSQm9uq1J/YNbxbd3qQS0SSdSX4VB/17qQa/u78iwPvId0eFwkKOnn00I WDQuMfmiBoFa3UYQNYXhicFUFgbgFRk+FJxycUUehRWQQyj0xm/K2g3kyA7+MMyW Q93nomQJd7y3I/j6iZfKbxdrhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiSlGtn IcrioJe0hKre5SO/Nlr+MB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtEzNMQLA6HOeLiMFOMjfQuISkOUsKRqTUiCEyOGyRHeX5uR7CTy0n wFB+dwZMz74l04HX+ic7Zmss0LZDVPFTEEl80/BNMtBqLOH+tahvafP9NxfVg53x uwMCASNRIslI2mvE4G0HwmbWmlJqMh5SLLWqlv+WcivY2KGjo9/v4eadAmgdo1rx 9zS5peHqcVeHdEKlGGbDa5uq64RWf1Hkz8okg67tdoBx7WQ9GgOnUWR0QwDUKaXR DmqsuZ6lkZTfG4BouBCcLrHnTHGm0MsDlcHZKqV3zWgsbXc612S8SgJ9R7ElQva7 kNh1Z3SkU0RnIGatYfe36GSLaqLRLN2N -----END CERTIFICATE-----Generated at Sat May 17 03:40:39 2025 by rpki-client