$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: pbf/autM0GkMj2U9cZD5x7cmu+tFpbrPZ2YCIEIt/rE= Subject key identifier: C6:2E:66:BA:54:36:CC:BC:50:3D:DC:7E:F3:57:F8:5C:0D:30:0F:AB Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 34D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 34AB Signing time: Mon 12 May 2025 14:33:16 +0000 Manifest this update: Mon 12 May 2025 14:33:16 +0000 Manifest next update: Mon 19 May 2025 14:33:16 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: jAl9R3jEdup/tKPhOswSLTr/p39omyUL+iDJ4TSl+Pg=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: d0P/BKes6SbSKV4r9lK1XjzU3f1Gv4sq1ihkJ2akzQw=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: 1oolI04ZrhXaYmXgZvqSiMymHhXrDoJjC9cjKEp6I10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: May 12 14:33:16 2025 GMT Not After : May 19 14:33:16 2025 GMT Subject: CN=682206ac-fd97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:63:64:61:18:5f:93:9a:d2:d7:fc:5f:84:eb: 48:45:7f:78:7d:6f:86:92:a5:87:86:85:30:a8:b4: c2:3a:54:40:16:d9:d0:80:c4:c2:c8:5a:e5:2e:cf: 96:bc:65:32:a9:2f:06:80:2b:83:e9:80:52:b8:9a: 50:ad:d9:49:ff:89:e8:cc:4b:89:78:81:e4:b4:ed: 9e:bd:d2:c8:d7:3e:d7:bb:4a:9d:4c:7d:76:92:ca: 0e:3b:58:bb:d7:27:ea:a0:68:e8:32:93:3a:97:71: 1b:ec:07:cf:8d:65:e0:33:20:6b:f7:d2:56:4f:c7: ec:59:dc:a7:6f:ee:ae:8e:7b:7a:64:f5:b4:c3:0a: ef:71:cc:4d:de:ff:55:42:61:a5:2a:5d:61:c7:2e: 85:fc:84:2d:c7:92:52:ac:cc:14:47:6c:c3:02:30: 46:97:b4:b6:80:0f:73:1e:65:d7:9d:27:b6:4e:0c: cc:2c:57:ca:fe:19:35:a1:96:8d:b6:2c:24:a8:65: 9b:a6:a8:77:b3:9f:53:c3:f4:8f:cc:31:69:a0:f2: 5d:52:42:48:c4:84:9f:b0:16:1e:31:ec:bd:9d:8c: 3b:82:e9:c3:51:fc:bb:6e:64:b3:82:21:e2:54:c8: ac:91:e4:92:77:4c:f4:2f:87:3b:51:75:16:39:f7: ab:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2E:66:BA:54:36:CC:BC:50:3D:DC:7E:F3:57:F8:5C:0D:30:0F:AB X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:3a:fb:82:52:bf:79:df:4f:d5:cd:db:93:ba:f0:20:d7:7f: 68:66:c7:83:0c:6b:5a:71:86:61:e2:05:ae:8b:df:75:ad:12: fe:ad:dd:5f:0b:79:4e:ba:91:41:7c:34:31:a0:54:f6:d2:46: fd:98:76:24:3a:85:51:fc:86:33:e4:24:61:0d:de:88:24:6d: 07:83:22:d4:79:37:24:f3:76:cf:a5:29:f6:6a:d3:b5:0e:7a: 63:73:15:ee:5d:22:44:52:33:7e:65:80:4d:0a:c9:48:91:c9: da:0a:1f:9f:37:5f:d0:d9:65:7e:65:07:cc:28:55:55:3e:83: ec:de:40:84:e3:98:9b:18:45:6f:c3:10:25:9a:ed:cb:56:68: b1:9c:b4:05:b2:6e:e5:e4:c0:c2:eb:15:e9:b1:f4:e6:4e:f1: 97:44:b6:e8:24:94:f7:aa:f3:88:fb:ed:de:b9:9f:df:9a:48: 1b:39:4e:97:06:ad:75:09:bc:95:f4:71:77:08:cb:d0:9d:8a: 3e:c5:75:68:71:69:52:07:a6:d5:7c:2b:44:fd:50:2f:d0:6e: fe:26:be:5a:17:10:d0:ec:5a:88:88:d5:7a:9d:9a:93:5c:5a: f5:9c:48:0e:7f:65:12:dd:b2:f3:e3:91:5a:ba:35:51:a2:ee: 36:07:55:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjUwNTEyMTQzMzE2WhcNMjUwNTE5MTQzMzE2WjAYMRYwFAYD VQQDEw02ODIyMDZhYy1mZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGNkYRhfk5rS1/xfhOtIRX94fW+GkqWHhoUwqLTCOlRAFtnQgMTCyFrlLs+W vGUyqS8GgCuD6YBSuJpQrdlJ/4nozEuJeIHktO2evdLI1z7Xu0qdTH12ksoOO1i7 1yfqoGjoMpM6l3Eb7AfPjWXgMyBr99JWT8fsWdynb+6ujnt6ZPW0wwrvccxN3v9V QmGlKl1hxy6F/IQtx5JSrMwUR2zDAjBGl7S2gA9zHmXXnSe2TgzMLFfK/hk1oZaN tiwkqGWbpqh3s59Tw/SPzDFpoPJdUkJIxISfsBYeMey9nYw7gunDUfy7bmSzgiHi VMiskeSSd0z0L4c7UXUWOferNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYuZrpU Nsy8UD3cfvNX+FwNMA+rMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVOvuCUr9530/VzduTuvAg139oZseDDGtacYZh4gWui991rRL+rd1f C3lOupFBfDQxoFT20kb9mHYkOoVR/IYz5CRhDd6IJG0HgyLUeTck83bPpSn2atO1 DnpjcxXuXSJEUjN+ZYBNCslIkcnaCh+fN1/Q2WV+ZQfMKFVVPoPs3kCE45ibGEVv wxAlmu3LVmixnLQFsm7l5MDC6xXpsfTmTvGXRLboJJT3qvOI++3euZ/fmkgbOU6X Bq11CbyV9HF3CMvQnYo+xXVocWlSB6bVfCtE/VAv0G7+Jr5aFxDQ7FqIiNV6nZqT XFr1nEgOf2US3bLz45FaujVRou42B1WQ -----END CERTIFICATE-----Generated at Tue May 13 15:05:57 2025 by rpki-client