$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: xPkzUQCw0vz/cvLhYVg7q9ohfP1RbDp1GmCwU4KzFP4= Subject key identifier: F7:E4:4F:63:61:11:74:5A:8C:6A:80:91:D4:87:F3:0A:7B:7B:7B:A6 Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: 3A Signing time: Fri 09 May 2025 06:34:34 +0000 Manifest this update: Fri 09 May 2025 06:34:34 +0000 Manifest next update: Fri 16 May 2025 06:34:34 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: CxBtH0gOhUF3ovwNJDHmSG3lmC6V1I+GP8epvEYw6H8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: May 9 06:34:34 2025 GMT Not After : May 16 06:34:34 2025 GMT Subject: CN=681da1fa-cdb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:29:96:28:73:ba:eb:64:42:9c:31:87:46:af: 2d:e7:05:05:42:90:7b:ff:8b:71:34:c7:e5:d5:86: 13:f4:2e:e3:74:5d:6c:ae:4b:a0:b2:e7:31:47:9b: 53:0e:ef:04:dd:c5:dd:e9:b1:77:c8:5f:b4:fd:46: 25:dd:b0:de:12:7b:2b:6f:cd:6d:51:9a:d7:5b:66: c4:e7:50:50:16:a3:b2:c5:88:a6:86:a9:c3:fc:9a: f0:79:8e:9b:34:7c:9e:a2:e1:da:3d:b3:14:d3:68: 03:19:a0:4b:f8:9b:67:c8:d2:c6:be:8d:62:03:b8: 34:f1:d6:1f:48:27:72:7e:67:6d:b4:cd:00:fd:73: 9a:ca:f8:6b:31:8d:85:e5:2c:53:da:bd:13:fa:a6: 9a:4d:61:0a:61:2c:02:54:17:97:fa:de:88:bf:57: 12:62:ba:35:3b:9b:a3:c3:b2:4b:22:9e:3d:ee:2f: 1a:bc:b5:76:dc:f6:cf:4b:d2:26:5b:08:d8:6d:6a: 18:23:c7:d6:24:6d:04:bf:a1:40:85:96:a8:53:34: a2:18:b9:1e:4a:ef:ce:84:fc:dc:c9:d9:06:72:13: f5:df:5f:29:b5:2b:59:88:5f:df:e9:c0:5d:55:bd: a4:97:d5:04:a1:6d:41:b8:1e:b1:80:44:0c:dd:c3: e2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E4:4F:63:61:11:74:5A:8C:6A:80:91:D4:87:F3:0A:7B:7B:7B:A6 X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:16:2c:80:e9:33:e9:46:b7:dc:fe:2b:08:8d:9d:6d:4b:2b: dd:3e:6e:32:cd:93:77:e4:93:70:f8:56:29:23:ad:ae:a2:d3: 5a:ec:b2:cc:08:2b:99:da:49:c9:4b:5a:b3:1d:7b:88:8a:e9: b8:6d:d4:49:97:b8:ce:97:c4:20:58:86:ca:b7:b8:cd:74:71: 92:77:57:19:b7:ae:5d:61:1c:3b:56:85:29:2a:c4:d6:19:1d: 0f:41:96:72:c2:51:c9:c2:64:d6:fc:7b:00:40:39:2c:2a:2e: b7:19:36:60:89:b4:40:54:cf:39:f9:62:7d:6d:e7:ef:25:82: 01:5f:2a:62:3a:51:2e:13:c0:8f:66:05:e8:d4:fa:83:9c:65: fa:0b:6d:68:ee:1f:b4:f0:f6:cb:5f:d9:aa:b9:74:1d:19:b1: d0:7b:c6:95:88:18:62:1d:ca:73:7a:cc:2c:b7:12:ae:54:fe: fd:dd:72:88:b3:ee:68:c3:b0:46:45:57:fc:56:8c:cc:ed:cb: 71:2d:a2:54:fc:3f:97:0e:d7:8a:04:d4:19:18:ff:c3:da:84: e9:19:73:8d:3f:1f:88:be:a4:f6:9a:79:df:1f:be:77:6f:30: 10:aa:76:66:ec:41:c8:53:58:90:fe:43:fe:70:64:48:aa:bd: 25:8c:e5:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoOTg3QTI0MDM1QzE1MzkxNzAyMEI2NTFEQjk4RjA5MUYw QUFBMzIyNzAeFw0yNTA1MDkwNjM0MzRaFw0yNTA1MTYwNjM0MzRaMBgxFjAUBgNV BAMTDTY4MWRhMWZhLWNkYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDKZYoc7rrZEKcMYdGry3nBQVCkHv/i3E0x+XVhhP0LuN0XWyuS6Cy5zFHm1MO 7wTdxd3psXfIX7T9RiXdsN4SeytvzW1RmtdbZsTnUFAWo7LFiKaGqcP8mvB5jps0 fJ6i4do9sxTTaAMZoEv4m2fI0sa+jWIDuDTx1h9IJ3J+Z220zQD9c5rK+GsxjYXl LFPavRP6pppNYQphLAJUF5f63oi/VxJiujU7m6PDsksinj3uLxq8tXbc9s9L0iZb CNhtahgjx9YkbQS/oUCFlqhTNKIYuR5K786E/NzJ2QZyE/XfXym1K1mIX9/pwF1V vaSX1QShbUG4HrGARAzdw+JFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9+RPY2ER dFqMaoCR1IfzCnt7e6YwHwYDVR0jBBgwFoAUmHokA1wVORcCC2UduY8JHwqqMicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0FGREVGRTU0RDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1p Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUhva0Exd1ZPUmNDQzJVZHVZOEpId3FxTWljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0FGREVGRTU0RDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1Jj Q0MyVWR1WThKSHdxcU1pYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE8WLIDpM+lGt9z+KwiNnW1LK90+bjLNk3fkk3D4Vikjra6i01rssswI K5naSclLWrMde4iK6bht1EmXuM6XxCBYhsq3uM10cZJ3Vxm3rl1hHDtWhSkqxNYZ HQ9BlnLCUcnCZNb8ewBAOSwqLrcZNmCJtEBUzzn5Yn1t5+8lggFfKmI6US4TwI9m BejU+oOcZfoLbWjuH7Tw9stf2aq5dB0ZsdB7xpWIGGIdynN6zCy3Eq5U/v3dcoiz 7mjDsEZFV/xWjMzty3EtolT8P5cO14oE1BkY/8PahOkZc40/H4i+pPaaed8fvndv MBCqdmbsQchTWJD+Q/5wZEiqvSWM5as= -----END CERTIFICATE-----Generated at Sun May 11 04:16:10 2025 by rpki-client