$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: +oooGdINN9VDHYG7yndqFlbl8xHs7LKJ0GFYrMJpGiQ= Subject key identifier: F1:7F:BB:B7:D0:84:1C:37:96:2D:78:A4:DA:EA:C3:B3:C0:E0:76:0B Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: 4F Signing time: Fri 09 May 2025 06:20:15 +0000 Manifest this update: Fri 09 May 2025 06:20:14 +0000 Manifest next update: Fri 16 May 2025 06:20:14 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: QH2QaLorvQweWHSygg81mmLbv5gSGcrmPIhCcuWJPIQ=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: May 9 06:20:14 2025 GMT Not After : May 16 06:20:14 2025 GMT Subject: CN=681d9e9e-da6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ff:45:99:8b:c8:5d:7a:bc:59:a9:23:a9:58: 4b:d7:e0:34:8c:ff:b5:fa:84:0b:b2:34:dd:2c:f4: 11:33:4e:f1:ac:d0:92:cb:89:af:7f:ed:4c:62:3c: 29:1d:fe:18:e9:35:52:43:12:6e:1a:42:d2:49:c1: 3d:cb:50:ec:96:15:39:8c:09:cc:d6:b7:a7:03:25: 20:d6:c4:4b:c2:be:a6:9c:9b:86:40:54:f7:42:eb: 2b:04:51:1f:61:19:a6:38:73:45:ef:fc:cb:65:85: 46:b8:5d:74:55:99:4a:46:5d:2d:5b:aa:9e:2a:46: ba:5a:53:b0:a7:2d:bd:24:2c:b5:1a:78:a8:c3:1d: 40:b4:0d:0f:35:98:af:bd:63:11:6c:ac:6d:db:dc: f1:ba:03:bd:2c:ef:ce:39:4e:f1:3d:0c:ae:94:4f: e7:1e:3d:ca:0c:a5:58:6a:b4:76:b7:92:72:04:04: d4:43:c4:c2:59:d8:c7:6e:59:c7:64:15:dc:68:4f: 3b:3e:3d:d7:8c:a1:42:17:5f:c4:ed:61:c6:79:63: 0d:51:be:da:6c:56:6d:50:39:c9:02:9b:97:b4:aa: af:48:3d:44:99:24:e4:f5:14:67:46:95:79:c3:ab: a8:53:c7:68:be:2a:1e:87:fc:59:3f:31:04:02:54: cb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7F:BB:B7:D0:84:1C:37:96:2D:78:A4:DA:EA:C3:B3:C0:E0:76:0B X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b2:6d:4b:c3:be:c2:4f:5f:a7:90:e6:98:09:5d:d7:cb:6f: 61:ab:3c:29:c3:6f:3d:84:b1:c7:b2:42:9c:df:13:a9:57:2f: 6e:ca:06:5f:33:21:e8:3d:f5:e4:a0:6c:6f:13:75:62:ea:c5: a1:eb:ca:e3:8c:0a:d6:21:f8:10:bd:2c:65:3b:eb:9a:d4:a4: 10:ea:a3:b3:9b:b8:4f:34:43:17:60:90:0f:ed:08:37:d5:da: 9b:05:c8:e8:7c:24:da:0e:aa:82:2a:b1:f3:e5:c8:2b:f8:f9: 92:43:05:5b:db:cf:49:83:a6:d9:6d:be:89:79:87:ea:19:cb: 3d:44:c6:f3:5e:46:04:ea:33:36:12:94:ef:b2:b1:f1:54:1f: d4:01:b5:6b:2b:f9:73:96:3d:ab:7b:5f:14:0c:65:21:6e:3e: 39:f0:e3:e5:9b:67:24:ed:8d:09:54:94:d6:4a:3a:b8:ec:f3: 95:11:97:c8:ad:1e:a9:5f:6b:75:18:02:d1:80:d5:a5:94:9d: 91:3e:d4:ee:fc:3d:39:22:49:42:f8:72:ce:fe:8b:d9:07:c8: 18:15:95:58:28:22:e5:b0:39:de:43:d2:d9:60:00:3d:0d:2a: 51:dc:0c:a9:3c:0e:ea:12:28:0a:fb:91:56:42:06:4b:db:86: 34:4c:23:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzEzMjExMC8GA1UEBRMoODVFOTk5QzIyQkVFMDFDMzI2NEQzRDIyNjc1ODIxMDky RkZGRDAyQzAeFw0yNTA1MDkwNjIwMTRaFw0yNTA1MTYwNjIwMTRaMBgxFjAUBgNV BAMTDTY4MWQ5ZTllLWRhNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5/0WZi8hderxZqSOpWEvX4DSM/7X6hAuyNN0s9BEzTvGs0JLLia9/7UxiPCkd /hjpNVJDEm4aQtJJwT3LUOyWFTmMCczWt6cDJSDWxEvCvqacm4ZAVPdC6ysEUR9h GaY4c0Xv/MtlhUa4XXRVmUpGXS1bqp4qRrpaU7CnLb0kLLUaeKjDHUC0DQ81mK+9 YxFsrG3b3PG6A70s7845TvE9DK6UT+cePcoMpVhqtHa3knIEBNRDxMJZ2MduWcdk FdxoTzs+PdeMoUIXX8TtYcZ5Yw1RvtpsVm1QOckCm5e0qq9IPUSZJOT1FGdGlXnD q6hTx2i+Kh6H/Fk/MQQCVMtZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8X+7t9CE HDeWLXik2urDs8DgdgswHwYDVR0jBBgwFoAUhemZwivuAcMmTT0iZ1ghCS//0Cww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDMTMyL0M0RkExNEY4Qjgw QzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBD dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVtWndpdnVBY01tVFQwaVoxZ2hDU19fMEN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFD MTMyL0M0RkExNEY4QjgwQzExRUY4NEZBM0UzNUM0RjlBRTAyL2hlbVp3aXZ1QWNN bVRUMGlaMWdoQ1NfXzBDdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHqybUvDvsJPX6eQ5pgJXdfLb2GrPCnDbz2EsceyQpzfE6lXL27KBl8z Ieg99eSgbG8TdWLqxaHryuOMCtYh+BC9LGU765rUpBDqo7ObuE80QxdgkA/tCDfV 2psFyOh8JNoOqoIqsfPlyCv4+ZJDBVvbz0mDptltvol5h+oZyz1ExvNeRgTqMzYS lO+ysfFUH9QBtWsr+XOWPat7XxQMZSFuPjnw4+WbZyTtjQlUlNZKOrjs85URl8it Hqlfa3UYAtGA1aWUnZE+1O78PTkiSUL4cs7+i9kHyBgVlVgoIuWwOd5D0tlgAD0N KlHcDKk8DuoSKAr7kVZCBkvbhjRMI6o= -----END CERTIFICATE-----Generated at Sat May 10 05:20:37 2025 by rpki-client