$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft File: Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft (raw, json) Hash identifier: vYZ05xJMVfrAvZwjx6cSPvhvORLL49abhE3YhcFvCnA= Subject key identifier: 22:70:3C:9D:F1:9F:94:C0:9F:47:FA:E4:E0:C9:03:4F:96:9E:0C:F2 Authority key identifier: 1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A Certificate issuer: /CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Certificate serial: 0477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft Manifest number: 0473 Signing time: Mon 12 May 2025 23:53:43 +0000 Manifest this update: Mon 12 May 2025 23:53:43 +0000 Manifest next update: Mon 19 May 2025 23:53:43 +0000 Files and hashes: 1: Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl (hash: 34Izv1lhoJkZDrdtdmrWivJfrX9NEYQ9J+nBA59gknw=) 2: B5F911E8429411EC8882FA1EC4F9AE02.roa (hash: Ib+CF/sk+KvnPvMxoim8MHqeWZYKc+NyST1cJiaAhsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1143 (0x477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFC4E, serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Validity Not Before: May 12 23:53:43 2025 GMT Not After : May 19 23:53:43 2025 GMT Subject: CN=68228a07-c3df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:21:97:4a:ad:06:9b:85:ed:dd:c0:86:21:6b: df:c8:f5:1d:90:1b:ad:de:6f:ae:b6:6d:14:22:b1: d4:21:9d:8c:93:83:fa:7c:f0:1b:71:41:b2:bd:dd: f5:23:99:0c:15:a2:f6:11:32:21:93:e8:cf:e6:c7: ea:12:1d:62:1f:81:6a:b9:19:69:e0:63:03:14:e6: b8:02:67:52:5a:a1:b4:18:98:89:ab:42:e6:19:a8: 05:2e:09:89:6b:6f:7b:55:9f:ae:b0:54:98:99:1a: 27:71:ef:bd:76:d0:08:e4:f4:41:d7:1c:a0:68:2b: 9e:3a:66:cb:a0:1e:b2:bb:7f:f5:df:c5:5b:2f:db: 23:6b:16:9f:3b:5f:f9:aa:7d:89:80:65:d4:df:f6: 87:9e:0b:88:31:aa:71:35:44:8e:36:d8:a9:3c:cb: 2c:36:cd:c6:08:28:9b:87:1f:ca:62:3c:af:1b:d0: a0:d0:84:5a:bf:59:91:45:d7:7e:54:c2:50:c0:58: 7a:4b:48:b3:d1:c5:a1:71:3a:e2:27:7c:7c:31:26: 16:44:4c:6a:5c:f7:b5:61:1b:ad:d0:42:38:21:fc: c9:a8:e1:e9:ce:95:54:0f:13:40:ed:b0:e8:41:42: 3f:4b:10:f7:cf:39:7d:75:10:4f:6f:c3:0c:a5:96: 64:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:70:3C:9D:F1:9F:94:C0:9F:47:FA:E4:E0:C9:03:4F:96:9E:0C:F2 X509v3 Authority Key Identifier: keyid:1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:da:1e:c0:9a:c2:08:e7:80:cb:1c:06:d4:43:c6:09:11:fd: f8:24:01:12:90:27:48:f9:36:e7:83:f3:85:1e:f1:c1:b0:c6: 19:27:7f:c7:94:a5:51:35:5c:f7:b4:11:1e:87:0c:d1:e3:cd: c3:43:86:8a:d4:cb:6c:b4:6c:73:63:92:f0:86:70:5f:38:e7: 72:22:28:a7:6b:39:9c:19:65:04:9d:1d:24:c8:8e:28:d7:cf: 2d:bf:e7:dc:62:79:ac:97:b5:0b:90:4d:97:bc:15:b7:0f:89: fe:70:86:51:df:86:7c:78:71:62:96:fd:15:cf:e9:5e:29:d1: 35:c6:f0:30:e9:22:64:33:40:1a:28:a5:b3:88:d6:ab:33:6c: 5e:db:9d:fe:ea:27:f3:22:df:16:e2:ef:a1:c0:69:84:0e:ef: 34:2a:d2:07:92:17:b3:4d:c2:11:e8:d7:d9:72:0b:dd:1f:a1: 4a:14:f1:56:82:29:3d:29:38:26:2b:41:5b:87:48:0b:a0:1d: 09:6c:5e:d3:f4:7a:01:0d:43:16:02:02:54:de:c2:fe:10:f7: 05:f7:d4:44:84:36:d2:f8:d3:d7:62:52:1b:62:0f:92:1f:25: f3:7c:05:40:1b:c1:fd:80:dc:ed:c2:0d:ba:a1:18:b9:2b:78: 7e:dc:23:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZDNEUxMTAvBgNVBAUTKDFFRkVEQTM0Mjg3Rjg1OEREQ0Y0RENFODQyOEMzM0I2 MUM0MUQ5OUEwHhcNMjUwNTEyMjM1MzQzWhcNMjUwNTE5MjM1MzQzWjAYMRYwFAYD VQQDEw02ODIyOGEwNy1jM2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyGXSq0Gm4Xt3cCGIWvfyPUdkBut3m+utm0UIrHUIZ2Mk4P6fPAbcUGyvd31 I5kMFaL2ETIhk+jP5sfqEh1iH4FquRlp4GMDFOa4AmdSWqG0GJiJq0LmGagFLgmJ a297VZ+usFSYmRonce+9dtAI5PRB1xygaCueOmbLoB6yu3/138VbL9sjaxafO1/5 qn2JgGXU3/aHnguIMapxNUSONtipPMssNs3GCCibhx/KYjyvG9Cg0IRav1mRRdd+ VMJQwFh6S0iz0cWhcTriJ3x8MSYWRExqXPe1YRut0EI4IfzJqOHpzpVUDxNA7bDo QUI/SxD3zzl9dRBPb8MMpZZkJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJwPJ3x n5TAn0f65ODJA0+WngzyMB8GA1UdIwQYMBaAFB7+2jQof4WN3PTc6EKMM7YcQdma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkM0RS9GQjIyMUQ0MDQy OTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZM2M5TnpvUW93enRoeEIy Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2N2FOQ2hfaFkzYzlOem9Rb3d6dGh4QjJaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkM0RS9GQjIyMUQ0MDQyOTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZ M2M5TnpvUW93enRoeEIyWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh2h7AmsII54DLHAbUQ8YJEf34JAESkCdI+Tbng/OFHvHBsMYZJ3/H lKVRNVz3tBEehwzR483DQ4aK1MtstGxzY5LwhnBfOOdyIiinazmcGWUEnR0kyI4o 188tv+fcYnmsl7ULkE2XvBW3D4n+cIZR34Z8eHFilv0Vz+leKdE1xvAw6SJkM0Aa KKWziNarM2xe253+6ifzIt8W4u+hwGmEDu80KtIHkhezTcIR6NfZcgvdH6FKFPFW gik9KTgmK0Fbh0gLoB0JbF7T9HoBDUMWAgJU3sL+EPcF99REhDbS+NPXYlIbYg+S HyXzfAVAG8H9gNztwg26oRi5K3h+3CN1 -----END CERTIFICATE-----Generated at Wed May 14 03:06:29 2025 by rpki-client