$ rpki-client -vvf rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft File: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft (raw, json) Hash identifier: cmxzllpflmZLoHU8evFJHySAl4lklc0b8C0hPuH2/Us= Subject key identifier: 40:EC:2E:76:1F:E0:3E:AA:9C:8E:FC:DF:3B:4E:CE:7A:C5:43:9A:FC Authority key identifier: 1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB Certificate issuer: /CN=A91B727C/serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Certificate serial: 1182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft Manifest number: 116D Signing time: Sun 04 May 2025 17:09:11 +0000 Manifest this update: Sun 04 May 2025 17:09:11 +0000 Manifest next update: Sun 11 May 2025 17:09:11 +0000 Files and hashes: 1: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl (hash: wLIAw3Tujgw4+eVVhnjHIaVVTDE253rk0/45RrBmuPk=) 2: B58038B838FF11EAB8D91529C4F9AE02.roa (hash: IU4SG15xY5pa/IoW3wwDCZ3o/ZxiWKB5Df2NzHDteOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 17:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4482 (0x1182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B727C, serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Validity Not Before: May 4 17:09:11 2025 GMT Not After : May 11 17:09:11 2025 GMT Subject: CN=68179f37-3047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:44:c8:11:26:40:3a:5a:08:23:00:a5:91:8f: f9:6f:df:14:df:41:60:ee:64:16:b2:76:9d:20:5d: 44:c0:70:cf:ee:13:33:83:a5:69:d8:e8:28:98:4f: 2d:2b:7d:c3:27:ae:58:39:57:6a:98:ab:9c:eb:e7: 01:5a:a8:08:cc:01:7e:2c:59:93:4b:79:23:9d:5f: 04:60:59:f6:05:07:83:7e:25:7d:e3:9f:a7:c6:5b: ca:94:fe:24:48:49:c6:b8:7d:ef:d0:a6:f7:0e:c7: 60:1b:b6:cf:d3:47:60:2c:00:c7:aa:e6:70:3f:74: ab:9f:15:e0:37:f2:6f:23:ef:4b:3f:ef:18:d5:f2: 9f:13:58:5f:dd:df:d1:42:21:86:cb:b7:70:13:aa: ea:86:cd:b8:0f:09:12:9e:27:b0:07:24:5f:97:97: 77:ba:88:fb:d3:dc:df:55:20:e7:cb:29:ab:74:3d: af:33:35:2b:8d:0e:d0:aa:b3:f3:87:3b:8c:33:40: fb:65:53:b8:a0:2d:5c:ce:ae:60:d6:ec:e3:ff:ee: 33:97:3e:bb:f2:71:0e:c4:b5:88:6d:0f:a1:09:98: 50:5e:b4:2e:66:03:e0:55:14:0b:03:d4:e5:6e:04: 3c:b7:ee:2f:90:19:cf:5f:42:48:1a:67:5a:61:ad: a3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EC:2E:76:1F:E0:3E:AA:9C:8E:FC:DF:3B:4E:CE:7A:C5:43:9A:FC X509v3 Authority Key Identifier: keyid:1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:46:3c:67:6f:60:ab:88:81:46:0f:10:8e:29:43:c5:c5:14: 12:5a:a6:69:01:e4:d4:79:1a:cf:a3:8c:ca:c6:6a:4a:40:cf: af:76:27:1b:6e:2e:1b:3a:28:bf:36:b0:a1:53:d8:19:ad:52: 78:77:9e:81:8f:26:70:4f:9a:e7:96:80:76:79:94:f6:8d:28: 1a:8e:c1:4a:16:72:3b:fc:76:60:97:72:e3:d9:84:ea:e2:2d: 65:07:ed:9d:0f:d9:01:ad:5d:88:59:16:cc:de:56:25:50:3d: 93:d1:6a:cb:13:00:0f:f5:83:89:48:71:b1:1a:61:9f:6d:7a: 40:81:97:c5:b1:08:08:0f:e7:04:c9:bd:13:6f:94:50:db:dd: b7:39:df:16:fd:e0:36:86:fa:05:aa:1f:fb:5d:86:49:77:00: 6b:33:79:6e:9c:06:cb:4b:d4:6c:60:f7:80:1f:3a:2a:46:a5: 5d:8c:e7:04:fc:85:40:26:eb:3d:05:a4:8b:d9:fd:1d:34:94: d4:df:e5:89:74:13:a2:80:13:c9:7d:89:0e:16:e2:e6:9d:b7: 93:83:61:e3:a4:3b:af:7e:39:e0:9e:d5:7b:7e:b9:80:2d:b3: 93:56:f9:18:29:cd:f1:67:ab:aa:bc:96:26:c1:91:8b:ed:09: ab:d8:06:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyN0MxMTAvBgNVBAUTKDFEODgyQzhDRjI0MzRDQzlCQkZENzkxOTFEQzJDNjk4 MjkyNkU4QUIwHhcNMjUwNTA0MTcwOTExWhcNMjUwNTExMTcwOTExWjAYMRYwFAYD VQQDEw02ODE3OWYzNy0zMDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykTIESZAOloIIwClkY/5b98U30Fg7mQWsnadIF1EwHDP7hMzg6Vp2OgomE8t K33DJ65YOVdqmKuc6+cBWqgIzAF+LFmTS3kjnV8EYFn2BQeDfiV945+nxlvKlP4k SEnGuH3v0Kb3DsdgG7bP00dgLADHquZwP3SrnxXgN/JvI+9LP+8Y1fKfE1hf3d/R QiGGy7dwE6rqhs24DwkSniewByRfl5d3uoj709zfVSDnyymrdD2vMzUrjQ7QqrPz hzuMM0D7ZVO4oC1czq5g1uzj/+4zlz678nEOxLWIbQ+hCZhQXrQuZgPgVRQLA9Tl bgQ8t+4vkBnPX0JIGmdaYa2jzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDsLnYf 4D6qnI783ztOznrFQ5r8MB8GA1UdIwQYMBaAFB2ILIzyQ0zJu/15GR3CxpgpJuir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI3Qy85RDc3QzZENDAy OEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRNbTdfWGtaSGNMR21Da202 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hZZ3NqUEpEVE1tN19Ya1pIY0xHbUNrbTZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzI3Qy85RDc3QzZENDAyOEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRN bTdfWGtaSGNMR21Da202S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClRjxnb2CriIFGDxCOKUPFxRQSWqZpAeTUeRrPo4zKxmpKQM+vdicb bi4bOii/NrChU9gZrVJ4d56BjyZwT5rnloB2eZT2jSgajsFKFnI7/HZgl3Lj2YTq 4i1lB+2dD9kBrV2IWRbM3lYlUD2T0WrLEwAP9YOJSHGxGmGfbXpAgZfFsQgID+cE yb0Tb5RQ2923Od8W/eA2hvoFqh/7XYZJdwBrM3lunAbLS9RsYPeAHzoqRqVdjOcE /IVAJus9BaSL2f0dNJTU3+WJdBOigBPJfYkOFuLmnbeTg2HjpDuvfjngntV7frmA LbOTVvkYKc3xZ6uqvJYmwZGL7Qmr2Aa4 -----END CERTIFICATE-----Generated at Mon May 5 02:57:56 2025 by rpki-client