$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: o+W0a1LywmS/cERld2HTunBenVISrw6jFrZwHPD3POo= Subject key identifier: 07:22:0B:06:65:61:10:1A:E2:79:D5:93:2F:A2:62:60:5B:50:EA:8F Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 65 Signing time: Sun 11 May 2025 05:45:10 +0000 Manifest this update: Sun 11 May 2025 05:45:10 +0000 Manifest next update: Sun 18 May 2025 05:45:10 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: tisO4FSZCLUBUAVa3Nh7cODEAsSF2Btk7klIJXZCaN8=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: May 11 05:45:10 2025 GMT Not After : May 18 05:45:10 2025 GMT Subject: CN=68203966-2783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d0:e1:e3:a6:7e:d0:8d:e9:e8:3a:59:0c:94: 54:3e:07:af:16:92:e7:67:e6:e3:1a:11:b7:2a:b7: ed:36:5f:05:35:e3:b6:47:67:8b:3e:ef:5f:b1:4a: 36:a6:f4:97:6a:5a:ca:77:1a:c2:a3:fd:87:10:f9: 7c:18:c4:35:5d:1d:5b:c1:69:a3:07:55:f0:02:80: 5d:ed:92:ed:0a:a2:31:f7:65:80:28:a1:e8:7c:e0: 8a:0f:ad:98:9f:ac:95:46:f4:55:cf:87:6d:3f:67: b5:ca:82:1a:95:6c:91:85:12:60:30:91:e4:f7:a2: 3d:28:6b:44:08:e1:5a:49:33:cf:da:34:af:dd:30: 9a:fb:4c:ca:d8:ff:9a:c5:b9:d8:97:b3:d7:e4:8a: 41:c6:4a:00:4d:87:9e:44:0c:0f:29:de:cd:48:a4: f8:5b:24:c8:ef:c4:7d:65:f2:12:43:b4:b2:3f:56: 7d:c4:80:aa:50:ae:bb:b1:6b:ed:08:f6:73:f7:bf: 91:70:a9:9e:64:22:7a:5e:9d:0d:d8:0b:20:8a:04: 89:45:57:8b:c0:0a:1f:01:61:7a:4b:d5:ba:57:4f: ba:0d:af:0a:86:96:50:78:0a:56:28:ac:6b:20:83: a2:1b:4b:4e:95:d3:a6:1d:c7:66:78:cf:05:62:b6: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:22:0B:06:65:61:10:1A:E2:79:D5:93:2F:A2:62:60:5B:50:EA:8F X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:59:5d:d1:2a:27:57:1a:c5:1a:8c:5a:24:8f:90:54:a8:4b: 25:d7:73:d4:7a:a1:29:22:0d:5a:53:58:fa:3a:a4:ae:0a:5e: 56:7f:b8:b7:6e:57:48:e2:23:99:6e:fe:49:fc:39:00:81:be: bc:83:36:7d:c2:b7:80:40:4c:16:03:06:45:e5:9f:fa:65:8e: 97:c5:cd:88:88:0d:94:f7:f0:97:6b:12:bd:a9:62:da:f7:29: f5:96:99:42:a3:c0:fc:f2:cc:b1:3f:13:57:5f:df:bc:2c:eb: 40:1e:b5:0d:59:3e:e2:00:f3:8e:6b:49:1f:70:d9:da:79:95: 86:c9:d3:e8:4a:b8:3e:aa:da:49:08:d8:7e:3b:52:3c:08:7d: 42:53:1b:14:22:49:41:c8:c1:22:a8:f2:26:61:48:47:dc:b0: 8a:8f:de:ff:69:34:39:25:1d:aa:90:9d:99:a0:8e:04:18:c5: 70:84:88:1f:4b:31:24:d4:18:d2:b3:0f:5c:cb:a5:88:4e:e3: 0e:59:8d:49:0d:98:44:81:d2:7d:94:0e:3d:d8:78:ba:6c:21: b8:69:6b:7c:ac:d1:50:c7:e0:d7:df:ba:0c:8c:dd:d5:4a:81: 40:4a:58:ee:70:2e:59:bc:ae:42:6b:16:55:96:25:cc:60:4e: 9d:6f:30:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNTA1MTEwNTQ1MTBaFw0yNTA1MTgwNTQ1MTBaMBgxFjAUBgNV BAMTDTY4MjAzOTY2LTI3ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC20OHjpn7QjenoOlkMlFQ+B68Wkudn5uMaEbcqt+02XwU147ZHZ4s+71+xSjam 9JdqWsp3GsKj/YcQ+XwYxDVdHVvBaaMHVfACgF3tku0KojH3ZYAooeh84IoPrZif rJVG9FXPh20/Z7XKghqVbJGFEmAwkeT3oj0oa0QI4VpJM8/aNK/dMJr7TMrY/5rF udiXs9fkikHGSgBNh55EDA8p3s1IpPhbJMjvxH1l8hJDtLI/Vn3EgKpQrruxa+0I 9nP3v5FwqZ5kInpenQ3YCyCKBIlFV4vACh8BYXpL1bpXT7oNrwqGllB4ClYorGsg g6IbS06V06Ydx2Z4zwVitkHrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUByILBmVh EBriedWTL6JiYFtQ6o8wHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF1ZXdEqJ1caxRqMWiSPkFSoSyXXc9R6oSkiDVpTWPo6pK4KXlZ/uLdu V0jiI5lu/kn8OQCBvryDNn3Ct4BATBYDBkXln/pljpfFzYiIDZT38JdrEr2pYtr3 KfWWmUKjwPzyzLE/E1df37ws60AetQ1ZPuIA845rSR9w2dp5lYbJ0+hKuD6q2kkI 2H47UjwIfUJTGxQiSUHIwSKo8iZhSEfcsIqP3v9pNDklHaqQnZmgjgQYxXCEiB9L MSTUGNKzD1zLpYhO4w5ZjUkNmESB0n2UDj3YeLpsIbhpa3ys0VDH4NffugyM3dVK gUBKWO5wLlm8rkJrFlWWJcxgTp1vMIU= -----END CERTIFICATE-----Generated at Mon May 12 18:56:29 2025 by rpki-client