$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft File: xHENSLTk8rc1vksbXJDtuI0mmyw.mft (raw, json) Hash identifier: Pc7haMb554UPa7F/ZfXLsxpHB1cZtn+4hMwNb+MmyfI= Subject key identifier: 40:EB:99:00:76:89:B2:C0:C9:A1:74:9C:ED:B0:B1:D1:39:59:99:D1 Authority key identifier: C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C Certificate issuer: /CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft Manifest number: 01BA Signing time: Tue 13 May 2025 02:20:31 +0000 Manifest this update: Tue 13 May 2025 02:20:30 +0000 Manifest next update: Tue 20 May 2025 02:20:30 +0000 Files and hashes: 1: xHENSLTk8rc1vksbXJDtuI0mmyw.crl (hash: 3R8XA4OTTyx3mnYJDO7zfXadiMvmNDQUQPJv7UIDN1M=) 2: 0DC2D3EC8D7A11EDBFA7C381C4F9AE02.roa (hash: fk3GNutu1Xl8jf9hzH4EWHosYGuy+JY1n5pgsTabR1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC2E3, serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Validity Not Before: May 13 02:20:30 2025 GMT Not After : May 20 02:20:30 2025 GMT Subject: CN=6822ac6e-21a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:da:42:fa:cc:2a:8c:20:e8:c6:0e:26:2b:32: 47:c0:21:0d:92:9a:dd:43:48:f8:a8:0a:ab:f9:50: f3:1a:f0:fc:00:1d:5e:84:e9:c3:a7:8b:db:a3:d1: be:07:0f:d8:4d:67:16:22:07:71:26:b0:9f:2e:d9: 9b:43:60:e3:5d:67:89:ae:34:c4:f1:7a:8c:a0:94: 2c:66:a8:0b:b5:7e:98:b6:10:ba:65:d7:c1:e8:26: c3:d9:d8:df:3f:38:2d:ee:95:89:1b:ee:18:49:98: 0a:7c:dc:da:f2:e3:a8:2c:e0:39:26:13:17:9b:1a: 32:59:30:60:53:29:f4:36:b7:b6:39:91:5a:b4:1c: df:a4:59:76:57:84:9d:78:21:4a:dd:de:23:de:89: bb:1f:19:25:4a:6c:fb:96:d8:86:da:b2:96:ab:c3: 85:1d:2e:2e:2b:19:70:e2:ce:e0:d3:1a:6a:30:b8: 24:9f:72:e1:bb:59:57:0f:1c:a3:b6:24:c6:7d:e6: 90:bb:9b:c4:85:97:c0:61:b3:a6:be:ab:6f:10:10: 54:a3:f7:08:32:15:7a:fa:69:7c:5c:54:49:91:0d: f8:9e:63:ef:78:b2:f0:46:37:25:9c:8b:6d:bd:75: 1b:e4:8d:d5:ab:ef:af:3a:fe:3d:e4:04:67:6b:e4: c0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EB:99:00:76:89:B2:C0:C9:A1:74:9C:ED:B0:B1:D1:39:59:99:D1 X509v3 Authority Key Identifier: keyid:C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ee:56:00:a1:cc:ea:36:54:3e:45:b6:59:3d:11:2a:c0:05: 45:45:6d:32:71:34:02:14:de:df:b9:d0:09:ec:0a:cf:d0:52: 84:8b:55:6a:e9:62:15:0c:93:65:c6:4b:8c:1c:15:c1:2d:e8: c0:7b:9e:9e:7a:72:e0:ca:57:59:34:04:31:83:cd:ab:23:b1: 65:22:19:ff:f1:3e:2d:6d:46:69:bb:4e:54:3e:b7:64:22:c4: 12:6c:70:60:9c:f3:f6:c7:bc:c6:62:90:8b:55:d0:58:30:13: f0:02:10:fc:de:f5:87:ba:42:c0:ca:19:08:de:35:18:31:03: 33:b4:31:ca:cf:9f:24:ab:7f:7b:21:2a:fb:fe:44:6e:36:ad: ae:9f:45:14:05:39:27:ae:c7:f1:41:7d:60:4d:f4:a1:f9:6f: 0a:b1:59:ae:07:14:5e:95:9e:c5:49:20:f1:19:33:72:74:93: 94:19:b7:0e:f9:fb:0a:89:ae:4a:9d:11:34:d4:e1:16:3e:e0: 00:82:8a:be:d4:43:d6:58:25:c4:b5:e6:9d:45:1b:0d:ce:d9: 95:32:d7:72:10:ff:62:6c:94:5d:65:e0:68:14:91:4c:7f:ce: b5:d0:0b:13:1c:ce:eb:09:22:aa:47:fc:6b:0c:a7:6b:85:f0: eb:a4:c5:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyRTMxMTAvBgNVBAUTKEM0NzEwRDQ4QjRFNEYyQjczNUJFNEIxQjVDOTBFREI4 OEQyNjlCMkMwHhcNMjUwNTEzMDIyMDMwWhcNMjUwNTIwMDIyMDMwWjAYMRYwFAYD VQQDEw02ODIyYWM2ZS0yMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NpC+swqjCDoxg4mKzJHwCENkprdQ0j4qAqr+VDzGvD8AB1ehOnDp4vbo9G+ Bw/YTWcWIgdxJrCfLtmbQ2DjXWeJrjTE8XqMoJQsZqgLtX6YthC6ZdfB6CbD2djf Pzgt7pWJG+4YSZgKfNza8uOoLOA5JhMXmxoyWTBgUyn0Nre2OZFatBzfpFl2V4Sd eCFK3d4j3om7HxklSmz7ltiG2rKWq8OFHS4uKxlw4s7g0xpqMLgkn3Lhu1lXDxyj tiTGfeaQu5vEhZfAYbOmvqtvEBBUo/cIMhV6+ml8XFRJkQ34nmPveLLwRjclnItt vXUb5I3Vq++vOv495ARna+TAvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDrmQB2 ibLAyaF0nO2wsdE5WZnRMB8GA1UdIwQYMBaAFMRxDUi05PK3Nb5LG1yQ7biNJpss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzJFMy85QjRBNDg5MDg5 QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhyYzF2a3NiWEpEdHVJMG1t eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIRU5TTFRrOHJjMXZrc2JYSkR0dUkwbW15dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzJFMy85QjRBNDg5MDg5QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhy YzF2a3NiWEpEdHVJMG1teXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB47lYAoczqNlQ+RbZZPREqwAVFRW0ycTQCFN7fudAJ7ArP0FKEi1Vq 6WIVDJNlxkuMHBXBLejAe56eenLgyldZNAQxg82rI7FlIhn/8T4tbUZpu05UPrdk IsQSbHBgnPP2x7zGYpCLVdBYMBPwAhD83vWHukLAyhkI3jUYMQMztDHKz58kq397 ISr7/kRuNq2un0UUBTknrsfxQX1gTfSh+W8KsVmuBxRelZ7FSSDxGTNydJOUGbcO +fsKia5KnRE01OEWPuAAgoq+1EPWWCXEteadRRsNztmVMtdyEP9ibJRdZeBoFJFM f8610AsTHM7rCSKqR/xrDKdrhfDrpMWd -----END CERTIFICATE-----Generated at Tue May 13 12:27:22 2025 by rpki-client