$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json) Hash identifier: DKzI3m9KyRP1oJomAKD8tngry2XblM8hkykwK2WbzJo= Subject key identifier: F8:B4:9A:A9:54:A8:D1:3C:DA:54:03:EB:D2:54:E4:98:09:57:03:4F Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 02BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft Manifest number: 02B6 Signing time: Tue 13 May 2025 01:15:14 +0000 Manifest this update: Tue 13 May 2025 01:15:14 +0000 Manifest next update: Tue 20 May 2025 01:15:14 +0000 Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: W9WjbxcxBwC9lV8eBcXQ8T1/nX0TYcsZPgLFLS7s2Q8=) 2: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: tIjRYvm7kHb3Z/vuy4/Hasw9Jy2neJdJRNnPansBj78=) 3: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: llPQK6RAm7smNmRGwi10ZC04JcuM8comzd+cTfPYGBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0, serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: May 13 01:15:14 2025 GMT Not After : May 20 01:15:14 2025 GMT Subject: CN=68229d22-29a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:87:ba:68:2f:c9:75:70:46:5f:b2:08:e7:e6: b9:78:16:a6:f8:f6:c9:d1:d9:8a:fb:30:f8:14:3c: 87:50:1c:64:6d:69:db:ac:e5:9e:6e:39:bf:18:d1: 5f:bb:95:93:03:89:ae:ff:c9:a0:54:8c:b4:96:b9: 2c:10:6b:61:35:b4:e5:83:f0:87:49:96:6d:ea:de: 9b:68:37:f9:56:a7:b5:82:1b:88:74:e5:e8:63:98: 14:9e:89:ee:39:d0:11:0e:61:3d:3b:e7:4e:b8:de: 9f:d9:f9:bb:ea:e4:c1:ed:d3:8e:41:3b:0b:e3:81: 04:36:7d:d2:99:ab:40:cd:83:ac:ec:ee:36:d4:43: 6e:5c:3e:04:ee:cc:54:9b:9f:bd:8e:8a:1a:19:f3: 97:d4:8f:5d:5a:40:b9:c4:17:50:fd:4e:a8:7b:03: 78:ae:6c:33:69:c6:ef:fd:3b:46:63:cd:00:31:a2: 34:86:6d:40:1b:a9:a2:4a:9c:6c:3c:8e:a2:2d:1d: 4b:d2:5d:84:c1:19:02:9a:24:07:c6:2f:a5:ca:88: 59:cb:12:b6:72:11:2d:1c:1d:94:7f:63:3e:50:c7: b4:c0:fd:69:48:77:b1:31:45:77:26:0c:91:97:a1: af:ca:02:75:e2:e1:2f:28:5c:6f:81:c3:2b:03:a8: b2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B4:9A:A9:54:A8:D1:3C:DA:54:03:EB:D2:54:E4:98:09:57:03:4F X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e4:65:81:31:c6:42:e6:2c:dd:47:c9:6a:38:2a:8b:4c:da: b2:a4:e2:6b:33:a6:d7:68:41:76:83:28:83:f7:12:24:45:e2: 11:90:f6:07:7e:66:23:19:60:0d:14:cd:ec:db:25:4a:df:f1: dd:23:c9:6a:5a:4e:cc:b8:2a:74:9d:08:a1:24:68:a6:fe:f1: dc:80:ab:6a:90:88:b5:19:a6:70:01:74:f1:cc:9a:83:23:72: f2:c6:49:9e:06:24:6b:05:55:24:8e:fc:43:0c:79:62:76:69: da:99:85:94:9f:e3:13:bd:c4:ff:d1:3a:30:b0:cb:c6:9f:8a: 31:dd:74:a6:75:d0:c8:5f:23:2c:2c:f5:b4:0a:aa:39:8a:43: f2:fd:af:43:ab:c8:4e:1f:d3:6c:92:b6:b8:bf:99:d2:22:a4: 88:0e:63:2b:76:4b:6c:95:96:33:45:b7:da:b7:f2:87:a7:e5: c1:aa:3c:a8:a6:7d:28:4f:74:c3:a0:c8:b2:82:0e:8b:ec:27: 3f:33:37:8d:cb:41:a2:05:a6:58:52:08:91:b5:c1:f5:12:12: 96:b5:00:93:27:1d:a7:2b:b6:62:01:25:db:8f:7c:4f:bf:19: 5b:78:b7:d3:0f:9a:71:32:ad:dd:e4:b3:2a:0a:93:4d:75:62: a1:bc:55:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjUwNTEzMDExNTE0WhcNMjUwNTIwMDExNTE0WjAYMRYwFAYD VQQDEw02ODIyOWQyMi0yOWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIe6aC/JdXBGX7II5+a5eBam+PbJ0dmK+zD4FDyHUBxkbWnbrOWebjm/GNFf u5WTA4mu/8mgVIy0lrksEGthNbTlg/CHSZZt6t6baDf5Vqe1ghuIdOXoY5gUnonu OdARDmE9O+dOuN6f2fm76uTB7dOOQTsL44EENn3SmatAzYOs7O421ENuXD4E7sxU m5+9jooaGfOX1I9dWkC5xBdQ/U6oewN4rmwzacbv/TtGY80AMaI0hm1AG6miSpxs PI6iLR1L0l2EwRkCmiQHxi+lyohZyxK2chEtHB2Uf2M+UMe0wP1pSHexMUV3JgyR l6GvygJ14uEvKFxvgcMrA6iyOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPi0mqlU qNE82lQD69JU5JgJVwNPMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjVDMC9CQ0JENEZCNkYxQzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1 OGNMX0xyeEVLWFEzM1c1cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA85GWBMcZC5izdR8lqOCqLTNqypOJrM6bXaEF2gyiD9xIkReIRkPYH fmYjGWANFM3s2yVK3/HdI8lqWk7MuCp0nQihJGim/vHcgKtqkIi1GaZwAXTxzJqD I3LyxkmeBiRrBVUkjvxDDHlidmnamYWUn+MTvcT/0TowsMvGn4ox3XSmddDIXyMs LPW0Cqo5ikPy/a9Dq8hOH9Nskra4v5nSIqSIDmMrdktslZYzRbfat/KHp+XBqjyo pn0oT3TDoMiygg6L7Cc/MzeNy0GiBaZYUgiRtcH1EhKWtQCTJx2nK7ZiASXbj3xP vxlbeLfTD5pxMq3d5LMqCpNNdWKhvFU8 -----END CERTIFICATE-----Generated at Wed May 14 01:10:09 2025 by rpki-client