$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: 9lDlpB2ZoMJ42kk/uiScIvqbcpncjp71pU8EXyGyBbs= Subject key identifier: 58:87:E4:1A:40:A0:BE:09:6E:81:FD:6B:35:5C:A0:0D:41:16:9E:E6 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0BAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BA1 Signing time: Mon 12 May 2025 18:50:33 +0000 Manifest this update: Mon 12 May 2025 18:50:32 +0000 Manifest next update: Mon 19 May 2025 18:50:32 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: uBnc+6p+eTa9iTCzfd2IyHuVVyYOBXtFNjy6Nq9TLr0=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2991 (0xbaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: May 12 18:50:32 2025 GMT Not After : May 19 18:50:32 2025 GMT Subject: CN=682242f8-73d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:cf:f8:0e:16:ac:85:26:7b:71:7e:b1:19: e4:4c:22:24:39:ef:fa:6b:d2:b7:55:f9:21:d5:d4: 76:7d:c3:a6:28:b6:a5:de:76:e3:b8:ae:f6:04:62: a3:d0:f6:28:10:87:6c:ff:e2:2b:42:57:b2:5d:79: 90:54:36:a7:17:0b:27:63:4b:1e:49:2d:3d:9b:61: 49:e6:e5:f3:8d:b1:b7:6f:52:1b:67:14:7d:37:2b: 6e:dc:bc:ce:5f:c4:dd:a4:3f:f3:6d:b4:ab:7c:fe: 0e:01:39:35:14:d0:56:ca:a6:a2:ff:5d:f3:66:3c: 03:6c:41:35:c4:ba:45:91:a0:a4:c1:ed:c7:26:ed: 4d:39:7d:23:96:32:bb:eb:81:d9:8b:eb:7e:cc:77: cd:ab:28:2d:82:8a:16:52:ad:bf:42:52:aa:93:53: 11:fb:04:50:8b:34:a7:d8:08:c0:5f:ee:56:06:d6: 8f:2e:48:d7:2f:86:a1:96:3e:b7:35:8a:66:8c:39: 03:1e:05:04:49:b5:10:a1:f9:b1:85:36:da:ee:0c: 16:aa:ba:7e:ff:00:97:30:3f:35:41:1a:ca:7d:f6: f9:46:fb:8e:52:11:f5:36:2e:1a:7d:22:b8:16:14: 86:93:d7:04:3c:9e:6d:ab:e8:96:77:75:cb:6c:f3: 45:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:87:E4:1A:40:A0:BE:09:6E:81:FD:6B:35:5C:A0:0D:41:16:9E:E6 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:80:e7:18:31:e9:52:ba:85:46:7a:cd:f8:02:80:09:e8:e0: 80:dd:5e:2c:4e:3e:2a:7e:68:39:6f:af:f8:05:35:d6:80:6c: f6:9a:c7:f6:9d:53:53:6a:02:66:be:88:a1:e3:2e:ec:21:66: 2c:ed:cc:d8:9e:cb:11:53:f1:f0:17:44:92:58:85:6a:ec:87: 6f:47:ad:1c:2c:37:d6:5a:48:52:c9:0a:19:fb:d6:c4:1c:0d: 49:7c:42:07:55:84:46:39:29:46:18:b8:8d:ca:3e:87:84:ae: 02:bf:1e:e7:64:7b:9c:17:4f:98:21:eb:b8:e9:87:01:ef:45: d8:fc:12:b4:ae:e1:f7:6d:43:48:95:23:d6:68:a4:f0:a0:68: f6:36:15:18:80:d1:ef:42:29:6f:24:ce:c7:ea:7b:16:7c:34: 0f:f7:83:c6:f8:2a:81:44:06:24:8c:2c:68:1e:bc:d8:45:d2: cf:2e:e8:1d:3f:28:17:0a:74:91:03:61:92:39:64:0b:cf:8c: 64:d6:b7:2a:21:00:eb:ee:8e:6e:b7:22:68:d0:71:4a:d3:62: ba:8e:08:af:10:27:ef:51:be:2c:3c:df:6e:93:30:a3:52:71: 43:44:0b:c4:f0:f2:85:50:13:a4:b8:4f:85:24:66:a8:26:d2: 4d:00:b0:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUwNTEyMTg1MDMyWhcNMjUwNTE5MTg1MDMyWjAYMRYwFAYD VQQDEw02ODIyNDJmOC03M2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugLP+A4WrIUme3F+sRnkTCIkOe/6a9K3Vfkh1dR2fcOmKLal3nbjuK72BGKj 0PYoEIds/+IrQleyXXmQVDanFwsnY0seSS09m2FJ5uXzjbG3b1IbZxR9Nytu3LzO X8TdpD/zbbSrfP4OATk1FNBWyqai/13zZjwDbEE1xLpFkaCkwe3HJu1NOX0jljK7 64HZi+t+zHfNqygtgooWUq2/QlKqk1MR+wRQizSn2AjAX+5WBtaPLkjXL4ahlj63 NYpmjDkDHgUESbUQofmxhTba7gwWqrp+/wCXMD81QRrKffb5RvuOUhH1Ni4afSK4 FhSGk9cEPJ5tq+iWd3XLbPNFSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiH5BpA oL4JboH9azVcoA1BFp7mMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjgOcYMelSuoVGes34AoAJ6OCA3V4sTj4qfmg5b6/4BTXWgGz2msf2 nVNTagJmvoih4y7sIWYs7czYnssRU/HwF0SSWIVq7IdvR60cLDfWWkhSyQoZ+9bE HA1JfEIHVYRGOSlGGLiNyj6HhK4Cvx7nZHucF0+YIeu46YcB70XY/BK0ruH3bUNI lSPWaKTwoGj2NhUYgNHvQilvJM7H6nsWfDQP94PG+CqBRAYkjCxoHrzYRdLPLugd PygXCnSRA2GSOWQLz4xk1rcqIQDr7o5utyJo0HFK02K6jgivECfvUb4sPN9ukzCj UnFDRAvE8PKFUBOkuE+FJGaoJtJNALBW -----END CERTIFICATE-----Generated at Wed May 14 08:11:18 2025 by rpki-client