$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: 1iF9cQJuDAbGAc77dEUB6mnqF7OeMDxO6d5qXmW98qE= Subject key identifier: A7:5A:1E:3A:B8:C7:9E:14:15:04:49:EF:2D:DA:43:63:20:0B:47:83 Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0D0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0D03 Signing time: Mon 12 May 2025 17:57:07 +0000 Manifest this update: Mon 12 May 2025 17:57:06 +0000 Manifest next update: Mon 19 May 2025 17:57:06 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: 1ChgrCG+p76mkeFpedaLcX+eJ2h5KGvB+f7qzZ/s6i0=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: iNF26PQV2QDxZAqXThwlTn9eA9VPYLTtDdkUTHz7O7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: May 12 17:57:06 2025 GMT Not After : May 19 17:57:06 2025 GMT Subject: CN=68223673-1d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:de:6f:8f:c1:0a:2b:34:cc:75:a8:66:4b:6b: d0:e2:a6:3b:b9:97:dc:12:5f:14:a8:3c:7c:de:1d: 0b:dc:55:f3:f8:bd:9e:4f:e8:18:ff:38:07:35:86: c3:9f:b5:9a:b7:fc:1b:5c:1b:97:d1:ec:eb:87:6a: 49:ec:c5:6c:0c:df:a0:d8:fc:f5:8c:f7:8a:3a:19: 19:e7:83:70:74:66:60:be:cb:d8:b8:f1:1c:7a:4e: 08:b3:01:de:95:be:4c:97:aa:e9:94:c9:b8:ad:5a: 2c:02:15:8d:42:d5:74:9e:ee:8c:1c:2d:49:2e:b7: 9b:1a:96:a2:63:12:ec:69:94:d4:c7:2c:29:eb:fd: 04:f0:15:84:c5:e1:aa:c7:b6:57:b5:34:9f:ee:39: 75:d3:89:89:f7:84:b1:f8:df:f1:f9:34:01:56:23: f3:06:34:88:e6:d9:26:c1:32:d7:0b:5b:d9:7b:43: e0:ca:f2:52:93:5d:7f:00:c8:29:12:b0:3d:f4:02: 64:24:88:39:98:63:50:d0:78:89:88:e8:61:39:6d: 31:3d:cc:b1:9a:3e:04:ca:40:30:74:10:93:fa:4e: 90:0d:1a:97:11:95:1d:ab:fc:6c:99:ec:cc:6a:06: 9c:50:8b:a7:eb:96:9d:57:ca:46:47:71:06:ca:f1: 74:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:5A:1E:3A:B8:C7:9E:14:15:04:49:EF:2D:DA:43:63:20:0B:47:83 X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:12:1f:20:37:a9:5e:31:3c:7a:5b:a7:8e:fd:e9:28:be:0b: 58:b7:0e:e8:db:8f:be:05:e4:3c:0c:36:33:e7:d1:18:84:3a: bb:29:f4:62:55:4b:3a:80:91:76:b9:15:df:d3:7b:fe:e1:3b: 9f:bb:58:96:34:16:c1:c2:b6:cb:1e:fc:61:05:2f:c0:53:cd: 65:8f:82:d1:c6:d6:bb:3d:8a:c0:64:61:e5:4d:7e:bb:47:d6: 5f:65:da:8e:21:3e:02:28:1f:13:ba:10:64:ca:35:1c:bb:61: d5:7c:7e:d6:70:06:72:1c:5b:17:49:2a:2b:ea:d6:06:21:84: cb:5c:1c:32:2b:56:a5:73:94:f2:b3:6c:b3:47:d7:6f:a3:fd: 99:de:01:c1:86:0a:0b:57:0c:9d:48:89:67:ab:53:c3:03:07: 82:1d:33:d1:c2:02:b3:62:9a:6e:ae:ed:5f:ab:d2:c3:c2:2d: 35:ed:7a:c8:fe:2d:cb:a9:38:22:54:14:e1:1e:fd:3c:73:fc: 49:51:bd:8b:58:58:00:ca:1f:f2:ef:4f:ba:5d:0e:24:eb:4a: 95:1b:a7:06:26:4f:f5:e1:b7:ff:87:09:f5:2d:ed:02:44:77: c6:aa:6a:b3:96:5d:11:81:d4:ed:60:80:0c:d7:f2:18:c4:14: c1:cc:c2:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjUwNTEyMTc1NzA2WhcNMjUwNTE5MTc1NzA2WjAYMRYwFAYD VQQDEw02ODIyMzY3My0xZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1t5vj8EKKzTMdahmS2vQ4qY7uZfcEl8UqDx83h0L3FXz+L2eT+gY/zgHNYbD n7Wat/wbXBuX0ezrh2pJ7MVsDN+g2Pz1jPeKOhkZ54NwdGZgvsvYuPEcek4IswHe lb5Ml6rplMm4rVosAhWNQtV0nu6MHC1JLrebGpaiYxLsaZTUxywp6/0E8BWExeGq x7ZXtTSf7jl104mJ94Sx+N/x+TQBViPzBjSI5tkmwTLXC1vZe0PgyvJSk11/AMgp ErA99AJkJIg5mGNQ0HiJiOhhOW0xPcyxmj4EykAwdBCT+k6QDRqXEZUdq/xsmezM agacUIun65adV8pGR3EGyvF0CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdaHjq4 x54UFQRJ7y3aQ2MgC0eDMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZEh8gN6leMTx6W6eO/ekovgtYtw7o24++BeQ8DDYz59EYhDq7KfRi VUs6gJF2uRXf03v+4Tufu1iWNBbBwrbLHvxhBS/AU81lj4LRxta7PYrAZGHlTX67 R9ZfZdqOIT4CKB8TuhBkyjUcu2HVfH7WcAZyHFsXSSor6tYGIYTLXBwyK1alc5Ty s2yzR9dvo/2Z3gHBhgoLVwydSIlnq1PDAweCHTPRwgKzYppuru1fq9LDwi017XrI /i3LqTgiVBThHv08c/xJUb2LWFgAyh/y70+6XQ4k60qVG6cGJk/14bf/hwn1Le0C RHfGqmqzll0RgdTtYIAM1/IYxBTBzMLM -----END CERTIFICATE-----Generated at Wed May 14 17:38:53 2025 by rpki-client