$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: CMBro3jw30/3dwnebU3IsT2y+qTBUDIjbWfDWkTdzek= Subject key identifier: 48:44:B3:8D:81:AB:52:98:D2:98:5F:D8:29:ED:16:BF:C1:AC:FA:12 Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 3C Signing time: Sun 11 May 2025 06:15:49 +0000 Manifest this update: Sun 11 May 2025 06:15:48 +0000 Manifest next update: Sun 18 May 2025 06:15:48 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: t7B2tZ9WazvfN+FxCzM5myzRaeI/hDJ9H16IpnwgGCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: May 11 06:15:48 2025 GMT Not After : May 18 06:15:48 2025 GMT Subject: CN=68204094-73f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1f:36:a0:f0:42:6b:36:49:1a:39:65:a2:4c: b6:f5:24:c8:09:7f:25:7b:9e:86:e9:5e:a0:78:68: 1b:d6:7a:c6:41:ca:3e:7f:6d:45:c2:09:7c:28:da: 1c:64:34:e0:b4:64:b3:68:de:c7:88:d5:7b:cb:1f: ba:6c:ca:0b:31:43:9c:8c:a1:7b:ca:b7:58:16:c5: dd:5c:59:d4:1a:f8:e8:8f:17:6b:5e:a7:8a:63:9c: 2f:a6:3c:e9:86:c1:bc:bc:36:ed:75:f2:d7:70:99: 34:33:5f:a6:d1:c6:89:73:5c:ba:1a:db:d7:11:ce: b6:d8:00:45:fa:e5:c2:11:ac:e1:d8:a3:75:cc:bc: 35:f3:c3:a1:ea:f1:f3:3e:f6:13:df:e6:b9:a9:21: b2:81:04:97:37:0e:ec:d0:77:c9:bc:44:c4:20:3b: 4e:00:42:f9:c1:8b:fa:69:f4:56:44:c0:f9:3c:73: ea:81:bc:0e:15:27:4d:b9:63:fa:73:6c:b5:26:4e: 3f:47:8e:04:e1:18:20:fe:c6:fc:05:80:e2:73:6a: 71:53:a8:79:a5:d0:e5:8f:67:cb:cd:b0:3d:fb:f3: f6:7a:09:b6:d2:24:b2:7e:6f:50:3e:29:5d:7b:b1: eb:80:a9:e4:6a:90:f8:bf:8b:6e:ee:85:b6:1e:f6: bc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:44:B3:8D:81:AB:52:98:D2:98:5F:D8:29:ED:16:BF:C1:AC:FA:12 X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:45:db:71:a0:d3:93:6f:1e:ef:68:85:43:68:11:e9:fb:87: 87:ac:54:ea:02:29:58:07:4b:d5:05:07:91:f4:d4:e3:c6:0a: 00:f1:d6:d7:3f:9d:a4:59:46:b8:f4:d6:79:28:ae:b4:35:aa: 3d:a9:90:81:a0:fe:89:24:aa:1f:45:7b:40:9b:63:50:f0:3b: 9e:88:dc:b3:87:49:2d:b0:9d:5a:3c:23:14:3c:89:06:df:38: 2d:e4:b0:d7:27:4a:96:0a:ac:7e:5f:c2:f8:a3:1d:4d:d9:9c: 28:58:52:e0:36:f5:b5:77:57:a8:52:33:61:2e:ef:10:1d:c2: 76:22:8a:6d:1b:17:3f:1e:4a:3a:a2:c1:a4:55:54:17:11:28: d6:2a:d6:94:39:40:bc:3d:be:13:d6:6e:67:19:4a:47:93:10: b3:e4:04:ee:e9:91:4d:fe:f7:bd:15:aa:d7:98:d0:5d:cc:70: e1:3a:0f:3d:f6:88:2d:99:3b:a1:ee:e3:55:11:93:c7:a5:99: c0:0b:9f:e2:2a:32:1c:c1:15:f6:7a:28:a2:fb:a9:b4:06:29: 9c:3c:42:77:5c:03:50:22:63:51:8e:fd:c0:6b:32:3f:a3:ca: 2d:19:6d:70:aa:9f:9a:31:1d:22:a5:b5:45:0d:38:2b:2b:a9: 9a:ed:3e:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoODU3NzkwNEM0M0MyQTlCRTExOEZEREQ1QkE3QkI4QjYw NDQzODBGRTAeFw0yNTA1MTEwNjE1NDhaFw0yNTA1MTgwNjE1NDhaMBgxFjAUBgNV BAMTDTY4MjA0MDk0LTczZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcHzag8EJrNkkaOWWiTLb1JMgJfyV7nobpXqB4aBvWesZByj5/bUXCCXwo2hxk NOC0ZLNo3seI1XvLH7psygsxQ5yMoXvKt1gWxd1cWdQa+OiPF2tep4pjnC+mPOmG wby8Nu118tdwmTQzX6bRxolzXLoa29cRzrbYAEX65cIRrOHYo3XMvDXzw6Hq8fM+ 9hPf5rmpIbKBBJc3DuzQd8m8RMQgO04AQvnBi/pp9FZEwPk8c+qBvA4VJ025Y/pz bLUmTj9HjgThGCD+xvwFgOJzanFTqHml0OWPZ8vNsD378/Z6CbbSJLJ+b1A+KV17 seuAqeRqkPi/i27uhbYe9rz9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSESzjYGr UpjSmF/YKe0Wv8Gs+hIwHwYDVR0jBBgwFoAUhXeQTEPCqb4Rj93Vunu4tgRDgP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0VDQTJDN0Q2RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhlUVRFUENxYjRSajkzVnVudTR0Z1JEZ1A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0VDQTJDN0Q2RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0 Umo5M1Z1bnU0dGdSRGdQNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMFF23Gg05NvHu9ohUNoEen7h4esVOoCKVgHS9UFB5H01OPGCgDx1tc/ naRZRrj01nkorrQ1qj2pkIGg/okkqh9Fe0CbY1DwO56I3LOHSS2wnVo8IxQ8iQbf OC3ksNcnSpYKrH5fwvijHU3ZnChYUuA29bV3V6hSM2Eu7xAdwnYiim0bFz8eSjqi waRVVBcRKNYq1pQ5QLw9vhPWbmcZSkeTELPkBO7pkU3+970VqteY0F3McOE6Dz32 iC2ZO6Hu41URk8elmcALn+IqMhzBFfZ6KKL7qbQGKZw8QndcA1AiY1GO/cBrMj+j yi0ZbXCqn5oxHSKltUUNOCsrqZrtPq8= -----END CERTIFICATE-----Generated at Mon May 12 13:08:15 2025 by rpki-client