$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: RQ8cRkN9QsTyOGM3hW+HX3eNk/n+weuCSXpxOH8O/Kc= Subject key identifier: 43:4A:EE:44:91:6D:75:3D:3E:AD:D6:BC:1B:B6:8B:7F:3F:38:48:94 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 7B Signing time: Fri 13 Jun 2025 05:44:33 +0000 Manifest this update: Fri 13 Jun 2025 05:44:33 +0000 Manifest next update: Fri 20 Jun 2025 05:44:33 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: a4ssv6/9AQViG1UEFfhfndAVX5zbtm/q50yhneoMGpY=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: 3tPU5Z40ENmKrBN3OAXsHJVkK9J8E3240xOs2Cjr+YQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Jun 13 05:44:33 2025 GMT Not After : Jun 20 05:44:33 2025 GMT Subject: CN=684bbac1-9e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0a:e0:b9:6f:b5:1c:d7:27:d1:08:79:5d:d1: f3:24:d1:bb:b5:1f:22:e6:92:0b:9d:90:ef:2c:95: d4:c4:7b:6f:db:9d:85:f8:8c:5d:3a:77:22:c5:da: 55:a9:b8:41:f1:21:a3:5f:ee:c1:9a:c1:b3:18:8c: 85:18:8a:da:89:a8:9e:5b:7e:08:00:e4:4d:f7:be: 44:3e:7b:df:9e:8a:39:d6:e1:d5:20:87:31:e5:7e: f8:cc:ce:bf:80:8c:f4:ba:99:aa:1d:88:aa:47:a9: 81:a4:a6:86:3c:e5:d3:c5:cf:bc:06:ad:58:84:d6: 56:a7:64:62:13:48:78:1c:5e:d8:fd:d6:fe:0f:38: f1:c0:d9:ca:2f:34:6b:b0:7e:c3:93:3c:88:2a:77: 72:db:96:a0:84:d5:af:d5:f2:73:a2:56:1b:d2:cf: 47:5d:52:81:34:48:81:4c:7c:3b:7d:68:4c:a1:ff: b2:85:70:c2:78:2b:87:25:ad:e4:c4:b5:10:db:01: f0:3f:34:e4:59:46:48:01:6b:2e:36:3d:9e:8b:fc: 62:02:ce:79:cb:8d:ed:dd:07:22:f5:32:42:b7:2c: 08:d2:5b:67:c6:32:39:4d:39:a6:7b:72:31:b8:b3: 92:c5:b2:77:8e:67:7b:00:3a:e1:70:69:47:42:78: 3a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4A:EE:44:91:6D:75:3D:3E:AD:D6:BC:1B:B6:8B:7F:3F:38:48:94 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:57:e2:81:da:53:d3:c7:6b:70:73:9b:3f:40:cf:1b:0b:47: 65:e1:3d:76:96:89:26:de:fb:c4:e8:b9:a9:92:aa:4e:be:7c: 64:b4:55:8e:ef:ce:11:0a:09:da:6a:da:47:18:51:06:c3:1a: a5:d1:19:d1:7f:be:8b:3f:33:b2:2e:ba:70:9e:e5:90:30:5f: 1f:85:f8:81:9f:5c:b5:57:5e:15:20:e4:f9:aa:9f:54:49:fb: 6c:56:73:4c:f6:9b:5e:c9:03:02:0d:ba:30:39:17:0a:bd:24: 14:04:c4:ba:21:a8:b2:e8:01:59:0b:58:f6:87:34:b8:1e:ef: 67:aa:3c:f2:41:33:9f:6b:37:76:0b:2d:a0:a3:d6:38:85:9a: 17:b0:ce:0e:fc:7f:9b:7a:c3:e6:bd:f9:d3:cd:8d:a6:27:f0: 48:16:11:09:0f:66:d9:e5:ed:a8:1d:3e:2b:15:10:9d:79:98: 1e:39:1c:44:66:56:40:fc:c0:21:93:4a:c0:48:f1:9f:68:05: 89:1b:bc:5d:ce:b7:9a:e2:bc:93:25:a9:0f:1f:ec:5d:82:11: 15:5a:0d:9e:a9:93:93:b2:7c:30:9f:d0:ee:0a:e1:32:57:a3: 48:3c:c6:92:91:8c:49:66:31:6f:5e:86:64:dd:14:29:d5:2f: 90:97:52:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjUwNjEzMDU0NDMzWhcNMjUwNjIwMDU0NDMzWjAYMRYwFAYD VQQDEw02ODRiYmFjMS05ZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywrguW+1HNcn0Qh5XdHzJNG7tR8i5pILnZDvLJXUxHtv252F+IxdOncixdpV qbhB8SGjX+7BmsGzGIyFGIraiaieW34IAORN975EPnvfnoo51uHVIIcx5X74zM6/ gIz0upmqHYiqR6mBpKaGPOXTxc+8Bq1YhNZWp2RiE0h4HF7Y/db+DzjxwNnKLzRr sH7DkzyIKndy25aghNWv1fJzolYb0s9HXVKBNEiBTHw7fWhMof+yhXDCeCuHJa3k xLUQ2wHwPzTkWUZIAWsuNj2ei/xiAs55y43t3Qci9TJCtywI0ltnxjI5TTmme3Ix uLOSxbJ3jmd7ADrhcGlHQng6qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENK7kSR bXU9Pq3WvBu2i38/OEiUMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyV+KB2lPTx2twc5s/QM8bC0dl4T12lokm3vvE6LmpkqpOvnxktFWO 784RCgnaatpHGFEGwxql0RnRf76LPzOyLrpwnuWQMF8fhfiBn1y1V14VIOT5qp9U SftsVnNM9pteyQMCDbowORcKvSQUBMS6Iaiy6AFZC1j2hzS4Hu9nqjzyQTOfazd2 Cy2go9Y4hZoXsM4O/H+besPmvfnTzY2mJ/BIFhEJD2bZ5e2oHT4rFRCdeZgeORxE ZlZA/MAhk0rASPGfaAWJG7xdzrea4ryTJakPH+xdghEVWg2eqZOTsnwwn9DuCuEy V6NIPMaSkYxJZjFvXoZk3RQp1S+Ql1LU -----END CERTIFICATE-----Generated at Sat Jun 14 18:43:52 2025 by rpki-client