$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: HEHoYT8aNi9RMy9TjXVWm287+uUtI/Wemi4Npij/sEU= Subject key identifier: 58:AA:C9:2D:92:B7:A6:FD:2D:51:20:65:48:62:8A:7D:73:F1:C0:05 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 08D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 08D2 Signing time: Thu 12 Jun 2025 20:12:21 +0000 Manifest this update: Thu 12 Jun 2025 20:12:21 +0000 Manifest next update: Thu 19 Jun 2025 20:12:21 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: VgCoivFDUCozmuzbc5eL+s12j3UNc2YGJRb8VXIqQic=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2264 (0x8d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Jun 12 20:12:21 2025 GMT Not After : Jun 19 20:12:21 2025 GMT Subject: CN=684b34a5-3cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:94:68:5b:b8:a6:ec:25:d7:ba:5c:57:5a:11: a1:3f:d6:84:0d:3a:0e:be:c3:fc:3f:3f:06:28:5b: 8a:ae:52:53:f2:0c:88:48:4d:d5:93:ee:9f:1a:d5: 5f:5c:e7:3a:b6:cc:ea:0d:35:13:1f:35:09:6f:bb: 5b:c7:83:44:d3:66:6c:0c:63:1a:10:df:e6:34:7b: 28:fc:6e:1d:d8:7f:89:9e:3c:7d:cb:e2:21:2b:52: ca:a7:63:63:1b:4c:c2:e5:72:6f:e6:fd:d0:16:8d: c8:b0:ab:6d:cf:63:e6:7e:d0:b3:33:8d:0c:a9:0f: 6b:d3:5e:ad:3f:1e:f2:c0:81:ba:da:9f:b1:8b:3c: 6e:9b:66:c3:58:a9:0d:a4:4c:c4:5d:f4:0d:c6:4a: 65:65:79:21:38:96:67:11:a4:53:93:c2:b4:40:1a: a7:5d:a9:47:43:90:7a:34:ec:bf:99:4b:4c:37:6b: b0:14:ae:a0:2d:16:d1:12:55:05:4b:69:c8:59:65: a2:93:1b:15:ba:b4:ff:f7:4e:21:25:df:95:1a:28: 3a:ec:03:5d:fe:0b:61:d2:f4:5d:b9:96:63:3f:fa: 69:ce:14:32:75:cf:97:76:85:d2:03:a6:ce:49:75: 2b:0c:dc:64:02:2e:46:c2:ad:ab:7d:2d:fe:18:ad: 02:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:AA:C9:2D:92:B7:A6:FD:2D:51:20:65:48:62:8A:7D:73:F1:C0:05 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:32:8b:40:fc:95:bf:2b:fc:20:4e:3c:24:46:13:1b:d8:93: 64:98:fb:c7:9d:bc:1d:ed:87:1c:8c:e3:85:c6:1c:8d:d1:4c: 3d:57:72:09:19:99:73:67:6c:8e:d0:ff:bc:9c:50:f9:34:2d: 3e:ba:34:28:f6:76:aa:69:09:1b:c5:25:59:d0:30:30:8a:1f: 25:d8:3e:c4:55:56:9a:91:50:54:a2:58:8a:4a:cb:56:27:b3: ff:2b:68:2c:28:fa:0f:b4:36:3e:dd:c5:f7:13:fa:f1:15:e9: 2a:fb:fd:cb:da:e2:95:82:71:7c:26:8b:e7:e1:11:e0:0f:0b: 0d:e8:97:b9:00:b5:2d:bc:c8:56:4b:11:55:c2:5a:78:6c:12: 78:95:63:5a:ac:f6:b3:6e:e2:b9:48:5c:e2:d7:23:7d:93:33: da:fc:c8:38:5c:71:59:a1:99:9c:95:7a:3d:5c:c3:f9:ec:c6: 8a:df:82:47:d2:a5:14:20:82:c0:1d:1c:c6:5d:d9:3f:ba:56: 96:d4:28:89:bc:0b:dc:e5:61:47:e3:5a:d9:ed:b9:e7:e7:46: c9:c2:a0:9c:7d:30:ae:c9:4e:48:9c:66:88:9d:2c:76:ef:d6: f5:e1:d8:d3:d3:db:73:4a:ba:95:b0:20:42:15:3d:7d:41:4f: 87:c0:48:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUwNjEyMjAxMjIxWhcNMjUwNjE5MjAxMjIxWjAYMRYwFAYD VQQDEw02ODRiMzRhNS0zY2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ZRoW7im7CXXulxXWhGhP9aEDToOvsP8Pz8GKFuKrlJT8gyISE3Vk+6fGtVf XOc6tszqDTUTHzUJb7tbx4NE02ZsDGMaEN/mNHso/G4d2H+Jnjx9y+IhK1LKp2Nj G0zC5XJv5v3QFo3IsKttz2PmftCzM40MqQ9r016tPx7ywIG62p+xizxum2bDWKkN pEzEXfQNxkplZXkhOJZnEaRTk8K0QBqnXalHQ5B6NOy/mUtMN2uwFK6gLRbRElUF S2nIWWWikxsVurT/904hJd+VGig67ANd/gth0vRduZZjP/ppzhQydc+XdoXSA6bO SXUrDNxkAi5Gwq2rfS3+GK0CSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiqyS2S t6b9LVEgZUhiin1z8cAFMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAMotA/JW/K/wgTjwkRhMb2JNkmPvHnbwd7YccjOOFxhyN0Uw9V3IJ GZlzZ2yO0P+8nFD5NC0+ujQo9naqaQkbxSVZ0DAwih8l2D7EVVaakVBUoliKSstW J7P/K2gsKPoPtDY+3cX3E/rxFekq+/3L2uKVgnF8Jovn4RHgDwsN6Je5ALUtvMhW SxFVwlp4bBJ4lWNarPazbuK5SFzi1yN9kzPa/Mg4XHFZoZmclXo9XMP57MaK34JH 0qUUIILAHRzGXdk/ulaW1CiJvAvc5WFH41rZ7bnn50bJwqCcfTCuyU5InGaInSx2 79b14djT09tzSrqVsCBCFT19QU+HwEgx -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:35 2025 by rpki-client