$ rpki-client -vvf rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft File: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft (raw, json) Hash identifier: fUYaGW+dsXq2GFtyu24PM7dAKA9JYk+vxBFs6AxSE8I= Subject key identifier: 8E:94:F4:1A:B7:D2:E1:2B:62:2E:A7:FB:24:37:EE:7B:F2:92:AF:3A Authority key identifier: 1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 Certificate issuer: /CN=A913C52D/serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Certificate serial: 06C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft Manifest number: 06C4 Signing time: Sat 14 Jun 2025 21:48:55 +0000 Manifest this update: Sat 14 Jun 2025 21:48:55 +0000 Manifest next update: Sat 21 Jun 2025 21:48:55 +0000 Files and hashes: 1: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl (hash: wdc7eaVshSw/ip+AWcbl/UNeYfJ1V23E0AINjbuYuhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C52D, serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Validity Not Before: Jun 14 21:48:55 2025 GMT Not After : Jun 21 21:48:55 2025 GMT Subject: CN=684dee47-186c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:e7:a1:56:2a:b3:42:ab:73:1f:81:01:a1: 09:16:50:b5:17:5a:21:9e:e9:c3:35:91:71:f8:d5: a1:9d:6f:d9:41:b0:3e:36:dc:43:8a:bd:aa:aa:70: f4:cf:87:0f:11:7a:c5:aa:01:b2:34:18:60:f0:24: de:9b:75:e1:57:8a:7c:23:7c:96:b3:a9:d3:92:d0: 1f:c2:e6:bc:74:6d:a0:fe:00:e0:b2:05:b6:1d:f3: 29:fc:8e:7c:e0:c0:c6:67:64:6d:9e:a7:30:71:c1: d6:11:c1:c3:d3:35:7d:6a:7e:71:b5:f6:bd:55:db: 48:ab:4e:b6:1d:89:63:c4:82:da:a6:eb:cd:18:07: 0d:26:b3:71:0a:76:2a:fc:88:f0:30:4e:c7:fe:91: 63:57:3a:05:0b:3a:60:af:d0:2e:a7:b2:14:2c:a5: 95:b5:91:ac:ca:d8:57:0b:e7:7a:b6:3c:a7:ad:6a: d9:ad:6f:3e:b2:9d:10:70:0e:e0:ea:f9:71:a3:29: da:08:cc:60:fe:0c:45:25:16:18:d9:af:38:f3:f5: d0:0e:e0:b8:c3:4d:44:29:63:12:87:bc:12:98:98: 04:aa:0f:11:bc:c4:24:4b:ad:87:e6:dc:86:1a:d8: 31:21:17:a0:20:f1:1c:0a:04:2e:78:af:92:70:ec: 3c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:94:F4:1A:B7:D2:E1:2B:62:2E:A7:FB:24:37:EE:7B:F2:92:AF:3A X509v3 Authority Key Identifier: keyid:1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:7b:2e:60:bd:6c:98:1d:6f:a2:24:05:bd:9f:43:7f:f7:1a: f8:b4:88:0e:99:36:ff:6d:4d:d2:dc:36:97:38:96:5c:d0:9d: d1:ce:fb:61:e7:07:be:4c:2c:bd:7b:8f:6d:a8:2a:9f:84:7e: 51:d7:06:bc:2e:b4:3b:9d:c2:6f:71:44:55:87:ca:a3:b3:57: 15:2b:89:3d:de:f9:be:d4:a3:9e:44:2a:96:3d:2a:28:f1:24: 7c:be:31:12:aa:9f:68:a8:c6:15:4d:c3:d1:55:4e:a5:91:8b: f8:09:d2:6f:ca:ca:4b:c4:16:d7:29:39:00:2a:cd:3d:71:f2: 40:e9:d7:f0:ac:01:b7:af:bd:dd:32:7b:33:e1:f6:0c:88:68: d9:f8:45:06:f9:dc:b4:01:1e:e6:12:86:dd:98:13:c1:74:a7: bc:81:8b:4d:72:ef:03:79:64:52:20:fa:be:0e:07:77:c0:cb: ec:3d:26:f7:08:50:1e:46:c1:c2:46:c9:a0:b5:da:d2:b7:fb: ef:99:fe:9e:97:5c:7d:61:a8:da:36:af:65:58:17:39:92:7f: 7d:ff:5d:c6:6e:39:b3:f8:e9:eb:76:6a:47:be:b1:88:59:2b: b2:fd:ff:b0:3a:02:22:45:07:06:0f:18:45:d0:38:33:19:38: 1c:af:82:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M1MkQxMTAvBgNVBAUTKDFEM0E5QThGQzk3Q0ZDRDdBRTg0RkZEQzVBQTBCQkZC OTY5M0RDOTcwHhcNMjUwNjE0MjE0ODU1WhcNMjUwNjIxMjE0ODU1WjAYMRYwFAYD VQQDEw02ODRkZWU0Ny0xODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEbnoVYqs0Krcx+BAaEJFlC1F1ohnunDNZFx+NWhnW/ZQbA+NtxDir2qqnD0 z4cPEXrFqgGyNBhg8CTem3XhV4p8I3yWs6nTktAfwua8dG2g/gDgsgW2HfMp/I58 4MDGZ2RtnqcwccHWEcHD0zV9an5xtfa9VdtIq062HYljxILapuvNGAcNJrNxCnYq /IjwME7H/pFjVzoFCzpgr9Aup7IULKWVtZGsythXC+d6tjynrWrZrW8+sp0QcA7g 6vlxoynaCMxg/gxFJRYY2a848/XQDuC4w01EKWMSh7wSmJgEqg8RvMQkS62H5tyG GtgxIRegIPEcCgQueK+ScOw8OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6U9Bq3 0uErYi6n+yQ37nvykq86MB8GA1UdIwQYMBaAFB06mo/JfPzXroT/3Fqgu/uWk9yX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzUyRC84RkE5NzZCRTVC QjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9OZXVoUF9jV3FDNy01YVQz SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUcWFqOGw4X05ldWhQX2NXcUM3LTVhVDNKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzUyRC84RkE5NzZCRTVCQjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9O ZXVoUF9jV3FDNy01YVQzSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmey5gvWyYHW+iJAW9n0N/9xr4tIgOmTb/bU3S3DaXOJZc0J3Rzvth 5we+TCy9e49tqCqfhH5R1wa8LrQ7ncJvcURVh8qjs1cVK4k93vm+1KOeRCqWPSoo 8SR8vjESqp9oqMYVTcPRVU6lkYv4CdJvyspLxBbXKTkAKs09cfJA6dfwrAG3r73d Mnsz4fYMiGjZ+EUG+dy0AR7mEobdmBPBdKe8gYtNcu8DeWRSIPq+Dgd3wMvsPSb3 CFAeRsHCRsmgtdrSt/vvmf6el1x9YajaNq9lWBc5kn99/13Gbjmz+OnrdmpHvrGI WSuy/f+wOgIiRQcGDxhF0DgzGTgcr4KZ -----END CERTIFICATE-----Generated at Sun Jun 15 08:32:12 2025 by rpki-client