$ rpki-client -vvf rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft File: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft (raw, json) Hash identifier: hfNvhTK5dmIpQCJesmvS3xy8Qy7un3ya+7FMdbVnAVw= Subject key identifier: 03:00:8E:7E:1E:A5:A8:DB:DB:2E:56:56:7D:CC:C5:C0:3C:52:68:23 Authority key identifier: 1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 Certificate issuer: /CN=A913C52D/serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Certificate serial: 06AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft Manifest number: 06AA Signing time: Thu 24 Apr 2025 21:56:55 +0000 Manifest this update: Thu 24 Apr 2025 21:56:54 +0000 Manifest next update: Thu 01 May 2025 21:56:54 +0000 Files and hashes: 1: HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl (hash: 5mVJ6C/wKAv9D6hhIsguSVr5F/JIFx6IQ4CltZgFVPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1706 (0x6aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C52D, serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Validity Not Before: Apr 24 21:56:54 2025 GMT Not After : May 1 21:56:54 2025 GMT Subject: CN=680ab3a6-9897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:29:2c:87:ee:75:68:1b:4a:f1:37:e9:69:3c: b4:32:15:5f:9d:69:31:ec:52:76:1c:14:d2:31:25: bb:10:9b:07:3d:50:65:e3:ea:25:04:22:9b:fc:ad: 4f:79:45:4f:b8:eb:94:dd:86:0d:b4:9e:d5:3b:bb: b1:3a:da:cb:36:bf:06:38:25:c7:d1:49:bd:bc:07: ab:fa:99:bf:de:40:aa:fd:87:33:e9:91:25:4e:59: ff:84:35:01:1f:f7:9b:d9:80:cf:41:1e:86:5a:00: 25:29:5b:33:6c:41:df:eb:46:a7:6f:8f:b7:ea:c7: 03:23:40:df:ff:eb:19:46:85:fe:cf:ba:9e:74:34: 1f:74:3b:73:6c:91:a9:7e:10:5c:94:85:e0:1a:e5: 7c:fa:4e:05:82:73:93:82:3e:2b:8b:11:3a:7c:88: bb:80:cc:0d:9f:ac:4e:01:fd:9d:40:1c:c7:2e:9f: 54:21:33:b0:21:55:36:24:c5:df:f4:45:2a:4d:0e: 26:cd:02:65:7a:6e:4b:2b:74:b1:e3:4a:f0:94:bf: 91:36:2e:7b:5d:ae:d4:b3:8e:49:d1:05:71:c4:4d: 7e:9a:49:d7:eb:29:b5:e8:41:de:2e:31:48:36:1b: 49:ac:99:27:32:1c:6e:9a:ec:f6:9f:d8:3d:f9:1d: 7b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:00:8E:7E:1E:A5:A8:DB:DB:2E:56:56:7D:CC:C5:C0:3C:52:68:23 X509v3 Authority Key Identifier: keyid:1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:8b:bf:86:01:1d:fc:04:47:c4:e7:6b:19:b7:fe:69:ce:04: ea:98:1a:57:45:89:58:40:1f:d7:d1:45:3a:43:4e:10:ed:01: 98:30:5a:f1:9e:d2:69:a8:05:5a:57:7c:a5:c7:8b:a2:4a:ee: 62:95:fc:5b:b0:93:46:3f:2b:6a:20:e7:45:68:45:f8:e3:da: b4:49:43:09:0e:a9:cc:f4:b6:79:d0:22:3c:ef:54:a9:68:16: cd:f8:6b:81:53:91:c4:d8:f6:15:fd:13:ba:41:ba:90:05:75: 72:60:a9:99:98:09:77:11:7d:8f:66:03:58:15:8f:d5:d8:51: 45:1b:81:81:82:d6:e8:1b:3e:74:f3:82:58:3d:2a:a3:04:f5: 2c:88:a0:80:ff:1e:d3:24:81:bb:a8:7d:83:4b:71:94:10:4a: b2:bf:6c:8e:38:b4:dc:4c:1f:e4:c9:c5:3d:41:f2:9d:d1:1c: 0c:6a:54:d7:04:e6:dd:84:4b:6d:6f:8a:6d:30:a9:90:ba:cb: 1c:25:67:56:64:dc:99:bd:31:44:0a:02:de:6e:45:b9:0d:37: a7:cc:c5:1a:2c:de:79:9b:5e:bc:cf:34:ac:46:55:17:0b:0f: c2:1f:43:62:85:b9:6e:6e:b4:64:2c:e0:e1:79:f7:1b:22:ce: c0:70:b0:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M1MkQxMTAvBgNVBAUTKDFEM0E5QThGQzk3Q0ZDRDdBRTg0RkZEQzVBQTBCQkZC OTY5M0RDOTcwHhcNMjUwNDI0MjE1NjU0WhcNMjUwNTAxMjE1NjU0WjAYMRYwFAYD VQQDEw02ODBhYjNhNi05ODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iksh+51aBtK8TfpaTy0MhVfnWkx7FJ2HBTSMSW7EJsHPVBl4+olBCKb/K1P eUVPuOuU3YYNtJ7VO7uxOtrLNr8GOCXH0Um9vAer+pm/3kCq/Ycz6ZElTln/hDUB H/eb2YDPQR6GWgAlKVszbEHf60anb4+36scDI0Df/+sZRoX+z7qedDQfdDtzbJGp fhBclIXgGuV8+k4FgnOTgj4rixE6fIi7gMwNn6xOAf2dQBzHLp9UITOwIVU2JMXf 9EUqTQ4mzQJlem5LK3Sx40rwlL+RNi57Xa7Us45J0QVxxE1+mknX6ym16EHeLjFI NhtJrJknMhxumuz2n9g9+R179QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMAjn4e pajb2y5WVn3MxcA8UmgjMB8GA1UdIwQYMBaAFB06mo/JfPzXroT/3Fqgu/uWk9yX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzUyRC84RkE5NzZCRTVC QjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9OZXVoUF9jV3FDNy01YVQz SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUcWFqOGw4X05ldWhQX2NXcUM3LTVhVDNKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzUyRC84RkE5NzZCRTVCQjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9O ZXVoUF9jV3FDNy01YVQzSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVi7+GAR38BEfE52sZt/5pzgTqmBpXRYlYQB/X0UU6Q04Q7QGYMFrx ntJpqAVaV3ylx4uiSu5ilfxbsJNGPytqIOdFaEX449q0SUMJDqnM9LZ50CI871Sp aBbN+GuBU5HE2PYV/RO6QbqQBXVyYKmZmAl3EX2PZgNYFY/V2FFFG4GBgtboGz50 84JYPSqjBPUsiKCA/x7TJIG7qH2DS3GUEEqyv2yOOLTcTB/kycU9QfKd0RwMalTX BObdhEttb4ptMKmQusscJWdWZNyZvTFECgLebkW5DTenzMUaLN55m168zzSsRlUX Cw/CH0NihblubrRkLODhefcbIs7AcLA5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:15 2025 by rpki-client