$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: 56UAtU6umVSZZCqwOTduG+OW6X4FnTlv2af2Qb8QZpM= Subject key identifier: B2:51:87:48:B0:A9:7D:2F:B3:29:33:C4:9D:16:A9:6E:5D:EF:EE:01 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0AFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0AD6 Signing time: Thu 24 Apr 2025 19:26:20 +0000 Manifest this update: Thu 24 Apr 2025 19:26:19 +0000 Manifest next update: Thu 01 May 2025 19:26:19 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: 5cQwk2aPy3z+6tjHEnifh3+lY0DIK5jx++C3hkNNY4g=) 2: 0798B4E4B7BE11EF81216809C4F9AE02.roa (hash: KHSXWBZmz8LdWRiwOy7XOGBbtsx76HJLZ60RGtbONSY=) 3: 33E27678B25C11EF8946BE4FC4F9AE02.roa (hash: whsP0rGTkG8RSV2Qy8jBlFrFbh7vJj6CFR5fP6gvCmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2815 (0xaff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Apr 24 19:26:19 2025 GMT Not After : May 1 19:26:19 2025 GMT Subject: CN=680a905b-6636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0e:19:b5:d8:95:1c:0f:76:5d:a1:8d:02:01: 54:75:70:e6:50:8b:de:95:b5:59:88:01:fa:94:9d: 6f:45:c9:b3:d8:e0:54:30:91:09:56:8d:9b:9a:dc: 00:eb:25:9f:65:c5:52:29:33:40:35:d0:61:dc:c2: af:7d:37:f1:34:66:19:e2:9c:4c:e8:a3:d8:fe:38: 87:81:0a:7e:de:e2:31:08:76:04:ea:c9:a5:d3:cc: 7f:17:c6:43:52:22:3a:da:17:00:d1:31:8e:b9:1a: 14:05:e3:51:22:0c:73:bf:c0:89:4c:cd:88:61:60: a4:12:70:f2:3d:4f:9f:86:5a:1a:ad:a1:58:d3:14: b7:a1:e0:89:f6:51:65:2e:25:a9:d5:95:90:f2:8b: 07:a5:a1:b9:17:01:f3:ed:81:fe:9e:d4:f1:48:7c: 7e:ae:66:d4:c3:c1:e2:c2:1a:23:d3:f8:e2:3a:18: d1:af:60:c3:6d:12:31:0c:1e:ca:7c:ca:b3:ae:c5: d3:fb:d7:9b:70:7a:c6:64:95:34:aa:45:bd:9b:06: f0:3f:91:51:d3:21:9d:a7:7c:c2:30:bd:7c:6f:22: 46:d8:1d:c6:ea:de:7e:95:1e:7b:f2:69:a8:ca:37: 08:58:bd:dd:69:e3:c1:04:34:09:a7:f2:c4:34:fb: ca:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:51:87:48:B0:A9:7D:2F:B3:29:33:C4:9D:16:A9:6E:5D:EF:EE:01 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:11:66:e4:5a:3a:6f:eb:18:71:82:a0:65:e9:1f:62:b0:8e: f1:28:d5:26:b5:5f:e6:b5:bd:f6:f1:01:95:32:27:46:36:50: c1:c0:29:3d:6b:01:05:fc:ec:04:8c:d6:a7:a9:4d:b5:6c:c9: 77:9a:aa:3e:f7:01:77:91:4c:d6:aa:c7:64:1e:a2:41:94:0f: ad:00:41:22:5f:e2:f6:8b:fd:be:83:30:9f:f4:dc:4b:67:50: 95:79:6f:45:9a:fa:e3:e8:db:ce:a3:d5:32:18:4e:12:6c:81: 77:30:89:43:ab:c8:be:f3:44:d6:2e:f6:51:b1:14:93:ab:99: c2:be:cb:c3:82:ee:67:97:8e:b7:b5:a8:61:1c:97:29:ac:71: 9e:12:56:dd:43:06:f6:58:88:be:96:28:3d:c9:71:0f:a6:7d: fd:71:8c:05:8f:18:f4:3e:60:44:f4:21:58:c7:b3:80:2a:99: 80:e8:db:0c:a1:bb:41:bb:9f:5c:26:52:ea:63:f1:14:1e:c6: 9f:a5:da:56:78:26:8b:4e:be:6c:c7:81:15:5c:b5:80:79:ab: 4b:08:97:bd:d6:25:9d:bb:14:a7:4c:5b:6d:9b:f1:0c:0f:87: 4a:ae:f3:41:5c:94:7e:1d:8a:6b:7b:eb:00:23:b0:b7:85:dc: 0b:40:8b:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUwNDI0MTkyNjE5WhcNMjUwNTAxMTkyNjE5WjAYMRYwFAYD VQQDEw02ODBhOTA1Yi02NjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzg4ZtdiVHA92XaGNAgFUdXDmUIvelbVZiAH6lJ1vRcmz2OBUMJEJVo2bmtwA 6yWfZcVSKTNANdBh3MKvfTfxNGYZ4pxM6KPY/jiHgQp+3uIxCHYE6sml08x/F8ZD UiI62hcA0TGOuRoUBeNRIgxzv8CJTM2IYWCkEnDyPU+fhloaraFY0xS3oeCJ9lFl LiWp1ZWQ8osHpaG5FwHz7YH+ntTxSHx+rmbUw8Hiwhoj0/jiOhjRr2DDbRIxDB7K fMqzrsXT+9ebcHrGZJU0qkW9mwbwP5FR0yGdp3zCML18byJG2B3G6t5+lR578mmo yjcIWL3daePBBDQJp/LENPvKHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJRh0iw qX0vsykzxJ0WqW5d7+4BMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeEWbkWjpv6xhxgqBl6R9isI7xKNUmtV/mtb328QGVMidGNlDBwCk9 awEF/OwEjNanqU21bMl3mqo+9wF3kUzWqsdkHqJBlA+tAEEiX+L2i/2+gzCf9NxL Z1CVeW9Fmvrj6NvOo9UyGE4SbIF3MIlDq8i+80TWLvZRsRSTq5nCvsvDgu5nl463 tahhHJcprHGeElbdQwb2WIi+lig9yXEPpn39cYwFjxj0PmBE9CFYx7OAKpmA6NsM obtBu59cJlLqY/EUHsafpdpWeCaLTr5sx4EVXLWAeatLCJe91iWduxSnTFttm/EM D4dKrvNBXJR+HYpre+sAI7C3hdwLQIuU -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:54 2025 by rpki-client