$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: seXuBH16tI4UbRes11ayD0uWqiBczr3gRaFpIo1YLN8= Subject key identifier: C6:6F:85:C1:85:92:13:36:B3:E8:D1:2C:A7:C5:CC:6E:0E:89:17:CE Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0AF2 Signing time: Mon 16 Jun 2025 19:21:52 +0000 Manifest this update: Mon 16 Jun 2025 19:21:52 +0000 Manifest next update: Mon 23 Jun 2025 19:21:52 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: iPpuQFT28mWSMgB3U1rueYAfIawwLERPSfTYAh6ZuBE=) 2: 0798B4E4B7BE11EF81216809C4F9AE02.roa (hash: yHzzqKEId0dEJDTaFOBliIlS1ljG1H4a+7/pxmaJtKg=) 3: 33E27678B25C11EF8946BE4FC4F9AE02.roa (hash: +fDUFmlUHsQP24i5ggEqmXh3ISn4s3EPo0pOThu4m/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 19:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Jun 16 19:21:52 2025 GMT Not After : Jun 23 19:21:52 2025 GMT Subject: CN=68506ed0-aa6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:51:94:47:d1:5c:05:2a:1b:6b:eb:ce:03:7a: ed:08:84:e5:65:37:70:1a:fc:2a:25:e4:3e:a1:0b: ec:09:72:d3:ea:14:22:4f:6f:81:de:bc:1b:9c:b5: 5c:97:06:bc:02:be:f1:68:0c:33:e3:52:83:e8:7e: ab:82:8e:4d:5a:6f:4a:fb:16:be:ac:d0:e7:2e:f7: 02:a4:4c:25:5e:a7:e1:0f:99:5c:55:15:df:06:9b: b4:e0:27:45:11:6b:6f:e7:d8:c3:91:0e:35:4c:eb: 65:ac:70:55:74:d4:76:19:78:aa:6c:aa:18:c3:38: 57:65:bf:f9:4d:be:88:59:af:b8:72:52:7e:a5:c2: 29:03:08:ff:1c:b1:46:b3:3f:5c:49:96:bb:56:7d: 0b:b6:be:3e:d6:2e:f6:8e:50:3b:5c:e7:7a:fa:c8: 64:bb:3f:94:fa:99:a6:24:3b:c1:bc:38:45:73:48: 1c:90:94:b8:ed:f2:87:10:dc:4f:d4:5b:dd:df:5a: ee:88:53:ce:13:f6:e9:bc:89:90:47:21:71:01:80: 22:4d:d4:3c:8f:5a:58:8a:f0:7e:8b:9f:35:37:ae: d8:8c:59:25:da:96:cc:bf:26:a3:45:28:6b:20:36: 5e:a6:10:0a:06:a0:ce:42:16:2b:8e:5e:d4:ac:b5: 58:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6F:85:C1:85:92:13:36:B3:E8:D1:2C:A7:C5:CC:6E:0E:89:17:CE X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:c5:a8:28:2e:98:dc:6a:35:1b:cc:aa:34:e5:d2:27:51:c2: 88:a1:f3:6b:ae:81:cd:80:35:29:7e:07:88:7c:a7:99:6d:05: 01:06:8e:4b:d1:71:f0:72:0c:59:cc:86:e5:0a:88:38:b8:1c: 26:91:a5:02:11:4c:67:52:aa:a1:09:24:57:d1:10:56:81:66: 91:bd:2a:b8:dc:eb:b8:3b:f4:31:46:c0:4a:1d:8b:fc:f2:a3: aa:27:9b:15:8d:69:05:0f:ba:aa:6d:ad:0b:2b:04:55:c6:da: ed:38:04:f2:5e:98:fc:57:d9:11:4c:dc:0d:8f:f7:a4:34:28: c8:e1:73:2d:03:bd:ad:ce:b8:53:de:6a:15:28:98:56:a0:9d: ad:62:3a:47:0d:df:b6:74:9e:35:65:5a:72:71:9a:0e:57:8c: 08:6d:11:6f:74:84:56:5f:45:54:c8:d4:7e:26:d7:e0:ed:9f: 60:11:ae:7a:25:ed:38:57:32:0b:d9:cb:a7:f9:f7:d1:56:84: c4:c7:f7:25:1e:fd:a1:92:c9:df:f3:ea:e4:bb:e9:51:6b:fa: f3:25:04:4f:cb:f7:57:8f:6f:bc:f2:6e:c5:9e:d7:e6:57:dd: 0f:54:9f:77:62:f1:94:d1:00:8d:3d:9d:c5:39:c4:52:1c:95: f3:3e:48:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUwNjE2MTkyMTUyWhcNMjUwNjIzMTkyMTUyWjAYMRYwFAYD VQQDEw02ODUwNmVkMC1hYTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FGUR9FcBSoba+vOA3rtCITlZTdwGvwqJeQ+oQvsCXLT6hQiT2+B3rwbnLVc lwa8Ar7xaAwz41KD6H6rgo5NWm9K+xa+rNDnLvcCpEwlXqfhD5lcVRXfBpu04CdF EWtv59jDkQ41TOtlrHBVdNR2GXiqbKoYwzhXZb/5Tb6IWa+4clJ+pcIpAwj/HLFG sz9cSZa7Vn0Ltr4+1i72jlA7XOd6+shkuz+U+pmmJDvBvDhFc0gckJS47fKHENxP 1Fvd31ruiFPOE/bpvImQRyFxAYAiTdQ8j1pYivB+i581N67YjFkl2pbMvyajRShr IDZephAKBqDOQhYrjl7UrLVYmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZvhcGF khM2s+jRLKfFzG4OiRfOMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4xagoLpjcajUbzKo05dInUcKIofNrroHNgDUpfgeIfKeZbQUBBo5L 0XHwcgxZzIblCog4uBwmkaUCEUxnUqqhCSRX0RBWgWaRvSq43Ou4O/QxRsBKHYv8 8qOqJ5sVjWkFD7qqba0LKwRVxtrtOATyXpj8V9kRTNwNj/ekNCjI4XMtA72tzrhT 3moVKJhWoJ2tYjpHDd+2dJ41ZVpycZoOV4wIbRFvdIRWX0VUyNR+Jtfg7Z9gEa56 Je04VzIL2cun+ffRVoTEx/clHv2hksnf8+rku+lRa/rzJQRPy/dXj2+88m7Fntfm V90PVJ93YvGU0QCNPZ3FOcRSHJXzPkhI -----END CERTIFICATE-----Generated at Tue Jun 17 09:22:37 2025 by rpki-client