$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft File: HA69woHQL52iTsEXS6nPGEWbk-A.mft (raw, json) Hash identifier: 6/0NjxANhdz2redq+j+0c3a8R5dp8752P8jj3g/to8I= Subject key identifier: 56:BE:82:85:55:78:98:0D:E0:98:E5:15:63:C7:0F:3D:51:6B:8C:0B Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 Certificate issuer: /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Certificate serial: 039C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft Manifest number: 0398 Signing time: Fri 25 Apr 2025 00:32:33 +0000 Manifest this update: Fri 25 Apr 2025 00:32:33 +0000 Manifest next update: Fri 02 May 2025 00:32:33 +0000 Files and hashes: 1: HA69woHQL52iTsEXS6nPGEWbk-A.crl (hash: cZt1QnOzV4IGGHqx+/g5dDKpEOW+mXHDiuPIw1OuLac=) 2: ED816DEC95DA11EC993BD050C4F9AE02.roa (hash: H2GtJ0iPg0F8hSUg65wTV+ujzqji+9qmbwmD4ETHfZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179D1F, serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Validity Not Before: Apr 25 00:32:33 2025 GMT Not After : May 2 00:32:33 2025 GMT Subject: CN=680ad821-932a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:44:7a:3d:b3:74:9d:e4:76:1d:9f:61:6b:0c: 19:13:b7:23:69:22:a1:00:05:e8:74:b5:61:94:eb: de:d4:75:4e:38:be:63:9d:96:c8:f8:15:b0:50:3f: c3:7e:55:ad:58:08:d1:bf:d0:f9:0d:d3:37:76:cc: 27:b9:7b:a7:3d:97:a1:c0:2b:72:0b:79:45:c9:07: 0d:2b:94:78:50:2d:cb:84:8c:1e:9e:37:43:a0:ee: d9:b0:c1:f9:98:f6:4d:46:15:ba:57:1b:41:a8:d6: 97:f8:3a:13:a1:d9:3e:1c:33:81:7c:fa:0a:3e:f7: d8:81:f9:24:e5:a2:d0:69:14:f2:d5:fe:78:a0:2e: 4f:63:82:7d:68:00:bd:79:de:67:9e:75:de:58:5b: d1:f2:fd:22:02:1c:48:69:ac:17:01:8f:13:f5:f6: 37:27:9e:80:84:12:6e:de:be:de:e2:fa:d6:0a:b2: 01:e7:b9:75:dc:de:38:16:bc:96:e0:40:65:5b:4e: eb:1d:8a:fc:be:bd:d5:07:9d:b1:34:ce:b2:06:05: 05:0a:1c:dd:1c:f8:07:06:2c:0e:f4:74:e3:98:8b: b0:c2:e8:01:3d:40:e8:41:68:8d:5e:d4:78:ab:cc: 67:07:8d:e1:a3:10:64:03:2a:4a:06:89:d2:56:81: 13:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BE:82:85:55:78:98:0D:E0:98:E5:15:63:C7:0F:3D:51:6B:8C:0B X509v3 Authority Key Identifier: keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:d3:10:14:83:ff:d4:49:53:5b:69:3a:70:87:da:51:5c:26: e8:6c:c4:a1:ad:a8:a8:be:20:28:f9:85:02:d2:ca:6d:02:05: 3e:06:d1:36:e6:a5:07:84:88:c1:fb:10:a1:5a:33:ef:03:87: 2d:a2:28:c2:93:7f:30:5d:b8:07:19:67:b4:64:9d:3d:eb:1d: 34:55:86:60:51:83:e9:52:6c:94:6b:5b:a5:05:73:76:61:b6: 15:4d:c5:9e:a6:4b:fa:a9:25:48:a8:bc:fd:6d:88:51:87:27: 17:da:70:75:63:de:f9:69:c5:72:59:c0:17:ed:f0:39:65:99: 5b:5b:65:52:0d:93:d3:5d:1d:89:e2:e1:6b:05:f8:f0:d3:e2: ab:d9:23:e6:75:19:4f:40:18:62:00:89:cd:b2:53:98:7c:6c: d7:33:4f:ea:b8:22:66:8c:06:0d:53:20:ac:8f:9e:c6:6e:ca: 3f:10:a4:90:65:20:ef:94:2a:16:39:02:27:a5:0b:19:bb:20: 49:ca:18:7f:a9:75:b3:a1:74:9d:51:0f:dc:26:7b:b5:cd:11: b7:74:b4:5b:b2:d2:ff:47:66:61:33:6b:e3:46:96:7e:06:2f: 5a:93:f9:ac:9c:98:fc:19:5c:a5:a8:3f:10:b8:9d:0f:aa:cf: 87:0f:ad:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlEMUYxMTAvBgNVBAUTKDFDMEVCREMyODFEMDJGOURBMjRFQzExNzRCQTlDRjE4 NDU5QjkzRTAwHhcNMjUwNDI1MDAzMjMzWhcNMjUwNTAyMDAzMjMzWjAYMRYwFAYD VQQDEw02ODBhZDgyMS05MzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0R6PbN0neR2HZ9hawwZE7cjaSKhAAXodLVhlOve1HVOOL5jnZbI+BWwUD/D flWtWAjRv9D5DdM3dswnuXunPZehwCtyC3lFyQcNK5R4UC3LhIwenjdDoO7ZsMH5 mPZNRhW6VxtBqNaX+DoTodk+HDOBfPoKPvfYgfkk5aLQaRTy1f54oC5PY4J9aAC9 ed5nnnXeWFvR8v0iAhxIaawXAY8T9fY3J56AhBJu3r7e4vrWCrIB57l13N44FryW 4EBlW07rHYr8vr3VB52xNM6yBgUFChzdHPgHBiwO9HTjmIuwwugBPUDoQWiNXtR4 q8xnB43hoxBkAypKBonSVoETGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFa+goVV eJgN4JjlFWPHDz1Ra4wLMB8GA1UdIwQYMBaAFBwOvcKB0C+dok7BF0upzxhFm5Pg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUQxRi9EOTgyQ0I1RTk1 RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1MmlUc0VYUzZuUEdFV2Jr LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBNjl3b0hRTDUyaVRzRVhTNm5QR0VXYmstQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUQxRi9EOTgyQ0I1RTk1RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1 MmlUc0VYUzZuUEdFV2JrLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx0xAUg//USVNbaTpwh9pRXCbobMShraioviAo+YUC0sptAgU+BtE2 5qUHhIjB+xChWjPvA4ctoijCk38wXbgHGWe0ZJ096x00VYZgUYPpUmyUa1ulBXN2 YbYVTcWepkv6qSVIqLz9bYhRhycX2nB1Y975acVyWcAX7fA5ZZlbW2VSDZPTXR2J 4uFrBfjw0+Kr2SPmdRlPQBhiAInNslOYfGzXM0/quCJmjAYNUyCsj57Gbso/EKSQ ZSDvlCoWOQInpQsZuyBJyhh/qXWzoXSdUQ/cJnu1zRG3dLRbstL/R2ZhM2vjRpZ+ Bi9ak/msnJj8GVylqD8QuJ0Pqs+HD63A -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:16 2025 by rpki-client