$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: 4CfiiaeimIomTzDRTc+RV7Fj9kIWnLZmJs0VL5Ch7v4= Subject key identifier: 1D:FD:8F:C4:39:4B:FC:F5:88:22:E9:58:43:BB:B1:8A:66:EA:AC:A9 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 0264 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 0261 Signing time: Sun 15 Jun 2025 01:28:57 +0000 Manifest this update: Sun 15 Jun 2025 01:28:57 +0000 Manifest next update: Sun 22 Jun 2025 01:28:57 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: iFKoiklR+7lZ1WbqD2G561LFjxo5Y5PE9ueSTFpTmsU=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 612 (0x264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Jun 15 01:28:57 2025 GMT Not After : Jun 22 01:28:57 2025 GMT Subject: CN=684e21d9-12f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:7d:b9:3b:67:86:18:2c:1c:d9:8b:e0:a2: 2c:f6:16:70:95:96:1c:00:39:27:f9:40:81:c5:7e: 7a:46:6b:fa:ab:2f:ba:36:e2:53:8a:1e:c8:9c:ad: 7a:ae:cf:1e:44:a1:37:fd:c8:6e:33:f0:8f:7b:36: 7b:67:0d:5f:ed:29:db:ee:6d:fd:d5:ff:9a:06:87: 13:d6:cf:01:79:5f:b8:33:fa:42:c6:fe:57:6e:38: 99:e8:9d:f8:5d:00:f7:e9:8f:69:5b:6e:2b:92:c7: 90:70:f3:43:29:bc:97:7a:6f:62:07:1b:e6:3d:5f: 8b:15:c7:2b:ec:ac:83:55:a7:35:d8:90:0a:ad:0e: 12:1b:00:83:87:81:87:87:d7:08:50:2b:07:36:bc: 1c:80:ff:b5:5f:0e:cd:fd:be:e1:a1:ea:98:95:46: 95:66:8f:96:16:bb:4a:f6:2a:57:e2:e2:bd:57:59: ec:f0:a7:40:a7:30:96:b0:3a:28:2f:14:a4:56:e8: 17:99:b2:48:1b:24:ea:1b:3f:87:d5:42:a6:ca:e3: d4:f9:a1:7a:04:53:09:25:05:08:45:81:03:6d:3a: 77:08:f0:87:24:03:61:ef:4f:a6:c2:3f:db:64:8c: a9:ac:88:d6:8b:86:ac:07:2f:83:a9:9f:03:22:02: 71:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FD:8F:C4:39:4B:FC:F5:88:22:E9:58:43:BB:B1:8A:66:EA:AC:A9 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b1:95:b4:76:50:56:41:35:f2:8d:4b:d4:eb:6b:c6:e2:a7: ae:90:d0:1b:2f:4d:f1:d1:8d:d0:15:de:b6:cc:34:da:73:0d: 79:c1:30:ca:7b:9c:d9:96:0d:5e:0e:32:66:03:d3:be:54:66: c7:06:6c:7c:47:87:5a:6e:a0:1f:7d:00:0c:df:bb:a6:30:eb: 5c:3e:0c:83:24:fd:a1:4c:fe:53:20:4d:a6:d0:58:35:08:bb: cd:5a:7c:1d:46:a7:6d:0c:b1:71:89:c3:64:42:ee:55:8f:f4: d1:29:aa:6c:c0:98:07:8c:7f:06:e5:1f:dd:49:df:d9:d2:1c: 6b:a9:2f:7d:1a:ff:0e:16:b5:51:9b:b6:26:ee:0b:ce:e3:40: 5f:cc:fd:ec:6b:a2:98:23:92:4a:a6:de:20:67:74:18:9a:20: 03:07:e4:32:7b:78:76:75:06:a3:63:64:9f:32:ff:ac:bc:f2: 1a:0f:8c:b3:fb:12:71:74:a9:f0:34:95:77:0e:30:c7:a5:be: 9c:c8:eb:a8:9a:04:74:5e:9f:20:23:01:1f:79:b4:22:d3:d8: 17:77:b9:f7:c3:db:b0:7f:c6:5d:3d:03:87:89:5f:49:61:bd: fa:c2:30:9b:81:d5:39:74:1a:89:71:cf:77:75:28:d5:b9:47: c1:37:9e:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUwNjE1MDEyODU3WhcNMjUwNjIyMDEyODU3WjAYMRYwFAYD VQQDEw02ODRlMjFkOS0xMmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSN9uTtnhhgsHNmL4KIs9hZwlZYcADkn+UCBxX56Rmv6qy+6NuJTih7InK16 rs8eRKE3/chuM/CPezZ7Zw1f7Snb7m391f+aBocT1s8BeV+4M/pCxv5XbjiZ6J34 XQD36Y9pW24rkseQcPNDKbyXem9iBxvmPV+LFccr7KyDVac12JAKrQ4SGwCDh4GH h9cIUCsHNrwcgP+1Xw7N/b7hoeqYlUaVZo+WFrtK9ipX4uK9V1ns8KdApzCWsDoo LxSkVugXmbJIGyTqGz+H1UKmyuPU+aF6BFMJJQUIRYEDbTp3CPCHJANh70+mwj/b ZIyprIjWi4asBy+DqZ8DIgJxGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB39j8Q5 S/z1iCLpWEO7sYpm6qypMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQsZW0dlBWQTXyjUvU62vG4qeukNAbL03x0Y3QFd62zDTacw15wTDK e5zZlg1eDjJmA9O+VGbHBmx8R4dabqAffQAM37umMOtcPgyDJP2hTP5TIE2m0Fg1 CLvNWnwdRqdtDLFxicNkQu5Vj/TRKapswJgHjH8G5R/dSd/Z0hxrqS99Gv8OFrVR m7Ym7gvO40BfzP3sa6KYI5JKpt4gZ3QYmiADB+Qye3h2dQajY2SfMv+svPIaD4yz +xJxdKnwNJV3DjDHpb6cyOuomgR0Xp8gIwEfebQi09gXd7n3w9uwf8ZdPQOHiV9J Yb36wjCbgdU5dBqJcc93dSjVuUfBN54e -----END CERTIFICATE-----Generated at Sun Jun 15 08:06:06 2025 by rpki-client