$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: 1TqOR7r42qCalRyLxcLb+lhsACiH5Uj+t4MktAE2Aqw= Subject key identifier: 58:4F:D4:27:B6:C5:EF:30:4B:5D:25:90:15:DF:FD:27:BD:49:76:5D Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 0248 Signing time: Fri 25 Apr 2025 01:38:18 +0000 Manifest this update: Fri 25 Apr 2025 01:38:18 +0000 Manifest next update: Fri 02 May 2025 01:38:18 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: orY6ooJ1XRGfdEOeYbR76xFc8s0uBdBqkg8WppmwsZY=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Apr 25 01:38:18 2025 GMT Not After : May 2 01:38:18 2025 GMT Subject: CN=680ae78a-d97b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fe:49:af:8c:0f:ed:8a:9f:21:73:13:64:21: 2f:a7:c6:e4:df:0f:fb:12:ca:76:c5:44:18:6d:45: 36:c4:fb:5c:ef:99:02:f5:8c:5e:3c:62:c1:83:8e: d1:51:6a:88:0f:c4:24:1d:3a:72:1f:01:a9:f2:23: a0:a3:b9:b3:53:1b:85:7f:61:3c:de:94:0c:10:f7: ef:ba:5a:bc:f1:b7:25:0b:ff:ca:5c:9f:c9:2b:fc: 94:6e:be:55:fc:6a:3d:d2:59:57:ff:8b:80:88:75: 0d:66:bd:8f:55:c6:ab:1f:a0:cf:d6:f2:fa:d3:96: e1:20:c1:59:41:3a:47:e8:36:24:69:33:a4:db:ed: d8:8b:af:97:76:c6:98:03:29:09:ff:ea:0f:47:24: 4b:30:79:83:cd:a4:03:35:69:03:20:99:3b:d9:cf: 00:b6:70:7c:24:70:44:c0:8c:4e:38:75:18:8e:63: d0:7e:e3:20:3e:94:65:34:de:25:c2:12:9e:4a:51: 0a:fa:44:89:2b:8e:52:a2:cb:de:99:51:2b:27:17: 99:71:dc:59:fb:44:ef:51:cd:ee:36:af:06:bc:c7: 0c:8a:fa:e5:03:ed:cd:74:b1:84:02:80:00:37:93: e2:6b:7e:56:86:f5:9c:f4:ef:3a:7f:11:90:c2:52: 06:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:4F:D4:27:B6:C5:EF:30:4B:5D:25:90:15:DF:FD:27:BD:49:76:5D X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:33:97:86:cd:2d:07:3b:b3:f0:c5:cc:fc:10:0d:16:54:49: d2:6a:2a:5e:11:b5:ef:c0:51:8c:10:aa:56:89:08:2f:dd:83: 86:eb:9b:e2:93:81:bc:28:50:5b:85:ac:27:05:6e:68:4e:15: 87:32:59:f6:be:53:d0:76:a2:71:b7:2b:55:07:b6:8d:cc:26: 7c:0f:00:aa:84:03:03:3c:df:b0:3f:e5:c8:92:f3:be:f7:e6: 58:ff:33:a4:5e:65:27:98:28:d4:b6:27:31:b6:ef:34:fd:39: fa:e9:ff:89:bd:a4:f4:b6:15:b6:6c:44:e0:4d:5e:42:26:95: 8b:e3:16:6b:fd:98:8d:46:f9:dc:00:2d:d6:3b:5d:6f:3f:76: 2b:64:01:51:87:f2:90:01:c8:99:1d:7b:b4:52:0a:f8:b0:7e: cb:54:ca:41:11:e5:22:e6:74:b4:0d:d6:2c:45:1f:62:75:90: 2d:f8:d9:14:1a:5e:58:24:da:08:ed:e1:e0:27:5a:f9:2b:0d: 5a:16:29:a5:c6:e9:1b:15:05:7a:0e:10:3d:11:a0:c7:a2:57: b3:88:4d:6a:92:14:af:ee:4a:fe:5e:05:0d:b2:78:0e:6a:5a: 65:3f:90:d2:30:d1:65:29:9e:3c:e0:98:d8:81:06:f6:2e:9a: 32:5c:77:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUwNDI1MDEzODE4WhcNMjUwNTAyMDEzODE4WjAYMRYwFAYD VQQDEw02ODBhZTc4YS1kOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyf5Jr4wP7YqfIXMTZCEvp8bk3w/7Esp2xUQYbUU2xPtc75kC9YxePGLBg47R UWqID8QkHTpyHwGp8iOgo7mzUxuFf2E83pQMEPfvulq88bclC//KXJ/JK/yUbr5V /Go90llX/4uAiHUNZr2PVcarH6DP1vL605bhIMFZQTpH6DYkaTOk2+3Yi6+XdsaY AykJ/+oPRyRLMHmDzaQDNWkDIJk72c8AtnB8JHBEwIxOOHUYjmPQfuMgPpRlNN4l whKeSlEK+kSJK45SosvemVErJxeZcdxZ+0TvUc3uNq8GvMcMivrlA+3NdLGEAoAA N5Pia35WhvWc9O86fxGQwlIGPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhP1Ce2 xe8wS10lkBXf/Se9SXZdMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwM5eGzS0HO7Pwxcz8EA0WVEnSaipeEbXvwFGMEKpWiQgv3YOG65vi k4G8KFBbhawnBW5oThWHMln2vlPQdqJxtytVB7aNzCZ8DwCqhAMDPN+wP+XIkvO+ 9+ZY/zOkXmUnmCjUticxtu80/Tn66f+JvaT0thW2bETgTV5CJpWL4xZr/ZiNRvnc AC3WO11vP3YrZAFRh/KQAciZHXu0Ugr4sH7LVMpBEeUi5nS0DdYsRR9idZAt+NkU Gl5YJNoI7eHgJ1r5Kw1aFimlxukbFQV6DhA9EaDHoleziE1qkhSv7kr+XgUNsngO alplP5DSMNFlKZ484JjYgQb2LpoyXHfz -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:00 2025 by rpki-client