$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: tirjSOPgjB5/F7oG1CtLgwYGwp8v2b0Si0CFbUmZUOg= Subject key identifier: E4:EA:2A:92:EC:9F:33:D3:C4:F9:0D:4A:F7:D8:72:69:20:84:C6:3E Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 02D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 02D6 Signing time: Tue 17 Jun 2025 00:56:14 +0000 Manifest this update: Tue 17 Jun 2025 00:56:14 +0000 Manifest next update: Tue 24 Jun 2025 00:56:14 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: 7gs6xm9OcFwDy75hDvaz63mnWb4oAm8ZEf25ahinECc=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: LJB886NUTljPvfWlokxnMW+kRUtkV7Ec61N0MHSXzHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 00:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Jun 17 00:56:14 2025 GMT Not After : Jun 24 00:56:14 2025 GMT Subject: CN=6850bd2e-9e5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3f:cf:a5:ad:db:e7:56:25:17:ea:fa:1b:fb: c9:ce:77:47:8e:fd:a5:be:b2:d2:db:58:1a:55:c6: 33:72:3b:b1:e8:f6:e2:12:8d:1e:33:19:02:97:fe: ec:ba:19:c6:9f:f5:32:5e:8f:ac:34:4b:c0:3d:f4: e7:8b:62:b2:33:96:ed:50:30:bd:f1:cd:db:3e:8e: f1:09:3e:43:22:7e:ba:49:06:73:0f:77:30:c6:4b: 26:e5:97:0c:ee:28:00:93:11:dd:ff:ae:77:8c:ff: b9:af:86:51:10:e9:f9:4b:30:a5:bd:2b:32:eb:84: 15:f8:3d:ea:8a:12:4b:00:60:f1:94:73:2a:6a:ef: d1:d6:d3:d1:47:76:b1:ab:83:e5:50:e2:76:cd:8b: b4:99:e1:a2:6c:6c:fc:d6:7f:3a:a7:6c:dc:1a:ac: 9d:db:fc:30:19:b3:b5:27:de:78:1c:10:aa:2e:a8: 6d:98:4d:57:5b:c6:8f:6e:ea:9f:5f:54:fb:6f:a3: 2e:40:52:a3:43:5a:75:f5:73:2b:15:ac:e1:d2:f6: 8f:ac:42:cc:fb:44:4c:2c:e4:d3:c0:d7:26:fd:b8: 4a:7d:51:1c:25:99:ae:ce:77:a5:82:4d:7c:bc:e2: 29:8f:9c:1c:79:5d:c4:e2:85:76:6e:70:68:d3:48: f4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:EA:2A:92:EC:9F:33:D3:C4:F9:0D:4A:F7:D8:72:69:20:84:C6:3E X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:df:1d:f0:6a:ce:9f:85:26:9e:ae:31:83:42:f4:ef:57:c5: 1a:85:ef:c8:05:e3:a9:90:f0:65:41:d1:e7:7e:d1:5e:e6:56: 3b:6a:54:d6:71:c5:c7:63:e2:94:94:ca:4a:46:71:b9:3f:c8: 59:41:c7:79:41:63:77:06:f8:60:23:55:e0:b1:80:84:3e:64: b1:43:12:b7:e2:54:36:e7:4e:2b:92:b0:d3:9a:5a:94:59:ba: 80:22:0a:bc:08:75:78:99:91:07:3d:b5:98:4b:ae:ce:c3:26: c9:6e:20:60:47:e6:1f:ee:24:e7:64:9c:9b:4b:05:be:b5:13: c2:a5:6f:f7:7f:72:94:07:dd:22:71:94:5c:a5:e8:4e:1c:c6: 8e:3d:43:0c:45:8d:ee:ee:61:2d:5d:36:1c:94:ee:6a:25:cc: d8:72:9b:29:2d:da:64:87:11:bf:f1:56:9c:b3:9a:4a:bd:55: eb:9e:c3:4b:44:35:4c:0e:c2:04:18:ed:0d:21:ef:38:c2:66: 6f:8f:51:b0:46:53:33:45:5c:76:1f:0f:7c:ef:69:10:31:80: cd:8c:a4:10:e2:64:f3:51:f4:b3:27:dc:32:54:5a:c3:16:cb: 23:e9:6f:9d:89:58:3a:9e:b7:b8:bd:ce:40:03:03:b8:e5:8b: 44:80:17:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUwNjE3MDA1NjE0WhcNMjUwNjI0MDA1NjE0WjAYMRYwFAYD VQQDEw02ODUwYmQyZS05ZTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj/Ppa3b51YlF+r6G/vJzndHjv2lvrLS21gaVcYzcjux6PbiEo0eMxkCl/7s uhnGn/UyXo+sNEvAPfTni2KyM5btUDC98c3bPo7xCT5DIn66SQZzD3cwxksm5ZcM 7igAkxHd/653jP+5r4ZREOn5SzClvSsy64QV+D3qihJLAGDxlHMqau/R1tPRR3ax q4PlUOJ2zYu0meGibGz81n86p2zcGqyd2/wwGbO1J954HBCqLqhtmE1XW8aPbuqf X1T7b6MuQFKjQ1p19XMrFazh0vaPrELM+0RMLOTTwNcm/bhKfVEcJZmuznelgk18 vOIpj5wceV3E4oV2bnBo00j0ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTqKpLs nzPTxPkNSvfYcmkghMY+MB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw3x3was6fhSaerjGDQvTvV8Uahe/IBeOpkPBlQdHnftFe5lY7alTW ccXHY+KUlMpKRnG5P8hZQcd5QWN3BvhgI1XgsYCEPmSxQxK34lQ2504rkrDTmlqU WbqAIgq8CHV4mZEHPbWYS67OwybJbiBgR+Yf7iTnZJybSwW+tRPCpW/3f3KUB90i cZRcpehOHMaOPUMMRY3u7mEtXTYclO5qJczYcpspLdpkhxG/8Vacs5pKvVXrnsNL RDVMDsIEGO0NIe84wmZvj1GwRlMzRVx2Hw9872kQMYDNjKQQ4mTzUfSzJ9wyVFrD Fssj6W+diVg6nre4vc5AAwO45YtEgBdt -----END CERTIFICATE-----Generated at Wed Jun 18 16:03:26 2025 by rpki-client