$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: n9E8oSXoxV/lz0WfP0DgTfL78H4cz4JO443FYEG3ALk= Subject key identifier: 4F:A7:5C:F7:0B:49:E3:85:32:0C:1B:47:FC:9A:84:E0:05:83:AF:4A Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 02BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 02BC Signing time: Fri 25 Apr 2025 01:11:36 +0000 Manifest this update: Fri 25 Apr 2025 01:11:35 +0000 Manifest next update: Fri 02 May 2025 01:11:35 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: QoF45c5u6w5qyr+E+RSdaVqwBhbHv/4Ggv29LnTsi9A=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: LJB886NUTljPvfWlokxnMW+kRUtkV7Ec61N0MHSXzHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Apr 25 01:11:35 2025 GMT Not After : May 2 01:11:35 2025 GMT Subject: CN=680ae148-f65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7a:ab:e8:69:4f:f6:8a:fb:cb:d3:59:f2:21: a3:71:9f:b0:ec:b7:f2:15:45:b1:f4:81:36:ef:18: 93:aa:f9:c4:15:ee:b7:91:85:33:94:78:8b:3f:77: e3:ab:ef:ff:81:ac:d8:70:37:85:20:9b:d5:89:a3: 23:4b:c5:48:b5:41:65:ea:18:3b:4a:4c:1f:46:7f: b4:29:01:1c:1c:03:26:dc:4e:dd:2c:70:14:9a:df: 48:03:cb:22:6b:5c:c5:42:46:18:95:41:cf:1f:86: fc:c2:b1:fc:ba:44:86:6f:20:eb:d6:53:b2:85:56: ad:92:8f:0e:3d:2a:93:60:00:2f:4e:ee:f4:19:72: ea:a8:a3:16:69:8b:1f:b1:e8:ce:45:69:38:fb:75: 7c:c3:76:ed:f9:11:5f:da:f6:d9:f3:e8:69:ec:62: 28:da:8c:74:f1:48:4b:61:24:93:66:23:4a:4e:e9: fc:2d:e1:36:c5:95:9c:84:03:d4:c3:75:42:86:03: 6a:65:a2:56:36:7f:bb:c1:91:ac:5d:a7:c6:21:5e: 7d:54:d1:d8:9d:9a:67:e6:a2:47:9b:7f:7c:51:3c: bd:a5:44:f7:94:d4:91:8b:a3:f7:5c:56:0a:da:f8: 42:94:3d:8f:6f:05:13:56:0a:a6:87:6a:13:d9:dc: bc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A7:5C:F7:0B:49:E3:85:32:0C:1B:47:FC:9A:84:E0:05:83:AF:4A X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:fe:a0:23:67:f3:42:c3:42:30:50:e4:9e:16:24:89:95:56: 9a:6d:de:cb:40:0d:cf:d4:b0:5b:ba:fd:51:62:43:ef:fe:d5: 08:bd:0e:3f:5d:33:3d:cd:4f:e7:a4:16:12:a2:7d:83:c5:51: 75:42:c3:8e:90:55:1b:81:a3:c4:82:19:a4:9a:b4:4c:de:47: 62:4d:3e:90:ce:59:f7:bd:2a:f2:6f:e3:30:4d:4f:b2:ed:38: 3a:8b:38:46:ef:0a:79:f3:ba:e6:33:ca:75:d0:51:1d:f9:78: 36:82:90:69:ea:86:01:50:00:a9:da:f2:70:fb:46:1d:9b:84: 87:1a:3c:66:ff:33:c2:24:13:8d:68:9e:5c:a9:2d:2c:09:26: 13:a9:65:56:20:12:62:16:72:f2:08:b7:8f:9a:4d:79:c9:e0: af:4c:46:a7:ee:3b:53:b6:0c:05:c1:c9:a8:25:8a:33:45:2d: d8:d6:bd:47:ed:4b:1e:8d:bf:51:45:f7:cb:58:36:96:e4:a1: 6b:2e:1e:7d:24:e5:40:64:41:fe:c7:b0:4d:25:a4:ce:fd:21: a4:90:82:65:ae:71:85:3b:33:b4:07:78:1c:7d:9c:e3:9a:cf: f9:27:32:34:69:1a:23:0a:3c:b0:c0:73:af:b8:3f:c1:3d:49: c2:a5:89:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUwNDI1MDExMTM1WhcNMjUwNTAyMDExMTM1WjAYMRYwFAYD VQQDEw02ODBhZTE0OC1mNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnqr6GlP9or7y9NZ8iGjcZ+w7LfyFUWx9IE27xiTqvnEFe63kYUzlHiLP3fj q+//gazYcDeFIJvViaMjS8VItUFl6hg7SkwfRn+0KQEcHAMm3E7dLHAUmt9IA8si a1zFQkYYlUHPH4b8wrH8ukSGbyDr1lOyhVatko8OPSqTYAAvTu70GXLqqKMWaYsf sejORWk4+3V8w3bt+RFf2vbZ8+hp7GIo2ox08UhLYSSTZiNKTun8LeE2xZWchAPU w3VChgNqZaJWNn+7wZGsXafGIV59VNHYnZpn5qJHm398UTy9pUT3lNSRi6P3XFYK 2vhClD2PbwUTVgqmh2oT2dy8aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+nXPcL SeOFMgwbR/yahOAFg69KMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv/qAjZ/NCw0IwUOSeFiSJlVaabd7LQA3P1LBbuv1RYkPv/tUIvQ4/ XTM9zU/npBYSon2DxVF1QsOOkFUbgaPEghmkmrRM3kdiTT6Qzln3vSryb+MwTU+y 7Tg6izhG7wp587rmM8p10FEd+Xg2gpBp6oYBUACp2vJw+0Ydm4SHGjxm/zPCJBON aJ5cqS0sCSYTqWVWIBJiFnLyCLePmk15yeCvTEan7jtTtgwFwcmoJYozRS3Y1r1H 7Usejb9RRffLWDaW5KFrLh59JOVAZEH+x7BNJaTO/SGkkIJlrnGFOzO0B3gcfZzj ms/5JzI0aRojCjywwHOvuD/BPUnCpYlp -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:50 2025 by rpki-client