$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: 1lKd3IPE7p+8lnd09HTRHJImSAJyjDGdmw+Gxcw0r/E= Subject key identifier: 83:2C:1B:E7:71:E7:2C:B5:55:69:8C:E9:87:8C:DE:C9:D3:C6:2C:47 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 348A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 3481 Signing time: Thu 24 Apr 2025 14:49:26 +0000 Manifest this update: Thu 24 Apr 2025 14:49:25 +0000 Manifest next update: Thu 01 May 2025 14:49:25 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: WtkEYBWH9Cn44wQumfPiFwGmmV54J41umT0CRVKf6zs=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: 4D8Gd5fcPnmWPe8Yaf2DxYR0OtX+KheAxOMoPi97yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Apr 24 14:49:25 2025 GMT Not After : May 1 14:49:25 2025 GMT Subject: CN=680a4f75-2672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e0:bd:11:90:2e:af:ca:c0:ca:52:7b:1d:8e: 34:15:c3:46:88:c4:3c:e5:19:fd:77:6e:a1:02:94: c9:02:d5:0b:87:2d:23:b4:ad:46:20:b0:24:d7:d1: da:b8:20:f9:fd:25:12:00:bd:1e:cc:10:6d:5c:e2: d6:c7:5c:12:b4:e4:4d:22:03:bd:5d:4e:af:9e:1b: 04:42:ab:74:5b:6b:09:c9:7a:02:77:ae:6b:77:f6: a1:93:e6:68:12:8d:60:49:95:5b:85:15:0b:cb:aa: 37:6e:12:11:14:b9:b3:97:4f:5a:3c:96:a2:d2:73: ba:99:89:c7:5e:fc:e9:0c:f5:d1:ab:a1:4e:70:34: f9:fa:b1:51:13:c1:32:e9:33:e9:65:c6:cd:69:e3: d9:f8:4d:12:4c:28:8b:19:2a:d2:32:33:c6:9e:fa: 49:69:f0:d7:0b:c8:f7:a0:05:43:d1:c4:34:c9:fc: 2d:b2:73:53:73:65:47:e6:b8:c4:27:d0:31:52:6d: a9:c5:88:75:0f:e4:34:a6:ce:24:80:0d:e9:32:18: f1:85:dd:cd:75:d5:66:3f:4b:c3:8f:a4:c0:21:e2: d3:7f:17:d8:5e:1a:51:5e:8b:50:f1:0c:85:7a:0f: a6:22:2b:4b:22:c6:9c:e0:ef:aa:45:13:77:7e:54: c7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2C:1B:E7:71:E7:2C:B5:55:69:8C:E9:87:8C:DE:C9:D3:C6:2C:47 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:86:8f:46:3d:f6:ed:b4:5b:4c:1c:76:76:80:91:95:ba:d7: 55:6e:3a:79:2b:37:bb:99:3d:a6:7e:14:8f:3a:1d:17:4f:a7: a3:26:ac:01:07:9d:af:d2:fe:5f:47:96:90:93:b6:58:73:2d: f7:b1:3d:ad:bc:d8:bc:b1:9f:06:c4:30:7c:33:42:61:35:9d: 70:4d:7b:3b:f0:af:d1:0f:6e:88:78:4f:cf:f0:3a:1a:54:9c: f3:10:0b:31:dc:6f:e7:f4:0c:01:70:46:c4:17:74:4c:26:0b: d7:af:ff:ae:f5:ad:6b:02:3c:f8:3b:cc:4f:ad:8d:24:ea:f3: d8:fd:ab:38:28:70:9b:48:c3:06:8a:87:31:bc:d7:e7:4d:4c: 98:90:1a:65:97:ac:24:c0:13:13:ae:1f:cb:af:8b:24:04:e3: 4c:ae:86:2b:19:bb:92:04:b8:a4:3a:76:51:d7:53:18:13:78: 02:9a:a0:e1:e6:2d:e6:d4:0f:bb:b3:5f:f8:57:a8:7c:f0:c4: 0b:bd:34:29:b1:93:75:ad:60:89:c5:fd:56:3e:19:a9:dd:71: 90:d8:d4:eb:6f:2e:d5:fc:64:36:d8:5a:10:da:fb:ca:d8:64: ec:79:70:e7:21:5e:7e:3c:a8:ad:ae:46:03:78:c0:bd:df:c0: 84:76:72:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUwNDI0MTQ0OTI1WhcNMjUwNTAxMTQ0OTI1WjAYMRYwFAYD VQQDEw02ODBhNGY3NS0yNjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eC9EZAur8rAylJ7HY40FcNGiMQ85Rn9d26hApTJAtULhy0jtK1GILAk19Ha uCD5/SUSAL0ezBBtXOLWx1wStORNIgO9XU6vnhsEQqt0W2sJyXoCd65rd/ahk+Zo Eo1gSZVbhRULy6o3bhIRFLmzl09aPJai0nO6mYnHXvzpDPXRq6FOcDT5+rFRE8Ey 6TPpZcbNaePZ+E0STCiLGSrSMjPGnvpJafDXC8j3oAVD0cQ0yfwtsnNTc2VH5rjE J9AxUm2pxYh1D+Q0ps4kgA3pMhjxhd3NddVmP0vDj6TAIeLTfxfYXhpRXotQ8QyF eg+mIitLIsac4O+qRRN3flTHDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMsG+dx 5yy1VWmM6YeM3snTxixHMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3ho9GPfbttFtMHHZ2gJGVutdVbjp5Kze7mT2mfhSPOh0XT6ejJqwB B52v0v5fR5aQk7ZYcy33sT2tvNi8sZ8GxDB8M0JhNZ1wTXs78K/RD26IeE/P8Doa VJzzEAsx3G/n9AwBcEbEF3RMJgvXr/+u9a1rAjz4O8xPrY0k6vPY/as4KHCbSMMG iocxvNfnTUyYkBpll6wkwBMTrh/Lr4skBONMroYrGbuSBLikOnZR11MYE3gCmqDh 5i3m1A+7s1/4V6h88MQLvTQpsZN1rWCJxf1WPhmp3XGQ2NTrby7V/GQ22FoQ2vvK 2GTseXDnIV5+PKitrkYDeMC938CEdnIK -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:42 2025 by rpki-client