$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: 1QOBlfGsoWfWHt8LMaoA6ZW3CH8AW6Osu8wXmGJGKRs= Subject key identifier: 43:0A:05:F2:3A:63:80:CE:9E:BA:A8:6F:C8:DB:7A:84:A7:70:6A:F3 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 34A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 349B Signing time: Sat 14 Jun 2025 14:49:39 +0000 Manifest this update: Sat 14 Jun 2025 14:49:38 +0000 Manifest next update: Sat 21 Jun 2025 14:49:38 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: 7IXi828kRiBIxN8l05WFiSuKJW+W9YUF8pC0H+2zxco=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: 4D8Gd5fcPnmWPe8Yaf2DxYR0OtX+KheAxOMoPi97yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13476 (0x34a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Jun 14 14:49:38 2025 GMT Not After : Jun 21 14:49:38 2025 GMT Subject: CN=684d8c03-196a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d3:61:58:d4:79:a5:a7:4d:39:49:1d:0d:3e: a8:ff:61:39:51:46:b5:80:57:22:0c:32:da:70:d5: f4:8d:6b:96:e6:f6:5a:62:78:8b:48:04:f7:8c:33: 56:76:f5:7e:f9:fa:69:3e:15:1f:d0:a8:39:5d:54: f5:91:84:2c:d5:1f:94:fb:30:2b:98:ce:6d:4d:73: 03:a8:6d:31:0c:f6:0c:7d:99:19:69:c5:c2:ab:a7: 38:5a:85:d3:4c:60:b5:4a:76:fc:be:a2:97:f6:f9: f1:12:ac:3b:e0:f2:d6:f8:45:2c:59:3c:f8:04:0b: da:d6:be:d1:a3:64:54:34:60:13:53:f7:f1:11:19: f6:39:03:6e:55:8d:f4:54:0e:ea:97:cc:a7:c1:65: 9a:5b:33:cf:e1:ff:64:a9:f4:c8:1a:d0:52:5f:f2: a2:e5:3f:51:aa:bc:aa:20:c2:51:f4:be:1d:c5:66: a8:90:99:cd:d7:75:a2:42:90:5d:8b:60:6c:e4:9a: 10:f6:a6:c3:8d:a9:b8:db:e8:68:db:a1:78:52:06: 8e:cf:22:60:8f:c8:7e:9b:18:f2:4a:4d:b7:bb:06: ba:11:52:c9:5b:b1:af:91:16:ad:01:31:e8:77:7d: dd:2d:9d:26:58:b5:dd:a3:36:ff:8d:f4:a5:1e:73: 48:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:0A:05:F2:3A:63:80:CE:9E:BA:A8:6F:C8:DB:7A:84:A7:70:6A:F3 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8b:d7:b3:a8:0f:53:a6:f0:5c:95:f7:48:b0:76:3b:45:88: 19:d1:42:c5:24:97:5e:4a:bd:4d:4b:6f:cb:af:38:3a:92:13: 14:8d:b2:f0:98:cd:fa:45:0e:8a:80:0d:f7:fa:15:ce:fd:ad: cb:ef:12:b5:50:10:3c:3f:a1:48:b8:c3:3d:bb:b4:6e:00:b1: 48:c2:dc:f8:a5:13:da:bf:dc:65:dc:df:7c:ae:75:3e:23:a4: 6c:65:65:9d:44:72:c9:7d:27:91:3b:4b:bb:6a:d4:3b:63:3c: ae:08:ba:70:42:79:fe:c2:9e:75:44:f3:5f:2e:ac:9b:27:6d: b1:2f:f3:77:83:9a:a2:4d:54:a3:aa:aa:16:54:32:cd:67:44: 90:c7:03:59:4c:ba:b4:8f:a4:34:da:f1:d5:5b:ae:3f:a4:36: cd:23:72:72:82:df:6e:11:9e:a1:ad:c2:25:c6:48:1c:55:47: 73:9c:8b:ae:78:06:c4:a7:e2:af:8b:5b:ea:2c:69:29:eb:7d: be:f0:6e:a7:8e:34:1b:43:56:0b:b5:61:00:85:6b:80:af:d1: bd:2f:84:77:db:55:f2:11:0d:cb:38:d5:68:84:f6:96:33:27: 33:06:a9:1f:9e:a9:02:d1:86:ba:c4:5d:8c:76:87:d3:e5:bd: b6:aa:4d:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUwNjE0MTQ0OTM4WhcNMjUwNjIxMTQ0OTM4WjAYMRYwFAYD VQQDEw02ODRkOGMwMy0xOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tNhWNR5padNOUkdDT6o/2E5UUa1gFciDDLacNX0jWuW5vZaYniLSAT3jDNW dvV++fppPhUf0Kg5XVT1kYQs1R+U+zArmM5tTXMDqG0xDPYMfZkZacXCq6c4WoXT TGC1Snb8vqKX9vnxEqw74PLW+EUsWTz4BAva1r7Ro2RUNGATU/fxERn2OQNuVY30 VA7ql8ynwWWaWzPP4f9kqfTIGtBSX/Ki5T9RqryqIMJR9L4dxWaokJnN13WiQpBd i2Bs5JoQ9qbDjam42+ho26F4UgaOzyJgj8h+mxjySk23uwa6EVLJW7GvkRatATHo d33dLZ0mWLXdozb/jfSlHnNIMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMKBfI6 Y4DOnrqob8jbeoSncGrzMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAji9ezqA9TpvBclfdIsHY7RYgZ0ULFJJdeSr1NS2/Lrzg6khMUjbLw mM36RQ6KgA33+hXO/a3L7xK1UBA8P6FIuMM9u7RuALFIwtz4pRPav9xl3N98rnU+ I6RsZWWdRHLJfSeRO0u7atQ7YzyuCLpwQnn+wp51RPNfLqybJ22xL/N3g5qiTVSj qqoWVDLNZ0SQxwNZTLq0j6Q02vHVW64/pDbNI3Jygt9uEZ6hrcIlxkgcVUdznIuu eAbEp+Kvi1vqLGkp632+8G6njjQbQ1YLtWEAhWuAr9G9L4R321XyEQ3LONVohPaW MyczBqkfnqkC0Ya6xF2MdofT5b22qk1T -----END CERTIFICATE-----Generated at Sun Jun 15 08:52:20 2025 by rpki-client