$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: CVVHx7Orr4UpuBgk41JyFTf5F173Tc7rFKw9Sy/L2FQ= Subject key identifier: 24:32:94:2D:B2:6A:E5:90:0E:F8:32:61:EE:8E:48:5C:6D:2A:C0:4F Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 50 Signing time: Fri 13 Jun 2025 06:09:41 +0000 Manifest this update: Fri 13 Jun 2025 06:09:41 +0000 Manifest next update: Fri 20 Jun 2025 06:09:41 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: U3OU9mxJ6fSWayTEiEZq7LNPuh6mJP+NU9GxOlCuyjI=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Jun 13 06:09:41 2025 GMT Not After : Jun 20 06:09:41 2025 GMT Subject: CN=684bc0a5-0a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:44:67:23:41:a0:9c:2d:4d:08:58:af:8f:e2: b4:54:40:66:cd:34:12:c1:ae:a2:81:0c:bb:d7:30: 38:2d:97:82:ef:ef:5c:97:87:f0:a2:68:74:0d:b3: fc:b2:fd:07:8a:e9:ff:be:2f:f4:82:98:6a:67:ee: 4c:75:b2:b2:f2:93:71:1d:00:9a:89:e5:06:e7:e2: a7:9b:aa:f7:19:cd:b8:54:02:2e:1c:ef:34:8d:7c: 7f:4f:21:99:81:7f:09:e8:86:62:35:f2:e3:c6:60: 46:2b:e5:ee:21:a8:5f:bf:25:5b:8b:cf:b5:69:f2: ec:35:b5:aa:6d:59:00:ab:66:30:66:3e:30:6c:2a: b5:b7:26:36:3a:79:4b:79:fc:22:a2:ec:a1:b5:f5: fc:51:1d:51:86:7b:b2:00:77:a5:5b:ef:71:3d:19: 01:06:75:ab:a8:16:db:e7:96:12:73:14:8c:3d:db: 1a:32:f1:9e:81:01:d0:01:7c:36:9c:c3:d3:63:d0: d7:1b:86:40:dd:ed:f3:54:df:a8:30:52:c4:73:3b: 23:01:ab:15:7d:cf:47:11:df:95:c1:8a:c0:4a:eb: ea:07:ac:99:98:65:ed:41:39:52:43:89:74:5c:6c: dc:7f:1f:f1:24:db:2c:29:4a:24:59:21:9f:59:70: 35:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:32:94:2D:B2:6A:E5:90:0E:F8:32:61:EE:8E:48:5C:6D:2A:C0:4F X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:fd:fb:2b:d1:4a:6a:05:36:98:3a:93:50:7f:57:e3:ae:bb: 04:a7:39:52:c6:35:8c:1b:5a:b9:d3:c1:03:4a:a5:ab:79:02: 1d:39:28:eb:08:14:25:7d:97:20:5e:5c:c9:01:9b:b3:e4:19: 7e:cc:41:43:70:f1:ae:56:4a:d7:59:10:ee:4b:5a:1f:dd:f7: ce:c1:99:9f:f3:fa:f7:53:1e:a7:91:ec:04:ca:d7:41:21:ff: 42:a4:56:ac:85:d4:69:01:d4:72:a1:9c:ab:a9:84:f5:4f:4b: 8d:eb:da:dc:1a:49:ad:62:7e:1a:92:0f:9d:03:f2:3c:22:f5: 6e:2f:81:8c:fd:31:b1:de:8b:22:99:ea:18:ff:f3:e2:77:32: 6a:78:f8:42:15:4f:c7:14:92:dd:95:74:21:46:8c:a4:a8:fc: b5:c1:83:e4:cb:20:af:7d:c5:db:a6:bf:dc:94:b4:0d:fa:d6: cf:16:73:5a:72:6a:64:0e:05:d5:df:cf:f4:7c:53:c9:e1:23: 5a:84:87:c8:78:49:60:ad:70:0f:0a:fc:19:b6:ee:3d:2e:d9: 66:ad:e9:02:e8:bf:f8:25:76:ba:72:54:0b:21:3f:e9:27:15: 9b:c2:bc:e6:0a:04:07:b1:5f:52:9a:e4:dc:29:11:cc:80:cb: 5f:2b:ff:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA2MTMwNjA5NDFaFw0yNTA2MjAwNjA5NDFaMBgxFjAUBgNV BAMTDTY4NGJjMGE1LTBhNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDERGcjQaCcLU0IWK+P4rRUQGbNNBLBrqKBDLvXMDgtl4Lv71yXh/CiaHQNs/yy /QeK6f++L/SCmGpn7kx1srLyk3EdAJqJ5Qbn4qebqvcZzbhUAi4c7zSNfH9PIZmB fwnohmI18uPGYEYr5e4hqF+/JVuLz7Vp8uw1taptWQCrZjBmPjBsKrW3JjY6eUt5 /CKi7KG19fxRHVGGe7IAd6Vb73E9GQEGdauoFtvnlhJzFIw92xoy8Z6BAdABfDac w9Nj0NcbhkDd7fNU36gwUsRzOyMBqxV9z0cR35XBisBK6+oHrJmYZe1BOVJDiXRc bNx/H/Ek2ywpSiRZIZ9ZcDV1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJDKULbJq 5ZAO+DJh7o5IXG0qwE8wHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF/9+yvRSmoFNpg6k1B/V+OuuwSnOVLGNYwbWrnTwQNKpat5Ah05KOsI FCV9lyBeXMkBm7PkGX7MQUNw8a5WStdZEO5LWh/d987BmZ/z+vdTHqeR7ATK10Eh /0KkVqyF1GkB1HKhnKuphPVPS43r2twaSa1ifhqSD50D8jwi9W4vgYz9MbHeiyKZ 6hj/8+J3Mmp4+EIVT8cUkt2VdCFGjKSo/LXBg+TLIK99xdumv9yUtA361s8Wc1py amQOBdXfz/R8U8nhI1qEh8h4SWCtcA8K/Bm27j0u2Wat6QLov/gldrpyVAshP+kn FZvCvOYKBAexX1Ka5NwpEcyAy18r/z0= -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:59 2025 by rpki-client