$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: lt5rlOvAwP37eHivcGlQODItGgsa2ZWlabHdM/Ljg9o= Subject key identifier: 50:8C:BF:B8:E0:CA:C2:1F:50:E4:D5:A2:3A:1D:77:50:CA:15:35:9C Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 38 Signing time: Fri 25 Apr 2025 06:32:47 +0000 Manifest this update: Fri 25 Apr 2025 06:32:46 +0000 Manifest next update: Fri 02 May 2025 06:32:46 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: 20VPO+dShJ9fjk9TxPv4fmJYtVV0eXO5KmLQNRGfc00=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Apr 25 06:32:46 2025 GMT Not After : May 2 06:32:46 2025 GMT Subject: CN=680b2c8f-3c82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:93:e0:26:7b:7b:58:40:3c:c0:24:29:46:f9: 09:b3:a9:2a:4b:dd:20:cd:ff:ae:22:11:24:3d:0b: b1:72:3d:46:5a:97:a6:06:f1:41:a8:c6:5e:2d:ca: 0e:3b:07:b5:51:37:e2:b2:9b:57:17:d4:e7:d3:a0: 55:72:fa:90:7a:92:7d:74:14:4b:05:54:39:f2:68: 01:a9:c0:7d:0b:e4:cd:46:98:23:60:0f:a7:04:87: f1:5b:90:1d:88:0a:d5:e5:59:db:15:33:b4:5d:76: 7f:1b:f0:a1:fd:7d:93:56:64:e0:06:21:ec:a4:3d: 37:59:7a:14:27:a6:fb:1b:66:90:0d:2c:39:88:bc: 5d:c2:aa:c7:a7:f1:8a:ab:c9:06:63:29:b5:b3:72: 01:da:cc:70:66:59:f8:2c:b0:58:25:5f:7a:5e:98: 42:e9:4f:04:24:57:ae:57:ed:b1:41:da:ee:d9:c2: 15:12:de:54:29:aa:b8:4c:db:25:68:6d:75:9f:de: 0b:d8:c7:9f:91:f7:81:87:ea:c4:74:20:67:b0:c1: 33:e8:b6:fd:ea:b3:a3:26:95:31:8d:a2:51:c3:cd: cb:61:4e:c1:d5:21:fc:c9:71:55:fa:f1:e3:35:08: b9:73:84:0b:23:8f:09:e1:8a:d4:11:07:e3:26:2d: 1a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:8C:BF:B8:E0:CA:C2:1F:50:E4:D5:A2:3A:1D:77:50:CA:15:35:9C X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:b3:c4:a4:e4:12:a3:6d:c2:57:3c:9f:0f:2a:ac:cb:97:c5: 18:af:ce:6e:53:2c:47:77:2c:7e:ba:e7:09:05:84:0c:15:a4: 9f:cc:98:47:17:11:ef:a6:c9:08:3a:2d:f8:10:53:58:8a:40: 60:1c:cc:44:9a:b1:25:83:9a:71:25:16:cf:c6:f6:f2:73:54: d3:5e:db:1b:d8:8a:48:21:05:6c:c9:7b:b5:91:88:5c:a2:da: b6:eb:bd:21:66:25:65:4e:ab:9f:c9:81:d7:d7:b8:73:ee:98: 26:a5:0c:35:16:ba:29:0e:b8:ea:00:f4:d0:6d:3e:d0:b8:4b: 72:35:4b:66:2f:1f:d1:d3:15:5c:37:0e:c5:2c:a6:5d:f3:64: 9b:fb:ad:53:69:ad:d6:36:c3:4a:58:ec:a2:88:d1:1b:1c:8c: bc:cc:52:cf:86:ca:5e:a2:0f:1b:90:99:cd:72:1d:8e:da:db: ae:a4:d7:3c:1e:84:72:8d:89:ac:5d:db:a7:03:ea:cc:5f:a5: 54:2f:71:fe:d7:44:51:3d:b6:aa:46:39:4d:57:f4:25:43:a4: 48:47:87:cd:b6:ee:e7:66:fa:bd:fd:30:7d:f1:b7:48:38:fe: 0a:23:e7:04:17:50:81:14:26:68:2f:45:c9:8e:71:5a:6b:e4: d9:99:05:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA0MjUwNjMyNDZaFw0yNTA1MDIwNjMyNDZaMBgxFjAUBgNV BAMTDTY4MGIyYzhmLTNjODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD3k+Ame3tYQDzAJClG+QmzqSpL3SDN/64iESQ9C7FyPUZal6YG8UGoxl4tyg47 B7VRN+Kym1cX1OfToFVy+pB6kn10FEsFVDnyaAGpwH0L5M1GmCNgD6cEh/FbkB2I CtXlWdsVM7Rddn8b8KH9fZNWZOAGIeykPTdZehQnpvsbZpANLDmIvF3Cqsen8Yqr yQZjKbWzcgHazHBmWfgssFglX3pemELpTwQkV65X7bFB2u7ZwhUS3lQpqrhM2yVo bXWf3gvYx5+R94GH6sR0IGewwTPotv3qs6MmlTGNolHDzcthTsHVIfzJcVX68eM1 CLlzhAsjjwnhitQRB+MmLRqvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUIy/uODK wh9Q5NWiOh13UMoVNZwwHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAmzxKTkEqNtwlc8nw8qrMuXxRivzm5TLEd3LH665wkFhAwVpJ/MmEcX Ee+myQg6LfgQU1iKQGAczESasSWDmnElFs/G9vJzVNNe2xvYikghBWzJe7WRiFyi 2rbrvSFmJWVOq5/JgdfXuHPumCalDDUWuikOuOoA9NBtPtC4S3I1S2YvH9HTFVw3 DsUspl3zZJv7rVNprdY2w0pY7KKI0RscjLzMUs+Gyl6iDxuQmc1yHY7a266k1zwe hHKNiaxd26cD6sxfpVQvcf7XRFE9tqpGOU1X9CVDpEhHh8227udm+r39MH3xt0g4 /goj5wQXUIEUJmgvRcmOcVpr5NmZBek= -----END CERTIFICATE-----Generated at Sat Apr 26 15:10:32 2025 by rpki-client