$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: Lp9bLAEnPlzdqmpq6crxstKrynWlVN737Is+JKAVNiw= Subject key identifier: E3:B8:F0:FF:58:49:6C:61:2B:59:45:EF:16:8A:6D:1B:C6:B8:55:50 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 35 Signing time: Fri 13 Jun 2025 06:32:57 +0000 Manifest this update: Fri 13 Jun 2025 06:32:56 +0000 Manifest next update: Fri 20 Jun 2025 06:32:56 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: xIEEuYHMCa9E15FgVCBoCs328AJbj3mf9fdjQ/E44/s=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: 0M63JvIdFfuu35AAppLF2AY+BsaEXFTD4uLQ+gUHRuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Jun 13 06:32:56 2025 GMT Not After : Jun 20 06:32:56 2025 GMT Subject: CN=684bc618-18c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dc:41:75:0d:16:37:5e:d5:c2:31:34:1e:91: fa:89:01:81:89:0c:2f:e1:85:b2:94:7d:5b:67:37: 98:91:e0:2b:af:f6:4b:b8:9f:5b:74:55:4d:cc:fd: 5b:d0:a9:3c:9a:31:0d:07:6c:14:4d:6e:6f:71:c9: 57:da:8f:6c:7f:d0:15:c3:dc:b5:52:e7:a4:25:7a: fb:be:ce:d8:ec:51:ba:05:9d:8f:9d:09:c8:f4:3c: e9:a6:6c:fb:0e:89:a4:94:93:d7:d8:c2:1d:93:da: e3:b7:f0:a5:44:c4:a0:b6:9b:ba:64:da:32:10:b6: ff:3e:79:56:02:a1:ac:58:53:03:09:21:b3:43:8d: 8a:bb:ac:f6:d2:7a:71:4c:a5:8d:bf:d8:80:61:91: c8:d6:7d:59:f8:58:ce:76:bc:cc:ae:c7:a9:0e:b1: 2d:79:12:44:8b:d6:ea:3f:a9:bc:2b:0e:6f:09:17: 6e:7a:2e:82:c5:29:89:37:ba:ee:8d:a0:34:49:8f: c4:28:01:88:d8:fd:74:8b:a6:a8:c5:01:3e:67:75: fc:a6:1e:5c:46:6e:10:03:6b:31:9f:44:26:10:b7: 57:5c:ee:70:cb:b4:12:0c:26:8a:e6:b4:44:14:a7: 4b:ab:56:62:06:b3:db:8c:5b:21:71:f6:16:9c:5a: 5b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B8:F0:FF:58:49:6C:61:2B:59:45:EF:16:8A:6D:1B:C6:B8:55:50 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:91:06:07:47:ff:7c:3f:48:7c:56:d8:e5:65:c8:fd:00:dd: 13:52:10:54:9b:70:dc:8d:3a:17:dd:6e:f6:c3:af:d1:10:4a: 85:6c:80:84:0e:e7:c6:94:b7:3f:f8:c9:83:0a:a9:2a:5c:f5: 08:52:2e:b5:63:9e:a9:01:f2:6c:34:3e:df:f3:1c:17:5b:28: e0:4b:59:e8:cd:91:f7:12:76:09:0c:0f:06:f4:bf:ea:8b:8b: 3d:4d:82:b4:80:a3:e7:c8:a5:d0:a6:63:78:cc:14:f5:25:c3: ec:ac:d8:8d:98:b8:ab:66:21:0e:f7:14:ab:1a:43:61:02:33: 1a:fb:76:8d:89:fb:5a:4f:c4:11:e5:26:ce:d9:b4:e1:ef:3b: f7:cc:bc:64:d7:f1:15:ab:da:21:b5:c1:be:14:cf:73:d7:53: 33:50:48:e0:11:67:0f:97:17:44:ed:a2:4c:5d:31:00:bb:a4: ea:27:5d:e2:63:8e:1a:97:d8:b0:33:72:b0:69:da:46:35:dd: 30:69:a2:45:85:f7:c1:8d:4a:48:c5:e3:0b:6c:16:87:38:17: 13:4f:f0:32:75:8a:1f:1e:9e:ad:64:e5:55:5e:dd:ee:91:84: ec:ff:18:6e:a0:48:2e:97:fe:08:27:39:32:7a:44:70:31:f6: 49:6a:30:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjA2NjExMC8GA1UEBRMoMUQ0RUM0MjUzMzEzQjYyQzQ4NDQ5MTZCODVEQzBGRkU0 QjA3RDUwODAeFw0yNTA2MTMwNjMyNTZaFw0yNTA2MjAwNjMyNTZaMBgxFjAUBgNV BAMTDTY4NGJjNjE4LTE4YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx3EF1DRY3XtXCMTQekfqJAYGJDC/hhbKUfVtnN5iR4Cuv9ku4n1t0VU3M/VvQ qTyaMQ0HbBRNbm9xyVfaj2x/0BXD3LVS56Qlevu+ztjsUboFnY+dCcj0POmmbPsO iaSUk9fYwh2T2uO38KVExKC2m7pk2jIQtv8+eVYCoaxYUwMJIbNDjYq7rPbSenFM pY2/2IBhkcjWfVn4WM52vMyux6kOsS15EkSL1uo/qbwrDm8JF256LoLFKYk3uu6N oDRJj8QoAYjY/XSLpqjFAT5ndfymHlxGbhADazGfRCYQt1dc7nDLtBIMJormtEQU p0urVmIGs9uMWyFx9hacWlt7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU47jw/1hJ bGErWUXvFoptG8a4VVAwHwYDVR0jBBgwFoAUHU7EJTMTtixIRJFrhdwP/ksH1Qgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MDY2LzY0OEE4ODMyRkI2 NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFR Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFU3RUpUTVR0aXhJUkpGcmhkd1Bfa3NIMVFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 MDY2LzY0OEE4ODMyRkI2NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4 SVJKRnJoZHdQX2tzSDFRZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABKRBgdH/3w/SHxW2OVlyP0A3RNSEFSbcNyNOhfdbvbDr9EQSoVsgIQO 58aUtz/4yYMKqSpc9QhSLrVjnqkB8mw0Pt/zHBdbKOBLWejNkfcSdgkMDwb0v+qL iz1NgrSAo+fIpdCmY3jMFPUlw+ys2I2YuKtmIQ73FKsaQ2ECMxr7do2J+1pPxBHl Js7ZtOHvO/fMvGTX8RWr2iG1wb4Uz3PXUzNQSOARZw+XF0TtokxdMQC7pOonXeJj jhqX2LAzcrBp2kY13TBpokWF98GNSkjF4wtsFoc4FxNP8DJ1ih8enq1k5VVe3e6R hOz/GG6gSC6X/ggnOTJ6RHAx9klqMNc= -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:54 2025 by rpki-client