$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: yib9r0vNWnFJpfjpLiloCF8k+p28kindzgmYi5UMoKg= Subject key identifier: A3:2F:5A:F4:F3:3F:43:D4:2A:E7:2A:17:8E:3E:A6:02:B3:BF:BF:4B Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 0258 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 024D Signing time: Fri 25 Apr 2025 01:38:45 +0000 Manifest this update: Fri 25 Apr 2025 01:38:45 +0000 Manifest next update: Fri 02 May 2025 01:38:45 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: Aifjkmt6cWnDHY5xGSs7jzSE+XQESF0Z/26VXz3W8Xw=) 2: AF13726403AD11F0B5D12A81C4F9AE02.roa (hash: XBaed8FJc7Gixv2UzCn4EyIQb1PKqJIn+WKksLyjxb8=) 3: 2080359097F711EF91AB0436C4F9AE02.roa (hash: ayF9Bv7+wkh7jzbmvM6fDF9jk/NLjmF1YhPtsg38ygk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Apr 25 01:38:45 2025 GMT Not After : May 2 01:38:45 2025 GMT Subject: CN=680ae7a5-64a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e5:59:62:d7:9c:ad:4a:f4:ff:5a:66:1d:67: 35:5d:95:62:73:09:70:38:77:c3:57:7e:a8:11:cb: 2e:2d:9f:5e:1f:f2:5f:3f:6f:99:9a:ee:71:fd:3a: 0b:1b:8e:9d:79:f9:98:a9:8f:02:a4:32:15:6d:cd: d0:3c:fa:1c:c6:6d:9d:8b:3d:b2:63:2c:0e:98:af: 67:56:85:35:a4:8d:88:72:95:33:ea:4e:58:40:9a: 93:7f:fb:58:d7:65:8c:47:2b:ae:a8:b3:dc:ca:32: 82:39:cd:ff:51:1e:4f:81:b5:36:1a:d2:72:76:e2: 13:c9:fc:40:68:31:d7:f2:20:fd:2a:6b:e0:74:5c: b9:95:91:65:8b:03:07:3a:1e:3b:6f:9e:44:c1:b1: 6f:63:e3:87:1f:ec:63:0e:fa:c0:eb:c3:6f:c3:11: 7d:36:b4:73:b9:df:90:e6:f7:07:5c:8b:f3:d9:c3: ca:cc:d0:9c:44:d5:00:c0:4b:5d:fe:e7:95:0d:4e: 62:ef:d2:30:d5:89:2a:c4:00:71:e0:fe:fa:48:dd: 19:3e:a2:65:ac:7d:2b:7c:52:7d:d0:37:9d:70:d2: 16:5e:c5:8b:f0:c9:d2:b0:6b:5b:ae:55:1d:2e:ef: 8c:93:b5:40:03:00:17:19:2c:4e:ae:3d:d5:09:11: ae:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:2F:5A:F4:F3:3F:43:D4:2A:E7:2A:17:8E:3E:A6:02:B3:BF:BF:4B X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:7f:9f:2d:ce:dc:cf:3a:68:43:12:73:1e:6d:fd:0e:ed:91: 03:f4:9b:0e:d2:c6:07:98:46:a3:50:78:60:01:29:7b:cc:58: 35:64:18:40:ac:30:bb:69:6e:05:63:e3:ed:07:70:2e:ca:19: ae:b6:d8:65:10:ea:b2:a1:7b:31:b7:b3:7c:45:42:4d:72:4c: c0:00:c1:63:b1:1c:c7:48:30:57:88:56:9c:66:b6:1a:9d:4e: 51:0b:4c:c7:bf:63:76:ca:86:62:81:c2:75:a6:fc:17:bb:59: 96:69:07:a4:92:09:8b:90:54:22:8d:e7:f2:8d:ed:6a:71:90: 0c:bf:7f:67:e0:32:54:5f:1a:c7:e9:52:72:ab:dd:a6:94:54: 8a:44:6d:81:3f:33:b8:58:72:1c:f7:73:c8:c3:89:73:fd:91: d0:38:7f:b5:a7:2d:f1:42:af:e8:b1:14:89:02:4c:67:f7:18: 34:55:d8:14:5a:5d:e6:bd:1d:61:e1:ab:58:9c:a5:8e:04:cd: 13:87:20:eb:32:aa:5e:63:96:ba:f1:b7:c0:d5:77:d1:30:37: fb:ac:ad:33:45:a2:6b:40:a2:7a:ce:48:75:e3:dc:26:7f:cb: 0f:71:27:3f:55:30:26:a6:b6:70:12:9a:d4:8d:78:83:3f:aa: 7e:45:e5:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUwNDI1MDEzODQ1WhcNMjUwNTAyMDEzODQ1WjAYMRYwFAYD VQQDEw02ODBhZTdhNS02NGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeVZYtecrUr0/1pmHWc1XZVicwlwOHfDV36oEcsuLZ9eH/JfP2+Zmu5x/ToL G46defmYqY8CpDIVbc3QPPocxm2diz2yYywOmK9nVoU1pI2IcpUz6k5YQJqTf/tY 12WMRyuuqLPcyjKCOc3/UR5PgbU2GtJyduITyfxAaDHX8iD9KmvgdFy5lZFliwMH Oh47b55EwbFvY+OHH+xjDvrA68NvwxF9NrRzud+Q5vcHXIvz2cPKzNCcRNUAwEtd /ueVDU5i79Iw1YkqxABx4P76SN0ZPqJlrH0rfFJ90DedcNIWXsWL8MnSsGtbrlUd Lu+Mk7VAAwAXGSxOrj3VCRGuHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMvWvTz P0PUKucqF44+pgKzv79LMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnf58tztzPOmhDEnMebf0O7ZED9JsO0sYHmEajUHhgASl7zFg1ZBhA rDC7aW4FY+PtB3AuyhmutthlEOqyoXsxt7N8RUJNckzAAMFjsRzHSDBXiFacZrYa nU5RC0zHv2N2yoZigcJ1pvwXu1mWaQekkgmLkFQijefyje1qcZAMv39n4DJUXxrH 6VJyq92mlFSKRG2BPzO4WHIc93PIw4lz/ZHQOH+1py3xQq/osRSJAkxn9xg0VdgU Wl3mvR1h4atYnKWOBM0ThyDrMqpeY5a68bfA1XfRMDf7rK0zRaJrQKJ6zkh149wm f8sPcSc/VTAmprZwEprUjXiDP6p+ReWn -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:10 2025 by rpki-client