$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft File: Har0X7TSckB6UqY7tzllNp6RIO0.mft (raw, json) Hash identifier: gZZSnpqChGp4E29NbgNw7wjveDE2vcnvGd0WOGc6/ds= Subject key identifier: 71:3C:47:76:2E:F7:FB:8B:5C:1F:8C:00:D6:F9:DC:FC:11:9E:9F:F1 Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft Manifest number: 016A Signing time: Fri 25 Apr 2025 03:01:57 +0000 Manifest this update: Fri 25 Apr 2025 03:01:56 +0000 Manifest next update: Fri 02 May 2025 03:01:56 +0000 Files and hashes: 1: Har0X7TSckB6UqY7tzllNp6RIO0.crl (hash: fvI9UCdqWFkZ3CpXdjtBYGfiy/iZaIZ9Oa49IWObXBU=) 2: 1FE69168F9CB11EDAF704E7FC4F9AE02.roa (hash: ecoU/18dnE70yGBufRntMgWEavYiNwHveeZ+SS7xzWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A, serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Apr 25 03:01:56 2025 GMT Not After : May 2 03:01:56 2025 GMT Subject: CN=680afb24-a6b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f1:cc:c1:e8:ad:88:0f:d8:9c:0f:3e:c1:36: b8:a5:10:c4:56:cc:d4:3d:f2:c5:49:4a:54:67:37: d6:2f:92:c2:be:82:ef:34:ec:d6:bb:a6:45:5a:ad: ca:e2:94:31:48:a4:79:fe:3d:1c:19:10:52:12:ad: 64:11:49:89:87:a1:ec:44:3e:cb:1d:56:c2:1b:09: 13:ca:36:00:49:a7:64:a6:c6:8e:47:db:37:73:86: 68:6b:b3:ad:3e:d4:42:a9:0b:f4:c3:a7:4e:38:b1: 03:a4:85:31:6f:ec:37:c6:03:62:56:93:04:b1:3e: 74:76:e0:d8:2f:e1:17:6c:03:0b:c2:05:0d:6b:54: 81:7c:2c:ee:ae:32:45:c4:5d:9c:75:c6:8c:ad:98: 4d:3d:80:a2:c3:f9:af:13:55:b5:d2:77:3f:11:4d: 5b:c8:15:92:25:2e:44:99:e1:2a:26:aa:94:ea:62: 51:88:40:16:75:82:77:1f:f3:1d:3f:09:38:4b:f4: a4:09:e1:12:e8:64:20:7d:bd:c9:2b:b0:fe:63:66: 9f:8c:ca:a8:eb:e4:3d:17:08:4f:7b:af:cd:07:7c: 04:3c:ba:20:10:ce:6f:a0:4c:8e:02:aa:4f:56:9b: 15:9f:a0:85:fd:05:50:cc:7d:72:b8:95:6b:60:59: 1a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3C:47:76:2E:F7:FB:8B:5C:1F:8C:00:D6:F9:DC:FC:11:9E:9F:F1 X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:79:ee:24:7a:c5:8a:ec:88:de:07:b2:a5:2c:3b:6c:c0:f5: cc:fb:d5:41:b6:75:5c:2c:05:89:d8:79:12:43:b3:3a:74:e3: 16:28:cd:6d:50:ba:77:77:c7:d9:bb:d4:ff:7a:2b:2e:8b:eb: 55:25:b9:c5:11:9a:42:c7:be:ef:08:f0:0d:e3:72:e3:2f:69: 23:3a:a3:3b:94:bb:f0:cf:9e:18:63:84:94:f1:7a:6f:6d:cd: 95:d5:11:4a:5b:65:79:ef:42:b2:7e:64:b7:f9:f6:48:f0:04: ef:16:1e:57:2f:d2:5f:d8:bc:ba:95:7c:79:51:ba:d4:2e:74: 78:7e:e0:92:db:a2:35:03:a0:d0:cf:44:3c:90:ac:00:2c:d1: 39:c5:b5:83:29:82:ec:a1:8c:a4:ed:44:e3:73:24:99:0d:ef: f1:13:6b:f6:20:4f:d8:45:cc:77:bd:16:6f:ca:43:e0:b6:76: e8:aa:30:a9:75:7b:31:fd:71:cb:8d:27:f1:62:3e:dc:fa:d3: cc:d5:cb:a8:19:db:08:26:2d:7d:08:63:4e:02:cd:c5:bb:bc: 50:fa:dc:8f:6d:c7:5d:b2:14:9f:08:71:a3:6b:ab:72:ce:a1: f0:e3:a5:da:20:04:6a:72:c0:bc:b1:73:05:c0:d4:84:76:d2: 20:3e:5e:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjUwNDI1MDMwMTU2WhcNMjUwNTAyMDMwMTU2WjAYMRYwFAYD VQQDEw02ODBhZmIyNC1hNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/HMweitiA/YnA8+wTa4pRDEVszUPfLFSUpUZzfWL5LCvoLvNOzWu6ZFWq3K 4pQxSKR5/j0cGRBSEq1kEUmJh6HsRD7LHVbCGwkTyjYASadkpsaOR9s3c4Zoa7Ot PtRCqQv0w6dOOLEDpIUxb+w3xgNiVpMEsT50duDYL+EXbAMLwgUNa1SBfCzurjJF xF2cdcaMrZhNPYCiw/mvE1W10nc/EU1byBWSJS5EmeEqJqqU6mJRiEAWdYJ3H/Md Pwk4S/SkCeES6GQgfb3JK7D+Y2afjMqo6+Q9FwhPe6/NB3wEPLogEM5voEyOAqpP VpsVn6CF/QVQzH1yuJVrYFkaPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHE8R3Yu 9/uLXB+MANb53PwRnp/xMB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2Nr QjZVcVk3dHpsbE5wNlJJTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ee4kesWK7IjeB7KlLDtswPXM+9VBtnVcLAWJ2HkSQ7M6dOMWKM1t ULp3d8fZu9T/eisui+tVJbnFEZpCx77vCPAN43LjL2kjOqM7lLvwz54YY4SU8Xpv bc2V1RFKW2V570KyfmS3+fZI8ATvFh5XL9Jf2Ly6lXx5UbrULnR4fuCS26I1A6DQ z0Q8kKwALNE5xbWDKYLsoYyk7UTjcySZDe/xE2v2IE/YRcx3vRZvykPgtnboqjCp dXsx/XHLjSfxYj7c+tPM1cuoGdsIJi19CGNOAs3Fu7xQ+tyPbcddshSfCHGja6ty zqHw46XaIARqcsC8sXMFwNSEdtIgPl4s -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:50 2025 by rpki-client