$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft File: Har0X7TSckB6UqY7tzllNp6RIO0.mft (raw, json) Hash identifier: h+nZLNo3u9sPQoyulYPi86bJKrkOfkYsUsU23CijjKs= Subject key identifier: 5B:19:9F:C9:93:FA:51:79:05:5B:50:B1:E5:8D:8D:51:3A:DE:A4:2D Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft Manifest number: 0184 Signing time: Fri 13 Jun 2025 02:38:18 +0000 Manifest this update: Fri 13 Jun 2025 02:38:18 +0000 Manifest next update: Fri 20 Jun 2025 02:38:18 +0000 Files and hashes: 1: Har0X7TSckB6UqY7tzllNp6RIO0.crl (hash: H3knTfkY50TtfLWU89gUyEq7DLI5aOh4L0RjUtDMvVo=) 2: C369BA98260D11F082934618C4F9AE02.roa (hash: Iy42QwXSYupuqL3QvzsRCg121JGBmvoKUxVedTulj7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A, serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Jun 13 02:38:18 2025 GMT Not After : Jun 20 02:38:18 2025 GMT Subject: CN=684b8f1a-12d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b9:47:64:e8:b0:7a:92:0f:38:20:02:40:b3: 72:9a:f0:a6:a3:d8:74:13:24:0e:87:d2:a0:bf:04: 23:09:a7:57:22:db:40:f1:e2:7c:13:65:18:1d:b1: dc:50:e3:97:8b:ca:1f:84:e1:89:f5:09:a7:e5:d3: c9:52:ad:30:ec:c0:e7:34:26:ae:2e:66:5e:1e:35: 08:5c:81:f3:e4:c6:be:61:55:96:85:e0:ac:82:97: 60:b0:10:cb:90:c5:d6:0c:c6:e3:32:14:09:a0:66: a9:b9:9b:3d:a0:5a:b2:a2:57:b4:49:a7:ab:c7:10: 70:d5:36:4c:f5:0f:a5:bb:31:3e:8b:23:8d:73:ad: 79:92:2b:b4:0b:5d:09:36:f4:5c:36:71:94:01:62: 8f:ac:c3:16:03:75:2f:8e:f9:e3:fd:6f:d0:53:b6: 52:d3:75:d0:0a:0e:ec:f6:1b:af:9b:56:d8:39:18: e8:36:c4:2b:2e:3c:ad:c6:16:95:c4:27:29:33:8a: 7c:d6:a0:73:8f:a0:8c:9e:0c:91:6b:6d:43:99:96: 99:39:0b:67:05:fb:68:e1:0b:5a:66:82:d6:df:99: c6:e1:1c:4f:f1:bd:f1:11:aa:80:fd:6b:11:59:58: 88:ec:0e:69:e9:3f:ea:36:b4:04:14:19:cc:d5:85: f1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:19:9F:C9:93:FA:51:79:05:5B:50:B1:E5:8D:8D:51:3A:DE:A4:2D X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:86:89:ac:76:60:f8:89:35:51:20:39:da:92:85:9b:f6:b5: ef:e9:be:7e:88:02:96:10:61:27:c8:c1:25:d2:ed:3d:f5:e6: fa:56:5a:6a:40:4f:a2:d4:7c:36:6d:e7:fb:ce:30:1e:9f:db: 53:ff:c4:e6:86:f8:7f:03:45:a9:02:1c:31:7a:3f:7d:91:90: 2a:00:87:61:30:7f:3d:04:7e:6e:2a:d8:02:91:2d:c7:9d:78: 78:b4:4b:51:8c:41:f7:1a:53:38:46:20:cc:a9:3c:04:17:0e: 1d:be:d5:89:77:f6:52:f1:c4:0b:f2:d6:97:66:ec:95:77:6c: 26:ac:ea:a0:ac:c4:7d:95:00:1a:d8:ae:1f:d1:79:8f:ff:da: fb:d3:9c:0c:44:19:eb:7c:de:19:38:79:d6:0d:b6:a1:b7:68: c5:b9:48:35:99:af:fd:0a:90:08:3c:d5:12:32:7f:7b:b0:52: 6b:61:30:41:94:41:8f:48:5f:f0:73:cb:12:2d:b4:b7:d9:f5: 33:5e:ce:42:76:d2:a0:3c:9a:f2:51:5e:b6:0b:5c:39:2c:dd: b2:40:bf:10:35:04:82:94:89:1e:63:68:33:4b:b1:45:00:f0: fa:ea:99:43:e4:80:e4:68:0a:77:05:01:91:6b:54:77:dc:35: ba:2d:63:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjUwNjEzMDIzODE4WhcNMjUwNjIwMDIzODE4WjAYMRYwFAYD VQQDEw02ODRiOGYxYS0xMmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rlHZOiwepIPOCACQLNymvCmo9h0EyQOh9KgvwQjCadXIttA8eJ8E2UYHbHc UOOXi8ofhOGJ9Qmn5dPJUq0w7MDnNCauLmZeHjUIXIHz5Ma+YVWWheCsgpdgsBDL kMXWDMbjMhQJoGapuZs9oFqyole0SaerxxBw1TZM9Q+luzE+iyONc615kiu0C10J NvRcNnGUAWKPrMMWA3Uvjvnj/W/QU7ZS03XQCg7s9huvm1bYORjoNsQrLjytxhaV xCcpM4p81qBzj6CMngyRa21DmZaZOQtnBfto4QtaZoLW35nG4RxP8b3xEaqA/WsR WViI7A5p6T/qNrQEFBnM1YXxBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsZn8mT +lF5BVtQseWNjVE63qQtMB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2Nr QjZVcVk3dHpsbE5wNlJJTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnhomsdmD4iTVRIDnakoWb9rXv6b5+iAKWEGEnyMEl0u099eb6Vlpq QE+i1Hw2bef7zjAen9tT/8Tmhvh/A0WpAhwxej99kZAqAIdhMH89BH5uKtgCkS3H nXh4tEtRjEH3GlM4RiDMqTwEFw4dvtWJd/ZS8cQL8taXZuyVd2wmrOqgrMR9lQAa 2K4f0XmP/9r705wMRBnrfN4ZOHnWDbaht2jFuUg1ma/9CpAIPNUSMn97sFJrYTBB lEGPSF/wc8sSLbS32fUzXs5CdtKgPJryUV62C1w5LN2yQL8QNQSClIkeY2gzS7FF APD66plD5IDkaAp3BQGRa1R33DW6LWPB -----END CERTIFICATE-----Generated at Sat Jun 14 18:00:47 2025 by rpki-client