$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: L52CDhnD0fHDmd66Hb0/dhHTBedYz0DMYaBOfJ2ZaEI= Subject key identifier: 25:40:5A:18:7A:7E:62:7C:84:7B:24:4C:33:ED:70:7F:80:C6:14:55 Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 03F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 03EE Signing time: Thu 19 Jun 2025 00:21:13 +0000 Manifest this update: Thu 19 Jun 2025 00:21:13 +0000 Manifest next update: Thu 26 Jun 2025 00:21:13 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: JZUU6dwlJka9UBq/bFvAojPZ/mq3LrsVG1JZRJZIfh4=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Jun 19 00:21:13 2025 GMT Not After : Jun 26 00:21:13 2025 GMT Subject: CN=685357f9-00f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2c:4e:67:c9:68:12:62:ad:1d:12:32:f1:36: 13:11:d6:97:2e:f5:85:1a:6f:9a:38:23:87:89:c3: b6:f1:1d:ee:59:a3:36:51:6d:9d:cf:7e:67:09:32: 46:87:80:3d:1e:ba:cf:e1:b4:68:05:29:f6:62:3d: 94:08:f1:fb:e9:9f:b7:57:78:a2:e9:ee:86:69:9b: 73:fe:5b:00:2c:e2:15:e6:38:df:5e:85:93:ca:63: ba:77:e4:10:2b:9c:7c:e6:93:5d:56:c8:a6:13:2e: 54:fa:ab:22:cc:54:98:bf:d6:f1:62:34:11:e8:67: 91:e9:05:bd:06:92:b5:32:4b:2a:18:6b:ba:a5:d7: ca:da:f1:75:cd:da:0c:5f:5d:8d:d9:f6:a9:d1:02: 22:f5:02:36:4c:73:32:d3:80:b4:5e:ad:4e:5d:52: 50:e2:f4:4f:3e:ad:34:0c:0d:25:54:f0:24:f5:f1: b9:84:5b:fd:b7:69:a1:7b:12:55:23:04:8c:92:15: ba:21:e0:b7:6b:fe:27:a1:b9:ed:86:79:87:0d:61: 75:0a:c5:54:3d:24:e1:14:52:ab:e0:3c:2a:2f:a3: 33:de:22:5a:e3:8e:03:f8:28:03:ce:25:71:36:e2: 53:4e:dc:f1:db:29:af:ee:ac:d6:03:60:a9:df:f8: 21:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:40:5A:18:7A:7E:62:7C:84:7B:24:4C:33:ED:70:7F:80:C6:14:55 X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5a:f6:cf:9f:42:4a:51:8f:fc:24:e6:2e:9a:5b:87:76:f9: 7d:e1:96:ad:6d:b4:4e:66:7e:8c:d6:69:6f:09:c9:b8:4c:91: 72:30:e3:ce:d8:b7:5e:83:6e:56:ad:77:a2:46:71:00:73:d8: c7:c7:e5:3e:9e:7e:43:fd:3b:75:11:b6:80:6f:f4:52:fd:a0: 19:ed:97:7e:8c:ea:b4:5a:ff:3d:28:65:ed:60:1d:39:63:62: 48:c9:13:76:27:a8:90:f0:bb:b4:e8:11:b4:76:66:36:92:77: c6:09:cf:85:a3:3c:1e:eb:a9:3e:fe:d6:2d:39:b4:a8:a9:7b: 71:51:e8:9c:09:5b:3a:85:ba:02:0c:70:69:32:79:a8:04:6e: 32:3f:0c:29:02:4e:15:0b:8f:d6:78:0d:21:2d:0f:30:74:85: 26:70:75:52:ae:97:24:7d:59:a1:48:25:b2:db:57:8c:49:92: 81:8a:d1:2d:d2:ae:a1:fc:15:81:c7:e8:cf:a3:18:ad:53:1b: d9:d4:05:68:ee:2b:94:a5:92:71:0d:c8:c0:95:ee:2a:45:da: 5b:8f:6d:77:da:3d:ce:5b:3b:3f:a2:7c:b9:87:01:73:0e:db: 87:47:1f:d6:b3:23:ba:d0:0c:88:3a:0c:7b:b5:75:48:99:c0: 02:1a:b7:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUwNjE5MDAyMTEzWhcNMjUwNjI2MDAyMTEzWjAYMRYwFAYD VQQDEw02ODUzNTdmOS0wMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SxOZ8loEmKtHRIy8TYTEdaXLvWFGm+aOCOHicO28R3uWaM2UW2dz35nCTJG h4A9HrrP4bRoBSn2Yj2UCPH76Z+3V3ii6e6GaZtz/lsALOIV5jjfXoWTymO6d+QQ K5x85pNdVsimEy5U+qsizFSYv9bxYjQR6GeR6QW9BpK1MksqGGu6pdfK2vF1zdoM X12N2fap0QIi9QI2THMy04C0Xq1OXVJQ4vRPPq00DA0lVPAk9fG5hFv9t2mhexJV IwSMkhW6IeC3a/4nobnthnmHDWF1CsVUPSThFFKr4DwqL6Mz3iJa444D+CgDziVx NuJTTtzx2ymv7qzWA2Cp3/ghrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVAWhh6 fmJ8hHskTDPtcH+AxhRVMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/WvbPn0JKUY/8JOYumluHdvl94ZatbbROZn6M1mlvCcm4TJFyMOPO 2Ldeg25WrXeiRnEAc9jHx+U+nn5D/Tt1EbaAb/RS/aAZ7Zd+jOq0Wv89KGXtYB05 Y2JIyRN2J6iQ8Lu06BG0dmY2knfGCc+Fozwe66k+/tYtObSoqXtxUeicCVs6hboC DHBpMnmoBG4yPwwpAk4VC4/WeA0hLQ8wdIUmcHVSrpckfVmhSCWy21eMSZKBitEt 0q6h/BWBx+jPoxitUxvZ1AVo7iuUpZJxDcjAle4qRdpbj2132j3OWzs/ony5hwFz DtuHRx/WsyO60AyIOgx7tXVImcACGrdb -----END CERTIFICATE-----Generated at Thu Jun 19 05:12:29 2025 by rpki-client