$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: VYT7nqj0CXcZabSSoMpWvmdj27XS/uCQ9eByj5ccSdE= Subject key identifier: 07:B0:6E:88:8E:F3:9E:FB:91:54:9F:CE:A6:B8:E3:D6:28:FD:DD:E5 Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 03D3 Signing time: Fri 25 Apr 2025 00:22:01 +0000 Manifest this update: Fri 25 Apr 2025 00:22:01 +0000 Manifest next update: Fri 02 May 2025 00:22:01 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: 1ogvKX1UsvHI1cE1ZNoE6w0LsO4n4YyVyMAL5/LkBAI=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Apr 25 00:22:01 2025 GMT Not After : May 2 00:22:01 2025 GMT Subject: CN=680ad5a9-26b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ec:10:63:6e:28:b3:06:f7:5c:ac:a4:c4:8d: 02:7e:40:fa:ca:ff:cc:63:c7:85:4e:ee:7c:23:6a: 5f:5f:d7:24:73:1e:3b:ba:8d:67:b5:4b:4c:cb:44: 2d:a9:87:b5:4c:eb:8a:2d:4f:75:85:14:89:f6:b1: b1:60:d6:94:76:f0:42:df:46:0a:5e:57:4b:60:72: 9d:ff:f0:7f:73:3d:b2:c4:f1:cf:b4:fe:b0:83:b7: f2:5a:76:52:0e:c3:54:b7:ae:2c:68:80:3d:c3:a6: 89:09:f5:a2:20:cf:e5:5d:79:dd:2c:91:b5:4e:28: 71:4f:f9:60:ba:94:98:e8:b6:50:ba:ee:40:7e:bd: 21:88:47:ee:9c:0c:7b:c6:39:a3:ba:21:ea:8e:e8: ac:31:57:0e:16:52:88:7f:f0:c9:5b:0c:1f:b3:68: 5f:b0:9e:fd:dc:74:51:87:b2:a2:90:d2:a7:cf:da: 22:38:e7:27:96:9c:b0:3c:9a:81:ba:c3:17:4d:6b: bb:77:8c:fd:1a:dd:74:ee:ac:e1:53:ab:01:6e:ee: b3:06:83:75:08:ce:44:c1:2e:6e:57:c4:ac:47:11: 81:28:bd:6d:11:30:e2:31:1c:ea:3d:b5:8f:0c:5b: 79:9c:c6:e3:97:33:17:1f:b7:6a:b9:75:08:42:89: 0c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B0:6E:88:8E:F3:9E:FB:91:54:9F:CE:A6:B8:E3:D6:28:FD:DD:E5 X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:83:9c:ec:45:d6:ef:e8:2b:37:82:f0:d6:96:a4:4a:a9:e5: 93:7c:22:55:dc:c4:80:82:bf:af:7e:c0:a4:d6:6d:02:81:19: 0b:61:11:e9:e8:99:60:74:8d:bb:1a:a3:29:01:85:30:22:21: 1c:e7:17:32:8f:fc:e7:8f:d0:1c:b0:7e:3f:01:be:38:89:f0: de:c3:1c:00:5e:11:77:09:05:2b:d3:46:6d:3a:41:34:92:e1: 77:c3:9d:f7:f9:1f:57:b1:e5:6d:40:c6:84:35:42:4b:d2:e4: 32:4b:48:87:94:0e:d9:cf:e9:1e:45:d3:fa:f4:a9:83:db:73: fa:7f:b4:cf:6a:8b:a7:d1:33:c2:26:9a:a5:56:22:8b:bb:d3: ce:33:07:2a:25:c0:e8:35:f9:78:02:b1:a2:7a:df:82:10:8d: 4e:c6:a6:39:38:8c:00:71:29:d8:20:6a:f8:26:b8:9c:35:8c: ea:e7:c0:4d:a9:42:82:e8:d3:a7:48:6d:b6:76:9b:93:ab:6e: aa:71:74:72:67:87:a5:fb:a1:e9:85:a2:ba:e2:81:57:18:aa: 3d:60:8c:fa:ce:99:87:e2:6b:c1:6f:54:76:c6:57:a5:92:b7: de:bd:36:5d:6b:b4:1c:a3:75:8f:1c:4a:94:6f:0a:06:f6:d2: a3:61:ad:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUwNDI1MDAyMjAxWhcNMjUwNTAyMDAyMjAxWjAYMRYwFAYD VQQDEw02ODBhZDVhOS0yNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuwQY24oswb3XKykxI0CfkD6yv/MY8eFTu58I2pfX9ckcx47uo1ntUtMy0Qt qYe1TOuKLU91hRSJ9rGxYNaUdvBC30YKXldLYHKd//B/cz2yxPHPtP6wg7fyWnZS DsNUt64saIA9w6aJCfWiIM/lXXndLJG1TihxT/lgupSY6LZQuu5Afr0hiEfunAx7 xjmjuiHqjuisMVcOFlKIf/DJWwwfs2hfsJ793HRRh7KikNKnz9oiOOcnlpywPJqB usMXTWu7d4z9Gt107qzhU6sBbu6zBoN1CM5EwS5uV8SsRxGBKL1tETDiMRzqPbWP DFt5nMbjlzMXH7dquXUIQokMswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAewboiO 8577kVSfzqa449Yo/d3lMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvg5zsRdbv6Cs3gvDWlqRKqeWTfCJV3MSAgr+vfsCk1m0CgRkLYRHp 6JlgdI27GqMpAYUwIiEc5xcyj/znj9AcsH4/Ab44ifDewxwAXhF3CQUr00ZtOkE0 kuF3w533+R9XseVtQMaENUJL0uQyS0iHlA7Zz+keRdP69KmD23P6f7TPaoun0TPC JpqlViKLu9POMwcqJcDoNfl4ArGiet+CEI1OxqY5OIwAcSnYIGr4JricNYzq58BN qUKC6NOnSG22dpuTq26qcXRyZ4el+6HphaK64oFXGKo9YIz6zpmH4mvBb1R2xlel krfevTZda7Qco3WPHEqUbwoG9tKjYa0/ -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:09 2025 by rpki-client