$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: XPQOoHwU5bYhNAX9qhWYzCj/yR6XwHFW2GBRo8j4c3k= Subject key identifier: 72:D0:FD:0D:F3:3F:09:22:23:71:3E:B3:5A:3B:14:06:BD:D0:A5:DC Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 08EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 08E4 Signing time: Mon 16 Jun 2025 20:13:47 +0000 Manifest this update: Mon 16 Jun 2025 20:13:46 +0000 Manifest next update: Mon 23 Jun 2025 20:13:46 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: fgh9qRnHoTyaaVuTP45/7wKkzj+zLAvla77Gi9B25rU=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2283 (0x8eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Jun 16 20:13:46 2025 GMT Not After : Jun 23 20:13:46 2025 GMT Subject: CN=68507afa-6b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:52:7d:47:22:05:49:fe:c7:cc:53:fc:3c:67: 3b:be:a0:53:76:3e:da:eb:6b:db:d3:86:4b:68:1b: 7c:d2:4d:e7:a9:37:09:28:80:9f:f7:93:6d:4a:10: 87:10:69:ba:e2:6f:cc:0d:db:4a:3e:b4:4d:b3:ba: 87:c8:38:d2:c6:02:a9:f7:11:6d:74:5d:6b:ca:f3: 67:ec:a9:01:37:97:35:95:ae:68:3e:12:a8:4b:15: 78:93:c1:1f:23:a5:9b:06:04:e9:a2:08:96:c1:c3: f3:16:bc:6b:d7:e8:1b:77:2c:c0:d1:65:5d:5a:39: fe:d7:42:df:80:b7:90:c9:e2:b0:41:08:03:eb:aa: 06:8b:29:8b:80:14:16:e4:ab:76:e5:44:52:17:df: 9f:13:8d:bf:df:e5:52:02:73:1b:37:43:8b:75:d5: a9:ab:50:4b:79:66:68:ce:5e:4b:40:60:02:fa:ee: 12:6e:3e:67:4d:a9:c1:f3:f7:c8:97:42:09:37:87: ac:ee:84:0d:59:02:29:58:0e:06:f7:98:c8:6e:52: 8f:11:98:f4:21:ba:07:19:4d:32:77:17:71:69:f7: 93:91:3f:fa:4d:27:28:16:ef:7f:21:bc:35:ff:d1: af:08:4a:dc:94:a5:0e:f0:ef:9c:62:42:08:59:a1: e8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:D0:FD:0D:F3:3F:09:22:23:71:3E:B3:5A:3B:14:06:BD:D0:A5:DC X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:ff:cd:37:50:e0:98:67:a5:64:19:3d:9e:97:34:a1:34:96: 5c:43:e9:8a:3f:a7:21:07:5f:91:60:cb:bb:fc:f5:70:8f:4e: c0:88:e4:e7:08:d2:6e:19:69:d8:98:25:4f:57:df:f7:2b:50: 7f:9d:7c:6c:af:18:30:2b:ba:f0:75:a6:13:15:a3:86:7f:07: 97:a1:c4:f7:f9:e4:01:b1:f2:e3:f4:8a:a3:14:ee:14:43:98: ab:b4:b2:78:9b:44:de:a6:ae:bd:54:06:b1:a3:61:19:05:32: fe:73:57:27:cc:14:e7:d2:48:3f:d3:bb:e4:71:7c:25:31:e5: 02:2c:d6:c4:f9:01:13:0b:cf:75:7e:34:89:be:09:dc:11:81: af:31:50:6f:e2:24:9b:d9:59:78:c9:cf:cb:33:02:07:09:b4: 60:6a:8d:80:52:2c:bf:0a:84:95:8e:c3:a6:9b:ef:12:80:aa: c2:a8:34:25:a6:be:f2:10:4c:f7:0a:a0:2e:70:11:4f:4c:8a: 89:d3:01:3a:92:5b:6c:23:1e:68:95:c9:60:25:10:1b:29:63: 55:9b:97:28:d3:c6:bb:5f:e4:d7:d6:3a:b6:31:b8:73:2e:65: 4b:57:62:ff:73:59:17:9c:76:54:97:70:4c:05:07:df:4d:7b: 6e:ce:85:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUwNjE2MjAxMzQ2WhcNMjUwNjIzMjAxMzQ2WjAYMRYwFAYD VQQDEw02ODUwN2FmYS02YjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1J9RyIFSf7HzFP8PGc7vqBTdj7a62vb04ZLaBt80k3nqTcJKICf95NtShCH EGm64m/MDdtKPrRNs7qHyDjSxgKp9xFtdF1ryvNn7KkBN5c1la5oPhKoSxV4k8Ef I6WbBgTpogiWwcPzFrxr1+gbdyzA0WVdWjn+10LfgLeQyeKwQQgD66oGiymLgBQW 5Kt25URSF9+fE42/3+VSAnMbN0OLddWpq1BLeWZozl5LQGAC+u4Sbj5nTanB8/fI l0IJN4es7oQNWQIpWA4G95jIblKPEZj0IboHGU0ydxdxafeTkT/6TScoFu9/Ibw1 /9GvCErclKUO8O+cYkIIWaHo1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLQ/Q3z PwkiI3E+s1o7FAa90KXcMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF/803UOCYZ6VkGT2elzShNJZcQ+mKP6chB1+RYMu7/PVwj07AiOTn CNJuGWnYmCVPV9/3K1B/nXxsrxgwK7rwdaYTFaOGfweXocT3+eQBsfLj9IqjFO4U Q5irtLJ4m0Tepq69VAaxo2EZBTL+c1cnzBTn0kg/07vkcXwlMeUCLNbE+QETC891 fjSJvgncEYGvMVBv4iSb2Vl4yc/LMwIHCbRgao2AUiy/CoSVjsOmm+8SgKrCqDQl pr7yEEz3CqAucBFPTIqJ0wE6kltsIx5olclgJRAbKWNVm5co08a7X+TX1jq2Mbhz LmVLV2L/c1kXnHZUl3BMBQffTXtuzoVC -----END CERTIFICATE-----Generated at Wed Jun 18 18:19:28 2025 by rpki-client