$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: aywErXgdQ0cfsY4JSWXefhyOyzyCeNPRuHa0bZ6pByg= Subject key identifier: 0A:F5:B8:B2:39:8D:08:5A:53:72:01:A0:F9:90:39:97:02:1F:36:2A Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 08D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 08C9 Signing time: Thu 24 Apr 2025 20:20:33 +0000 Manifest this update: Thu 24 Apr 2025 20:20:32 +0000 Manifest next update: Thu 01 May 2025 20:20:32 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: Z7V/UWSk1dfsiWl1EIoH2G8aNUdyiZeZG3eH/+pX6q4=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2256 (0x8d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Apr 24 20:20:32 2025 GMT Not After : May 1 20:20:32 2025 GMT Subject: CN=680a9d11-0806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bd:57:37:68:fc:26:34:9d:17:9e:46:af:2a: f3:4b:5e:07:c8:be:72:ce:70:15:f9:c5:d6:38:ea: a4:4f:34:77:a0:66:b3:3d:0c:51:c2:fa:02:9b:fa: 1f:cf:88:7e:eb:05:1b:d3:38:a1:1f:69:77:27:d2: 6b:c6:f6:67:cc:ad:85:3f:9a:f9:54:c5:aa:19:14: 09:8a:db:54:b4:83:4c:36:46:93:27:99:9f:9d:6a: dd:13:70:f4:d5:13:a0:42:f6:e4:69:7a:14:44:85: ed:29:84:88:08:20:03:91:49:58:97:71:86:8d:42: 7d:69:9d:04:01:99:13:dc:46:17:61:1e:b8:06:51: 15:6b:ec:f8:1e:93:79:ab:6c:63:2e:0b:8f:f9:5b: 22:8d:75:af:b3:cb:8e:ca:c6:43:85:48:f1:66:6c: 99:71:9e:6e:db:ea:90:8b:4f:23:f9:f1:8e:1c:e5: c8:5f:02:f2:58:64:cb:18:3d:15:ab:9c:1c:26:db: 72:d4:a2:15:1a:8d:ca:8d:cf:c3:6f:ac:67:7b:d4: a1:c7:6b:8d:2c:3b:56:ca:3d:7c:e2:81:63:0c:73: 0b:82:b3:a6:23:aa:35:09:f6:95:20:84:8a:64:5c: 29:eb:26:c0:bf:4c:87:33:d7:9f:5c:35:60:27:e0: 34:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F5:B8:B2:39:8D:08:5A:53:72:01:A0:F9:90:39:97:02:1F:36:2A X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:15:8d:ca:77:00:94:04:27:b6:5e:8a:11:e7:a6:f3:0e:0e: 37:c8:61:ab:42:39:8d:3c:02:92:c6:42:15:f5:03:bd:c7:f0: f8:80:7e:2b:45:04:88:80:3d:05:1f:93:50:2d:96:9f:85:a1: 64:aa:2b:61:44:08:fb:63:39:e7:60:ab:8f:65:84:78:02:8c: a0:07:66:38:4a:30:41:9f:d6:55:dc:b5:3e:a9:c1:56:08:52: 57:c4:8f:47:66:84:eb:d6:da:97:3c:0e:27:c1:aa:fd:d8:75: 24:cf:94:b9:14:1a:2d:41:e6:e1:d4:f6:4c:d4:44:79:a9:c3: d4:ed:fa:cc:96:11:b7:9a:c4:c6:3c:a3:7c:1f:9b:3b:0d:14: 3c:25:98:d6:7e:1b:e6:5b:b5:81:8b:98:5a:c7:1f:ba:ff:ef: dc:74:73:03:c7:7b:51:ca:d1:d6:4f:18:a6:2b:bd:db:95:36: 5a:f1:1a:76:76:31:41:35:f7:bb:19:35:47:f1:72:7c:83:29: 3b:b7:ce:fc:1f:44:01:6e:21:38:e8:4f:10:f1:95:04:43:1d: 56:44:95:95:46:74:5b:ea:b1:e3:75:a7:ea:b4:25:97:89:3a: 63:a1:f9:63:88:10:3e:44:2e:44:f4:c9:d0:7f:78:1b:bf:c2: 03:f9:de:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUwNDI0MjAyMDMyWhcNMjUwNTAxMjAyMDMyWjAYMRYwFAYD VQQDEw02ODBhOWQxMS0wODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApL1XN2j8JjSdF55GryrzS14HyL5yznAV+cXWOOqkTzR3oGazPQxRwvoCm/of z4h+6wUb0zihH2l3J9JrxvZnzK2FP5r5VMWqGRQJittUtINMNkaTJ5mfnWrdE3D0 1ROgQvbkaXoURIXtKYSICCADkUlYl3GGjUJ9aZ0EAZkT3EYXYR64BlEVa+z4HpN5 q2xjLguP+VsijXWvs8uOysZDhUjxZmyZcZ5u2+qQi08j+fGOHOXIXwLyWGTLGD0V q5wcJtty1KIVGo3Kjc/Db6xne9Shx2uNLDtWyj184oFjDHMLgrOmI6o1CfaVIISK ZFwp6ybAv0yHM9efXDVgJ+A0LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAr1uLI5 jQhaU3IBoPmQOZcCHzYqMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2FY3KdwCUBCe2XooR56bzDg43yGGrQjmNPAKSxkIV9QO9x/D4gH4r RQSIgD0FH5NQLZafhaFkqithRAj7YznnYKuPZYR4AoygB2Y4SjBBn9ZV3LU+qcFW CFJXxI9HZoTr1tqXPA4nwar92HUkz5S5FBotQebh1PZM1ER5qcPU7frMlhG3msTG PKN8H5s7DRQ8JZjWfhvmW7WBi5haxx+6/+/cdHMDx3tRytHWTximK73blTZa8Rp2 djFBNfe7GTVH8XJ8gyk7t878H0QBbiE46E8Q8ZUEQx1WRJWVRnRb6rHjdafqtCWX iTpjofljiBA+RC5E9MnQf3gbv8ID+d4Z -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:14 2025 by rpki-client