$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: CttbCNKTSLW1CoN4453IkSsc6QDBdVwo7atB0IKGpsk= Subject key identifier: 45:60:65:9E:65:DE:56:50:F6:E2:C3:1C:F7:23:49:92:94:19:73:3E Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0905 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 08FE Signing time: Wed 06 Aug 2025 20:39:15 +0000 Manifest this update: Wed 06 Aug 2025 20:39:15 +0000 Manifest next update: Wed 13 Aug 2025 20:39:15 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: atuOIyre1KQ2p1l5YHe1EHsXxbKmoqP9K6fxHyE8Bpg=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Aug 6 20:39:15 2025 GMT Not After : Aug 13 20:39:15 2025 GMT Subject: CN=6893bd73-db6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:23:a2:f4:47:e0:71:a9:c1:c1:78:08:d7:1d: 1d:44:09:aa:9b:26:54:d0:89:91:63:84:05:85:75: f6:87:48:6b:dc:ae:0e:3e:f0:20:f2:2d:14:ae:43: da:af:9b:aa:37:b1:6b:71:3e:23:63:62:15:a6:e5: c3:c9:50:b0:79:b0:0d:d2:f8:9c:37:61:a3:42:4a: 6b:f5:a9:51:54:7c:2e:7a:e8:88:9b:ad:53:3f:f8: ac:f0:80:8b:f7:21:25:86:ac:7b:9e:08:60:fc:77: 4e:0d:00:41:a7:b8:e4:94:a7:09:1e:0e:d6:c0:ae: 29:e0:3f:03:9c:95:43:e9:5a:ef:31:61:80:b0:ec: 32:6f:f9:ac:6c:b7:f4:d1:f8:14:e0:47:da:3a:6c: 88:e4:cf:53:e2:0e:31:53:95:fc:ae:04:4d:30:75: f0:06:24:c4:7d:be:7a:3e:32:1e:2c:f2:2b:9e:a1: 4a:18:f6:6a:99:b6:67:7a:ac:b2:76:8a:9c:8b:2d: 51:0c:46:4b:f2:92:4f:c6:0e:21:29:f3:bd:c6:32: 17:df:68:76:9b:08:f1:2f:68:b8:4f:56:e4:2b:90: 7e:ac:70:66:c7:de:70:e9:16:9c:ae:f2:f5:2a:4a: 12:ab:7c:0f:4d:fd:96:47:ed:b4:e6:96:d8:4c:31: 1e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:60:65:9E:65:DE:56:50:F6:E2:C3:1C:F7:23:49:92:94:19:73:3E X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:fe:8a:0e:46:95:04:ed:bc:1e:03:a7:3f:f8:27:a1:a3:48: 69:56:74:8a:3e:65:71:45:32:d1:8b:e4:28:05:7b:1e:a4:1b: 21:24:6d:1e:3a:0d:1d:76:d7:31:4e:0b:f3:32:9a:7c:f9:59: 45:2e:55:40:9a:91:73:62:44:e3:c1:11:7b:a5:7c:55:dd:86: 4f:40:af:33:19:f6:47:ce:f0:91:91:4f:e2:8e:c0:60:e2:b6: cd:a2:3e:51:5e:13:16:ed:9c:d8:f9:73:a9:92:73:c6:24:27: d5:1b:d4:73:59:55:2c:e9:e4:92:8a:1a:64:e8:5c:7d:8d:8b: 48:98:c4:27:2e:3e:da:d8:1b:0a:8f:41:cd:12:ca:74:5d:c3: c2:b6:c9:7a:69:19:40:61:2b:50:40:10:93:91:cb:7f:c0:4f: 3f:16:eb:0b:da:5e:b8:8e:5b:b0:a6:b5:60:62:26:97:37:02: 23:19:0a:e2:be:38:7a:d7:9b:96:4d:cc:8f:44:b9:cd:3b:0b: a7:35:9f:94:75:f0:3c:e1:3d:f9:ce:53:ca:c8:71:e3:67:89: b8:ca:81:c0:49:3b:d9:4b:14:3f:b6:ae:0f:14:2a:f3:8f:f0: 3f:77:22:40:21:77:e6:84:30:cc:b1:c1:29:5b:11:42:99:03: c1:df:cd:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUwODA2MjAzOTE1WhcNMjUwODEzMjAzOTE1WjAYMRYwFAYD VQQDEw02ODkzYmQ3My1kYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviOi9EfgcanBwXgI1x0dRAmqmyZU0ImRY4QFhXX2h0hr3K4OPvAg8i0UrkPa r5uqN7FrcT4jY2IVpuXDyVCwebAN0vicN2GjQkpr9alRVHwueuiIm61TP/is8ICL 9yElhqx7nghg/HdODQBBp7jklKcJHg7WwK4p4D8DnJVD6VrvMWGAsOwyb/msbLf0 0fgU4EfaOmyI5M9T4g4xU5X8rgRNMHXwBiTEfb56PjIeLPIrnqFKGPZqmbZneqyy doqciy1RDEZL8pJPxg4hKfO9xjIX32h2mwjxL2i4T1bkK5B+rHBmx95w6RacrvL1 KkoSq3wPTf2WR+205pbYTDEePQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVgZZ5l 3lZQ9uLDHPcjSZKUGXM+MB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp/ooORpUE7bweA6c/+Ceho0hpVnSKPmVxRTLRi+QoBXsepBshJG0e Og0ddtcxTgvzMpp8+VlFLlVAmpFzYkTjwRF7pXxV3YZPQK8zGfZHzvCRkU/ijsBg 4rbNoj5RXhMW7ZzY+XOpknPGJCfVG9RzWVUs6eSSihpk6Fx9jYtImMQnLj7a2BsK j0HNEsp0XcPCtsl6aRlAYStQQBCTkct/wE8/FusL2l64jluwprVgYiaXNwIjGQri vjh615uWTcyPRLnNOwunNZ+UdfA84T35zlPKyHHjZ4m4yoHASTvZSxQ/tq4PFCrz j/A/dyJAIXfmhDDMscEpWxFCmQPB383f -----END CERTIFICATE-----Generated at Fri Aug 8 20:41:06 2025 by rpki-client