$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: pu1bsQVTki/KOdDpK3Ii8vsanQhkwvHaEY1ErjOHITQ= Subject key identifier: 42:AC:59:5D:40:3C:E8:D1:5A:64:A5:E8:7F:D4:FB:2E:41:8A:D5:C5 Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 348D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 348A Signing time: Sat 14 Jun 2025 14:25:48 +0000 Manifest this update: Sat 14 Jun 2025 14:25:47 +0000 Manifest next update: Sat 21 Jun 2025 14:25:47 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: CUaBqJI6AR8/UeYvoLqo+9Gag91SeipOQXTcAO26wW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Jun 14 14:25:47 2025 GMT Not After : Jun 21 14:25:47 2025 GMT Subject: CN=684d866b-6af2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2c:1e:5d:3c:67:28:83:d8:f2:e1:8b:8a:2e: bd:bc:d7:22:cb:17:cd:83:3a:79:da:3d:87:32:b3: 12:39:6e:c2:6b:77:d4:5e:a8:ea:b2:e6:62:2c:45: 84:9d:52:88:25:31:97:c4:01:f7:cf:60:c7:1d:eb: c3:ea:66:b7:b5:84:f8:bc:6d:c1:27:b7:cc:71:d3: 96:df:a2:b8:85:eb:39:0a:4f:48:06:9d:a6:11:2f: 35:74:66:22:cb:69:f8:66:67:04:73:c2:f6:1b:e9: cd:54:6c:16:57:0d:74:98:ea:cd:98:c3:8f:9f:0a: 1e:25:f2:57:8c:43:31:32:31:4a:1d:76:5a:50:49: eb:ca:84:3d:4c:cb:ea:3d:57:23:02:07:f4:64:52: 64:22:d2:bc:fd:ff:1d:97:ca:0e:70:8e:7d:4a:32: ad:bb:3a:05:2b:39:6c:ee:9c:ab:50:ea:4b:87:ce: bc:8a:c0:3b:4b:38:3e:57:b8:ad:d9:c3:71:e7:bf: a5:a7:59:c7:37:2a:49:de:c3:20:48:ce:3c:30:25: 7b:be:c4:52:1d:0e:da:e5:7f:8b:39:23:68:76:6f: 26:4f:85:29:4c:02:46:cf:df:e6:b7:34:d1:65:70: 1d:42:fd:73:a8:9b:b3:c6:3f:a0:d4:e4:e4:99:8d: 46:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AC:59:5D:40:3C:E8:D1:5A:64:A5:E8:7F:D4:FB:2E:41:8A:D5:C5 X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:bb:ae:d1:75:d4:b1:4f:de:7c:78:3e:97:80:3e:0b:0d:6b: 78:a9:e3:8a:c8:d5:df:d6:13:23:1f:f7:b5:9a:d7:a6:ef:bb: f8:9d:03:14:79:a0:7e:2e:01:d6:a9:b7:c1:a2:f7:ed:d0:2c: e3:53:65:82:cd:b0:12:dc:94:5f:88:6e:7a:c8:3c:65:02:66: 50:0f:c5:99:d0:41:df:ca:0f:6a:50:26:6a:b2:64:a4:ee:9e: 20:b6:b9:2b:86:d7:71:bb:63:f6:50:72:87:f0:03:8b:dd:f8: b2:b4:08:79:9b:af:74:81:36:47:fc:3a:a2:3d:61:4e:57:90: ec:24:45:9f:69:3f:72:23:0a:9d:79:27:79:6d:b5:d9:31:ae: bf:3c:76:8a:6a:8c:2b:0e:93:f3:5b:c2:f0:d5:8c:2c:fd:73: 50:70:55:6b:0d:fa:0b:16:53:e1:94:01:df:8a:35:5c:2d:e7: 50:4e:3d:b9:9b:6b:19:03:c3:32:79:37:8a:19:ab:a6:76:c7: 64:f7:91:ee:70:5d:ff:6d:ca:57:d5:43:86:43:cd:c4:c5:c1: bd:33:80:7c:d4:76:23:ac:68:8d:24:6b:79:4e:d6:1d:e0:ec: c8:d0:5f:d7:cf:a3:57:77:34:e7:64:73:fe:9d:d5:ca:61:92: b8:c5:39:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjUwNjE0MTQyNTQ3WhcNMjUwNjIxMTQyNTQ3WjAYMRYwFAYD VQQDEw02ODRkODY2Yi02YWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iweXTxnKIPY8uGLii69vNciyxfNgzp52j2HMrMSOW7Ca3fUXqjqsuZiLEWE nVKIJTGXxAH3z2DHHevD6ma3tYT4vG3BJ7fMcdOW36K4hes5Ck9IBp2mES81dGYi y2n4ZmcEc8L2G+nNVGwWVw10mOrNmMOPnwoeJfJXjEMxMjFKHXZaUEnryoQ9TMvq PVcjAgf0ZFJkItK8/f8dl8oOcI59SjKtuzoFKzls7pyrUOpLh868isA7Szg+V7it 2cNx57+lp1nHNypJ3sMgSM48MCV7vsRSHQ7a5X+LOSNodm8mT4UpTAJGz9/mtzTR ZXAdQv1zqJuzxj+g1OTkmY1GLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKsWV1A POjRWmSl6H/U+y5BitXFMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBu67RddSxT958eD6XgD4LDWt4qeOKyNXf1hMjH/e1mtem77v4nQMU eaB+LgHWqbfBovft0CzjU2WCzbAS3JRfiG56yDxlAmZQD8WZ0EHfyg9qUCZqsmSk 7p4gtrkrhtdxu2P2UHKH8AOL3fiytAh5m690gTZH/DqiPWFOV5DsJEWfaT9yIwqd eSd5bbXZMa6/PHaKaowrDpPzW8Lw1Yws/XNQcFVrDfoLFlPhlAHfijVcLedQTj25 m2sZA8MyeTeKGaumdsdk95HucF3/bcpX1UOGQ83ExcG9M4B81HYjrGiNJGt5TtYd 4OzI0F/Xz6NXdzTnZHP+ndXKYZK4xTmQ -----END CERTIFICATE-----Generated at Sun Jun 15 05:08:40 2025 by rpki-client