$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft File: HUA-MjAeWHgKBwV8syty7K9G19k.mft (raw, json) Hash identifier: ru9OgOI7G3rhLJV9+kox//7DwANtfVO9oV9GkWrk4MM= Subject key identifier: D5:CD:2D:21:7A:EF:91:F8:96:62:D2:AC:92:FA:C9:7E:76:8F:9C:B8 Authority key identifier: 1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 Certificate issuer: /CN=A91FA645/serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Certificate serial: 03B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft Manifest number: 03B0 Signing time: Fri 25 Apr 2025 00:28:30 +0000 Manifest this update: Fri 25 Apr 2025 00:28:30 +0000 Manifest next update: Fri 02 May 2025 00:28:30 +0000 Files and hashes: 1: HUA-MjAeWHgKBwV8syty7K9G19k.crl (hash: O2xr9fkVX7xpshjQUrjO0Ymklt6bO4hLzgWlIXiPjOo=) 2: 76EBCD3E8C9911ECB051A327C4F9AE02.roa (hash: nmKky47wGKMcIzjIq8A+qFDV89GwShHdwrd8mFOXaec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 952 (0x3b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA645, serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Validity Not Before: Apr 25 00:28:30 2025 GMT Not After : May 2 00:28:30 2025 GMT Subject: CN=680ad72e-32da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b9:18:59:d4:6e:58:33:d2:c5:05:84:f1:68: 1f:24:d6:7a:ba:65:d6:42:fb:60:1c:f3:68:fe:1f: 0b:8d:aa:d5:97:ac:99:47:f7:41:6f:07:2a:4c:b6: 00:bd:51:44:d4:b2:7d:93:77:51:26:36:a1:bf:89: 34:6b:eb:bc:0f:4a:6c:df:f4:1f:87:7b:ca:b2:a3: 31:e1:39:6e:44:21:58:b3:66:08:9e:86:cb:8e:cd: d6:b4:07:3d:bc:ff:98:8f:6e:67:ca:6c:9f:2b:08: bb:5e:a5:2e:cb:92:94:c0:d3:17:10:cb:09:42:51: 37:f5:92:03:75:86:d7:2d:e4:00:82:d2:cc:96:8a: 86:aa:69:96:0b:87:5c:06:05:53:53:6c:e1:ab:0c: c5:fd:9e:05:be:e6:92:73:f0:3e:18:ac:6e:15:73: 59:6f:f9:8e:ac:ab:27:82:68:cd:19:e8:8e:06:71: 2c:c4:17:b8:76:ae:71:99:41:bd:c1:86:bc:5f:25: be:0b:cf:e9:75:55:c8:cc:1f:f1:b2:8e:a9:37:ba: 02:01:b1:6b:e0:9e:09:24:6c:65:02:b7:b5:ab:ee: 2e:75:3e:fa:52:82:22:c7:ae:0d:f4:03:98:98:d2: ea:b2:4b:b7:29:e0:3e:85:b0:10:1d:60:79:7a:5d: 30:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CD:2D:21:7A:EF:91:F8:96:62:D2:AC:92:FA:C9:7E:76:8F:9C:B8 X509v3 Authority Key Identifier: keyid:1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:b7:32:c9:d6:ac:76:58:21:27:76:30:8c:f4:4f:4e:8e:3d: 0b:4e:a1:7b:8b:95:17:94:bc:e1:02:2d:79:80:36:47:93:16: 55:b3:5b:1a:8a:a5:2c:65:4f:8b:e9:07:ce:6d:50:d0:38:cb: 33:21:23:92:a0:97:69:fd:f9:96:18:df:fe:a9:cd:85:cc:e3: 8c:4d:4e:85:46:23:10:00:fb:37:48:61:f6:a1:3a:06:85:45: f4:54:80:e8:7f:04:75:83:23:52:03:70:fe:97:f0:a5:9b:ae: 78:0e:dc:32:c8:25:5f:6b:7c:fd:01:a0:b6:e3:85:e8:8f:49: 25:57:ad:e4:ed:c9:43:50:64:e8:7c:07:c0:92:07:da:ad:a6: 01:29:3d:0f:bc:89:e5:3c:71:c7:25:f9:ce:b6:52:31:43:33: 5b:2d:ef:27:41:b9:70:7f:42:5d:83:27:66:37:8a:9a:01:7e: 44:34:42:0b:3c:69:82:6a:ad:1d:aa:be:86:c8:f1:48:df:e9: 40:29:e4:c6:76:fb:fa:ff:f9:68:f6:15:8d:0f:79:96:eb:c9: ea:b0:24:75:37:aa:5f:24:a4:6d:d6:a7:c3:ea:90:0c:ce:67: db:e4:69:89:c9:70:ee:f4:f8:07:46:0c:7b:38:eb:0d:d3:fb: 87:e3:9e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NDUxMTAvBgNVBAUTKDFENDAzRTMyMzAxRTU4NzgwQTA3MDU3Q0IzMkI3MkVD QUY0NkQ3RDkwHhcNMjUwNDI1MDAyODMwWhcNMjUwNTAyMDAyODMwWjAYMRYwFAYD VQQDEw02ODBhZDcyZS0zMmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLkYWdRuWDPSxQWE8WgfJNZ6umXWQvtgHPNo/h8LjarVl6yZR/dBbwcqTLYA vVFE1LJ9k3dRJjahv4k0a+u8D0ps3/Qfh3vKsqMx4TluRCFYs2YInobLjs3WtAc9 vP+Yj25nymyfKwi7XqUuy5KUwNMXEMsJQlE39ZIDdYbXLeQAgtLMloqGqmmWC4dc BgVTU2zhqwzF/Z4FvuaSc/A+GKxuFXNZb/mOrKsngmjNGeiOBnEsxBe4dq5xmUG9 wYa8XyW+C8/pdVXIzB/xso6pN7oCAbFr4J4JJGxlAre1q+4udT76UoIix64N9AOY mNLqsku3KeA+hbAQHWB5el0wQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXNLSF6 75H4lmLSrJL6yX52j5y4MB8GA1UdIwQYMBaAFB1APjIwHlh4CgcFfLMrcuyvRtfZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0NS9FMEQ5RjM2NDhD OTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdIZ0tCd1Y4c3l0eTdLOUcx OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVQS1NakFlV0hnS0J3VjhzeXR5N0s5RzE5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0NS9FMEQ5RjM2NDhDOTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdI Z0tCd1Y4c3l0eTdLOUcxOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRtzLJ1qx2WCEndjCM9E9Ojj0LTqF7i5UXlLzhAi15gDZHkxZVs1sa iqUsZU+L6QfObVDQOMszISOSoJdp/fmWGN/+qc2FzOOMTU6FRiMQAPs3SGH2oToG hUX0VIDofwR1gyNSA3D+l/Clm654DtwyyCVfa3z9AaC244Xoj0klV63k7clDUGTo fAfAkgfaraYBKT0PvInlPHHHJfnOtlIxQzNbLe8nQblwf0JdgydmN4qaAX5ENEIL PGmCaq0dqr6GyPFI3+lAKeTGdvv6//lo9hWND3mW68nqsCR1N6pfJKRt1qfD6pAM zmfb5GmJyXDu9PgHRgx7OOsN0/uH456H -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:51 2025 by rpki-client