$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft File: hseUaUaypXsFbwKyeTQNMMLOSbQ.mft (raw, json) Hash identifier: plo+XeEE7HA9GtxuXWMxDs+3Lr/hMgZNqsAP6IMefy0= Subject key identifier: 3A:0B:5A:AB:75:4A:A3:1A:47:C8:7A:57:00:89:AD:53:92:2A:D4:4D Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Certificate serial: 34FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft Manifest number: 34D3 Signing time: Mon 12 May 2025 14:22:57 +0000 Manifest this update: Mon 12 May 2025 14:22:57 +0000 Manifest next update: Mon 19 May 2025 14:22:57 +0000 Files and hashes: 1: hseUaUaypXsFbwKyeTQNMMLOSbQ.crl (hash: yXG8vQq2yRFSA315icRdfKvr/9EQkFRmUikE5h1fsKY=) 2: D750ADC20ACF11F0B4EBA55FC4F9AE02.roa (hash: NL1ARYRNOz8aLxkxUrPpKF6D4wwBVw7q5BCEbZZrFuo=) 3: AF6AA9ECFF6011ED90C62C26C4F9AE02.roa (hash: I6SN+VthWHNwpn13bC2pRMPfdtmxkMFNn0d1M2WvxFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13564 (0x34fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120B99, serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Validity Not Before: May 12 14:22:57 2025 GMT Not After : May 19 14:22:57 2025 GMT Subject: CN=68220441-d3d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:34:66:0c:24:14:43:ac:55:a7:c1:6d:f0: ac:36:71:4c:e6:95:1f:ca:b2:93:f7:a5:30:f2:97: de:a7:10:fc:69:47:71:a1:ca:39:3c:0b:43:bf:5b: 75:68:9d:d5:18:cf:30:f1:b2:6e:79:8e:02:48:7c: fc:5a:00:88:2e:d2:fd:e1:2a:b1:0f:35:2b:57:34: 94:bd:94:22:f3:a6:d2:ed:a2:99:a5:3a:35:e5:15: ca:09:a6:dc:5b:a8:36:29:ad:2a:04:db:51:6a:82: da:18:ff:eb:06:70:ea:a2:b7:81:24:e2:f9:0d:12: cf:97:e9:e2:f0:39:7d:06:e9:3f:53:ee:27:bd:d8: 03:38:58:86:7c:40:bd:5d:c6:72:20:96:2d:1a:c2: b8:3b:95:56:5f:cb:99:ff:df:80:4b:5c:7f:85:d5: a0:4e:47:73:4e:5e:e9:66:5a:6d:51:ce:b6:17:68: 7a:d7:fa:16:f5:d1:cd:2f:54:13:7a:99:9e:21:c6: 62:59:b7:5b:13:af:7c:66:c1:a7:b1:07:e3:93:7c: d9:4f:06:7f:40:f9:06:e6:43:cd:c0:95:e6:d7:ba: 5d:7c:4e:db:af:d4:3e:d1:c0:78:7c:3c:65:9d:b4: 57:f0:38:ed:0e:92:75:24:e6:40:df:ed:ca:f7:f8: 1e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0B:5A:AB:75:4A:A3:1A:47:C8:7A:57:00:89:AD:53:92:2A:D4:4D X509v3 Authority Key Identifier: keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:a7:7b:1c:dd:ea:26:aa:c8:17:20:7e:81:6b:7d:03:c4:d2: 5c:0d:e7:71:55:7e:14:21:1d:a3:e0:16:20:1e:4f:d7:b6:a9: 72:13:d7:71:79:5b:f0:a5:ca:ee:48:af:d5:95:4b:cc:8f:47: 3a:22:32:19:04:cb:d1:9b:4a:e2:98:2a:26:0d:27:69:ef:80: 2c:f7:a6:1b:7e:4f:8f:d2:2d:f8:ef:bd:4c:c1:af:a7:80:f5: e6:63:bd:b8:ca:19:54:e4:fe:66:3d:e9:b6:39:32:79:2c:43: c6:9a:cc:1a:a9:0e:92:25:0f:23:ca:bb:36:88:ab:a7:14:7a: 91:25:9e:ff:2a:05:97:85:b3:df:6d:8a:a1:b5:00:2d:a3:12: 6d:14:41:e1:a1:51:02:a9:a5:fb:3b:e2:d1:ae:d6:be:b9:42: c2:f8:5a:d8:c3:04:3f:13:84:ed:39:34:a4:1f:8e:57:04:52: e8:c6:cb:38:d5:73:68:68:a4:b3:9a:4d:9c:08:97:3f:86:e9: 27:eb:d7:43:e8:63:a6:bd:ec:5f:e7:1f:90:ea:b3:ad:b8:dc: a6:03:45:17:56:3f:70:f9:4b:4f:75:d5:af:25:07:55:5f:21: 72:35:12:97:37:ae:ea:96:92:fd:96:36:3b:3d:49:1a:fd:79: ec:3e:1a:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBCOTkxMTAvBgNVBAUTKDg2Qzc5NDY5NDZCMkE1N0IwNTZGMDJCMjc5MzQwRDMw QzJDRTQ5QjQwHhcNMjUwNTEyMTQyMjU3WhcNMjUwNTE5MTQyMjU3WjAYMRYwFAYD VQQDEw02ODIyMDQ0MS1kM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA40ZgwkFEOsVafBbfCsNnFM5pUfyrKT96Uw8pfepxD8aUdxoco5PAtDv1t1 aJ3VGM8w8bJueY4CSHz8WgCILtL94SqxDzUrVzSUvZQi86bS7aKZpTo15RXKCabc W6g2Ka0qBNtRaoLaGP/rBnDqoreBJOL5DRLPl+ni8Dl9Buk/U+4nvdgDOFiGfEC9 XcZyIJYtGsK4O5VWX8uZ/9+AS1x/hdWgTkdzTl7pZlptUc62F2h61/oW9dHNL1QT epmeIcZiWbdbE698ZsGnsQfjk3zZTwZ/QPkG5kPNwJXm17pdfE7br9Q+0cB4fDxl nbRX8DjtDpJ1JOZA3+3K9/geHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoLWqt1 SqMaR8h6VwCJrVOSKtRNMB8GA1UdIwQYMBaAFIbHlGlGsqV7BW8Csnk0DTDCzkm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEI5OS9EM0Y5MDUxQzFE ODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBYc0Zid0t5ZVRRTk1NTE9T YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzZVVhVWF5cFhzRmJ3S3llVFFOTU1MT1NiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEI5OS9EM0Y5MDUxQzFEODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBY c0Zid0t5ZVRRTk1NTE9TYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3p3sc3eomqsgXIH6Ba30DxNJcDedxVX4UIR2j4BYgHk/XtqlyE9dx eVvwpcruSK/VlUvMj0c6IjIZBMvRm0rimComDSdp74As96Ybfk+P0i34771Mwa+n gPXmY724yhlU5P5mPem2OTJ5LEPGmswaqQ6SJQ8jyrs2iKunFHqRJZ7/KgWXhbPf bYqhtQAtoxJtFEHhoVECqaX7O+LRrta+uULC+FrYwwQ/E4TtOTSkH45XBFLoxss4 1XNoaKSzmk2cCJc/hukn69dD6GOmvexf5x+Q6rOtuNymA0UXVj9w+UtPddWvJQdV XyFyNRKXN67qlpL9ljY7PUka/XnsPhoW -----END CERTIFICATE-----Generated at Tue May 13 19:05:47 2025 by rpki-client