$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: 9zvpKxwRZ/HCZ6/xjoOqUg/aBnXrbp9ZaAxDg16WHG8= Subject key identifier: C2:8A:DD:72:11:97:3D:92:87:14:0D:D7:D7:8D:1A:12:46:44:0F:8C Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0AE0 Signing time: Sat 10 May 2025 19:17:14 +0000 Manifest this update: Sat 10 May 2025 19:17:14 +0000 Manifest next update: Sat 17 May 2025 19:17:14 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: WT/hj6YsTlk7f3R50ON6r+jwgcpqJYlvlLhExjE8HBc=) 2: 0798B4E4B7BE11EF81216809C4F9AE02.roa (hash: yHzzqKEId0dEJDTaFOBliIlS1ljG1H4a+7/pxmaJtKg=) 3: 33E27678B25C11EF8946BE4FC4F9AE02.roa (hash: +fDUFmlUHsQP24i5ggEqmXh3ISn4s3EPo0pOThu4m/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: May 10 19:17:14 2025 GMT Not After : May 17 19:17:14 2025 GMT Subject: CN=681fa63a-6497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:95:6e:3a:9e:d7:9b:1e:4c:f9:de:e5:2c:76: 86:8e:e8:58:6f:57:1c:13:7e:1d:8f:f5:7e:33:04: 1a:1c:6f:89:b9:22:2c:09:5d:89:b7:4a:8c:c8:0c: ec:f0:33:2f:c3:81:bf:14:97:62:20:51:b6:1e:8b: b2:57:12:ce:c5:74:44:dc:68:f0:fd:8a:41:5a:6f: 3c:4b:06:c3:a2:35:6f:27:70:cc:8a:a8:7f:22:9f: 8e:59:7b:f9:40:1f:81:c6:b3:e5:34:df:b2:24:6c: 56:59:80:0f:97:84:6e:ce:fe:e9:73:e5:71:f6:3e: 21:9e:0b:31:13:a9:ca:49:dd:2c:54:0e:07:cd:b0: 4e:32:23:aa:ac:30:54:cd:fd:2b:00:3d:b4:b5:54: 01:b0:8d:70:a3:50:25:7f:05:10:77:a1:5a:75:24: ba:c0:06:aa:56:cb:b1:26:d4:b9:cc:54:54:66:bf: 92:5f:a0:7c:21:3f:a7:ca:69:83:9d:79:5a:77:9a: 38:6e:61:d8:03:03:ee:98:ca:fd:4a:c4:c3:91:cd: 92:ac:c7:5f:aa:d7:3e:c1:d6:c3:4a:e7:c7:83:a6: 54:3f:14:0f:45:b5:1b:db:49:03:e7:d7:66:6f:20: a3:12:84:87:74:eb:c8:e2:f1:0f:c4:7c:4a:2b:90: 2f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8A:DD:72:11:97:3D:92:87:14:0D:D7:D7:8D:1A:12:46:44:0F:8C X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:58:6d:55:70:90:9f:d8:76:21:c3:2c:df:43:df:11:56:49: 14:61:a0:2a:9b:57:31:5a:69:cd:0e:84:69:2b:f8:a7:ca:0a: 15:a3:a2:2c:3a:91:74:bf:11:0d:ce:7e:4d:99:9c:5a:fd:e1: ae:96:5e:1b:63:7f:99:e3:30:3e:da:94:67:ba:af:2f:11:d4: c0:f8:b5:67:12:c9:6c:6a:c4:b4:40:94:1b:6c:e7:d2:cf:68: 94:1b:c9:20:61:76:5e:75:a1:1e:78:1a:76:47:94:23:7b:11: 79:22:30:7b:f3:5b:4a:ad:90:6e:a3:0a:60:91:c3:21:b0:c5: 48:88:05:46:15:8c:38:61:52:13:23:09:21:c7:34:20:80:26: 29:38:df:da:f1:86:ec:f6:ea:e4:85:8b:13:d3:f8:24:73:a5: b0:3f:05:eb:d4:73:df:25:ad:31:5d:4d:a4:d1:28:54:9f:0f: 45:da:10:49:89:16:35:b7:e3:9e:19:07:63:ae:e0:be:9a:aa: fa:38:62:ca:4f:e6:2b:66:09:3b:26:f2:f8:75:fd:27:87:76: e5:ca:eb:64:97:a8:dc:81:28:28:aa:97:81:fb:d8:4f:16:54: 6e:57:41:76:c7:94:06:b5:1c:d6:9b:40:5d:bf:bb:51:aa:a5: e1:f4:35:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUwNTEwMTkxNzE0WhcNMjUwNTE3MTkxNzE0WjAYMRYwFAYD VQQDEw02ODFmYTYzYS02NDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5VuOp7Xmx5M+d7lLHaGjuhYb1ccE34dj/V+MwQaHG+JuSIsCV2Jt0qMyAzs 8DMvw4G/FJdiIFG2HouyVxLOxXRE3Gjw/YpBWm88SwbDojVvJ3DMiqh/Ip+OWXv5 QB+BxrPlNN+yJGxWWYAPl4Ruzv7pc+Vx9j4hngsxE6nKSd0sVA4HzbBOMiOqrDBU zf0rAD20tVQBsI1wo1AlfwUQd6FadSS6wAaqVsuxJtS5zFRUZr+SX6B8IT+nymmD nXlad5o4bmHYAwPumMr9SsTDkc2SrMdfqtc+wdbDSufHg6ZUPxQPRbUb20kD59dm byCjEoSHdOvI4vEPxHxKK5AvNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKK3XIR lz2ShxQN19eNGhJGRA+MMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpWG1VcJCf2HYhwyzfQ98RVkkUYaAqm1cxWmnNDoRpK/inygoVo6Is OpF0vxENzn5NmZxa/eGull4bY3+Z4zA+2pRnuq8vEdTA+LVnEslsasS0QJQbbOfS z2iUG8kgYXZedaEeeBp2R5QjexF5IjB781tKrZBuowpgkcMhsMVIiAVGFYw4YVIT IwkhxzQggCYpON/a8Ybs9urkhYsT0/gkc6WwPwXr1HPfJa0xXU2k0ShUnw9F2hBJ iRY1t+OeGQdjruC+mqr6OGLKT+YrZgk7JvL4df0nh3blyutkl6jcgSgoqpeB+9hP FlRuV0F2x5QGtRzWm0Bdv7tRqqXh9DUd -----END CERTIFICATE-----Generated at Sun May 11 18:58:16 2025 by rpki-client