$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: 6sqj5vnXInBlZj8hDaLhsDcThlXlU7YxR0lucD0W6Nk= Subject key identifier: 0C:50:A6:A2:7B:CC:E6:F6:F9:D5:D4:DB:49:FC:90:5B:3A:15:A2:E3 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0AFD Signing time: Mon 30 Jun 2025 19:38:00 +0000 Manifest this update: Mon 30 Jun 2025 19:38:00 +0000 Manifest next update: Mon 07 Jul 2025 19:38:00 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: gc4s51ZNMecurnPU7OeuSBDyI9VIWblIvoYVwlpyZYU=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: 2QerLmtFHY48UeZhmV6pCrS0LhLRpqATZj6aiM1bwoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Jun 30 19:38:00 2025 GMT Not After : Jul 7 19:38:00 2025 GMT Subject: CN=6862e798-655b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:62:aa:12:2d:c3:27:50:aa:a6:bf:7d:98:9c: a6:b6:77:2f:2a:3a:27:a3:91:6b:98:d0:f1:dd:85: e9:f9:f1:88:b5:50:6f:54:cb:2e:d9:65:5a:4c:5d: 85:16:05:70:04:47:1c:00:18:38:98:3b:46:0d:9e: 13:38:57:a8:19:b0:5b:a8:b0:b7:f0:10:14:61:31: 83:9b:69:21:25:6b:4b:46:36:0f:be:30:92:61:8f: e8:21:e1:eb:67:8a:33:1c:c5:11:ac:b1:31:07:f6: 5e:a6:6f:43:6f:0c:1e:bb:74:da:11:d1:b3:0f:dc: bd:e9:0b:73:00:0f:26:ce:36:1c:4c:10:0c:ae:d5: a4:18:af:d4:13:5e:0f:4c:21:89:50:72:48:3e:3c: f2:5d:5a:30:df:9d:43:4c:3a:c1:ff:b0:52:92:c4: d7:26:7f:56:d7:2c:09:dd:f8:10:54:c2:ea:9b:ce: 02:d4:87:af:5c:b5:c1:b2:52:f4:a5:f9:dd:33:c5: 64:11:00:19:6f:1c:ed:fc:40:42:4d:81:5c:3f:4c: c8:58:f5:3d:8f:47:c5:ef:1d:6f:6e:1b:2c:58:2b: ee:ef:5b:f4:be:f5:ba:44:72:4a:bd:1c:13:62:18: bd:c8:5f:9f:46:12:20:6e:b3:40:d4:b4:ae:3b:03: c5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:50:A6:A2:7B:CC:E6:F6:F9:D5:D4:DB:49:FC:90:5B:3A:15:A2:E3 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:2f:65:7a:c7:52:f3:e0:f3:28:e0:82:89:7e:33:06:65:5e: bf:db:4a:35:5e:33:fe:42:36:78:50:b9:41:d7:bc:54:3a:72: a4:8a:4f:21:42:b2:e4:b6:5d:53:37:a2:a1:62:b6:86:71:0d: 84:bc:75:58:4a:e6:27:78:c1:52:6d:98:6d:f0:45:93:ad:c9: 14:17:df:e9:a6:a0:e4:f2:06:2d:00:4d:8d:ff:d5:a0:43:82: 66:42:23:fb:39:48:a9:fa:0e:fb:f7:ca:e2:d7:5b:61:39:4e: 5b:4e:b7:b6:bc:13:75:4b:ed:d8:a0:08:f0:c0:a9:94:f9:46: 4e:cd:08:c5:92:17:76:01:96:dc:04:20:74:99:3c:26:da:85: f1:13:2c:1d:8c:84:eb:d2:c1:75:85:3d:f0:7c:01:6b:14:8a: 7b:70:cb:27:90:ab:73:7b:bc:04:19:83:82:52:52:c4:22:57: cf:d4:f4:c1:c4:53:c0:b8:06:7d:97:0b:70:da:11:b0:60:87: b9:44:e1:6c:ca:5f:7f:d2:fb:83:28:ec:74:52:52:1d:ac:e0: 68:03:20:c1:e4:83:e1:bb:24:33:09:6c:3e:09:01:09:e8:6a: b0:e9:2d:29:4a:f6:86:ac:5f:8b:77:42:af:00:b3:ac:52:6f: 39:12:c5:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUwNjMwMTkzODAwWhcNMjUwNzA3MTkzODAwWjAYMRYwFAYD VQQDEw02ODYyZTc5OC02NTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2KqEi3DJ1Cqpr99mJymtncvKjono5FrmNDx3YXp+fGItVBvVMsu2WVaTF2F FgVwBEccABg4mDtGDZ4TOFeoGbBbqLC38BAUYTGDm2khJWtLRjYPvjCSYY/oIeHr Z4ozHMURrLExB/Zepm9Dbwweu3TaEdGzD9y96QtzAA8mzjYcTBAMrtWkGK/UE14P TCGJUHJIPjzyXVow351DTDrB/7BSksTXJn9W1ywJ3fgQVMLqm84C1IevXLXBslL0 pfndM8VkEQAZbxzt/EBCTYFcP0zIWPU9j0fF7x1vbhssWCvu71v0vvW6RHJKvRwT Yhi9yF+fRhIgbrNA1LSuOwPFOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxQpqJ7 zOb2+dXU20n8kFs6FaLjMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1L2V6x1Lz4PMo4IKJfjMGZV6/20o1XjP+QjZ4ULlB17xUOnKkik8h QrLktl1TN6KhYraGcQ2EvHVYSuYneMFSbZht8EWTrckUF9/ppqDk8gYtAE2N/9Wg Q4JmQiP7OUip+g7798ri11thOU5bTre2vBN1S+3YoAjwwKmU+UZOzQjFkhd2AZbc BCB0mTwm2oXxEywdjITr0sF1hT3wfAFrFIp7cMsnkKtze7wEGYOCUlLEIlfP1PTB xFPAuAZ9lwtw2hGwYIe5ROFsyl9/0vuDKOx0UlIdrOBoAyDB5IPhuyQzCWw+CQEJ 6Gqw6S0pSvaGrF+Ld0KvALOsUm85EsV6 -----END CERTIFICATE-----Generated at Wed Jul 2 15:16:25 2025 by rpki-client