$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: 4jOjoQhRnBms/GivX4VOKRn3ULjv74NnIWnVlxbFp40= Subject key identifier: 93:02:49:A9:25:34:5C:04:11:19:75:B1:AB:68:97:2F:75:76:F3:E0 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 3485 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 3485 Signing time: Mon 12 May 2025 14:21:46 +0000 Manifest this update: Mon 12 May 2025 14:21:46 +0000 Manifest next update: Mon 19 May 2025 14:21:46 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: EkNl82AsrPMNsvAj/KgqYTQVFD1JpIpzA4lBnfvG6ZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13445 (0x3485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: May 12 14:21:46 2025 GMT Not After : May 19 14:21:46 2025 GMT Subject: CN=682203fa-fad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:94:10:73:5c:af:55:fc:c0:ad:1d:2d:8a: 86:78:74:d4:54:61:95:b4:b3:76:05:14:1a:e1:01: f4:bd:5e:ee:e2:8f:42:1d:29:bb:08:39:77:71:d1: 4d:7e:71:e8:fb:7a:dd:61:68:37:94:fe:c3:d2:0c: a7:0e:ab:8d:54:0e:71:47:b7:be:5d:33:11:18:cb: 13:34:23:fd:e3:e1:f4:3f:a4:75:ef:e0:f2:89:23: 87:fa:75:cc:6f:7f:02:f5:50:32:36:16:33:f2:c1: b8:3d:d2:16:5c:99:c7:fb:eb:e2:3b:44:39:8f:9b: 3e:00:bb:3e:69:c3:bf:66:73:87:82:d0:96:c2:84: c0:9c:42:6b:b8:05:ff:8f:a7:51:44:2d:04:f8:17: 93:43:54:23:40:98:46:60:6f:fb:55:9a:e2:53:d1: 5e:a4:2b:c9:bc:d7:0e:fe:b0:38:5e:52:2f:4e:b4: b0:f5:b5:cf:2c:8d:7c:32:53:bf:ae:2a:60:fc:1b: 4e:6c:24:d6:36:d6:3c:5f:0f:c6:b9:71:fc:9b:f7: 05:1f:3e:9e:8b:c4:28:1e:fa:ed:ed:83:6c:76:57: c0:be:07:1c:6e:64:67:1f:07:84:35:f2:0b:55:0f: 24:5e:54:5d:9b:0e:46:b8:00:ef:5b:dd:39:88:27: 35:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:02:49:A9:25:34:5C:04:11:19:75:B1:AB:68:97:2F:75:76:F3:E0 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:af:60:cd:26:23:bb:2b:57:ad:e2:95:f0:57:5d:3c:1c:5e: 2a:2b:e6:a7:fe:4b:1e:cb:2a:d0:46:d0:16:41:c8:8a:1c:2b: 07:9a:4c:08:a6:60:5b:be:46:e8:b3:45:e5:01:d6:74:ec:7e: 31:9f:be:73:0d:9b:6c:d4:ce:7f:d9:77:52:06:29:5a:01:42: fd:90:6f:e8:59:7d:23:1c:71:f7:b6:46:4b:fc:0f:79:1d:06: be:32:69:4f:07:2e:a0:54:08:db:37:4f:09:24:60:45:d2:d1: 29:9d:bf:5b:86:b3:a3:3b:39:a0:5a:ef:31:64:d7:33:b0:0f: f6:1e:3b:63:5b:0d:7f:4b:56:b1:e9:a7:bb:4c:cb:eb:a4:ae: 45:6b:83:47:75:28:e5:b5:c5:f4:66:74:ce:d3:71:58:07:a6: ba:ac:f4:51:36:58:48:5b:f3:d7:9d:bb:36:48:eb:d7:98:a3: e1:c0:80:d2:21:9b:c7:38:cf:36:c8:7d:f3:8c:d9:43:5e:c6: 74:ea:da:eb:64:0f:5a:d9:92:44:84:11:52:3f:7c:ee:c1:e9: a1:9e:18:dc:92:68:c6:0b:6d:6c:43:a8:03:73:4d:0b:0a:46: 76:89:c8:02:b2:6c:ae:8e:ab:a2:b2:18:c9:11:85:2a:31:10: 68:cc:05:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUwNTEyMTQyMTQ2WhcNMjUwNTE5MTQyMTQ2WjAYMRYwFAYD VQQDEw02ODIyMDNmYS1mYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFSUEHNcr1X8wK0dLYqGeHTUVGGVtLN2BRQa4QH0vV7u4o9CHSm7CDl3cdFN fnHo+3rdYWg3lP7D0gynDquNVA5xR7e+XTMRGMsTNCP94+H0P6R17+DyiSOH+nXM b38C9VAyNhYz8sG4PdIWXJnH++viO0Q5j5s+ALs+acO/ZnOHgtCWwoTAnEJruAX/ j6dRRC0E+BeTQ1QjQJhGYG/7VZriU9FepCvJvNcO/rA4XlIvTrSw9bXPLI18MlO/ ripg/BtObCTWNtY8Xw/GuXH8m/cFHz6ei8QoHvrt7YNsdlfAvgccbmRnHweENfIL VQ8kXlRdmw5GuADvW905iCc1DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMCSakl NFwEERl1satoly91dvPgMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvr2DNJiO7K1et4pXwV108HF4qK+an/kseyyrQRtAWQciKHCsHmkwI pmBbvkbos0XlAdZ07H4xn75zDZts1M5/2XdSBilaAUL9kG/oWX0jHHH3tkZL/A95 HQa+MmlPBy6gVAjbN08JJGBF0tEpnb9bhrOjOzmgWu8xZNczsA/2HjtjWw1/S1ax 6ae7TMvrpK5Fa4NHdSjltcX0ZnTO03FYB6a6rPRRNlhIW/PXnbs2SOvXmKPhwIDS IZvHOM82yH3zjNlDXsZ06trrZA9a2ZJEhBFSP3zuwemhnhjckmjGC21sQ6gDc00L CkZ2icgCsmyujquishjJEYUqMRBozAXA -----END CERTIFICATE-----Generated at Mon May 12 18:10:16 2025 by rpki-client