$ rpki-client -vvf rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft File: HIAVCsljCYTTjMb1nD7MdRsl8-c.mft (raw, json) Hash identifier: KhItr5egRoVmFJ4xKegMD0eejA1bnbqO3x9SjurD89w= Subject key identifier: 62:CE:75:86:A0:FE:F7:85:F3:E6:E2:BD:4F:E9:97:0F:47:AD:E0:B4 Authority key identifier: 1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7 Certificate issuer: /CN=A915A549/serialNumber=1C80150AC9630984D38CC6F59C3ECC751B25F3E7 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft Manifest number: 3F Signing time: Tue 13 May 2025 06:42:22 +0000 Manifest this update: Tue 13 May 2025 06:42:22 +0000 Manifest next update: Tue 20 May 2025 06:42:22 +0000 Files and hashes: 1: HIAVCsljCYTTjMb1nD7MdRsl8-c.crl (hash: lkDOkBBRK3mQCTJ33PLP2Oj6eksKzVGwcrhtWx49xUg=) 2: E9B51C0AD24411EFBD747915C4F9AE02.roa (hash: +/MtM2hDxMNaMHeSlqVRdtGrwCOT56lMUqqstQGV8bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.crl rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A549, serialNumber=1C80150AC9630984D38CC6F59C3ECC751B25F3E7 Validity Not Before: May 13 06:42:22 2025 GMT Not After : May 20 06:42:22 2025 GMT Subject: CN=6822e9ce-a5a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d2:f6:e6:c5:e2:69:f5:de:7e:aa:ac:06:d5: e1:8c:9b:a1:ad:88:e7:69:b4:ea:f8:30:53:ef:78: c8:36:6c:e2:df:47:5c:8d:55:93:95:dc:8f:27:49: 01:c0:83:98:d3:bb:f3:bb:8d:6f:08:21:b2:55:f8: 6a:27:b0:02:7d:14:5f:c4:6e:ba:58:12:df:ad:91: 83:5b:e5:02:cf:b1:c2:b1:be:95:96:cd:cb:fd:6e: 59:37:ab:fc:b7:18:3c:da:b5:7b:fb:a1:1c:2e:32: 7f:49:32:a3:20:ca:a8:a8:44:81:a8:5c:ba:95:6f: cf:04:b4:cd:73:43:eb:2c:00:cb:6a:24:00:34:bf: 84:72:0e:7f:03:7f:ed:f7:1f:16:a0:11:af:25:fb: 14:80:9f:2f:33:71:6d:da:01:67:4d:b7:7d:cb:3f: a8:3d:fd:bc:5c:11:ba:7e:d4:ab:a7:ba:8c:3a:17: 5f:76:53:b0:4d:2c:bf:fc:cc:4b:a5:a9:64:88:32: 29:65:b4:9c:66:51:80:4f:a8:95:a4:24:e2:ea:11: 72:a0:f7:f6:1d:69:b8:43:03:fe:97:4d:00:ff:48: ba:45:09:82:3f:2c:4f:5d:3a:96:a0:88:60:c0:47: da:70:93:49:d5:23:78:f0:14:da:60:bb:72:8b:eb: 24:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CE:75:86:A0:FE:F7:85:F3:E6:E2:BD:4F:E9:97:0F:47:AD:E0:B4 X509v3 Authority Key Identifier: keyid:1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e2:4a:00:f2:73:d3:7a:17:0d:6b:6d:61:3d:d2:47:2b:cd: 31:1c:1b:4f:0f:b0:8b:1b:aa:bb:1b:a0:d3:58:11:57:59:3e: e3:ff:f1:0e:c2:79:fa:0b:04:d2:87:e9:87:63:fd:12:e0:0f: 11:18:5a:b0:ed:a9:1a:84:8d:c7:ef:b7:cc:76:0b:68:e4:27: f0:67:eb:38:dc:a7:f7:4e:86:7c:e2:64:f9:60:32:24:59:89: 0a:e1:5f:40:b9:3b:bf:35:bf:6c:0b:23:0f:76:72:e1:26:c7: a5:95:c2:75:95:0b:dc:19:2d:67:e3:d2:55:77:87:8d:6c:30: 6c:2d:96:38:a9:3a:cf:05:87:34:88:f9:20:e6:7a:f5:f8:ee: 64:fe:5d:28:e0:2e:c3:da:37:81:9f:8b:8c:1b:db:e2:4f:f2: c6:a0:fe:0d:f4:66:61:94:e5:8f:46:f7:96:a7:3c:39:ef:54: 7e:c2:26:52:2b:fb:9e:c6:02:e7:1a:ea:c1:29:5a:0d:d2:45: 9f:65:a1:bc:77:4c:94:d2:a5:b2:51:99:46:94:1b:24:c8:25: 26:74:16:bc:6d:5c:06:cc:fc:8b:63:83:80:2c:2c:0a:82:10: 8d:fe:c7:7c:3f:9a:53:c1:9d:f2:de:a1:bb:e7:74:9a:d4:2b: 82:21:1a:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTU0OTExMC8GA1UEBRMoMUM4MDE1MEFDOTYzMDk4NEQzOENDNkY1OUMzRUNDNzUx QjI1RjNFNzAeFw0yNTA1MTMwNjQyMjJaFw0yNTA1MjAwNjQyMjJaMBgxFjAUBgNV BAMTDTY4MjJlOWNlLWE1YTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP0vbmxeJp9d5+qqwG1eGMm6GtiOdptOr4MFPveMg2bOLfR1yNVZOV3I8nSQHA g5jTu/O7jW8IIbJV+GonsAJ9FF/EbrpYEt+tkYNb5QLPscKxvpWWzcv9blk3q/y3 GDzatXv7oRwuMn9JMqMgyqioRIGoXLqVb88EtM1zQ+ssAMtqJAA0v4RyDn8Df+33 HxagEa8l+xSAny8zcW3aAWdNt33LP6g9/bxcEbp+1Kunuow6F192U7BNLL/8zEul qWSIMilltJxmUYBPqJWkJOLqEXKg9/YdabhDA/6XTQD/SLpFCYI/LE9dOpagiGDA R9pwk0nVI3jwFNpgu3KL6yRbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYs51hqD+ 94Xz5uK9T+mXD0et4LQwHwYDVR0jBBgwFoAUHIAVCsljCYTTjMb1nD7MdRsl8+cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBNTQ5LzREMjVCQ0FBRDI0 NDExRUY5RTY1NEIxNEM0RjlBRTAyL0hJQVZDc2xqQ1lUVGpNYjFuRDdNZFJzbDgt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSElBVkNzbGpDWVRUak1iMW5EN01kUnNsOC1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB NTQ5LzREMjVCQ0FBRDI0NDExRUY5RTY1NEIxNEM0RjlBRTAyL0hJQVZDc2xqQ1lU VGpNYjFuRDdNZFJzbDgtYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABLiSgDyc9N6Fw1rbWE90kcrzTEcG08PsIsbqrsboNNYEVdZPuP/8Q7C efoLBNKH6Ydj/RLgDxEYWrDtqRqEjcfvt8x2C2jkJ/Bn6zjcp/dOhnziZPlgMiRZ iQrhX0C5O781v2wLIw92cuEmx6WVwnWVC9wZLWfj0lV3h41sMGwtljipOs8FhzSI +SDmevX47mT+XSjgLsPaN4Gfi4wb2+JP8sag/g30ZmGU5Y9G95anPDnvVH7CJlIr +57GAuca6sEpWg3SRZ9lobx3TJTSpbJRmUaUGyTIJSZ0FrxtXAbM/Itjg4AsLAqC EI3+x3w/mlPBnfLeobvndJrUK4IhGnY= -----END CERTIFICATE-----Generated at Wed May 14 08:13:29 2025 by rpki-client