$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: 9WClTY+gPRmdfGLMqFpTFDPcMj2KaVCvxzgy7/A/jtE= Subject key identifier: 31:80:90:1C:AF:0C:20:8D:80:58:B2:24:C6:D0:D6:EC:DA:AB:99:66 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 0253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 0250 Signing time: Sun 11 May 2025 01:22:21 +0000 Manifest this update: Sun 11 May 2025 01:22:21 +0000 Manifest next update: Sun 18 May 2025 01:22:21 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: K2QbfH5Sb1t07dncT+9j9ooX1QyPSZ8wCx8elZ7F9is=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: May 11 01:22:21 2025 GMT Not After : May 18 01:22:21 2025 GMT Subject: CN=681ffbcd-e49f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5e:b5:93:3c:06:83:b6:99:3b:b5:18:b9:6a: 9d:f5:f3:9a:5e:bf:b2:1a:1a:41:ab:d8:31:2d:bd: 05:71:4a:2c:27:0b:da:5d:1f:46:fb:c4:d6:a7:e9: 11:e2:c2:0f:ee:3c:7c:13:d9:a8:0d:88:98:1a:c7: 84:99:9f:38:3a:7d:7f:41:b7:c2:c0:f1:2b:0b:87: 6d:72:65:1d:7e:0a:ad:10:56:2f:74:01:4e:7a:61: 5a:07:8f:83:80:cb:65:e9:b9:3b:37:d2:f1:e5:9a: 27:bd:d7:c6:b7:43:a7:5d:28:25:3d:74:b5:80:d8: 69:cc:f1:ec:62:66:cc:79:33:b2:22:47:6c:fd:6e: c1:1c:2d:a3:d8:c5:93:28:42:2b:1f:df:7f:a6:85: 43:cf:d4:6d:ad:83:ff:ea:55:08:f0:e9:a5:14:6f: cb:f7:68:1f:a5:f9:bf:bb:b6:1c:9d:fd:ec:43:3a: fb:80:81:2e:37:29:3e:61:68:2f:77:17:07:8e:66: 5a:59:7f:c3:d0:2d:4d:58:13:7e:07:53:05:a0:c0: 90:3d:c2:f2:df:5f:96:e1:b1:1f:07:d1:9f:1e:01: f4:39:a6:f9:4c:12:f6:cc:d3:fa:1f:3a:05:52:67: 3e:9e:82:2a:d2:fb:55:6a:6c:e9:f2:19:7f:8b:83: 83:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:80:90:1C:AF:0C:20:8D:80:58:B2:24:C6:D0:D6:EC:DA:AB:99:66 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:c8:7b:89:06:f1:ea:66:72:61:91:9c:b9:72:43:c0:e6:50: 0a:57:ad:75:a5:a0:6d:54:67:39:fb:57:de:d2:bf:15:93:e3: 3b:ec:9d:4c:99:d3:54:fc:e6:80:cf:b8:d2:4d:1e:96:8e:8c: 78:06:2f:c5:01:be:d0:19:ec:9f:0d:cb:c5:56:e8:c8:42:a4: 1a:ed:f3:b1:97:e3:8e:a8:0e:97:e8:e7:d9:11:53:06:2a:c1: 48:11:02:ca:d6:0f:b6:5e:1b:73:8c:04:0f:19:26:b8:05:68: a1:c2:6a:2a:18:13:2f:08:9c:3c:0d:5a:6b:fa:45:d9:84:1b: 2a:60:56:a7:8a:4d:a4:10:75:d7:d1:7c:39:3b:33:4b:a3:d1: 64:b0:59:6e:7c:d6:ea:be:10:35:81:33:34:61:dd:4d:15:6a: ae:9f:d9:ce:42:97:8b:24:99:09:ae:a0:71:05:45:75:11:e2: e5:a3:e9:f2:95:9f:e6:a0:9d:3f:42:95:b0:9c:c5:4c:69:da: 56:43:57:e9:2f:1a:df:b3:ed:51:06:8b:04:10:fb:e1:d1:a3: 3e:e9:9a:38:65:48:9e:8d:23:ba:dc:72:dc:74:c1:df:2d:8a: a2:7e:65:e6:84:d0:71:1a:4a:c8:6c:41:eb:76:b1:61:e7:66: bc:ca:d5:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUwNTExMDEyMjIxWhcNMjUwNTE4MDEyMjIxWjAYMRYwFAYD VQQDEw02ODFmZmJjZC1lNDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5l61kzwGg7aZO7UYuWqd9fOaXr+yGhpBq9gxLb0FcUosJwvaXR9G+8TWp+kR 4sIP7jx8E9moDYiYGseEmZ84On1/QbfCwPErC4dtcmUdfgqtEFYvdAFOemFaB4+D gMtl6bk7N9Lx5ZonvdfGt0OnXSglPXS1gNhpzPHsYmbMeTOyIkds/W7BHC2j2MWT KEIrH99/poVDz9RtrYP/6lUI8OmlFG/L92gfpfm/u7Ycnf3sQzr7gIEuNyk+YWgv dxcHjmZaWX/D0C1NWBN+B1MFoMCQPcLy31+W4bEfB9GfHgH0Oab5TBL2zNP6HzoF Umc+noIq0vtVamzp8hl/i4ODPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGAkByv DCCNgFiyJMbQ1uzaq5lmMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPyHuJBvHqZnJhkZy5ckPA5lAKV611paBtVGc5+1fe0r8Vk+M77J1M mdNU/OaAz7jSTR6Wjox4Bi/FAb7QGeyfDcvFVujIQqQa7fOxl+OOqA6X6OfZEVMG KsFIEQLK1g+2XhtzjAQPGSa4BWihwmoqGBMvCJw8DVpr+kXZhBsqYFanik2kEHXX 0Xw5OzNLo9FksFlufNbqvhA1gTM0Yd1NFWqun9nOQpeLJJkJrqBxBUV1EeLlo+ny lZ/moJ0/QpWwnMVMadpWQ1fpLxrfs+1RBosEEPvh0aM+6Zo4ZUiejSO63HLcdMHf LYqifmXmhNBxGkrIbEHrdrFh52a8ytXX -----END CERTIFICATE-----Generated at Mon May 12 19:08:31 2025 by rpki-client