$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: TFPo969hg8n9Zto20ZbtzYDDg+kMmmVa3zpzBJ3jVGA= Subject key identifier: B2:46:B7:45:7E:6C:93:D3:3E:C1:92:7A:A1:AE:AF:F4:6A:DC:C0:7A Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 05C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 05BE Signing time: Sat 10 May 2025 22:42:38 +0000 Manifest this update: Sat 10 May 2025 22:42:38 +0000 Manifest next update: Sat 17 May 2025 22:42:38 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: bpZ3u5jhreuEPBnF2s5QizWHU5mG/Ej9UJc+wZ1Ba1Y=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: 4SABNLVP141mmTSS6gzli1B5PVXlz3wNBkczMbOULL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1476 (0x5c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: May 10 22:42:38 2025 GMT Not After : May 17 22:42:38 2025 GMT Subject: CN=681fd65e-0d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8b:4c:4a:8e:2e:51:24:a5:b2:a8:26:6b:08: 5f:19:71:04:c7:d2:ee:f9:6c:ea:18:48:e2:5d:82: e8:f5:12:85:76:a5:20:18:87:d2:8d:13:5e:28:b8: 97:6b:d2:39:c5:42:c5:83:8e:3f:46:50:3d:67:a1: a0:d5:dd:1e:25:18:dc:22:be:3c:df:b2:af:54:ef: 9f:f9:8f:35:b8:fa:9a:7f:3d:33:0e:2b:ec:33:1c: 34:6b:a8:52:5d:c9:b0:ec:75:6a:01:27:d0:a2:f5: 3a:a4:fb:cd:fa:9c:fc:a7:70:c9:ab:cb:21:97:a3: 30:c9:47:93:2b:2d:ab:40:ee:01:14:cc:50:7b:00: 17:09:05:2c:be:76:6c:16:9d:ba:d1:63:01:49:bc: 74:e8:c4:00:55:ee:98:1a:45:a4:65:ff:15:e6:8a: 6b:1b:39:1c:b5:da:58:20:46:6e:bc:f4:91:79:59: 8c:13:b1:78:b0:3b:e9:56:30:ef:a1:2d:2e:12:32: 51:b0:86:c6:ff:0b:3a:c1:5e:65:3d:45:b3:e0:55: e8:44:24:8c:ad:a3:90:6a:65:a6:34:71:67:17:5d: 2f:cc:c9:45:ab:a7:df:da:d4:23:0b:99:20:8d:4b: 62:f4:75:b6:e2:d8:9c:ca:b8:8c:26:b1:dd:6a:89: 1e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:46:B7:45:7E:6C:93:D3:3E:C1:92:7A:A1:AE:AF:F4:6A:DC:C0:7A X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:08:3a:b4:66:83:77:f4:1a:d7:bb:b2:5c:da:74:91:56:31: 24:1d:d6:b8:2d:7e:cc:1f:0b:54:94:9e:12:47:bc:1a:ae:f7: c9:f4:a4:4b:07:3d:a9:bb:1f:ea:d4:bc:05:5a:7e:66:d1:41: ce:10:7f:e1:43:b9:21:ef:47:10:07:4a:e7:59:11:81:90:bd: 27:61:6a:28:f2:2b:5f:b6:80:50:01:d2:5e:d7:ab:8e:d2:e4: bf:7f:b4:17:d7:f2:f8:99:a3:bb:8d:da:9f:d9:91:af:2f:45: 77:94:af:82:1a:2a:ee:b4:14:1a:af:f9:97:99:65:f8:be:71: 0c:9d:31:38:5a:12:cd:ef:f7:2e:55:fd:6a:17:02:cf:86:cb: c5:12:31:3e:01:1d:ee:6e:ff:9d:d1:14:bc:19:19:ce:4a:43: 1a:09:a8:55:4e:18:0b:37:39:83:78:77:a6:ec:59:15:f2:c4: 42:7d:b2:5c:57:2a:27:36:fe:9f:e4:7d:47:69:d9:9b:8c:c0: a4:a1:e7:8b:5d:ef:b9:40:97:39:9c:b2:d1:f5:5b:a4:42:67: 9f:1b:ab:44:01:47:20:84:ec:b0:46:ab:b8:45:3c:63:f9:de: 72:2d:0d:4c:18:b2:71:19:dc:67:4f:70:7b:6b:5f:b1:94:3c: 0e:95:79:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjUwNTEwMjI0MjM4WhcNMjUwNTE3MjI0MjM4WjAYMRYwFAYD VQQDEw02ODFmZDY1ZS0wZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4tMSo4uUSSlsqgmawhfGXEEx9Lu+WzqGEjiXYLo9RKFdqUgGIfSjRNeKLiX a9I5xULFg44/RlA9Z6Gg1d0eJRjcIr4837KvVO+f+Y81uPqafz0zDivsMxw0a6hS Xcmw7HVqASfQovU6pPvN+pz8p3DJq8shl6MwyUeTKy2rQO4BFMxQewAXCQUsvnZs Fp260WMBSbx06MQAVe6YGkWkZf8V5oprGzkctdpYIEZuvPSReVmME7F4sDvpVjDv oS0uEjJRsIbG/ws6wV5lPUWz4FXoRCSMraOQamWmNHFnF10vzMlFq6ff2tQjC5kg jUti9HW24ticyriMJrHdaokekwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJGt0V+ bJPTPsGSeqGur/Rq3MB6MB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoCDq0ZoN39BrXu7Jc2nSRVjEkHda4LX7MHwtUlJ4SR7warvfJ9KRL Bz2pux/q1LwFWn5m0UHOEH/hQ7kh70cQB0rnWRGBkL0nYWoo8itftoBQAdJe16uO 0uS/f7QX1/L4maO7jdqf2ZGvL0V3lK+CGirutBQar/mXmWX4vnEMnTE4WhLN7/cu Vf1qFwLPhsvFEjE+AR3ubv+d0RS8GRnOSkMaCahVThgLNzmDeHem7FkV8sRCfbJc VyonNv6f5H1HadmbjMCkoeeLXe+5QJc5nLLR9VukQmefG6tEAUcghOywRqu4RTxj +d5yLQ1MGLJxGdxnT3B7a1+xlDwOlXmx -----END CERTIFICATE-----Generated at Sun May 11 16:02:37 2025 by rpki-client