$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft File: HTaU7xQhyRhUqIesqWELxWCucIQ.mft (raw, json) Hash identifier: 2yBap0f3SggEmVbU+F1Z76EZy6qmr6bKOAH9ROdvKkA= Subject key identifier: AA:8F:31:74:F3:C4:B4:00:5A:10:DD:48:C2:A0:0E:FD:75:E1:DC:DD Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0EA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft Manifest number: 0E82 Signing time: Sun 04 May 2025 17:38:28 +0000 Manifest this update: Sun 04 May 2025 17:38:28 +0000 Manifest next update: Sun 11 May 2025 17:38:28 +0000 Files and hashes: 1: HTaU7xQhyRhUqIesqWELxWCucIQ.crl (hash: 8Y6qDgs1jbtjct0UJiXtegaPFnRHrPkSmZ2ts5ocaCg=) 2: 89A93D5E971811E9AE51CA15C4F9AE02.roa (hash: 5Mh91OkrfeMvxN8zUlmhEA/cU28vfWanQEE4gEKGkZE=) 3: F73EFF46839211EEA1EC8A0EC4F9AE02.roa (hash: 2l3pLCgtvIHc/+HLPDdULsr+5gl+RLvHUNSD8p67gig=) 4: 7A40B730E2D811EBAB97665DC4F9AE02.roa (hash: nERwHYLrCQbTGbVdhkuVu4DLbRWJapvf+ehHeDcqXoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 17:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3748 (0xea4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E, serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: May 4 17:38:28 2025 GMT Not After : May 11 17:38:28 2025 GMT Subject: CN=6817a614-a73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:93:ca:76:aa:3e:7b:2e:31:47:11:98:d9:bb: 54:57:b3:4d:bb:97:d5:3a:76:a1:40:36:b2:89:86: 1c:08:58:44:89:8d:86:89:bf:23:b4:c8:86:cd:ec: fc:98:23:36:c3:be:d9:4d:ee:b5:47:41:e0:34:0f: e2:1d:6f:f2:d1:65:0f:33:fd:fe:14:39:4a:cb:ea: 81:b5:16:97:7f:cd:fd:e1:bc:dc:5b:88:3c:1c:92: da:7c:47:4a:90:ee:31:83:aa:f0:f3:ac:9d:ff:a6: 0e:81:aa:e2:f1:5e:c1:ac:0f:e4:b1:a9:49:11:fd: bc:32:82:29:c3:c3:4a:55:5b:89:77:f6:b3:a8:2d: 0d:40:3d:24:ba:d9:c6:27:29:bf:8a:cc:bb:61:02: f1:26:56:d9:1b:be:13:4d:e5:86:5a:7c:2f:33:c4: 01:5a:00:3b:6c:8b:1b:72:b0:3c:7a:19:74:84:fc: 10:95:e5:22:8c:8c:1b:39:2a:46:f0:d4:97:f4:59: 9f:46:d3:5c:b7:e8:a8:18:59:30:c4:c1:fb:be:a0: ec:ed:8e:6b:41:97:1b:71:06:66:28:21:7d:70:10: 02:df:09:c4:85:d9:92:70:ce:33:1c:fe:49:5d:f2: 02:7e:d2:9d:e6:64:32:08:57:b0:c2:ef:51:43:94: e0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8F:31:74:F3:C4:B4:00:5A:10:DD:48:C2:A0:0E:FD:75:E1:DC:DD X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:ed:2e:a5:9c:92:bc:1a:16:a2:a7:3d:42:94:fc:6c:db:17: 06:eb:50:f7:ce:0a:b8:7a:9a:44:a3:80:13:18:66:8a:55:ac: e3:eb:6b:31:66:81:c6:1c:00:09:e3:91:ac:d0:fb:8e:bf:91: c7:25:13:f6:a3:8f:98:6a:bb:ed:66:12:da:84:90:a6:9a:a9: b2:a3:84:be:8c:3b:b2:a2:cb:ea:48:2d:be:4b:45:fd:b8:fa: 7b:49:5e:c8:83:23:e1:2c:70:d9:ce:9b:3c:bd:54:38:5d:b2: ee:62:50:27:f5:a4:25:92:f4:a3:91:6a:26:ec:6a:bd:80:2b: e2:ce:6d:3d:0c:1c:54:44:05:d1:38:5d:63:f6:de:5c:d4:f7: 50:fe:8b:6b:88:96:e8:9d:3d:d9:27:65:0c:7c:72:9c:b1:cb: f5:9a:f8:d3:28:cd:48:b1:7e:95:fc:a9:b4:98:19:90:62:a8: ec:fe:04:53:60:0a:67:41:35:71:55:26:72:78:fc:69:57:fa: 5d:3b:d0:ab:ba:2c:eb:b9:bc:4f:8f:a7:00:17:74:20:eb:0c: f9:bc:10:0c:cc:b8:59:a8:77:9b:10:ab:3d:cc:fd:db:be:0e: b7:b1:69:3b:ca:31:3a:f1:4c:7a:2e:dd:69:2f:59:49:e5:8d: ec:25:82:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjUwNTA0MTczODI4WhcNMjUwNTExMTczODI4WjAYMRYwFAYD VQQDEw02ODE3YTYxNC1hNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspPKdqo+ey4xRxGY2btUV7NNu5fVOnahQDayiYYcCFhEiY2Gib8jtMiGzez8 mCM2w77ZTe61R0HgNA/iHW/y0WUPM/3+FDlKy+qBtRaXf8394bzcW4g8HJLafEdK kO4xg6rw86yd/6YOgari8V7BrA/ksalJEf28MoIpw8NKVVuJd/azqC0NQD0kutnG Jym/isy7YQLxJlbZG74TTeWGWnwvM8QBWgA7bIsbcrA8ehl0hPwQleUijIwbOSpG 8NSX9FmfRtNct+ioGFkwxMH7vqDs7Y5rQZcbcQZmKCF9cBAC3wnEhdmScM4zHP5J XfICftKd5mQyCFewwu9RQ5TgowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqPMXTz xLQAWhDdSMKgDv114dzdMB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUI0RS9BMjg0M0MwODk3MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlS aFVxSWVzcVdFTHhXQ3VjSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC7S6lnJK8Ghaipz1ClPxs2xcG61D3zgq4eppEo4ATGGaKVazj62sx ZoHGHAAJ45Gs0PuOv5HHJRP2o4+YarvtZhLahJCmmqmyo4S+jDuyosvqSC2+S0X9 uPp7SV7IgyPhLHDZzps8vVQ4XbLuYlAn9aQlkvSjkWom7Gq9gCvizm09DBxURAXR OF1j9t5c1PdQ/otriJbonT3ZJ2UMfHKcscv1mvjTKM1IsX6V/Km0mBmQYqjs/gRT YApnQTVxVSZyePxpV/pdO9CruizrubxPj6cAF3Qg6wz5vBAMzLhZqHebEKs9zP3b vg63sWk7yjE68Ux6Lt1pL1lJ5Y3sJYJV -----END CERTIFICATE-----Generated at Mon May 5 03:18:12 2025 by rpki-client