$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: bBNx8Uuotwa2b4kaxqOfyJUdredSBojkXWrNxX2gvCo= Subject key identifier: AB:95:38:28:7A:19:A6:6D:C2:EB:62:A1:2A:6A:D4:75:86:54:4F:2B Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 3494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 348B Signing time: Wed 14 May 2025 14:51:09 +0000 Manifest this update: Wed 14 May 2025 14:51:08 +0000 Manifest next update: Wed 21 May 2025 14:51:08 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: 8fZHLK/bPOQjjhLQYOUb1Xj403KBj8XKJ1qsNgUNKeY=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: 4D8Gd5fcPnmWPe8Yaf2DxYR0OtX+KheAxOMoPi97yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13460 (0x3494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: May 14 14:51:08 2025 GMT Not After : May 21 14:51:08 2025 GMT Subject: CN=6824addc-1466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:87:a9:b6:89:eb:92:e6:a3:d9:c9:78:f1:79: 06:a1:23:e4:fc:70:d3:4c:44:2a:4e:12:69:2d:94: 8a:31:f3:8e:92:a7:fa:69:ba:f8:09:34:ae:0d:a0: 9e:f6:02:43:02:9a:d3:f1:77:a7:dc:2a:94:50:df: 54:1a:5d:bc:fc:85:43:7b:2c:4b:a4:e6:23:eb:f5: 4b:5d:1a:85:11:8f:60:f8:bf:bd:34:29:b5:40:a4: 96:1d:be:2f:07:d2:f9:39:bd:a1:97:c8:24:21:90: 55:df:e1:49:77:d9:03:61:47:de:da:ae:6c:58:f5: 25:a8:00:dc:b7:4c:d1:38:f4:79:85:29:e2:96:5c: 14:d6:d4:ab:b1:21:00:40:3d:b3:5c:b1:7f:99:67: fe:55:ab:7d:78:21:c1:70:2c:e4:64:99:dc:80:5f: fb:e9:ba:6c:15:04:f2:fe:8e:b0:ce:14:52:4f:c4: 81:e5:da:59:f1:2f:c8:67:94:91:d1:a4:f3:6c:41: 6f:8d:b3:d2:21:4c:c0:f4:cd:5d:92:7f:0a:f7:74: 0d:e8:dc:9d:1a:08:51:d9:8d:71:f6:35:ca:a5:ce: b5:53:ba:f4:fa:3c:83:66:aa:02:af:d3:29:a5:fd: 7c:f0:c4:5e:63:1d:71:83:cc:0e:07:31:e3:f1:65: de:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:95:38:28:7A:19:A6:6D:C2:EB:62:A1:2A:6A:D4:75:86:54:4F:2B X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:21:35:f5:e5:f7:28:01:41:cf:ce:8e:c7:78:30:87:99:1d: 91:28:7c:5c:23:8d:ed:37:26:ee:da:91:37:85:ec:13:1a:99: 43:05:fb:7f:a1:1f:d0:5c:b5:88:46:ac:1b:1a:76:a8:f5:7b: bb:95:28:09:a9:40:6a:a7:c2:93:f1:25:25:d0:e6:52:7d:a4: 07:44:29:2a:f5:0c:11:95:e9:71:b9:97:bf:1d:fa:61:65:d0: 11:92:a1:35:fc:97:84:53:dc:be:0a:34:88:0a:2c:34:18:4c: d9:2f:e5:3b:ab:99:23:b0:82:53:27:e2:e8:37:99:79:c6:fc: f0:d3:6d:e6:fb:d8:1c:e6:8f:d0:be:2d:4b:ba:68:ab:07:d6: 2e:6d:b7:11:2d:61:f9:0b:a8:09:b3:4b:15:50:42:75:22:84: 2d:e0:27:cc:8d:29:66:89:d9:de:45:af:33:c1:2d:7f:2b:a4: 37:db:7b:0f:2a:ae:f9:17:03:c8:91:a5:f9:75:15:f1:a2:f4: 1e:74:d6:b9:eb:95:14:72:e4:ed:86:1b:7e:aa:1e:0c:f9:8f: 5f:7a:2f:ef:c0:18:41:00:3f:9a:b0:c4:9b:14:bf:18:80:55: b1:74:aa:76:c2:e0:51:1d:5c:a9:ff:30:38:08:56:27:2d:53: 1b:41:4e:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUwNTE0MTQ1MTA4WhcNMjUwNTIxMTQ1MTA4WjAYMRYwFAYD VQQDEw02ODI0YWRkYy0xNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4eptonrkuaj2cl48XkGoSPk/HDTTEQqThJpLZSKMfOOkqf6abr4CTSuDaCe 9gJDAprT8Xen3CqUUN9UGl28/IVDeyxLpOYj6/VLXRqFEY9g+L+9NCm1QKSWHb4v B9L5Ob2hl8gkIZBV3+FJd9kDYUfe2q5sWPUlqADct0zROPR5hSnillwU1tSrsSEA QD2zXLF/mWf+Vat9eCHBcCzkZJncgF/76bpsFQTy/o6wzhRST8SB5dpZ8S/IZ5SR 0aTzbEFvjbPSIUzA9M1dkn8K93QN6NydGghR2Y1x9jXKpc61U7r0+jyDZqoCr9Mp pf188MReYx1xg8wOBzHj8WXexQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuVOCh6 GaZtwutioSpq1HWGVE8rMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByITX15fcoAUHPzo7HeDCHmR2RKHxcI43tNybu2pE3hewTGplDBft/ oR/QXLWIRqwbGnao9Xu7lSgJqUBqp8KT8SUl0OZSfaQHRCkq9QwRlelxuZe/Hfph ZdARkqE1/JeEU9y+CjSICiw0GEzZL+U7q5kjsIJTJ+LoN5l5xvzw023m+9gc5o/Q vi1LumirB9YubbcRLWH5C6gJs0sVUEJ1IoQt4CfMjSlmidneRa8zwS1/K6Q323sP Kq75FwPIkaX5dRXxovQedNa565UUcuTthht+qh4M+Y9fei/vwBhBAD+asMSbFL8Y gFWxdKp2wuBRHVyp/zA4CFYnLVMbQU6O -----END CERTIFICATE-----Generated at Thu May 15 09:09:01 2025 by rpki-client