$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: EVSB49BmNhDoYVUSvsBaqJAQ2SkukhxCYQPgchrhf8o= Subject key identifier: 3E:64:91:FF:A8:7F:1E:19:11:33:9E:FF:1B:80:B2:A2:EA:AF:23:45 Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 42 Signing time: Thu 15 May 2025 06:43:56 +0000 Manifest this update: Thu 15 May 2025 06:43:55 +0000 Manifest next update: Thu 22 May 2025 06:43:55 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: QO1hcuQAC9xinf6DFmWvj7dAzKQzt0bh9YFDuoXC4vE=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: May 15 06:43:55 2025 GMT Not After : May 22 06:43:55 2025 GMT Subject: CN=68258d2c-5621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f6:93:68:f6:d2:97:ec:b1:00:60:e4:e4:0d: eb:54:45:02:ea:96:ba:2d:f7:6b:82:0b:df:b5:e8: 73:73:6b:5a:1b:9a:e6:a2:d2:53:fa:13:c2:54:71: 26:90:b9:6d:a8:99:e4:d9:f3:82:b3:8b:e3:0a:76: 16:28:54:e3:c3:54:e7:f6:69:0d:7a:97:14:8b:41: 13:8c:56:2f:da:d4:0a:ea:2a:c3:42:68:18:f3:5d: 84:76:28:61:d3:5e:c5:2d:e5:83:e8:8e:1e:55:99: 61:40:75:39:ef:dc:8e:50:26:a6:90:5e:d4:bb:4d: 1e:78:5b:18:af:de:9d:d4:cb:01:3d:b3:08:0c:5b: 48:f8:91:04:7c:74:5a:af:dd:6a:49:08:d1:d9:8c: e8:e4:70:5f:68:6a:04:b6:34:00:03:a9:ba:99:ad: 4a:72:cc:0e:f1:bb:1f:21:35:4b:af:0b:05:3b:0b: d5:34:6a:48:25:1e:ba:8e:f0:cc:55:1d:db:08:a0: 94:80:4d:57:af:93:36:15:25:bf:73:08:89:4b:ae: be:1b:a0:e4:7d:4f:06:ca:93:3e:15:21:62:02:c0: 5a:ec:a1:2a:b9:61:67:2f:ed:d4:21:5a:a4:4e:ac: c3:e6:0c:7d:51:72:31:16:cb:9d:64:fd:72:02:69: 5f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:64:91:FF:A8:7F:1E:19:11:33:9E:FF:1B:80:B2:A2:EA:AF:23:45 X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ba:22:37:17:90:24:de:c4:6c:76:28:6b:d9:6f:3d:c0:f5: 7d:a3:d5:9f:9f:15:54:29:bc:42:26:a4:07:db:da:d4:90:b1: 33:9d:e9:6a:94:55:c5:56:da:37:06:b8:f5:20:46:e7:d0:f3: b4:af:9a:83:ea:e6:af:45:d3:d1:c8:72:59:61:9c:6c:90:7c: 65:d4:9c:99:a1:b2:0a:fc:98:d1:71:98:45:99:29:80:b8:94: 7a:42:d2:06:35:d5:cf:a7:3a:06:83:4e:4e:2f:22:8b:01:66: b6:f7:7a:0a:ee:39:89:c7:c3:f6:b1:6b:01:92:43:dc:17:af: d3:67:fd:e5:2a:58:bd:74:b6:03:60:86:94:8e:a7:bf:80:79: b2:fe:78:bc:fd:4d:ab:49:a2:45:15:f6:87:6c:cf:30:c5:77: cf:1f:18:f0:db:63:2d:64:04:64:f2:e9:c0:13:0c:6a:93:b2: 3e:98:1b:9f:76:b7:61:ef:e8:bf:02:c4:20:2c:aa:6c:fc:5d: 80:b9:d1:05:7b:c5:48:5c:07:1d:5a:9e:da:56:bc:76:99:67: f7:8d:80:a9:2c:2b:67:04:de:b0:fb:04:23:c4:70:3a:87:02: 02:92:21:e3:28:09:59:bf:12:ef:4b:d7:a1:6e:78:e0:88:7d: 2e:08:78:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA1MTUwNjQzNTVaFw0yNTA1MjIwNjQzNTVaMBgxFjAUBgNV BAMTDTY4MjU4ZDJjLTU2MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy9pNo9tKX7LEAYOTkDetURQLqlrot92uCC9+16HNza1obmuai0lP6E8JUcSaQ uW2omeTZ84Kzi+MKdhYoVOPDVOf2aQ16lxSLQROMVi/a1ArqKsNCaBjzXYR2KGHT XsUt5YPojh5VmWFAdTnv3I5QJqaQXtS7TR54Wxiv3p3UywE9swgMW0j4kQR8dFqv 3WpJCNHZjOjkcF9oagS2NAADqbqZrUpyzA7xux8hNUuvCwU7C9U0akglHrqO8MxV HdsIoJSATVevkzYVJb9zCIlLrr4boOR9TwbKkz4VIWICwFrsoSq5YWcv7dQhWqRO rMPmDH1RcjEWy51k/XICaV99AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPmSR/6h/ HhkRM57/G4CyouqvI0UwHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAES6IjcXkCTexGx2KGvZbz3A9X2j1Z+fFVQpvEImpAfb2tSQsTOd6WqU VcVW2jcGuPUgRufQ87SvmoPq5q9F09HIcllhnGyQfGXUnJmhsgr8mNFxmEWZKYC4 lHpC0gY11c+nOgaDTk4vIosBZrb3egruOYnHw/axawGSQ9wXr9Nn/eUqWL10tgNg hpSOp7+AebL+eLz9TatJokUV9odszzDFd88fGPDbYy1kBGTy6cATDGqTsj6YG592 t2Hv6L8CxCAsqmz8XYC50QV7xUhcBx1antpWvHaZZ/eNgKksK2cE3rD7BCPEcDqH AgKSIeMoCVm/Eu9L16FueOCIfS4IeJQ= -----END CERTIFICATE-----Generated at Fri May 16 22:55:51 2025 by rpki-client