$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: T+qa3kmgZ0hHH2/WIXQudj1g90lfG0hQmkuxE1Xxwbw= Subject key identifier: E6:E7:36:A1:ED:30:00:C6:30:F2:ED:71:72:57:A4:38:2C:07:CA:4E Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 352D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 34E9 Signing time: Tue 01 Jul 2025 00:15:27 +0000 Manifest this update: Tue 01 Jul 2025 00:15:27 +0000 Manifest next update: Tue 08 Jul 2025 00:15:27 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: ZcXurmcXPtHufPrMF4sVj/32n8rMW6+04ldq4p/2xVI=) 2: 3D6EDF86EDA711ED91155885C4F9AE02.roa (hash: mXb8AscVsTwHQGsL7M6XAxSIWwOh5epna0XlBQIQUOY=) 3: D3DAACB2507E11EF91EDBA52C4F9AE02.roa (hash: Whq1SIyvQYa1mALpVqGVZuuCi11KV+H9HrjJKdS2dN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13613 (0x352d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Jul 1 00:15:27 2025 GMT Not After : Jul 8 00:15:27 2025 GMT Subject: CN=6863289f-713b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:74:9b:59:8f:08:6f:7f:d2:d3:5a:a3:dd:f1: c8:ef:b8:38:21:38:3e:74:ad:2d:21:66:dc:ec:47: b2:d3:ba:fe:8c:95:12:09:76:43:c6:9d:01:64:f5: e0:d1:0e:c9:a1:62:2f:5a:fc:5a:3c:47:f7:9c:58: e2:e8:5a:32:0c:90:43:ed:a1:cb:82:99:a9:c6:05: dc:54:a8:29:a7:5d:f5:ca:7a:19:a3:d0:4c:7f:ce: 41:e6:f7:f9:f2:57:ec:01:7e:31:3e:d3:28:5f:fd: 11:c7:2b:b0:99:6b:ae:bb:9c:c1:28:96:65:d9:ca: a9:47:e0:e4:42:6e:ab:18:f9:e8:9b:15:b0:3b:c0: 17:c6:50:71:36:53:4e:46:56:1c:76:a3:5e:d5:3e: 69:37:0c:2e:29:89:ff:f8:0b:9d:da:c4:45:02:a7: f6:2a:05:dd:88:b9:c7:48:e7:b7:bc:eb:6c:88:81: 37:8e:0c:aa:68:0f:b5:10:bd:50:1e:b0:2c:7e:8b: 75:22:78:16:2a:10:2e:ca:71:d0:d6:4f:e8:63:8e: f0:e1:ac:e5:dc:66:09:d5:c3:8a:95:db:0a:0e:32: 5c:b7:52:e0:a1:af:17:08:fd:1b:03:1b:17:08:82: 70:be:74:26:31:a2:04:71:2a:a1:f3:b7:88:0d:14: b3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E7:36:A1:ED:30:00:C6:30:F2:ED:71:72:57:A4:38:2C:07:CA:4E X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:72:a1:c8:72:38:3c:f8:e2:bb:44:f7:12:dc:8d:3f:f3:c5: 21:9d:c0:71:52:8d:f3:e2:be:f7:51:58:40:6b:b5:25:61:04: 96:c5:da:de:75:5f:0d:e3:7c:83:76:f7:65:d1:05:f0:3f:f1: c5:cd:2f:79:e5:72:1f:fb:91:9c:e6:f0:12:21:4d:fd:22:4f: bd:4c:7f:22:95:d6:fb:18:cd:ed:86:1d:91:76:73:c8:73:89: fa:1c:23:04:cd:ab:c5:ae:75:ca:49:a6:32:9f:38:fd:1e:30: 55:d6:e9:55:12:4b:f1:97:3a:ea:98:f8:de:c0:e8:3b:ef:90: db:4a:3e:30:ba:04:6e:25:75:76:1b:09:07:ee:45:f9:c7:91: c3:dd:e0:0e:c5:42:e2:42:00:b4:67:2b:4d:d2:cf:fd:c4:c5: be:d8:69:17:81:9b:e5:31:98:82:63:2f:dc:ce:2c:06:25:c1: 3c:73:df:ff:d3:90:99:25:a8:30:8d:f4:f8:07:a4:00:34:8a: 55:96:4d:9e:34:eb:8e:59:c6:e1:8b:c3:49:ad:0c:6a:c6:37: 0d:4a:cc:2b:f0:98:02:33:c1:fd:f5:e2:d4:ed:0a:cf:14:68: 43:21:86:3a:14:39:d6:db:7e:44:6d:5c:64:b6:5e:dd:2c:39: a8:dc:47:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjUwNzAxMDAxNTI3WhcNMjUwNzA4MDAxNTI3WjAYMRYwFAYD VQQDEw02ODYzMjg5Zi03MTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonSbWY8Ib3/S01qj3fHI77g4ITg+dK0tIWbc7Eey07r+jJUSCXZDxp0BZPXg 0Q7JoWIvWvxaPEf3nFji6FoyDJBD7aHLgpmpxgXcVKgpp131ynoZo9BMf85B5vf5 8lfsAX4xPtMoX/0RxyuwmWuuu5zBKJZl2cqpR+DkQm6rGPnomxWwO8AXxlBxNlNO RlYcdqNe1T5pNwwuKYn/+Aud2sRFAqf2KgXdiLnHSOe3vOtsiIE3jgyqaA+1EL1Q HrAsfot1IngWKhAuynHQ1k/oY47w4azl3GYJ1cOKldsKDjJct1Lgoa8XCP0bAxsX CIJwvnQmMaIEcSqh87eIDRSzMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObnNqHt MADGMPLtcXJXpDgsB8pOMB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYcqHIcjg8+OK7RPcS3I0/88UhncBxUo3z4r73UVhAa7UlYQSWxdre dV8N43yDdvdl0QXwP/HFzS955XIf+5Gc5vASIU39Ik+9TH8ildb7GM3thh2RdnPI c4n6HCMEzavFrnXKSaYynzj9HjBV1ulVEkvxlzrqmPjewOg775DbSj4wugRuJXV2 GwkH7kX5x5HD3eAOxULiQgC0ZytN0s/9xMW+2GkXgZvlMZiCYy/cziwGJcE8c9// 05CZJagwjfT4B6QANIpVlk2eNOuOWcbhi8NJrQxqxjcNSswr8JgCM8H99eLU7QrP FGhDIYY6FDnW235EbVxktl7dLDmo3Ef6 -----END CERTIFICATE-----Generated at Wed Jul 2 10:19:23 2025 by rpki-client