$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: SmZoKEvVwPAQo1U7DrXrdF8KXUOFsfNN2eOxEprkAnE= Subject key identifier: 07:39:0C:DD:F2:94:75:3C:77:57:DE:CB:29:71:EA:A7:80:87:07:9A Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 08D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 08D1 Signing time: Sat 10 May 2025 20:10:10 +0000 Manifest this update: Sat 10 May 2025 20:10:09 +0000 Manifest next update: Sat 17 May 2025 20:10:09 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: VfQMGBebf7lk2KslMXfP3qOtW9F6D/IOKab7hQpk65I=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2264 (0x8d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: May 10 20:10:09 2025 GMT Not After : May 17 20:10:09 2025 GMT Subject: CN=681fb2a1-0ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:4b:ed:54:48:1a:5c:16:f6:20:32:7d:28:70: 11:75:ec:af:3e:6c:1a:7d:e8:22:21:b5:a0:91:cb: 1d:d7:e0:8e:76:e2:6c:e9:9b:2c:d5:01:45:50:fc: f1:63:2f:aa:63:ff:d4:d5:c1:e2:93:22:24:ce:9f: 19:0c:ca:54:cb:05:68:d3:23:08:4f:4c:25:3d:e6: 8c:6c:74:0d:d5:f6:06:06:c1:6e:11:84:cf:5e:61: 2a:7a:bc:d5:2b:68:ef:17:ac:7d:32:6a:d0:43:8a: e6:c4:40:94:f1:e0:ee:86:c1:b0:44:de:00:e6:5c: 0c:18:6c:11:76:0c:35:de:0d:1d:5d:a6:d3:c2:e3: bd:6e:a1:0b:ae:ed:b2:c1:cb:14:f5:f4:a8:78:b9: 32:c0:df:83:9c:e8:40:06:d6:b7:7c:47:af:d5:0e: c1:10:28:c6:e9:61:49:e0:9a:e3:51:e1:11:6a:31: ac:5d:1b:3e:71:ab:ee:bf:55:fc:c0:86:aa:b3:52: b7:d6:a1:29:9c:36:fa:3b:f5:45:48:79:32:13:d3: 4c:da:2b:2d:e9:2a:ea:77:9c:f1:7d:a0:9e:ca:a9: e2:5e:dd:1d:a6:89:29:ca:06:56:3f:85:49:e4:3a: a3:57:f4:18:e2:5d:2c:73:f0:91:ac:6a:b7:5c:20: 3d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:39:0C:DD:F2:94:75:3C:77:57:DE:CB:29:71:EA:A7:80:87:07:9A X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:2f:22:ed:59:c3:e2:83:1c:62:58:d4:47:f4:9b:45:ab:1b: e3:69:56:04:8b:a0:d3:db:68:6d:c1:7a:d4:b4:05:87:3b:74: b5:82:18:4f:7b:f1:1c:51:64:3a:ba:71:e3:1f:4d:8f:4a:73: 2e:19:60:da:7e:19:4a:79:ff:a6:79:95:89:00:c8:3e:c7:f1: 43:bf:b7:aa:42:f8:d3:6f:69:72:9a:a3:09:a4:bd:53:2c:a4: d0:8f:d9:8d:0e:92:0e:85:8c:32:ee:6e:94:96:96:16:ea:b2: 5d:1f:2d:42:e3:60:75:57:4d:f5:96:04:1e:42:0f:3a:31:eb: 4b:54:5c:f5:10:7b:e5:b4:5d:84:8e:4d:05:80:a5:68:7b:ed: fb:ba:ab:96:58:6e:45:95:5e:fa:9b:5d:1a:ba:f8:3d:49:62: a5:e3:fc:80:c5:d6:30:06:de:3a:41:a4:76:5e:99:e3:07:21: 19:db:0b:f5:ce:80:c4:ab:ba:54:1d:23:e8:6f:b2:ce:67:c1: 7a:05:28:4c:2f:f0:7e:57:54:e0:e1:16:be:55:29:83:24:37: 23:81:f7:e6:34:9b:77:0b:78:22:2f:14:bc:0a:80:bd:65:39: e8:a0:19:35:e6:3b:e9:4c:50:ca:97:37:d1:35:3c:08:b4:24: 7e:28:f8:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUwNTEwMjAxMDA5WhcNMjUwNTE3MjAxMDA5WjAYMRYwFAYD VQQDEw02ODFmYjJhMS0wYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8UvtVEgaXBb2IDJ9KHARdeyvPmwafegiIbWgkcsd1+COduJs6Zss1QFFUPzx Yy+qY//U1cHikyIkzp8ZDMpUywVo0yMIT0wlPeaMbHQN1fYGBsFuEYTPXmEqerzV K2jvF6x9MmrQQ4rmxECU8eDuhsGwRN4A5lwMGGwRdgw13g0dXabTwuO9bqELru2y wcsU9fSoeLkywN+DnOhABta3fEev1Q7BECjG6WFJ4JrjUeERajGsXRs+cavuv1X8 wIaqs1K31qEpnDb6O/VFSHkyE9NM2ist6Srqd5zxfaCeyqniXt0dpokpygZWP4VJ 5DqjV/QY4l0sc/CRrGq3XCA9UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAc5DN3y lHU8d1feyylx6qeAhweaMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHLyLtWcPigxxiWNRH9JtFqxvjaVYEi6DT22htwXrUtAWHO3S1ghhP e/EcUWQ6unHjH02PSnMuGWDafhlKef+meZWJAMg+x/FDv7eqQvjTb2lymqMJpL1T LKTQj9mNDpIOhYwy7m6UlpYW6rJdHy1C42B1V031lgQeQg86MetLVFz1EHvltF2E jk0FgKVoe+37uquWWG5FlV76m10auvg9SWKl4/yAxdYwBt46QaR2XpnjByEZ2wv1 zoDEq7pUHSPob7LOZ8F6BShML/B+V1Tg4Ra+VSmDJDcjgffmNJt3C3giLxS8CoC9 ZTnooBk15jvpTFDKlzfRNTwItCR+KPh4 -----END CERTIFICATE-----Generated at Mon May 12 03:59:57 2025 by rpki-client