$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: p3bBulMvVw1Z0DP8umMuugqqCw8xFs7hZyfAAl9O7J0= Subject key identifier: 59:2C:86:71:C2:DD:D3:E4:77:EF:F6:38:E1:22:BC:87:13:0D:0F:59 Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 08B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 08A5 Signing time: Sat 28 Jun 2025 20:12:50 +0000 Manifest this update: Sat 28 Jun 2025 20:12:49 +0000 Manifest next update: Sat 05 Jul 2025 20:12:49 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: aYXCH9/0N3DzMbOXTiTgc/qkREgW0YNuXmDUV5Yu2PM=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: pJopSUouAomRS7bBbLiExTbU2TzCWgsGbKH4r8LjMrI=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: NDjkgreHok48ic1Su9+HPGIeiSQ2Z7P+GcpTGnpZzHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2225 (0x8b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: Jun 28 20:12:49 2025 GMT Not After : Jul 5 20:12:49 2025 GMT Subject: CN=68604cc1-70ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:10:a4:89:45:25:35:74:b9:58:9a:7e:39:ba: 0b:2b:d8:41:6a:15:b5:63:0f:3a:2f:31:02:49:53: 5f:29:36:b2:79:a8:4f:cf:3b:2a:82:64:6b:a3:4d: 9c:c1:2f:d8:0f:7b:c7:30:b9:33:fa:8c:81:d8:1a: 3d:f9:fe:8b:72:fa:aa:a8:01:fd:d2:af:7f:59:b2: b3:c2:26:52:22:87:81:eb:18:eb:21:6e:e2:15:fb: 8a:58:75:01:68:c9:f0:16:8d:44:e7:b4:23:da:1e: c8:35:68:65:86:2b:73:36:5b:b8:60:fc:cd:ab:31: 5d:97:22:d2:03:25:00:d2:42:cd:cb:dd:35:aa:ff: 24:79:5a:9f:35:8f:6c:e1:db:3c:88:95:91:b5:15: cf:db:81:c4:c1:af:0a:2c:90:5f:37:fc:e3:27:2c: 6e:0d:dd:9a:8b:e9:0a:77:18:e7:e4:83:b3:1e:06: df:eb:4a:b5:98:31:1c:54:ff:26:9a:cd:53:b4:52: b3:69:40:bc:dc:88:73:70:99:5c:64:4e:ef:d9:97: ac:1e:ee:2c:55:93:39:1c:f0:56:de:ee:86:b6:d2: 5f:ac:80:a0:55:22:83:0c:ae:e3:1b:d3:43:dc:8c: 01:92:25:5d:55:db:77:d9:1e:dd:f8:88:49:85:14: 70:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:2C:86:71:C2:DD:D3:E4:77:EF:F6:38:E1:22:BC:87:13:0D:0F:59 X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:bf:04:c1:93:bf:b3:f9:c3:d1:b4:6d:f1:4e:6b:6f:93:77: b9:97:01:75:d4:0a:9a:f5:25:ef:32:b3:72:5d:cd:5c:df:7d: 57:17:70:a3:a7:94:a9:bc:8a:90:8e:8e:16:0e:ee:84:bc:78: 1a:c5:9f:89:e2:a1:dc:fb:5d:ae:83:b8:f6:a9:44:cb:3a:a9: c7:d2:95:68:ac:5a:5f:78:10:6e:33:11:9c:a5:bc:06:0b:50: ab:bf:ee:6d:f7:b2:b5:ef:07:8f:06:15:c5:d5:ce:83:fb:6f: e3:40:17:a2:49:2f:72:6e:d1:17:44:58:ad:3a:e8:d6:b5:38: a3:be:25:22:5a:18:af:49:34:78:db:d4:69:7a:1b:ce:50:98: 69:71:f4:35:68:03:35:23:e4:6d:98:c4:1f:b7:a1:93:71:a7: d0:55:ac:9e:84:03:97:23:e6:57:f3:02:d9:a4:09:01:f6:36: 72:dd:68:9d:40:af:2f:2c:08:00:4d:15:6a:a8:e8:6d:18:2a: 4b:d7:02:5f:2c:e2:71:82:c7:d5:13:1e:ca:36:04:76:b1:31: 19:7b:9d:11:9d:f2:ac:2d:9c:49:96:6f:5a:32:01:b5:7b:49: 5f:39:61:2f:f8:50:d1:1a:55:a4:f3:b4:b2:ed:30:83:87:2d: 2b:db:d9:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjUwNjI4MjAxMjQ5WhcNMjUwNzA1MjAxMjQ5WjAYMRYwFAYD VQQDEw02ODYwNGNjMS03MGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxCkiUUlNXS5WJp+OboLK9hBahW1Yw86LzECSVNfKTayeahPzzsqgmRro02c wS/YD3vHMLkz+oyB2Bo9+f6LcvqqqAH90q9/WbKzwiZSIoeB6xjrIW7iFfuKWHUB aMnwFo1E57Qj2h7INWhlhitzNlu4YPzNqzFdlyLSAyUA0kLNy901qv8keVqfNY9s 4ds8iJWRtRXP24HEwa8KLJBfN/zjJyxuDd2ai+kKdxjn5IOzHgbf60q1mDEcVP8m ms1TtFKzaUC83IhzcJlcZE7v2ZesHu4sVZM5HPBW3u6GttJfrICgVSKDDK7jG9ND 3IwBkiVdVdt32R7d+IhJhRRwFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkshnHC 3dPkd+/2OOEivIcTDQ9ZMB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1vwTBk7+z+cPRtG3xTmtvk3e5lwF11Aqa9SXvMrNyXc1c331XF3Cj p5SpvIqQjo4WDu6EvHgaxZ+J4qHc+12ug7j2qUTLOqnH0pVorFpfeBBuMxGcpbwG C1Crv+5t97K17wePBhXF1c6D+2/jQBeiSS9ybtEXRFitOujWtTijviUiWhivSTR4 29RpehvOUJhpcfQ1aAM1I+RtmMQft6GTcafQVayehAOXI+ZX8wLZpAkB9jZy3Wid QK8vLAgATRVqqOhtGCpL1wJfLOJxgsfVEx7KNgR2sTEZe50RnfKsLZxJlm9aMgG1 e0lfOWEv+FDRGlWk87Sy7TCDhy0r29nI -----END CERTIFICATE-----Generated at Sun Jun 29 17:36:39 2025 by rpki-client