$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: +EgvdDyH9wI/yNrwtZFoAqYktCHI7reqOBEKtQadDaI= Subject key identifier: 68:9B:8A:2B:D9:62:6F:E4:DC:D0:6E:95:86:A6:50:C1:97:CA:9B:0A Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 0897 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 088B Signing time: Thu 08 May 2025 20:29:07 +0000 Manifest this update: Thu 08 May 2025 20:29:06 +0000 Manifest next update: Thu 15 May 2025 20:29:06 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: JTq27dWQMCVYxziSsUsq8RO2Sx+P6jbhh1wy7jZh4L4=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: pJopSUouAomRS7bBbLiExTbU2TzCWgsGbKH4r8LjMrI=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: NDjkgreHok48ic1Su9+HPGIeiSQ2Z7P+GcpTGnpZzHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 20:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2199 (0x897) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: May 8 20:29:06 2025 GMT Not After : May 15 20:29:06 2025 GMT Subject: CN=681d1413-4b7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d7:8b:ae:eb:25:41:30:a9:83:5f:ef:f7:8f: ef:55:53:68:3b:78:84:f7:bf:ae:14:21:c2:e6:12: ef:ab:62:67:32:ad:c7:3a:8f:48:8c:fe:84:5c:01: ca:bb:1b:eb:83:b6:15:35:98:19:39:75:44:07:d5: 27:d0:14:d5:54:e1:2d:78:45:2a:3b:82:ed:4a:75: 97:3a:88:d0:f5:21:10:63:05:a2:30:20:5b:a2:5c: ea:75:b8:01:f3:7d:32:d2:e0:e5:42:10:98:69:eb: 26:40:25:60:42:75:35:0e:6a:67:9e:1a:46:14:aa: 73:24:d5:bd:ca:a3:d2:58:73:67:f7:52:87:93:36: 1b:71:e7:00:2c:f9:b4:5f:cd:b6:b3:3d:8b:2d:16: 39:8d:05:a2:34:ba:ec:42:9f:1c:5a:06:14:02:2c: 37:0e:32:d0:fe:e9:26:8f:cc:f8:51:26:64:00:82: 7b:a5:cf:6f:df:36:fc:e2:15:6a:f0:f0:1b:95:0a: f1:e5:19:61:15:85:b2:fe:e2:44:2b:19:47:28:74: 88:f6:b6:af:16:2b:d7:aa:c1:a2:75:7e:ce:93:23: e1:fd:1f:a7:33:ce:93:6f:5f:3b:93:ec:89:b6:4b: 1b:1a:3c:30:d6:d8:b9:82:e0:72:c2:5b:15:a6:ab: 7a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9B:8A:2B:D9:62:6F:E4:DC:D0:6E:95:86:A6:50:C1:97:CA:9B:0A X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:2f:a7:80:2b:7c:6a:12:c1:89:12:1f:7f:fa:fa:75:d0:b5: 95:ce:04:ac:71:19:a5:9b:58:d5:a7:d5:c2:be:d7:25:4a:8d: 03:a7:1e:5a:69:25:e1:eb:53:35:31:3a:83:13:e0:85:59:e3: db:df:26:df:67:dc:81:24:73:33:f0:5e:ef:7f:26:92:fb:5d: 9e:c0:3f:24:9f:57:8e:25:68:54:dc:7d:f3:f7:cd:ab:12:d6: 17:48:3a:65:a8:fb:9d:35:cf:f1:e4:9d:e0:d3:d9:12:f8:31: 57:8a:71:f1:24:ab:f3:09:86:a1:db:14:c0:c7:e6:ba:a0:88: c1:c0:65:51:41:85:1c:7c:1c:4b:fc:1a:e8:05:1c:55:fd:45: 74:b6:e9:6f:22:5e:6e:b6:7b:e0:d8:eb:b4:0f:eb:08:05:a4: d9:cc:e1:9b:aa:07:6d:ef:4b:5c:ba:82:c3:4c:5f:df:bc:8c: 09:e8:d9:95:b2:eb:9b:30:17:c5:c7:49:77:91:29:7f:f2:eb: 63:dc:ec:41:ef:b7:4d:ee:a2:0e:65:81:60:af:72:32:81:94: ec:ad:b2:9e:96:f3:8a:ce:a3:7f:dd:52:77:d0:42:38:46:1f: 91:04:ed:ae:d5:89:b7:c1:19:d2:3c:24:80:97:0b:9a:b3:74: 62:3a:04:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjUwNTA4MjAyOTA2WhcNMjUwNTE1MjAyOTA2WjAYMRYwFAYD VQQDEw02ODFkMTQxMy00YjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9eLruslQTCpg1/v94/vVVNoO3iE97+uFCHC5hLvq2JnMq3HOo9IjP6EXAHK uxvrg7YVNZgZOXVEB9Un0BTVVOEteEUqO4LtSnWXOojQ9SEQYwWiMCBbolzqdbgB 830y0uDlQhCYaesmQCVgQnU1DmpnnhpGFKpzJNW9yqPSWHNn91KHkzYbcecALPm0 X822sz2LLRY5jQWiNLrsQp8cWgYUAiw3DjLQ/ukmj8z4USZkAIJ7pc9v3zb84hVq 8PAblQrx5RlhFYWy/uJEKxlHKHSI9ravFivXqsGidX7OkyPh/R+nM86Tb187k+yJ tksbGjww1ti5guBywlsVpqt6HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGibiivZ Ym/k3NBulYamUMGXypsKMB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARL6eAK3xqEsGJEh9/+vp10LWVzgSscRmlm1jVp9XCvtclSo0Dpx5a aSXh61M1MTqDE+CFWePb3ybfZ9yBJHMz8F7vfyaS+12ewD8kn1eOJWhU3H3z982r EtYXSDplqPudNc/x5J3g09kS+DFXinHxJKvzCYah2xTAx+a6oIjBwGVRQYUcfBxL /BroBRxV/UV0tulvIl5utnvg2Ou0D+sIBaTZzOGbqgdt70tcuoLDTF/fvIwJ6NmV suubMBfFx0l3kSl/8utj3OxB77dN7qIOZYFgr3IygZTsrbKelvOKzqN/3VJ30EI4 Rh+RBO2u1Ym3wRnSPCSAlwuas3RiOgQd -----END CERTIFICATE-----Generated at Sat May 10 06:33:22 2025 by rpki-client