$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: 1YWmCABLsjxQuXiiD0ox4yVSsFBM1d0Z4V4AyOF9AlQ= Subject key identifier: 0B:2C:9C:20:5D:20:24:0C:23:53:77:3E:AD:77:B5:46:2F:25:AB:37 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 16 Signing time: Thu 03 Jul 2025 08:15:52 +0000 Manifest this update: Thu 03 Jul 2025 08:15:51 +0000 Manifest next update: Thu 10 Jul 2025 08:15:51 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: srn/jOQICFlwV/0USV8w8/Ik0GRJmptk14SSWjmCxGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Jul 3 08:15:51 2025 GMT Not After : Jul 10 08:15:51 2025 GMT Subject: CN=68663c37-6ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fa:36:64:b3:d3:48:42:81:c2:dc:30:b2:d0: 42:c8:c6:70:98:c4:ec:ed:52:92:73:0d:8d:7e:a8: be:b7:08:f6:23:94:fa:34:b9:e2:81:30:32:90:48: d6:f3:46:9f:64:66:36:94:67:92:e2:2c:49:91:37: c8:86:c2:4c:0b:fe:f3:67:58:df:1d:51:8f:72:8a: 95:a1:95:0d:aa:3a:30:0c:d0:e3:67:01:47:15:46: 8b:81:5b:90:81:38:0f:10:2d:5e:db:28:8e:58:24: d5:7e:d2:73:b5:a5:7b:43:9f:25:3a:49:6c:e5:77: 34:98:a9:36:d2:ed:83:54:7f:0b:a3:53:e4:81:f6: ae:a9:6b:51:12:72:62:55:f4:7c:95:76:f5:9a:f7: 98:b5:8d:6f:5b:93:24:e1:49:cc:93:ed:be:11:7f: 83:66:d6:5a:cb:0e:a9:6d:f6:8e:4f:95:1f:ab:a1: 47:bb:07:83:a1:d2:32:8b:a9:8e:cb:33:97:fc:60: ec:c4:f2:a2:85:9a:78:cc:5d:17:2f:24:4f:70:e0: 6e:10:8f:7a:8e:a2:9b:ca:ed:5c:be:66:6a:a7:ea: b8:b6:db:68:1f:97:3d:d9:41:1e:5d:6e:db:2d:13: 32:fc:44:92:bb:82:47:f1:e8:28:2b:df:5d:90:e5: 4b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2C:9C:20:5D:20:24:0C:23:53:77:3E:AD:77:B5:46:2F:25:AB:37 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e1:c4:3a:3b:b5:d7:a5:16:69:0c:98:1a:d6:02:ff:7a:a7: ec:b6:f3:e1:4d:bb:65:03:e0:0f:8b:c0:4a:0d:f4:c1:0e:ae: 6c:a9:43:e7:47:bc:3c:df:38:50:0c:ff:49:a5:5b:94:2f:c5: e2:e6:bc:ae:a0:fe:cf:c8:63:93:a7:72:eb:05:11:8d:73:78: 17:d7:01:6b:0e:49:62:ef:90:3a:a1:b2:ce:66:11:4f:4b:6b: 14:37:a8:51:30:d3:f4:72:c4:47:4c:e2:d5:16:62:7a:96:2d: c3:e0:67:40:91:90:0e:05:8d:c4:ba:30:1f:57:85:68:75:19: 7b:58:74:ad:41:87:4e:75:78:a9:b9:bf:ee:8a:82:c5:c9:4a: 53:31:12:d3:22:17:66:ec:6f:f9:15:d9:9c:c0:d4:c5:01:19: 42:21:c1:f1:4d:d5:76:bb:d7:6c:bc:fb:e6:b8:29:0b:d1:6f: 33:fc:15:6e:77:10:6d:70:bb:ca:ca:3a:5e:96:8e:72:6c:6c: 88:a1:4a:15:a6:95:39:bf:0b:28:a3:dd:a5:30:3a:09:f7:b8: 78:72:a2:bc:31:27:06:00:44:2c:d4:57:3b:93:51:11:cd:9f: 70:e3:78:63:a6:fc:01:d9:0c:90:ac:3e:48:ce:85:88:d6:ea: 72:31:a4:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoMUQwREFDMTFFRDgyRTM1QzIzQjBDQkVGRkJFRTAwNjI2 M0IwOTk1NzAeFw0yNTA3MDMwODE1NTFaFw0yNTA3MTAwODE1NTFaMBgxFjAUBgNV BAMTDTY4NjYzYzM3LTZiYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS+jZks9NIQoHC3DCy0ELIxnCYxOztUpJzDY1+qL63CPYjlPo0ueKBMDKQSNbz Rp9kZjaUZ5LiLEmRN8iGwkwL/vNnWN8dUY9yipWhlQ2qOjAM0ONnAUcVRouBW5CB OA8QLV7bKI5YJNV+0nO1pXtDnyU6SWzldzSYqTbS7YNUfwujU+SB9q6pa1EScmJV 9HyVdvWa95i1jW9bkyThScyT7b4Rf4Nm1lrLDqlt9o5PlR+roUe7B4Oh0jKLqY7L M5f8YOzE8qKFmnjMXRcvJE9w4G4Qj3qOopvK7Vy+Zmqn6ri222gflz3ZQR5dbtst EzL8RJK7gkfx6Cgr312Q5UsRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCyycIF0g JAwjU3c+rXe1Ri8lqzcwHwYDVR0jBBgwFoAUHQ2sEe2C41wjsMvv++4AYmOwmVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzVBRkIxNDhFMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21W Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFEyc0VlMkM0MXdqc012di0tNEFZbU93bVZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB OUMwLzVBRkIxNDhFMzg4MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3 anNNdnYtLTRBWW1Pd21WYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF3hxDo7tdelFmkMmBrWAv96p+y28+FNu2UD4A+LwEoN9MEOrmypQ+dH vDzfOFAM/0mlW5QvxeLmvK6g/s/IY5OncusFEY1zeBfXAWsOSWLvkDqhss5mEU9L axQ3qFEw0/RyxEdM4tUWYnqWLcPgZ0CRkA4FjcS6MB9XhWh1GXtYdK1Bh051eKm5 v+6KgsXJSlMxEtMiF2bsb/kV2ZzA1MUBGUIhwfFN1Xa712y8++a4KQvRbzP8FW53 EG1wu8rKOl6WjnJsbIihShWmlTm/Cyij3aUwOgn3uHhyorwxJwYARCzUVzuTURHN n3DjeGOm/AHZDJCsPkjOhYjW6nIxpO8= -----END CERTIFICATE-----Generated at Thu Jul 3 16:52:41 2025 by rpki-client