$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft File: HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft (raw, json) Hash identifier: 3cqXv9xgsKX4W6Z/pdOxPX+kNRK9V5Kq57CbD7lxFUI= Subject key identifier: 00:5A:B0:5C:3E:A6:CB:6E:86:60:B2:83:9B:01:AC:C0:C7:24:66:1E Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 Certificate issuer: /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Certificate serial: 3496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft Manifest number: 348B Signing time: Sat 10 May 2025 14:54:18 +0000 Manifest this update: Sat 10 May 2025 14:54:17 +0000 Manifest next update: Sat 17 May 2025 14:54:17 +0000 Files and hashes: 1: HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl (hash: XNP+kG3piB723Dj+HQZA0r88FIWoxwCFNwX33kzYYT4=) 2: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (hash: alhBAf8jvRhFefsbDXOa8VjrZGUtci5WGYLgfA9nSPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CA8, serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Validity Not Before: May 10 14:54:17 2025 GMT Not After : May 17 14:54:17 2025 GMT Subject: CN=681f689a-ac58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:59:79:35:d7:08:c7:5a:94:32:fb:54:f5:eb: 46:8d:3a:ce:41:e2:74:11:b4:03:74:1c:e4:89:7c: 9f:59:4c:ab:e4:86:aa:db:a1:d0:11:50:69:70:7b: a1:35:bc:a6:0d:d8:52:36:60:2d:e2:c7:c4:af:9a: bb:7b:06:47:e3:8b:9a:ea:4e:88:1f:cb:db:c1:3c: 68:77:b6:5f:6c:21:74:e2:4c:13:46:5e:9e:3b:68: 96:5f:4a:96:be:18:ce:14:12:76:bc:b0:f4:fb:6d: 30:a6:eb:86:ce:1f:12:96:36:58:80:ec:d8:d8:4d: b8:7b:84:69:e9:c7:e6:e5:55:50:85:43:24:af:aa: e9:83:0d:73:70:de:56:e5:6b:1c:42:3f:e6:5e:e2: 2b:76:93:74:79:04:1e:57:d6:c4:85:a6:32:dd:6f: 76:de:15:1f:71:fb:9f:ed:fd:fb:9c:69:51:3e:fe: 04:e1:9b:a2:ed:49:7f:72:13:78:5d:17:eb:7c:5c: f7:ae:2c:0f:c8:a6:12:4f:66:37:05:99:9a:da:dd: 4b:40:60:50:57:87:34:67:e7:87:c3:58:5a:ad:d3: a1:28:b0:3d:16:83:9e:0c:f6:32:fb:3f:88:cd:c4: da:8f:fd:fe:d9:b3:34:f4:c0:9f:38:58:14:64:ff: 4e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5A:B0:5C:3E:A6:CB:6E:86:60:B2:83:9B:01:AC:C0:C7:24:66:1E X509v3 Authority Key Identifier: keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:14:a4:be:7d:94:28:75:b9:fe:28:40:aa:1c:9e:93:8c:0d: 6d:77:0c:20:55:4d:b8:23:10:ca:ae:1a:c1:50:33:49:5c:fb: 2c:88:c1:ee:3f:3c:85:e9:3c:31:1a:24:1e:84:cb:f1:28:b0: 77:82:52:bc:48:4c:ba:99:b8:34:0b:fb:cb:32:94:35:93:b1: a7:44:56:65:40:4e:74:b7:7a:bd:36:fd:bd:89:36:aa:cd:03: 27:2c:d1:45:02:ba:84:90:30:61:bc:c7:90:f0:fb:62:51:98: fb:6c:c9:90:bb:9f:9b:4c:34:b7:01:f7:1e:d4:ce:27:bc:11: c6:91:f8:2a:0c:93:0a:c4:bd:7e:68:d0:dc:f5:40:e8:fb:d4: 81:5e:54:f9:bc:d4:3a:f4:1d:03:f3:96:86:3d:6d:91:cd:11: 01:b3:e9:9e:e2:c9:e2:95:38:e1:ea:79:5e:f6:a2:f6:09:43: d1:a1:8a:fb:1d:4a:fb:30:14:24:a4:0f:70:b0:d0:8a:63:3a: eb:81:b6:06:e0:69:f4:8a:70:16:ff:5d:f3:20:62:bb:5e:78: a4:41:da:fe:b8:12:8a:a8:c7:19:0e:52:65:eb:02:83:47:15: 4b:f1:a2:96:07:31:f4:5a:dc:c0:7f:1a:f1:85:81:b4:d3:f8: 14:d8:c0:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDQTgxMTAvBgNVBAUTKDFFNzUyQzNEMTYwNDhDM0YzRjYzMjNEMkI5MTA3MEJG MjQ3RDY4NjYwHhcNMjUwNTEwMTQ1NDE3WhcNMjUwNTE3MTQ1NDE3WjAYMRYwFAYD VQQDEw02ODFmNjg5YS1hYzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArll5NdcIx1qUMvtU9etGjTrOQeJ0EbQDdBzkiXyfWUyr5Iaq26HQEVBpcHuh NbymDdhSNmAt4sfEr5q7ewZH44ua6k6IH8vbwTxod7ZfbCF04kwTRl6eO2iWX0qW vhjOFBJ2vLD0+20wpuuGzh8SljZYgOzY2E24e4Rp6cfm5VVQhUMkr6rpgw1zcN5W 5WscQj/mXuIrdpN0eQQeV9bEhaYy3W923hUfcfuf7f37nGlRPv4E4Zui7Ul/chN4 XRfrfFz3riwPyKYST2Y3BZma2t1LQGBQV4c0Z+eHw1hardOhKLA9FoOeDPYy+z+I zcTaj/3+2bM09MCfOFgUZP9O+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABasFw+ pstuhmCyg5sBrMDHJGYeMB8GA1UdIwQYMBaAFB51LD0WBIw/P2Mj0rkQcL8kfWhm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNBOC84NzAzMjI1ODFE OUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpEOF9ZeVBTdVJCd3Z5Ujlh R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huVXNQUllFakQ4X1l5UFN1UkJ3dnlSOWFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNBOC84NzAzMjI1ODFEOUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpE OF9ZeVBTdVJCd3Z5UjlhR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjFKS+fZQodbn+KECqHJ6TjA1tdwwgVU24IxDKrhrBUDNJXPssiMHu PzyF6TwxGiQehMvxKLB3glK8SEy6mbg0C/vLMpQ1k7GnRFZlQE50t3q9Nv29iTaq zQMnLNFFArqEkDBhvMeQ8PtiUZj7bMmQu5+bTDS3Afce1M4nvBHGkfgqDJMKxL1+ aNDc9UDo+9SBXlT5vNQ69B0D85aGPW2RzREBs+me4snilTjh6nle9qL2CUPRoYr7 HUr7MBQkpA9wsNCKYzrrgbYG4Gn0inAW/13zIGK7XnikQdr+uBKKqMcZDlJl6wKD RxVL8aKWBzH0WtzAfxrxhYG00/gU2MBw -----END CERTIFICATE-----Generated at Sat May 10 21:22:40 2025 by rpki-client