$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft File: HQDCg8qhqzzENxoqOE1isc1E-6c.mft (raw, json) Hash identifier: LNicujFuhjqmgusTcj/W3lXzc9DGqsP5uzJxXKbaafc= Subject key identifier: 51:33:66:39:5A:25:CB:86:BF:45:A4:F6:B8:D2:E6:71:2C:D5:FF:7E Authority key identifier: 1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 Certificate issuer: /CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft Manifest number: 010D Signing time: Sat 29 Mar 2025 04:29:33 +0000 Manifest this update: Sat 29 Mar 2025 04:29:33 +0000 Manifest next update: Sat 05 Apr 2025 04:29:33 +0000 Files and hashes: 1: HQDCg8qhqzzENxoqOE1isc1E-6c.crl (hash: zs4DeLdh4lJ3gmZ3QWJ/fW8qmMTtZMlnpn03OLSbHV0=) 2: 9556705A2E6111EF9D743040C4F9AE02.roa (hash: RLnLzyrrcNZhWSbOgsksg70plHnwm/0y4IiOT7XePHI=) 3: FC34967C6C8611EFBF35D221C4F9AE02.roa (hash: g3qVGTL6N3Bx7PoU5ChuYFlVdWGCksOpw5qXnk0J/9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387 Validity Not Before: Mar 29 04:29:33 2025 GMT Not After : Apr 5 04:29:33 2025 GMT Subject: CN=67e7772d-fd1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7d:04:e3:db:53:38:bf:2b:b3:64:36:ea:25: ab:ee:e4:fe:c6:52:75:b5:60:d5:3a:e0:66:a7:a0: a7:79:1d:57:a7:b1:47:83:2c:64:89:79:e5:3b:8f: e2:75:e1:2b:7d:ab:84:1f:19:d1:67:5a:f8:e6:50: cf:aa:b0:54:a4:c9:09:49:f0:d9:c8:ef:62:3a:0e: 25:fc:b1:72:ea:f5:4f:5d:0f:21:31:c7:57:b1:4b: a3:5c:8a:2f:59:b4:61:e2:67:6e:7d:27:e3:5f:ee: f9:4d:95:ee:5b:5e:fc:74:94:59:8d:44:4f:4a:eb: 10:f9:13:f1:fd:ea:2c:72:99:d6:5d:f5:00:13:de: 99:2d:be:34:03:4c:cb:0e:4c:6c:88:b1:b5:f7:88: 8c:d9:61:7a:af:49:b0:2d:a0:d9:83:4c:80:9c:25: 84:95:30:e7:dd:82:60:07:e7:a6:d8:a0:d4:ba:da: bf:04:4e:84:22:53:13:64:19:0b:97:3f:29:2a:96: f8:b3:e9:12:98:2c:48:53:fe:ba:65:c5:81:ff:0a: 89:b7:d5:c2:3d:e8:7c:53:21:c5:3c:3f:8e:26:7c: 5d:2d:8d:fd:c5:de:6d:8f:43:a4:b5:03:56:bb:1d: 9b:90:dd:98:d9:1c:e4:80:37:45:7d:33:98:a9:53: 79:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:33:66:39:5A:25:CB:86:BF:45:A4:F6:B8:D2:E6:71:2C:D5:FF:7E X509v3 Authority Key Identifier: keyid:1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:f5:f5:41:4d:da:df:1b:fc:37:f7:51:3f:b8:27:29:32:10: 6c:1f:e0:33:39:25:b8:14:56:4f:60:a9:4d:10:48:ae:2e:9d: 7e:f0:05:90:1b:14:dc:7c:56:e6:00:85:3e:14:52:1c:3c:c5: 16:60:27:19:fb:4d:b7:a6:f1:6a:23:68:2b:f4:89:cd:18:8c: a4:cb:21:b9:33:f4:d3:6c:f2:39:1d:19:12:0b:82:4d:fd:5f: 47:84:d9:be:f6:86:fb:b7:f8:3c:1b:31:e8:70:9a:8b:29:be: 3e:7d:c3:56:43:03:ec:2d:87:7b:16:a4:bc:da:cf:34:a8:3b: 2a:f5:ff:97:6c:32:f3:eb:2f:05:17:f8:ec:d6:62:31:75:5d: 00:8b:47:bf:25:ba:e6:d4:13:12:8b:27:66:2e:09:97:cc:61: 36:e2:b6:4b:37:f3:e8:2e:4f:09:33:6c:3a:85:db:ec:31:51: dc:84:c8:a0:84:0a:08:b2:f7:e3:f4:dc:03:60:35:ee:c2:c6: d2:a0:09:dd:43:41:97:33:e2:01:17:a2:8a:ed:d5:e3:db:eb: f9:b8:44:d9:90:7a:66:eb:33:a1:d2:89:6f:34:89:1d:df:07: 1e:d0:1d:77:4a:10:bd:8c:aa:20:c9:de:63:18:cd:5a:d6:e4: 68:2f:ff:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDFEMDBDMjgzQ0FBMUFCM0NDNDM3MUEyQTM4NEQ2MkIx Q0Q0NEZCQTcwHhcNMjUwMzI5MDQyOTMzWhcNMjUwNDA1MDQyOTMzWjAYMRYwFAYD VQQDEw02N2U3NzcyZC1mZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX0E49tTOL8rs2Q26iWr7uT+xlJ1tWDVOuBmp6CneR1Xp7FHgyxkiXnlO4/i deErfauEHxnRZ1r45lDPqrBUpMkJSfDZyO9iOg4l/LFy6vVPXQ8hMcdXsUujXIov WbRh4mdufSfjX+75TZXuW178dJRZjURPSusQ+RPx/eoscpnWXfUAE96ZLb40A0zL DkxsiLG194iM2WF6r0mwLaDZg0yAnCWElTDn3YJgB+em2KDUutq/BE6EIlMTZBkL lz8pKpb4s+kSmCxIU/66ZcWB/wqJt9XCPeh8UyHFPD+OJnxdLY39xd5tj0OktQNW ux2bkN2Y2RzkgDdFfTOYqVN5JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEzZjla JcuGv0Wk9rjS5nEs1f9+MB8GA1UdIwQYMBaAFB0AwoPKoas8xDcaKjhNYrHNRPun MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny81RjNDODQ5Njgz QTMxMUVFQTBCNDI4MUNDNEY5QUUwMi9IUURDZzhxaHF6ekVOeG9xT0UxaXNjMUUt NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRRENnOHFocXp6RU54b3FPRTFpc2MxRS02Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjM4Ny81RjNDODQ5NjgzQTMxMUVFQTBCNDI4MUNDNEY5QUUwMi9IUURDZzhxaHF6 ekVOeG9xT0UxaXNjMUUtNmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT9fVBTdrfG/w391E/uCcpMhBsH+AzOSW4FFZPYKlNEEiuLp1+8AWQ GxTcfFbmAIU+FFIcPMUWYCcZ+023pvFqI2gr9InNGIykyyG5M/TTbPI5HRkSC4JN /V9HhNm+9ob7t/g8GzHocJqLKb4+fcNWQwPsLYd7FqS82s80qDsq9f+XbDLz6y8F F/js1mIxdV0Ai0e/Jbrm1BMSiydmLgmXzGE24rZLN/PoLk8JM2w6hdvsMVHchMig hAoIsvfj9NwDYDXuwsbSoAndQ0GXM+IBF6KK7dXj2+v5uETZkHpm6zOh0olvNIkd 3wce0B13ShC9jKogyd5jGM1a1uRoL//h -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:08 2025 by rpki-client