$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: jqj9mRVZWK59Y9nyzu0OtkVMi9tYzRmlZk1cEDD792E= Subject key identifier: 85:56:4A:58:6E:F8:78:1C:5B:10:D8:91:5B:1C:7D:97:1A:F3:AF:8E Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 02B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 02B5 Signing time: Fri 11 Apr 2025 01:24:05 +0000 Manifest this update: Fri 11 Apr 2025 01:24:05 +0000 Manifest next update: Fri 18 Apr 2025 01:24:05 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: TDafY+NnQvfejHYvAOxt6nzMPFvCpufU9BmRxWim+F4=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: LJB886NUTljPvfWlokxnMW+kRUtkV7Ec61N0MHSXzHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 01:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Apr 11 01:24:05 2025 GMT Not After : Apr 18 01:24:05 2025 GMT Subject: CN=67f86f35-bdce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:f8:ec:58:6a:e2:db:2c:80:0a:4e:b5:49: 45:d9:02:64:da:5d:2b:e2:af:fe:a3:e5:a0:0a:a5: a0:53:89:72:90:af:44:03:64:29:e9:4e:71:d1:a7: 1e:77:57:2d:98:20:67:29:d4:34:19:1b:82:43:e7: 1a:b5:7f:b0:68:c8:65:76:80:c0:db:69:d9:4c:33: 38:3d:2c:a3:1d:28:92:66:ca:7a:df:47:7b:03:91: 23:d9:e4:e1:3c:e6:40:5d:a2:64:6c:08:4a:c9:f6: 31:6b:9f:d4:ab:ba:c6:3b:27:2c:ac:2f:01:a6:8d: 9e:f7:8f:06:5d:ee:b7:f5:9a:4a:fb:d4:c0:e5:d7: 77:b9:a5:66:c9:43:9d:41:48:93:3a:62:a4:ba:4c: d9:0c:7a:31:d8:0d:93:1c:69:ea:e9:dc:8e:18:8e: eb:c6:40:0d:68:8b:fc:61:24:94:ab:52:35:83:8f: cb:ea:89:5e:e4:5c:04:32:b4:76:4b:dc:8d:ad:a0: b7:83:da:88:b9:ee:b8:d9:e8:18:90:6d:ae:fe:fb: 60:2e:07:be:1e:31:1d:d4:74:f6:14:92:9d:f3:4b: 19:e9:f5:20:00:77:74:d4:f1:8e:11:b0:9a:6a:51: 4e:d1:f5:e0:1d:8a:74:64:10:c9:bd:4a:36:d7:48: 8d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:56:4A:58:6E:F8:78:1C:5B:10:D8:91:5B:1C:7D:97:1A:F3:AF:8E X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:44:a7:73:c2:f7:48:d8:4f:34:00:0b:d9:5f:f8:db:0d:ed: 47:56:70:42:ff:8d:cf:ca:c5:34:9c:b3:da:54:de:95:70:1c: 6d:f7:cc:bd:8a:f7:0a:85:ff:6f:51:7d:61:33:68:82:9c:ad: 38:59:68:ba:16:67:51:ba:0c:ac:4a:dd:ab:a3:77:3a:da:37: 39:d3:d6:63:f1:07:29:5a:83:d9:fa:9e:e2:83:bc:95:b6:b7: d3:d5:d3:8b:1b:60:3a:3d:00:84:c3:a4:e0:d0:40:39:13:46: 2e:73:b4:5f:98:45:f4:49:57:74:ba:42:5c:42:d9:2e:48:44: ef:06:10:e3:e0:b9:17:65:5a:f3:a0:8c:d3:e7:89:aa:56:bc: db:c7:0c:90:ac:9d:87:0f:85:c7:73:05:13:73:53:62:d6:70: 10:b8:35:73:da:70:40:cc:81:2e:9f:05:81:02:dc:71:5f:ce: 82:2d:bc:b6:c3:d8:b0:33:39:5d:cb:3e:2f:0f:09:6e:68:f1: 27:51:c4:22:4c:f0:e6:0d:a6:c4:ff:80:91:ab:aa:4c:19:2e: af:7f:90:98:85:99:06:94:39:01:2a:e6:5b:f1:7e:d9:7c:49: c7:65:09:8d:24:e0:8d:70:31:f3:5f:f6:56:44:71:ea:ee:07: 3b:4d:3c:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUwNDExMDEyNDA1WhcNMjUwNDE4MDEyNDA1WjAYMRYwFAYD VQQDEw02N2Y4NmYzNS1iZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCj47Fhq4tssgApOtUlF2QJk2l0r4q/+o+WgCqWgU4lykK9EA2Qp6U5x0ace d1ctmCBnKdQ0GRuCQ+catX+waMhldoDA22nZTDM4PSyjHSiSZsp630d7A5Ej2eTh POZAXaJkbAhKyfYxa5/Uq7rGOycsrC8Bpo2e948GXe639ZpK+9TA5dd3uaVmyUOd QUiTOmKkukzZDHox2A2THGnq6dyOGI7rxkANaIv8YSSUq1I1g4/L6ole5FwEMrR2 S9yNraC3g9qIue642egYkG2u/vtgLge+HjEd1HT2FJKd80sZ6fUgAHd01PGOEbCa alFO0fXgHYp0ZBDJvUo210iNDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVWSlhu +HgcWxDYkVscfZca86+OMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTRKdzwvdI2E80AAvZX/jbDe1HVnBC/43PysU0nLPaVN6VcBxt98y9 ivcKhf9vUX1hM2iCnK04WWi6FmdRugysSt2ro3c62jc509Zj8QcpWoPZ+p7ig7yV trfT1dOLG2A6PQCEw6Tg0EA5E0Yuc7RfmEX0SVd0ukJcQtkuSETvBhDj4LkXZVrz oIzT54mqVrzbxwyQrJ2HD4XHcwUTc1Ni1nAQuDVz2nBAzIEunwWBAtxxX86CLby2 w9iwMzldyz4vDwluaPEnUcQiTPDmDabE/4CRq6pMGS6vf5CYhZkGlDkBKuZb8X7Z fEnHZQmNJOCNcDHzX/ZWRHHq7gc7TTxk -----END CERTIFICATE-----Generated at Sat Apr 12 23:45:04 2025 by rpki-client