$ rpki-client -vvf rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft File: HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft (raw, json) Hash identifier: rseNaAZZngQdIoyZtb4ud0008Jhk/n6ApBgnu2QnMZ8= Subject key identifier: 8E:B9:5B:67:60:C7:5E:7C:1D:00:64:A8:FF:4D:48:B5:EE:5E:37:22 Authority key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 Certificate issuer: /CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft Manifest number: 019A Signing time: Sat 31 May 2025 03:05:51 +0000 Manifest this update: Sat 31 May 2025 03:05:50 +0000 Manifest next update: Sat 07 Jun 2025 03:05:50 +0000 Files and hashes: 1: HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl (hash: 1WzHnNsdWhTtnyB8tWDhoEUixli9xOjL7XMaoPXy2/k=) 2: 1EF2D862C9F511ED8771C865C4F9AE02.roa (hash: EksXJqRj0KH07WsHueUwybeZ3O7OwOE6F+VFPhINzRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913277C, serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Validity Not Before: May 31 03:05:50 2025 GMT Not After : Jun 7 03:05:50 2025 GMT Subject: CN=683a720f-95cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5f:62:a2:af:f5:b6:51:1d:c1:95:64:fe:05: b5:17:c2:19:23:38:d1:06:9c:f3:3e:68:98:f7:2a: 9d:16:ab:07:6d:ae:e3:ef:2e:64:3a:b2:1e:39:51: 23:67:d3:80:7c:54:25:71:c6:ec:8d:40:cc:38:50: e0:45:ce:e2:b1:49:a5:b2:93:c8:37:47:95:d8:ec: 99:45:fc:b2:13:b8:5a:e7:f2:51:b3:50:19:68:14: 5c:99:48:af:c1:06:46:83:49:8c:ce:e9:13:ac:1f: a5:a2:6e:27:1a:88:e3:0b:9b:c5:4d:8d:81:23:e0: ac:4e:32:a5:59:2f:33:05:f8:3d:6f:b8:a1:93:39: 6e:73:b5:58:73:37:de:a3:dd:93:51:52:3b:87:60: 25:a2:f2:2d:33:bf:9b:cf:a4:50:ba:a1:f8:e0:73: 87:2c:76:da:8a:ea:7c:80:7d:7d:46:ab:f6:7e:88: da:80:1b:78:f2:9d:b8:d1:25:2c:3c:f4:2e:1b:ee: 5b:17:c0:3f:9c:8f:bb:54:72:ee:9c:54:c2:d8:1c: 21:99:b2:60:40:9c:87:66:b2:07:80:1b:25:ff:09: 13:a6:0d:a9:c2:c6:ad:ac:17:03:ca:7a:6f:a5:60: 24:86:5e:e5:20:35:5f:dc:b4:26:1a:da:d2:bc:21: 12:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B9:5B:67:60:C7:5E:7C:1D:00:64:A8:FF:4D:48:B5:EE:5E:37:22 X509v3 Authority Key Identifier: keyid:1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3e:13:8e:b1:b4:64:2c:a3:d4:00:99:f6:3a:97:21:a8:77: 95:e8:2b:a5:ce:d3:52:32:9d:31:9e:01:17:7f:63:13:2b:11: 1a:06:ff:89:af:e3:51:b1:4e:f0:08:d0:7d:da:0f:5d:eb:68: c6:31:83:cb:cd:bc:7b:67:6a:74:e1:5a:c0:38:bf:e1:40:4b: c8:fd:c1:42:23:1e:c4:47:92:92:91:57:af:4f:ce:be:7d:c1: 4c:75:a8:4e:12:db:f6:16:d2:04:ee:5c:ed:e3:50:59:c4:04: 00:86:bc:f4:9c:e0:b5:ae:43:3e:af:23:32:87:b8:8c:00:b5: ee:b0:54:c8:6a:e9:15:c6:9d:f2:96:b8:6c:54:fd:2f:34:82: 8d:66:c1:b7:18:63:02:8d:af:3f:1b:de:b3:7b:0e:a2:f7:85: 52:9c:23:e9:7f:58:6a:1f:a0:96:91:a5:a2:be:37:c1:00:e8: 75:96:80:3c:46:9e:88:85:6f:c2:1c:51:65:e3:32:db:49:8b: b6:1e:8a:5d:32:cc:25:0e:7d:a1:1d:5a:9c:b2:e1:5d:71:93: 0a:17:11:20:bf:7c:12:95:86:15:6d:6f:67:b3:c6:49:46:3f: c6:a9:17:be:db:f2:4a:b1:bd:c5:36:a7:47:a8:d8:c9:1a:69: b2:f8:44:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3N0MxMTAvBgNVBAUTKDFDRDQ5RUZCQzM3RUY0QThDNkM4ODc2NTYyQkQxMTMz NDRCQzdFRDEwHhcNMjUwNTMxMDMwNTUwWhcNMjUwNjA3MDMwNTUwWjAYMRYwFAYD VQQDEw02ODNhNzIwZi05NWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF9ioq/1tlEdwZVk/gW1F8IZIzjRBpzzPmiY9yqdFqsHba7j7y5kOrIeOVEj Z9OAfFQlccbsjUDMOFDgRc7isUmlspPIN0eV2OyZRfyyE7ha5/JRs1AZaBRcmUiv wQZGg0mMzukTrB+lom4nGojjC5vFTY2BI+CsTjKlWS8zBfg9b7ihkzluc7VYczfe o92TUVI7h2AlovItM7+bz6RQuqH44HOHLHbaiup8gH19Rqv2fojagBt48p240SUs PPQuG+5bF8A/nI+7VHLunFTC2BwhmbJgQJyHZrIHgBsl/wkTpg2pwsatrBcDynpv pWAkhl7lIDVf3LQmGtrSvCESPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI65W2dg x158HQBkqP9NSLXuXjciMB8GA1UdIwQYMBaAFBzUnvvDfvSoxsiHZWK9ETNEvH7R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc3Qy9COTdDNzM5NkM5 RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlLakd5SWRsWXIwUk0wUzhm dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOU2UtOE4tOUtqR3lJZGxZcjBSTTBTOGZ0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc3Qy9COTdDNzM5NkM5RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlL akd5SWRsWXIwUk0wUzhmdEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZPhOOsbRkLKPUAJn2OpchqHeV6CulztNSMp0xngEXf2MTKxEaBv+J r+NRsU7wCNB92g9d62jGMYPLzbx7Z2p04VrAOL/hQEvI/cFCIx7ER5KSkVevT86+ fcFMdahOEtv2FtIE7lzt41BZxAQAhrz0nOC1rkM+ryMyh7iMALXusFTIaukVxp3y lrhsVP0vNIKNZsG3GGMCja8/G96zew6i94VSnCPpf1hqH6CWkaWivjfBAOh1loA8 Rp6IhW/CHFFl4zLbSYu2HopdMswlDn2hHVqcsuFdcZMKFxEgv3wSlYYVbW9ns8ZJ Rj/GqRe+2/JKsb3FNqdHqNjJGmmy+ESR -----END CERTIFICATE-----Generated at Sat May 31 16:40:39 2025 by rpki-client