$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: mxSWwQeHnHw49vD3CfCRxqdStW/n5Sefnfz6b+zW0VQ= Subject key identifier: 84:14:DB:88:E9:F8:62:42:84:96:E3:07:26:40:E2:2E:F3:EF:87:77 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 08D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 08CB Signing time: Fri 30 May 2025 20:41:09 +0000 Manifest this update: Fri 30 May 2025 20:41:08 +0000 Manifest next update: Fri 06 Jun 2025 20:41:08 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: bYJd1IvqZIykFanE/v3/eEz7yHgqoe9bq5vtR1dslj0=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2257 (0x8d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: May 30 20:41:08 2025 GMT Not After : Jun 6 20:41:08 2025 GMT Subject: CN=683a17e4-00bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f5:33:ba:23:9b:04:f8:6a:1a:2b:36:22:87: 1c:9b:14:c0:b8:bf:2c:63:ce:ef:e0:cb:6b:c1:84: c0:d1:ca:cc:1a:2f:b1:4b:c4:49:91:2f:f6:60:60: be:a0:ea:36:4b:89:8d:7e:a4:20:3b:b1:9b:54:24: 35:89:e0:45:ef:98:72:0f:38:77:99:79:bb:86:10: 75:b1:26:47:f6:99:03:89:38:79:90:a2:0d:45:0c: 58:a6:a5:ca:fe:af:60:a4:9a:9a:80:98:4c:fa:66: da:21:6f:4a:40:33:6a:37:1b:1a:66:39:fb:05:1b: 31:4e:ce:56:ad:28:80:4f:0e:87:8f:35:84:c6:99: 19:e8:57:d6:a8:39:b9:0e:7f:5a:ca:39:1f:7b:05: 9b:8b:dc:c5:71:3a:5f:11:48:01:72:de:5f:6b:ae: 29:c6:76:80:fe:c7:c5:24:f0:65:c5:54:10:4c:9b: 18:26:2f:08:f5:6b:2d:9b:90:ad:4d:5d:0a:4b:4f: fd:42:55:38:d6:ba:8d:44:e2:f1:f6:81:ec:47:5c: fc:b1:38:dc:b7:49:9e:df:37:56:a6:70:14:c6:55: bb:99:07:23:15:aa:c5:6c:a7:f9:72:b2:0b:7a:14: cc:e2:d6:17:84:81:3e:47:b6:30:10:d3:89:8b:99: 62:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:14:DB:88:E9:F8:62:42:84:96:E3:07:26:40:E2:2E:F3:EF:87:77 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:94:47:c4:0a:7f:32:e8:7d:42:8c:00:f8:d1:8c:9e:6b:17: bc:4f:64:3d:18:14:18:d1:49:b2:3d:b6:19:c0:ee:a1:b1:f8: 56:b0:d9:3b:0c:fb:20:2b:8d:89:dd:c6:d9:5b:9c:4c:7a:e5: 89:b1:55:ef:ab:fe:fe:47:5e:8d:50:fd:10:ac:a9:76:63:71: 9c:c0:45:ed:0c:51:cb:6d:3a:40:dc:13:7d:3f:89:ad:52:b4: ed:fc:aa:9b:4f:81:09:91:98:2b:0f:4a:bb:ae:11:02:98:3c: 09:06:a8:d9:de:e0:48:50:25:0a:28:78:5c:bd:c2:0f:97:94: 17:e5:1d:fd:f1:af:15:00:fd:26:94:dc:5d:cb:bf:cc:93:cb: 03:11:4c:44:5b:42:95:d7:31:6c:cf:6a:95:98:f0:cb:61:bc: be:62:e0:15:10:18:f9:00:da:f6:ea:47:61:d6:ee:3d:cc:96: 2e:d4:66:76:aa:61:7f:c5:08:cf:6b:50:63:05:14:30:fc:60: 2d:4f:96:f6:6a:0b:45:2c:80:4e:a2:72:51:58:3e:22:31:34: 4f:ba:b5:f5:d6:7b:d5:1b:ab:61:b7:91:75:fe:f3:ab:aa:23: 99:51:32:5d:b2:85:ed:39:42:43:de:a0:95:02:17:50:a8:77: 78:56:eb:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUwNTMwMjA0MTA4WhcNMjUwNjA2MjA0MTA4WjAYMRYwFAYD VQQDEw02ODNhMTdlNC0wMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPUzuiObBPhqGis2IoccmxTAuL8sY87v4MtrwYTA0crMGi+xS8RJkS/2YGC+ oOo2S4mNfqQgO7GbVCQ1ieBF75hyDzh3mXm7hhB1sSZH9pkDiTh5kKINRQxYpqXK /q9gpJqagJhM+mbaIW9KQDNqNxsaZjn7BRsxTs5WrSiATw6HjzWExpkZ6FfWqDm5 Dn9ayjkfewWbi9zFcTpfEUgBct5fa64pxnaA/sfFJPBlxVQQTJsYJi8I9Wstm5Ct TV0KS0/9QlU41rqNROLx9oHsR1z8sTjct0me3zdWpnAUxlW7mQcjFarFbKf5crIL ehTM4tYXhIE+R7YwENOJi5liKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQU24jp +GJChJbjByZA4i7z74d3MB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvlEfECn8y6H1CjAD40Yyeaxe8T2Q9GBQY0UmyPbYZwO6hsfhWsNk7 DPsgK42J3cbZW5xMeuWJsVXvq/7+R16NUP0QrKl2Y3GcwEXtDFHLbTpA3BN9P4mt UrTt/KqbT4EJkZgrD0q7rhECmDwJBqjZ3uBIUCUKKHhcvcIPl5QX5R398a8VAP0m lNxdy7/Mk8sDEUxEW0KV1zFsz2qVmPDLYby+YuAVEBj5ANr26kdh1u49zJYu1GZ2 qmF/xQjPa1BjBRQw/GAtT5b2agtFLIBOonJRWD4iMTRPurX11nvVG6tht5F1/vOr qiOZUTJdsoXtOUJD3qCVAhdQqHd4Vuuo -----END CERTIFICATE-----Generated at Sat May 31 17:34:17 2025 by rpki-client