$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: Yhmj1FE+L/9Jo1imgE4hD8EDwgAtLTpt6xgugZeMFDE= Subject key identifier: 95:F4:90:3E:70:51:BA:1D:F7:4C:64:A8:C6:C6:31:DE:1A:2D:6C:CB Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0AE9 Signing time: Fri 30 May 2025 19:42:38 +0000 Manifest this update: Fri 30 May 2025 19:42:38 +0000 Manifest next update: Fri 06 Jun 2025 19:42:38 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: 17EkJpw4Gf6wsS9jk874NccRZ0PPIhjRfKlaOWvRJl0=) 2: 0798B4E4B7BE11EF81216809C4F9AE02.roa (hash: yHzzqKEId0dEJDTaFOBliIlS1ljG1H4a+7/pxmaJtKg=) 3: 33E27678B25C11EF8946BE4FC4F9AE02.roa (hash: +fDUFmlUHsQP24i5ggEqmXh3ISn4s3EPo0pOThu4m/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2836 (0xb14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: May 30 19:42:38 2025 GMT Not After : Jun 6 19:42:38 2025 GMT Subject: CN=683a0a2e-a91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f2:32:7a:77:39:f2:d0:f8:a7:ec:00:84:3c: bd:1d:68:a3:f5:82:d0:01:c9:d8:39:39:18:88:fa: d7:ec:0a:b0:16:d5:c1:21:2b:32:03:fd:c0:cc:a6: 28:24:1b:94:b7:b2:13:50:61:55:4e:f9:5a:bd:c9: 7f:d6:9d:b0:2e:47:1c:6a:bf:dc:41:4f:4e:c9:3d: 18:4c:43:0a:24:a5:7d:25:01:ef:22:3b:e2:62:e8: 2a:b8:66:b3:4a:a4:a0:1e:45:2b:12:1d:34:e8:bc: 37:fd:b6:c2:5b:12:7b:89:a1:be:91:50:46:e4:9e: 31:a3:14:5e:8d:7d:c3:98:6c:72:b8:2e:0d:bf:74: d7:80:9e:e4:e0:5f:2f:3b:65:6b:ff:44:a7:1f:22: 59:40:20:e4:5b:4c:d9:9e:55:84:5c:b9:d2:5c:89: b3:35:48:67:75:f8:d7:54:58:3d:f0:a0:1f:22:8f: a9:f1:f1:a6:a6:f2:cf:42:60:57:79:57:eb:7f:a0: 52:fc:a9:3f:db:5f:ca:f7:51:99:85:37:3b:40:ab: 1c:df:8b:50:74:f8:3e:78:a5:fb:73:1e:3c:c2:d9: fe:a2:08:ac:5c:63:6d:3d:9e:8a:a2:c6:de:08:6b: 31:2f:ce:c1:d6:c9:c7:59:99:d5:e8:47:7b:6c:bf: ca:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F4:90:3E:70:51:BA:1D:F7:4C:64:A8:C6:C6:31:DE:1A:2D:6C:CB X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:7f:04:d7:fb:e8:23:34:3a:6a:40:83:83:ff:9f:84:35:27: 9b:b6:a2:ca:10:cd:ff:bb:aa:b9:4d:2a:90:3f:67:fa:f5:61: c2:96:79:69:26:c0:19:19:c3:c3:5c:ab:5d:98:c9:16:70:45: 0e:c1:3f:c5:6e:4a:cc:13:17:73:91:51:8e:ca:3e:51:5c:de: 0d:a5:8c:6c:1c:06:27:02:a1:68:08:ff:e6:e4:b6:09:8d:7f: bb:60:d6:a9:3e:fe:08:f0:e7:01:12:17:d4:b2:ef:43:df:19: 04:d4:be:38:83:09:55:8b:c4:48:ca:24:27:92:86:bc:f1:4f: 46:1d:b5:7a:0d:07:e3:a6:93:b8:ae:50:0e:5d:27:9a:be:1b: eb:d2:8a:51:da:c1:97:ae:0f:f8:42:ff:5e:fe:9b:25:0c:49: c3:d1:5c:02:bf:17:81:27:a9:ad:44:bf:a1:a3:f8:8c:e1:68: 9a:a1:b5:17:f4:d9:fd:55:f0:6f:1f:77:88:fb:57:29:82:8c: 58:c9:99:7e:bc:1d:5e:27:da:f4:48:0f:6b:24:e8:54:53:fd: 17:d6:fe:b1:4e:c4:1a:51:21:f9:97:d0:d0:af:00:48:49:2f: f8:d5:40:38:c1:a4:a4:ea:ca:f7:bd:be:a7:12:50:0b:fc:dc: fe:0b:92:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUwNTMwMTk0MjM4WhcNMjUwNjA2MTk0MjM4WjAYMRYwFAYD VQQDEw02ODNhMGEyZS1hOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fIyenc58tD4p+wAhDy9HWij9YLQAcnYOTkYiPrX7AqwFtXBISsyA/3AzKYo JBuUt7ITUGFVTvlavcl/1p2wLkccar/cQU9OyT0YTEMKJKV9JQHvIjviYugquGaz SqSgHkUrEh006Lw3/bbCWxJ7iaG+kVBG5J4xoxRejX3DmGxyuC4Nv3TXgJ7k4F8v O2Vr/0SnHyJZQCDkW0zZnlWEXLnSXImzNUhndfjXVFg98KAfIo+p8fGmpvLPQmBX eVfrf6BS/Kk/21/K91GZhTc7QKsc34tQdPg+eKX7cx48wtn+ogisXGNtPZ6Kosbe CGsxL87B1snHWZnV6Ed7bL/KDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJX0kD5w Ubod90xkqMbGMd4aLWzLMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANfwTX++gjNDpqQIOD/5+ENSebtqLKEM3/u6q5TSqQP2f69WHClnlp JsAZGcPDXKtdmMkWcEUOwT/FbkrMExdzkVGOyj5RXN4NpYxsHAYnAqFoCP/m5LYJ jX+7YNapPv4I8OcBEhfUsu9D3xkE1L44gwlVi8RIyiQnkoa88U9GHbV6DQfjppO4 rlAOXSeavhvr0opR2sGXrg/4Qv9e/pslDEnD0VwCvxeBJ6mtRL+ho/iM4WiaobUX 9Nn9VfBvH3eI+1cpgoxYyZl+vB1eJ9r0SA9rJOhUU/0X1v6xTsQaUSH5l9DQrwBI SS/41UA4waSk6sr3vb6nElAL/Nz+C5IM -----END CERTIFICATE-----Generated at Sat May 31 16:44:57 2025 by rpki-client