$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: VcPINGIxRnFsR+bP6fmCR8/ZSIxaZyxiQALEGBW9pYU= Subject key identifier: 83:80:45:4A:2A:46:4C:EF:F8:73:C3:01:BD:B5:97:4C:F6:A1:06:B4 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: 80 Signing time: Sat 31 May 2025 06:15:03 +0000 Manifest this update: Sat 31 May 2025 06:15:03 +0000 Manifest next update: Sat 07 Jun 2025 06:15:03 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: bW3TIVwfvhy5bv4TrtOSEKm/iiVL69wOf8kximV1VqQ=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: May 31 06:15:03 2025 GMT Not After : Jun 7 06:15:03 2025 GMT Subject: CN=683a9e67-c2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bc:93:bd:e2:ad:64:d2:e5:ce:f4:52:4e:c6: 5d:a8:dc:9a:d7:e8:a8:15:69:06:06:02:8c:ad:b3: a3:05:f5:8e:f5:ee:68:35:39:ec:2f:d3:b5:4a:96: 6a:f3:1a:10:d3:af:3d:33:b0:95:47:f7:80:7b:e3: 6f:16:81:df:22:62:cf:46:67:78:3a:ab:5a:eb:09: 59:1a:cf:ac:60:03:97:11:01:d3:12:04:ec:8c:a1: d5:69:a1:15:f1:7d:4f:70:0f:2b:55:c7:08:d4:93: f0:09:71:7e:bc:4b:3e:6a:c9:56:7f:b6:09:cf:0c: b7:ee:89:a1:48:3a:bb:53:22:f6:cf:e2:74:07:87: a9:1a:15:e1:65:f1:f8:4b:b5:4b:2a:ba:94:2c:0f: f5:15:cb:e2:68:49:88:5b:47:00:c7:7a:7c:60:33: 49:86:3d:4b:dd:25:f5:6b:6e:46:84:75:a2:23:14: 7f:87:94:8d:ea:7a:e6:bd:25:28:5b:ee:90:30:89: d0:36:fc:9a:16:63:5e:1a:8a:29:aa:56:e4:5f:6c: 63:1a:a5:d1:c1:4c:09:61:be:60:47:b5:17:99:9b: 32:40:18:45:af:10:94:88:6e:04:fd:b3:7a:db:fc: 66:22:43:a7:23:db:6b:71:99:ed:a0:da:0a:af:2e: 59:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:80:45:4A:2A:46:4C:EF:F8:73:C3:01:BD:B5:97:4C:F6:A1:06:B4 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:5a:45:09:1e:86:ea:5a:ff:6b:9b:b5:34:7f:7f:59:4b:b5: 8a:25:6b:49:6c:10:9a:7d:a0:1d:d5:f5:b4:74:cd:30:b3:45: d6:11:f9:54:3a:bd:a9:32:63:5a:2e:11:f1:99:2f:7d:99:52: 9c:a7:36:fa:11:d3:60:5c:61:b4:f2:f3:74:19:e4:a4:a0:0a: 05:43:d4:9f:43:19:d8:88:78:c4:b9:4f:54:c3:7b:42:08:be: 67:9a:0f:c9:d1:09:59:6c:c3:cd:28:70:ae:b2:c7:a9:69:9c: 2d:9a:bb:76:ad:0c:da:f1:8d:f7:28:e6:f4:fe:d3:c9:d5:c7: 7c:19:66:1e:a0:d2:d5:7b:03:07:9a:13:dd:c5:9a:17:99:7a: 2e:ca:47:c7:2e:8a:20:56:57:6f:c0:69:4a:09:04:19:4b:e5: 63:7e:d2:63:7f:ae:f5:3e:ca:2e:7a:38:2e:42:c4:f4:4b:c6: f8:1c:41:a1:5d:3e:9f:f9:aa:dd:06:8c:d4:e3:5a:2c:74:ed: 8b:c8:62:3b:6d:d2:9a:a2:fc:04:ca:ac:21:8d:76:05:d1:81: 22:49:e3:1c:0b:82:f3:51:eb:50:7d:a5:00:a4:f8:48:d5:12: 47:f8:cf:0d:f8:ae:f5:af:6c:66:44:e0:3f:18:b0:11:6d:ed: 70:3f:ba:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUwNTMxMDYxNTAzWhcNMjUwNjA3MDYxNTAzWjAYMRYwFAYD VQQDEw02ODNhOWU2Ny1jMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybyTveKtZNLlzvRSTsZdqNya1+ioFWkGBgKMrbOjBfWO9e5oNTnsL9O1SpZq 8xoQ0689M7CVR/eAe+NvFoHfImLPRmd4Oqta6wlZGs+sYAOXEQHTEgTsjKHVaaEV 8X1PcA8rVccI1JPwCXF+vEs+aslWf7YJzwy37omhSDq7UyL2z+J0B4epGhXhZfH4 S7VLKrqULA/1FcviaEmIW0cAx3p8YDNJhj1L3SX1a25GhHWiIxR/h5SN6nrmvSUo W+6QMInQNvyaFmNeGoopqlbkX2xjGqXRwUwJYb5gR7UXmZsyQBhFrxCUiG4E/bN6 2/xmIkOnI9trcZntoNoKry5ZBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOARUoq Rkzv+HPDAb21l0z2oQa0MB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGWkUJHobqWv9rm7U0f39ZS7WKJWtJbBCafaAd1fW0dM0ws0XWEflU Or2pMmNaLhHxmS99mVKcpzb6EdNgXGG08vN0GeSkoAoFQ9SfQxnYiHjEuU9Uw3tC CL5nmg/J0QlZbMPNKHCussepaZwtmrt2rQza8Y33KOb0/tPJ1cd8GWYeoNLVewMH mhPdxZoXmXouykfHLoogVldvwGlKCQQZS+VjftJjf671PsouejguQsT0S8b4HEGh XT6f+ardBozU41osdO2LyGI7bdKaovwEyqwhjXYF0YEiSeMcC4LzUetQfaUApPhI 1RJH+M8N+K71r2xmROA/GLARbe1wP7pO -----END CERTIFICATE-----Generated at Sat May 31 16:52:16 2025 by rpki-client