$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft File: HUkvo_OylYBJWmiA1ATuDDcK2SU.mft (raw, json) Hash identifier: TNdxIDPMrBSQy7X7OGmLXgWGnLnxS/fvjZQalu2s/yk= Subject key identifier: 68:3B:32:45:87:BF:EB:7C:ED:12:14:94:F3:7E:08:81:3C:CC:0A:58 Authority key identifier: 1D:49:2F:A3:F3:B2:95:80:49:5A:68:80:D4:04:EE:0C:37:0A:D9:25 Certificate issuer: /CN=A915D963/serialNumber=1D492FA3F3B29580495A6880D404EE0C370AD925 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUkvo_OylYBJWmiA1ATuDDcK2SU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft Manifest number: 0753 Signing time: Fri 30 May 2025 22:56:01 +0000 Manifest this update: Fri 30 May 2025 22:56:01 +0000 Manifest next update: Fri 06 Jun 2025 22:56:01 +0000 Files and hashes: 1: HUkvo_OylYBJWmiA1ATuDDcK2SU.crl (hash: kUEyQkM/LmbM/cl06KAAiUGHXgearyilvw9qUSGEUHQ=) 2: D4163D4A884211EEB8B05013C4F9AE02.roa (hash: q4381xIhqUfIrBCsNyCtqEJ8jJCuGtCH1QNYVJEKVIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUkvo_OylYBJWmiA1ATuDDcK2SU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=1D492FA3F3B29580495A6880D404EE0C370AD925 Validity Not Before: May 30 22:56:01 2025 GMT Not After : Jun 6 22:56:01 2025 GMT Subject: CN=683a3781-ed8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7b:ab:b3:ac:66:62:15:11:9b:11:75:69:39: 38:11:96:02:8a:61:c4:17:ed:2e:21:42:f5:bb:2f: a8:62:b4:43:9c:26:bb:fb:7d:bb:6b:76:e1:4b:35: 02:9b:51:7f:02:f9:84:f7:70:c0:da:d4:04:f9:1a: 13:0d:6b:b5:9d:b3:b6:17:56:25:58:ab:23:95:10: da:15:b9:c8:d4:ab:7e:8e:15:27:c0:89:87:b9:2e: fb:87:05:a3:61:88:ba:fc:c3:d2:a2:e1:d7:ad:1a: d8:59:b7:6d:1c:c9:6a:f3:43:ee:28:bd:b0:99:a3: 7f:94:38:5a:fe:a3:f0:37:24:03:0c:53:32:19:54: 82:97:0b:b7:b8:82:a7:d3:a9:c2:32:0d:d3:c4:80: ae:88:92:38:eb:f6:83:d7:55:4e:2d:48:87:79:01: 88:33:7d:79:60:d0:91:7c:c9:ca:99:14:75:26:e2: 87:30:24:23:74:2e:af:e1:66:d5:96:49:f9:31:e5: ad:70:90:b5:ca:6d:01:42:7b:94:d0:a8:b3:de:a4: da:bb:60:62:f4:b7:59:15:41:4d:58:c1:04:f0:49: e3:69:14:aa:a8:3b:26:ef:b3:54:dd:8f:62:23:c2: 43:f5:2a:75:d2:f4:13:81:2c:db:6b:06:40:e9:0a: 78:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3B:32:45:87:BF:EB:7C:ED:12:14:94:F3:7E:08:81:3C:CC:0A:58 X509v3 Authority Key Identifier: keyid:1D:49:2F:A3:F3:B2:95:80:49:5A:68:80:D4:04:EE:0C:37:0A:D9:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUkvo_OylYBJWmiA1ATuDDcK2SU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/HUkvo_OylYBJWmiA1ATuDDcK2SU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:e7:91:ae:1f:b8:41:bb:1e:23:38:9b:2d:86:8c:c3:f9:d2: 10:15:92:5c:78:ff:41:96:8c:fe:c7:53:d7:35:85:15:1d:f3: 2d:76:c8:fe:3d:f8:f7:0b:fb:11:45:23:59:8d:22:9a:3c:1d: 0d:40:fd:f4:ed:f4:03:aa:ec:7e:85:3e:8c:60:12:69:83:19: a2:f7:a8:88:42:5a:62:5d:0f:2b:d0:f7:d1:7e:7a:9e:a8:7e: 33:f3:e1:0b:02:f7:02:56:a6:d9:c4:d3:8a:da:b9:8e:3c:09: 2f:6d:ca:15:ca:99:73:28:a7:80:26:ef:05:18:ed:c4:d3:12: 96:5b:dc:d7:06:3c:dc:8e:74:ba:0e:8e:f9:9e:ff:a2:9a:65: bf:3d:7c:e2:8c:a3:a6:8b:83:67:1c:e6:63:46:3f:b0:e0:35: fd:a4:91:8f:c9:83:13:f1:5d:fa:e2:3c:c8:81:5b:3d:b2:5b: a2:8d:40:28:98:15:65:25:cc:13:c3:da:e6:f0:3f:ee:db:55: 68:40:85:3c:49:17:03:f3:0c:e2:2c:69:0d:f8:a0:44:88:05: 69:dc:c2:7a:8e:ec:92:d0:f5:19:c9:ba:9a:53:29:ca:a8:6b: ff:df:99:00:17:78:dd:55:f1:d2:fb:40:64:32:b4:a8:c3:bc: 58:65:49:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDFENDkyRkEzRjNCMjk1ODA0OTVBNjg4MEQ0MDRFRTBD MzcwQUQ5MjUwHhcNMjUwNTMwMjI1NjAxWhcNMjUwNjA2MjI1NjAxWjAYMRYwFAYD VQQDEw02ODNhMzc4MS1lZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXurs6xmYhURmxF1aTk4EZYCimHEF+0uIUL1uy+oYrRDnCa7+327a3bhSzUC m1F/AvmE93DA2tQE+RoTDWu1nbO2F1YlWKsjlRDaFbnI1Kt+jhUnwImHuS77hwWj YYi6/MPSouHXrRrYWbdtHMlq80PuKL2wmaN/lDha/qPwNyQDDFMyGVSClwu3uIKn 06nCMg3TxICuiJI46/aD11VOLUiHeQGIM315YNCRfMnKmRR1JuKHMCQjdC6v4WbV lkn5MeWtcJC1ym0BQnuU0Kiz3qTau2Bi9LdZFUFNWMEE8EnjaRSqqDsm77NU3Y9i I8JD9Sp10vQTgSzbawZA6Qp4lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGg7MkWH v+t87RIUlPN+CIE8zApYMB8GA1UdIwQYMBaAFB1JL6PzspWASVpogNQE7gw3Ctkl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9IVWt2b19PeWxZQkpXbWlBMUFUdUREY0sy U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVa3ZvX095bFlCSldtaUExQVR1RERjSzJTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9IVWt2b19PeWxZ QkpXbWlBMUFUdUREY0syU1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT55GuH7hBux4jOJsthozD+dIQFZJceP9Bloz+x1PXNYUVHfMtdsj+ Pfj3C/sRRSNZjSKaPB0NQP307fQDqux+hT6MYBJpgxmi96iIQlpiXQ8r0PfRfnqe qH4z8+ELAvcCVqbZxNOK2rmOPAkvbcoVyplzKKeAJu8FGO3E0xKWW9zXBjzcjnS6 Do75nv+immW/PXzijKOmi4NnHOZjRj+w4DX9pJGPyYMT8V364jzIgVs9sluijUAo mBVlJcwTw9rm8D/u21VoQIU8SRcD8wziLGkN+KBEiAVp3MJ6juyS0PUZybqaUynK qGv/35kAF3jdVfHS+0BkMrSow7xYZUnP -----END CERTIFICATE-----Generated at Sat May 31 17:33:00 2025 by rpki-client