$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft File: HA69woHQL52iTsEXS6nPGEWbk-A.mft (raw, json) Hash identifier: FoDONkCl+uP2Ef1M70D+8rnpd93lkuT+BljvCkzEhzQ= Subject key identifier: 96:19:1A:25:3A:F7:D9:00:6F:42:12:BA:05:3B:6E:76:86:97:6B:F5 Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 Certificate issuer: /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Certificate serial: 03AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft Manifest number: 03A9 Signing time: Sat 31 May 2025 00:55:09 +0000 Manifest this update: Sat 31 May 2025 00:55:08 +0000 Manifest next update: Sat 07 Jun 2025 00:55:08 +0000 Files and hashes: 1: HA69woHQL52iTsEXS6nPGEWbk-A.crl (hash: t7kdOiI3Uqd1lZsw9xU1mTF95D/QMg/yNlrhwZUHRq0=) 2: ED816DEC95DA11EC993BD050C4F9AE02.roa (hash: H2GtJ0iPg0F8hSUg65wTV+ujzqji+9qmbwmD4ETHfZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179D1F, serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Validity Not Before: May 31 00:55:08 2025 GMT Not After : Jun 7 00:55:08 2025 GMT Subject: CN=683a536c-ebc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:91:85:cd:6f:45:63:09:6b:63:21:0d:59:8b: 5f:03:9a:0e:58:a0:21:21:a1:cc:a7:17:f9:c0:fc: 8e:7b:f3:22:e6:72:89:9d:c7:72:8f:4c:03:5a:d2: 46:b7:08:1f:87:f0:17:e6:4a:70:f8:8a:a0:90:92: 2c:d2:cf:dd:c7:d9:ce:44:59:5d:a4:13:16:0a:1a: 20:13:0a:e8:2b:ac:79:5f:b1:fa:86:a8:a5:30:df: a3:fc:91:86:0f:a9:71:3a:e0:8b:95:ed:ab:d5:ee: bd:c6:27:b7:0d:b0:14:7a:eb:5b:80:bd:e3:9f:70: 4e:71:5f:3b:1a:b5:7f:d4:60:9c:52:34:9d:2f:98: b0:4a:c8:12:25:55:2e:af:cf:f5:23:cb:39:f9:90: 4c:b9:78:2a:a3:aa:40:29:9b:f2:94:7e:16:7d:31: d3:f9:4d:22:3a:2c:2f:a3:87:6b:18:e4:24:d9:f3: 1f:bc:c5:8a:7b:9d:1a:30:e4:0a:4d:54:07:ad:09: 92:3f:c5:30:b8:d4:2d:54:c3:98:d8:81:f4:69:b4: 25:62:5e:29:25:57:d0:47:36:44:1f:7e:63:99:0d: 3d:c5:af:bb:ad:a4:b2:05:ee:9c:7e:6c:4c:f8:eb: 1b:3f:0a:4a:2c:e6:3a:09:77:de:2f:fb:15:d3:5c: ec:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:19:1A:25:3A:F7:D9:00:6F:42:12:BA:05:3B:6E:76:86:97:6B:F5 X509v3 Authority Key Identifier: keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:b8:e2:31:0a:39:ea:43:37:c4:43:30:30:9a:dd:ed:d9:ea: 22:b7:9d:db:5d:b4:b8:0c:d6:a8:d9:a6:ab:18:de:ab:8e:65: 79:03:95:47:0f:fa:77:88:6d:a9:3c:78:0a:5a:58:8d:2c:34: 26:7d:14:d0:be:da:58:09:91:a5:33:ed:a4:6e:61:07:0b:76: 7b:65:5c:bd:b1:6a:bd:5d:9e:2b:ec:8f:83:c8:a3:55:83:9b: ee:cb:3b:f5:83:79:a5:55:d4:70:db:f9:5e:b0:a2:76:ca:56: 42:57:46:0c:55:47:a9:63:b0:88:69:8a:21:e9:1b:11:c7:d7: 1f:11:e7:af:e4:4e:b8:1d:bc:cd:d7:0f:3e:51:c7:0f:3b:58: b5:f1:41:e2:90:f1:2b:ef:57:93:6d:c9:65:f7:99:1c:a0:1a: 62:b0:a0:f5:ea:e9:9a:c3:5f:44:09:7f:44:2f:6d:64:12:87: 74:20:01:f3:a2:f3:08:8a:c2:56:db:86:bb:46:26:f7:08:20: 67:85:26:a3:f2:66:c2:35:7b:dc:f9:56:06:f4:c0:b5:a0:c9: 57:50:b8:d8:47:ac:74:bd:f3:5e:66:8c:74:75:e6:f4:f0:f4: 45:ad:fb:52:63:8b:24:cd:26:e1:58:d5:b4:47:93:f3:26:e5: 31:39:ba:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlEMUYxMTAvBgNVBAUTKDFDMEVCREMyODFEMDJGOURBMjRFQzExNzRCQTlDRjE4 NDU5QjkzRTAwHhcNMjUwNTMxMDA1NTA4WhcNMjUwNjA3MDA1NTA4WjAYMRYwFAYD VQQDEw02ODNhNTM2Yy1lYmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpGFzW9FYwlrYyENWYtfA5oOWKAhIaHMpxf5wPyOe/Mi5nKJncdyj0wDWtJG twgfh/AX5kpw+IqgkJIs0s/dx9nORFldpBMWChogEwroK6x5X7H6hqilMN+j/JGG D6lxOuCLle2r1e69xie3DbAUeutbgL3jn3BOcV87GrV/1GCcUjSdL5iwSsgSJVUu r8/1I8s5+ZBMuXgqo6pAKZvylH4WfTHT+U0iOiwvo4drGOQk2fMfvMWKe50aMOQK TVQHrQmSP8UwuNQtVMOY2IH0abQlYl4pJVfQRzZEH35jmQ09xa+7raSyBe6cfmxM +OsbPwpKLOY6CXfeL/sV01zs1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYZGiU6 99kAb0ISugU7bnaGl2v1MB8GA1UdIwQYMBaAFBwOvcKB0C+dok7BF0upzxhFm5Pg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUQxRi9EOTgyQ0I1RTk1 RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1MmlUc0VYUzZuUEdFV2Jr LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBNjl3b0hRTDUyaVRzRVhTNm5QR0VXYmstQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUQxRi9EOTgyQ0I1RTk1RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1 MmlUc0VYUzZuUEdFV2JrLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVuOIxCjnqQzfEQzAwmt3t2eoit53bXbS4DNao2aarGN6rjmV5A5VH D/p3iG2pPHgKWliNLDQmfRTQvtpYCZGlM+2kbmEHC3Z7ZVy9sWq9XZ4r7I+DyKNV g5vuyzv1g3mlVdRw2/lesKJ2ylZCV0YMVUepY7CIaYoh6RsRx9cfEeev5E64HbzN 1w8+UccPO1i18UHikPEr71eTbcll95kcoBpisKD16umaw19ECX9EL21kEod0IAHz ovMIisJW24a7Rib3CCBnhSaj8mbCNXvc+VYG9MC1oMlXULjYR6x0vfNeZox0deb0 8PRFrftSY4skzSbhWNW0R5PzJuUxObp4 -----END CERTIFICATE-----Generated at Sat May 31 16:38:52 2025 by rpki-client