$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: bhO5QwF7m8T2MGVoqWrGzc4gawAZvEo1DQgHj1cM/vU= Subject key identifier: 18:16:B4:1E:D1:08:10:B5:38:01:3A:1B:1E:AA:56:37:8F:E2:2E:B7 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 0259 Signing time: Sat 31 May 2025 02:00:01 +0000 Manifest this update: Sat 31 May 2025 02:00:01 +0000 Manifest next update: Sat 07 Jun 2025 02:00:01 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: bB4QlPEBNxHAfaE0d//Hs7q/2cRYIftt5c9TBu7nukc=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: May 31 02:00:01 2025 GMT Not After : Jun 7 02:00:01 2025 GMT Subject: CN=683a62a1-2929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f9:4d:4c:6b:80:82:9c:dd:61:d2:da:b8:25: 6b:bb:7c:34:aa:0c:7a:51:74:c7:19:d8:8f:04:78: 15:e3:91:4d:a0:45:17:e5:20:6b:8f:a1:dc:aa:b9: d5:27:80:66:bd:7e:e3:76:5a:37:b7:77:f7:50:af: d6:ad:ae:78:a3:05:53:26:02:25:b4:af:8b:ef:16: 81:29:69:18:92:cf:7d:81:7b:1b:43:34:b5:9f:73: 83:05:4d:cf:fa:71:ba:8f:a3:40:24:9c:37:e7:59: 0a:a3:65:71:08:6e:0f:85:50:cc:b0:b5:9e:f5:87: b9:48:f0:a6:5d:d8:5f:6b:f3:10:5b:3b:f0:73:c0: 18:e7:87:b1:e4:90:78:c7:1f:33:f5:73:da:9f:1b: 0a:2e:1f:b4:f7:bc:d8:67:01:72:15:fd:7f:33:90: 5c:77:f7:f9:3b:c2:27:94:fd:2f:f5:60:b4:bc:3a: 04:98:c5:66:90:39:26:09:72:0c:a9:c1:57:05:8c: 61:e6:29:fb:e5:ea:05:d7:0f:7a:c2:d9:48:3e:70: c4:8a:da:16:14:cf:93:94:29:18:a8:81:c7:d8:88: b6:2c:78:f4:1d:a3:32:7f:a6:63:6b:b8:5b:a3:b3: 86:79:ce:8f:56:18:0e:e3:5b:93:98:21:f6:15:fa: 58:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:16:B4:1E:D1:08:10:B5:38:01:3A:1B:1E:AA:56:37:8F:E2:2E:B7 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:55:b5:7e:b8:31:4d:a3:a9:4f:28:b2:de:fa:f7:aa:70:3c: 70:75:ca:41:41:ed:f1:8b:6f:d6:49:70:c5:e6:be:ba:c1:e3: 2b:cf:55:d9:06:87:ba:d5:f1:74:c6:b2:48:ef:3b:cd:e6:60: 0a:36:2b:ef:ff:55:47:8f:07:16:4e:5c:11:bd:cc:c5:81:65: 18:87:85:82:ca:93:dd:7e:47:33:37:7b:d7:f8:bb:84:a9:69: 79:c3:43:36:a8:91:ed:5c:4a:a7:20:f8:8c:3c:e0:60:5a:dd: 88:61:dd:bb:d8:0a:a1:17:c3:ce:9b:12:c7:ee:82:51:d7:6e: ee:7d:d0:60:92:13:19:68:ab:db:73:12:4c:e7:ff:95:e8:5b: d5:24:a5:f8:90:9f:7b:d9:20:50:65:c6:61:7b:3d:7f:ad:1e: 11:4b:8a:79:e1:a2:0d:81:3e:f0:c4:47:8e:64:3f:ab:1d:7d: 98:53:f5:cb:66:7a:0e:e5:61:75:7e:49:f6:4d:5e:fb:9d:52: 14:2e:eb:55:c8:fd:6c:90:c4:61:38:f7:3f:3b:00:aa:e9:3b: 50:91:6e:b5:0d:6f:8e:44:ff:dd:8b:15:a7:f9:29:dd:1b:51: ad:f8:71:c2:14:ba:54:97:01:2b:93:f5:c1:df:3d:b6:3d:32: f1:e7:ff:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUwNTMxMDIwMDAxWhcNMjUwNjA3MDIwMDAxWjAYMRYwFAYD VQQDEw02ODNhNjJhMS0yOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/lNTGuAgpzdYdLauCVru3w0qgx6UXTHGdiPBHgV45FNoEUX5SBrj6HcqrnV J4BmvX7jdlo3t3f3UK/Wra54owVTJgIltK+L7xaBKWkYks99gXsbQzS1n3ODBU3P +nG6j6NAJJw351kKo2VxCG4PhVDMsLWe9Ye5SPCmXdhfa/MQWzvwc8AY54ex5JB4 xx8z9XPanxsKLh+097zYZwFyFf1/M5Bcd/f5O8InlP0v9WC0vDoEmMVmkDkmCXIM qcFXBYxh5in75eoF1w96wtlIPnDEitoWFM+TlCkYqIHH2Ii2LHj0HaMyf6Zja7hb o7OGec6PVhgO41uTmCH2FfpYMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgWtB7R CBC1OAE6Gx6qVjeP4i63MB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9VbV+uDFNo6lPKLLe+veqcDxwdcpBQe3xi2/WSXDF5r66weMrz1XZ Boe61fF0xrJI7zvN5mAKNivv/1VHjwcWTlwRvczFgWUYh4WCypPdfkczN3vX+LuE qWl5w0M2qJHtXEqnIPiMPOBgWt2IYd272AqhF8POmxLH7oJR127ufdBgkhMZaKvb cxJM5/+V6FvVJKX4kJ972SBQZcZhez1/rR4RS4p54aINgT7wxEeOZD+rHX2YU/XL ZnoO5WF1fkn2TV77nVIULutVyP1skMRhOPc/OwCq6TtQkW61DW+ORP/dixWn+Snd G1Gt+HHCFLpUlwErk/XB3z22PTLx5/8u -----END CERTIFICATE-----Generated at Sat May 31 16:53:38 2025 by rpki-client