$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: UPFi3cyLa47IHFwR3ur85Qor7AErO8q74Apx2aUt4js= Subject key identifier: 5F:F8:82:4F:5B:FF:08:03:7D:CE:BC:A1:F5:EE:D7:EB:38:5E:4D:64 Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 49 Signing time: Sat 31 May 2025 06:55:07 +0000 Manifest this update: Sat 31 May 2025 06:55:06 +0000 Manifest next update: Sat 07 Jun 2025 06:55:06 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: keXnrxIiuFDmxvrZkIFarR8iAH4yy+NZbOKulkjsN5g=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: May 31 06:55:06 2025 GMT Not After : Jun 7 06:55:06 2025 GMT Subject: CN=683aa7ca-7ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:05:7d:d1:81:07:3c:6e:30:42:f5:e1:ce:81: d3:59:1c:20:54:c1:28:1c:05:45:44:56:24:bf:ee: 74:62:88:a6:e3:95:65:b8:a6:40:90:30:49:b4:de: 4e:cd:fb:b4:d1:ee:2f:52:ce:65:b2:98:8b:84:95: 60:fb:23:4a:ef:81:36:74:9e:80:61:3a:e2:0a:cd: c5:a2:c8:d3:78:5a:60:d8:bb:11:c8:ac:9c:b4:c7: b9:fb:43:16:41:8f:e4:5d:bb:d3:95:b2:be:b2:9c: 81:93:f2:43:01:7b:b6:eb:ab:72:d4:a7:e6:7a:7f: 3a:2e:3b:61:7d:0d:3b:44:e6:a3:ee:4a:81:5f:f1: ec:ef:b5:49:e0:98:9d:e5:98:a4:87:4d:64:c4:77: 4e:5f:98:ad:c5:49:5c:68:bf:3f:25:7e:e1:2d:fb: ee:ea:c7:db:e5:d0:22:85:49:5e:7b:47:01:61:6d: 81:39:00:d6:78:66:fc:b6:b5:d7:24:35:9d:25:ff: c8:d6:9f:0d:32:ed:62:7e:1a:70:9a:57:60:a0:43: 78:81:b7:52:63:09:ad:54:dd:d6:87:4a:4b:fe:ca: 7f:7f:1e:51:51:24:56:de:31:dd:ac:c8:f3:b8:96: 0e:f2:23:10:c7:db:ec:ca:fe:a9:a7:52:12:9b:f1: 78:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F8:82:4F:5B:FF:08:03:7D:CE:BC:A1:F5:EE:D7:EB:38:5E:4D:64 X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:28:41:5e:9c:10:4b:a3:1f:9e:87:25:0c:7e:8f:7c:3d:f2: 4d:f3:27:52:72:77:13:d6:a3:d5:6b:a9:9a:48:61:ca:13:9f: 56:b5:82:28:e9:ec:c7:40:b7:00:70:06:31:29:3d:90:89:fa: f0:d9:5f:42:1a:4f:25:c0:4f:84:75:b5:4a:38:bb:e2:f7:a1: 5d:db:22:e6:53:f6:a7:72:65:cb:34:17:31:af:5f:ce:93:dd: 9a:1b:53:31:59:7c:98:76:8a:eb:f7:4d:d3:60:51:0d:19:ee: af:ff:48:89:b7:1d:b6:c7:dc:f5:d4:33:a3:36:e9:4a:51:73: ce:25:9a:68:bf:02:e5:90:27:5b:3e:22:9b:4f:da:13:c2:70: 13:d7:75:97:f2:51:d3:b7:f9:f3:89:92:0d:b5:e7:38:13:c6: 0c:c0:44:2c:8b:3e:33:91:db:57:94:81:0d:d4:f5:6c:44:78: 47:1a:73:44:3d:f9:e0:b2:ec:1d:61:aa:ef:7d:38:38:7b:56: 46:2b:de:37:52:7c:6d:83:63:6e:60:f0:ed:26:31:35:ac:96: 01:bf:b7:96:b9:ab:89:d2:00:50:1e:5f:f4:ac:ea:de:dc:66: 66:5f:3c:d0:1f:08:0b:64:ae:b8:d2:4f:6a:4f:1d:08:42:72: 5d:8c:93:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA1MzEwNjU1MDZaFw0yNTA2MDcwNjU1MDZaMBgxFjAUBgNV BAMTDTY4M2FhN2NhLTdjYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJBX3RgQc8bjBC9eHOgdNZHCBUwSgcBUVEViS/7nRiiKbjlWW4pkCQMEm03k7N +7TR7i9SzmWymIuElWD7I0rvgTZ0noBhOuIKzcWiyNN4WmDYuxHIrJy0x7n7QxZB j+Rdu9OVsr6ynIGT8kMBe7brq3LUp+Z6fzouO2F9DTtE5qPuSoFf8ezvtUngmJ3l mKSHTWTEd05fmK3FSVxovz8lfuEt++7qx9vl0CKFSV57RwFhbYE5ANZ4Zvy2tdck NZ0l/8jWnw0y7WJ+GnCaV2CgQ3iBt1JjCa1U3daHSkv+yn9/HlFRJFbeMd2syPO4 lg7yIxDH2+zK/qmnUhKb8XjHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUX/iCT1v/ CAN9zryh9e7X6zheTWQwHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEgoQV6cEEujH56HJQx+j3w98k3zJ1JydxPWo9VrqZpIYcoTn1a1gijp 7MdAtwBwBjEpPZCJ+vDZX0IaTyXAT4R1tUo4u+L3oV3bIuZT9qdyZcs0FzGvX86T 3ZobUzFZfJh2iuv3TdNgUQ0Z7q//SIm3HbbH3PXUM6M26UpRc84lmmi/AuWQJ1s+ IptP2hPCcBPXdZfyUdO3+fOJkg215zgTxgzARCyLPjOR21eUgQ3U9WxEeEcac0Q9 +eCy7B1hqu99ODh7VkYr3jdSfG2DY25g8O0mMTWslgG/t5a5q4nSAFAeX/Ss6t7c ZmZfPNAfCAtkrrjST2pPHQhCcl2Mk+8= -----END CERTIFICATE-----Generated at Sat May 31 17:49:36 2025 by rpki-client