$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: 1MtqV6BSsPorWODZKPCsYiFmlvcbXQmI8TS3hO0jxQo= Subject key identifier: 5B:6C:E9:EB:65:7D:26:16:6B:39:1A:23:0A:E9:D8:5B:5B:66:C3:AB Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 140B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 1402 Signing time: Fri 30 May 2025 17:07:01 +0000 Manifest this update: Fri 30 May 2025 17:07:01 +0000 Manifest next update: Fri 06 Jun 2025 17:07:01 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: 0J6Pz7QZmEevzN7jLLSJF32B2DawiAWHw9T3UeI9hRA=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5131 (0x140b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: May 30 17:07:01 2025 GMT Not After : Jun 6 17:07:01 2025 GMT Subject: CN=6839e5b5-25c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e9:37:a0:00:02:89:bf:27:43:72:fa:29:a8: be:5d:1e:82:40:fe:51:76:f5:73:32:bd:09:21:b8: 6c:d4:39:2b:2f:c6:93:65:9a:ef:17:86:01:d6:b6: 89:7a:e7:a3:9f:70:ed:3f:2e:87:21:a4:16:77:49: ac:a0:74:2e:af:b9:22:dd:4c:de:36:51:11:c0:e5: 80:5c:08:e6:d6:63:d9:27:9c:9b:cc:d1:73:35:ee: 80:31:98:71:2d:10:e4:4b:51:fe:78:44:fa:32:e0: f5:f6:ff:73:d4:d0:f8:94:a9:3f:11:62:95:98:dd: 66:32:44:e7:2e:7f:13:68:d7:c5:51:f3:49:ad:5d: ea:0f:eb:ec:dd:db:6f:4e:87:ea:95:fc:05:fc:23: b0:47:da:47:46:3d:90:37:c1:e7:7a:cb:c6:c4:e9: c2:d7:a8:cf:bc:2c:c4:74:e4:e2:49:e9:cb:9d:e4: 3f:19:50:42:40:b7:50:e9:da:f5:11:b6:0d:16:97: 0c:0e:cc:20:59:f8:c1:d2:bc:81:01:18:43:e9:8e: 03:5d:ac:3c:bf:68:6b:4b:f0:15:b1:a2:44:98:d7: 14:97:63:95:3e:c8:e3:9f:20:db:14:0c:c5:18:5d: ff:cb:91:cc:00:5c:ea:3b:35:9a:a3:e5:91:43:76: ae:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:6C:E9:EB:65:7D:26:16:6B:39:1A:23:0A:E9:D8:5B:5B:66:C3:AB X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:f6:d4:bc:f2:19:c7:25:1e:4a:2e:ca:94:92:07:a5:72:27: 12:cf:d6:29:b3:a9:de:8b:42:d0:0b:1e:3f:6d:ff:ee:3e:c1: e2:3e:0e:33:5d:29:d0:f3:fd:68:f5:95:48:ba:bf:4f:79:88: 5d:6a:8f:46:d1:7e:1b:87:cd:cd:e8:55:07:5e:de:19:9f:72: 65:e1:81:4d:6b:93:e9:c9:d5:0b:11:bc:ea:5a:4c:d3:71:2c: cd:b5:b0:36:5d:07:3a:ad:6b:c2:7b:4f:d2:ae:b3:9b:52:72: 13:dc:eb:a8:20:ea:34:20:53:1f:d9:cc:51:92:e4:76:ff:ea: 66:ff:ae:fd:da:10:cb:02:03:9a:4d:a7:eb:19:50:42:4d:a2: da:8e:5a:88:b2:f5:09:b1:8a:1c:fd:49:5d:f9:fd:bc:4f:0d: a6:78:10:67:c1:97:87:b6:fd:74:40:a1:96:96:50:b6:1d:5e: a4:79:30:6e:f5:84:f4:a7:6a:75:52:60:67:9e:6a:34:29:0b: 7a:82:26:5f:19:2f:f4:8f:f2:7c:58:96:bc:13:60:5d:eb:06: d1:89:65:30:27:c7:05:0a:b0:72:0a:4b:47:a4:02:7d:3c:74: 8e:03:50:7b:84:fa:de:ea:62:cb:ab:34:f3:79:06:a6:22:38: ee:b4:97:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUwNTMwMTcwNzAxWhcNMjUwNjA2MTcwNzAxWjAYMRYwFAYD VQQDEw02ODM5ZTViNS0yNWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ek3oAACib8nQ3L6Kai+XR6CQP5RdvVzMr0JIbhs1DkrL8aTZZrvF4YB1raJ euejn3DtPy6HIaQWd0msoHQur7ki3UzeNlERwOWAXAjm1mPZJ5ybzNFzNe6AMZhx LRDkS1H+eET6MuD19v9z1ND4lKk/EWKVmN1mMkTnLn8TaNfFUfNJrV3qD+vs3dtv TofqlfwF/COwR9pHRj2QN8HnesvGxOnC16jPvCzEdOTiSenLneQ/GVBCQLdQ6dr1 EbYNFpcMDswgWfjB0ryBARhD6Y4DXaw8v2hrS/AVsaJEmNcUl2OVPsjjnyDbFAzF GF3/y5HMAFzqOzWao+WRQ3auHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFts6etl fSYWazkaIwrp2FtbZsOrMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd9tS88hnHJR5KLsqUkgelcicSz9Yps6nei0LQCx4/bf/uPsHiPg4z XSnQ8/1o9ZVIur9PeYhdao9G0X4bh83N6FUHXt4Zn3Jl4YFNa5PpydULEbzqWkzT cSzNtbA2XQc6rWvCe0/SrrObUnIT3OuoIOo0IFMf2cxRkuR2/+pm/6792hDLAgOa TafrGVBCTaLajlqIsvUJsYoc/Uld+f28Tw2meBBnwZeHtv10QKGWllC2HV6keTBu 9YT0p2p1UmBnnmo0KQt6giZfGS/0j/J8WJa8E2Bd6wbRiWUwJ8cFCrByCktHpAJ9 PHSOA1B7hPre6mLLqzTzeQamIjjutJeA -----END CERTIFICATE-----Generated at Sat May 31 17:44:06 2025 by rpki-client