$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: oPu7kXdMHMEjqzMakgvEdZAzGIN4nH92Q/Af/UYU284= Subject key identifier: 07:03:45:40:8F:1D:7B:34:FF:C0:D5:E0:88:78:78:BA:BC:47:E0:B2 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 2E Signing time: Sat 31 May 2025 07:17:43 +0000 Manifest this update: Sat 31 May 2025 07:17:43 +0000 Manifest next update: Sat 07 Jun 2025 07:17:43 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: heRPkvBilkhHrWDu1yktBWdIouVWpblW/QqqJl7SBFY=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: 0M63JvIdFfuu35AAppLF2AY+BsaEXFTD4uLQ+gUHRuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: May 31 07:17:43 2025 GMT Not After : Jun 7 07:17:43 2025 GMT Subject: CN=683aad17-d713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:91:0c:3d:ea:17:f0:d7:df:e1:2b:fe:65:9b: 8b:1d:a3:39:ad:8a:37:70:84:b2:45:4c:24:2c:59: 7f:a4:4e:ae:4a:5c:f7:33:46:ca:59:7f:80:90:f6: fe:94:41:f3:36:10:f5:d0:bb:65:6d:7e:18:9c:b6: 2b:e4:2b:9a:5b:1c:06:05:6f:65:0c:cc:3e:95:35: 04:2c:af:c5:96:76:0d:ee:0e:7d:6b:50:ae:ae:17: 6e:b0:a2:01:f1:bb:51:7c:22:a8:24:6f:f9:a8:19: 95:15:5d:a0:23:86:f2:01:fc:76:64:f0:8a:42:24: c3:39:7c:9e:48:b7:d5:75:23:2b:68:91:19:b8:62: cc:5d:fa:e7:fb:19:a7:68:a1:87:2b:4a:ce:35:fb: ff:1c:67:7a:48:1b:a8:82:40:f9:0d:95:07:c9:a1: 81:df:32:1b:70:a9:de:db:5f:fc:80:63:3b:5e:e7: b7:0c:ee:72:54:ab:1b:b1:5f:2a:86:7f:85:8d:42: a6:40:ea:b3:4c:73:ee:fc:bc:99:33:bf:7a:a6:b6: ba:5c:32:3d:da:4e:2a:63:2c:88:f8:a3:54:c2:a7: 49:60:52:7c:8c:45:0e:28:c6:35:5d:be:dc:48:24: a2:fb:7c:d2:f8:ec:60:a4:e9:aa:d3:47:6a:93:94: fc:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:03:45:40:8F:1D:7B:34:FF:C0:D5:E0:88:78:78:BA:BC:47:E0:B2 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:9e:3a:43:3b:a5:07:69:12:df:5a:b2:b6:ae:e6:d7:18:60: 1f:ea:30:b7:b2:e9:db:2f:cc:32:36:de:2c:9c:09:48:55:e2: 56:27:a5:cc:2d:a5:be:47:d6:d8:c3:87:2c:64:df:21:14:ad: 0a:4b:c3:92:61:da:fb:d1:2d:cd:cb:98:d8:2a:e7:6c:ed:f8: 46:9e:af:30:ad:db:4a:01:81:e7:dc:39:7f:7e:6d:d3:5c:d6: b7:90:95:4f:25:5b:e8:f7:10:c2:60:27:c9:39:b4:f4:58:53: aa:04:1a:59:02:3c:73:d3:2a:2d:1f:f9:d4:a0:a5:09:cb:fc: ab:4f:d3:cd:32:c1:99:3f:c7:f3:d5:0f:43:93:b9:ef:25:83: b0:0e:74:f7:41:0e:63:1a:66:60:fa:63:52:0d:95:a1:f7:46: 88:f2:bd:f0:f9:76:b7:0d:69:52:f1:b6:cd:43:e9:dd:b2:1f: 01:ca:db:c8:61:4a:f4:a9:f4:11:7b:db:41:4a:17:bf:bd:0f: 60:7a:26:28:2d:82:76:6f:da:d3:85:73:ce:38:e5:ed:ff:bb: 75:4b:ef:6b:54:3b:ab:b8:f4:dd:ab:22:1c:1e:e1:ad:f3:b5: dc:62:3d:aa:3e:b8:65:d1:43:16:f9:8c:25:60:7f:f1:89:8d: 5c:5a:6b:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjA2NjExMC8GA1UEBRMoMUQ0RUM0MjUzMzEzQjYyQzQ4NDQ5MTZCODVEQzBGRkU0 QjA3RDUwODAeFw0yNTA1MzEwNzE3NDNaFw0yNTA2MDcwNzE3NDNaMBgxFjAUBgNV BAMTDTY4M2FhZDE3LWQ3MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdkQw96hfw19/hK/5lm4sdozmtijdwhLJFTCQsWX+kTq5KXPczRspZf4CQ9v6U QfM2EPXQu2VtfhictivkK5pbHAYFb2UMzD6VNQQsr8WWdg3uDn1rUK6uF26wogHx u1F8Iqgkb/moGZUVXaAjhvIB/HZk8IpCJMM5fJ5It9V1IytokRm4Ysxd+uf7Gado oYcrSs41+/8cZ3pIG6iCQPkNlQfJoYHfMhtwqd7bX/yAYzte57cM7nJUqxuxXyqG f4WNQqZA6rNMc+78vJkzv3qmtrpcMj3aTipjLIj4o1TCp0lgUnyMRQ4oxjVdvtxI JKL7fNL47GCk6arTR2qTlPxBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBwNFQI8d ezT/wNXgiHh4urxH4LIwHwYDVR0jBBgwFoAUHU7EJTMTtixIRJFrhdwP/ksH1Qgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MDY2LzY0OEE4ODMyRkI2 NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFR Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFU3RUpUTVR0aXhJUkpGcmhkd1Bfa3NIMVFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 MDY2LzY0OEE4ODMyRkI2NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4 SVJKRnJoZHdQX2tzSDFRZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK2eOkM7pQdpEt9asrau5tcYYB/qMLey6dsvzDI23iycCUhV4lYnpcwt pb5H1tjDhyxk3yEUrQpLw5Jh2vvRLc3LmNgq52zt+EaerzCt20oBgefcOX9+bdNc 1reQlU8lW+j3EMJgJ8k5tPRYU6oEGlkCPHPTKi0f+dSgpQnL/KtP080ywZk/x/PV D0OTue8lg7AOdPdBDmMaZmD6Y1INlaH3RojyvfD5drcNaVLxts1D6d2yHwHK28hh SvSp9BF720FKF7+9D2B6JigtgnZv2tOFc8445e3/u3VL72tUO6u49N2rIhwe4a3z tdxiPao+uGXRQxb5jCVgf/GJjVxaa2g= -----END CERTIFICATE-----Generated at Sat May 31 17:37:51 2025 by rpki-client