$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: iERVHLvV8eIiVv9XioYgWeHTtiQOcEAdlySjBXCfy+g= Subject key identifier: 9D:C9:F0:84:F3:1D:A0:72:D9:31:C8:82:8D:93:D0:A7:1D:20:A5:E6 Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 0269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 025E Signing time: Sat 31 May 2025 02:00:33 +0000 Manifest this update: Sat 31 May 2025 02:00:32 +0000 Manifest next update: Sat 07 Jun 2025 02:00:32 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: 9p+U9oVGRyrLqeBcCxffRjHzVrmeH0oD/u0DH312LZU=) 2: AF13726403AD11F0B5D12A81C4F9AE02.roa (hash: XBaed8FJc7Gixv2UzCn4EyIQb1PKqJIn+WKksLyjxb8=) 3: 2080359097F711EF91AB0436C4F9AE02.roa (hash: ayF9Bv7+wkh7jzbmvM6fDF9jk/NLjmF1YhPtsg38ygk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: May 31 02:00:32 2025 GMT Not After : Jun 7 02:00:32 2025 GMT Subject: CN=683a62c0-372d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:71:e9:da:95:9a:90:92:6f:37:4c:aa:71:9b: 1d:f8:ff:69:e7:db:c9:02:bc:55:1a:d6:11:84:f8: 11:d3:bc:44:bf:a9:ea:fa:92:ae:fd:60:35:50:26: 40:9f:e5:7e:2c:f9:85:e7:35:78:81:5d:2e:1b:07: 99:2b:79:d3:9b:e9:a3:28:07:11:94:49:5f:32:d5: 8a:36:cc:a9:db:23:b3:ea:41:f5:4b:76:e6:03:11: 63:e9:a8:1b:24:22:be:23:8d:69:a4:f4:c1:c1:61: 1e:a6:b8:1c:a2:85:80:b7:2b:de:38:70:20:ef:a1: 0c:c4:1a:37:05:b5:b9:69:6e:8d:a7:2b:42:91:21: c2:c2:37:da:17:2e:5b:5b:4f:52:ab:0d:4e:ec:4e: cc:24:97:9f:6d:b3:f2:46:49:34:b7:b6:5f:ef:30: a9:52:3f:89:1b:0f:bb:3a:90:7b:8a:cb:d7:52:08: f6:86:4a:29:25:65:eb:7c:d8:ec:27:49:97:cc:44: e8:1e:1c:0c:f4:34:bc:3f:dc:b0:2e:2b:6c:e0:ac: e0:2f:97:2c:d5:dc:98:71:e1:29:36:59:5a:c4:1e: 13:f6:1d:e7:9c:ff:cb:9b:94:ec:26:2f:09:ff:53: d6:dd:dd:ea:b2:d3:90:d9:dd:6a:db:93:50:30:19: 78:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C9:F0:84:F3:1D:A0:72:D9:31:C8:82:8D:93:D0:A7:1D:20:A5:E6 X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:38:52:59:ec:a8:cd:57:a4:3b:cd:68:60:33:d6:c7:41:4d: 0a:df:cc:c0:5a:31:e1:a9:a3:22:bd:ec:56:7b:2b:24:26:dd: d8:ac:df:cd:28:48:a7:f3:c5:fb:d6:0b:f2:cb:f2:13:8f:3c: 51:4c:1f:af:4d:7c:ff:1c:d0:39:5d:1f:aa:ab:fd:2b:3f:5b: e5:49:6c:28:ac:d8:b6:2d:17:02:79:08:e8:24:dc:80:a7:8c: 72:c9:d9:78:78:ce:33:5d:17:0f:16:38:f0:73:ad:a7:f7:1d: 92:2f:91:87:41:7f:df:08:bc:5e:75:fe:23:ea:a8:d9:fb:ba: 87:1a:a7:d5:6f:61:6c:7f:40:78:d3:96:88:af:41:b2:f2:9e: 76:c0:57:4b:47:26:5e:4c:0e:f4:8c:56:9d:55:3c:9a:4d:c8: 6e:a2:f5:dd:a6:a9:7e:d9:0a:2a:45:5d:a4:8c:95:a2:24:5f: 02:29:76:3d:79:2b:5f:4e:ba:b3:27:ef:3c:0d:11:62:1a:ee: cd:5a:f1:75:a3:3b:42:14:a1:f2:d9:6a:36:87:86:50:22:9f: c3:9e:75:0b:a1:6f:4c:6c:28:b3:21:63:81:18:9d:5e:11:88: 02:ab:ef:a1:d1:bd:1a:ce:55:d4:4c:f3:0d:2e:67:2a:26:26: bf:be:3e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUwNTMxMDIwMDMyWhcNMjUwNjA3MDIwMDMyWjAYMRYwFAYD VQQDEw02ODNhNjJjMC0zNzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03Hp2pWakJJvN0yqcZsd+P9p59vJArxVGtYRhPgR07xEv6nq+pKu/WA1UCZA n+V+LPmF5zV4gV0uGweZK3nTm+mjKAcRlElfMtWKNsyp2yOz6kH1S3bmAxFj6agb JCK+I41ppPTBwWEeprgcooWAtyveOHAg76EMxBo3BbW5aW6NpytCkSHCwjfaFy5b W09Sqw1O7E7MJJefbbPyRkk0t7Zf7zCpUj+JGw+7OpB7isvXUgj2hkopJWXrfNjs J0mXzEToHhwM9DS8P9ywLits4KzgL5cs1dyYceEpNllaxB4T9h3nnP/Lm5TsJi8J /1PW3d3qstOQ2d1q25NQMBl4UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3J8ITz HaBy2THIgo2T0KcdIKXmMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfOFJZ7KjNV6Q7zWhgM9bHQU0K38zAWjHhqaMivexWeyskJt3YrN/N KEin88X71gvyy/ITjzxRTB+vTXz/HNA5XR+qq/0rP1vlSWworNi2LRcCeQjoJNyA p4xyydl4eM4zXRcPFjjwc62n9x2SL5GHQX/fCLxedf4j6qjZ+7qHGqfVb2Fsf0B4 05aIr0Gy8p52wFdLRyZeTA70jFadVTyaTchuovXdpql+2QoqRV2kjJWiJF8CKXY9 eStfTrqzJ+88DRFiGu7NWvF1oztCFKHy2Wo2h4ZQIp/DnnULoW9MbCizIWOBGJ1e EYgCq++h0b0azlXUTPMNLmcqJia/vj6H -----END CERTIFICATE-----Generated at Sat May 31 17:31:58 2025 by rpki-client