$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: SLEGKq4uT/8Q2Yae2y8zQkS9xZ5FgbBNXd4loizOTt4= Subject key identifier: 09:7F:73:CD:ED:05:BF:D3:2A:EA:E0:1A:76:B4:54:A7:2B:EC:14:42 Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: 77 Signing time: Tue 03 Jun 2025 06:33:23 +0000 Manifest this update: Tue 03 Jun 2025 06:33:23 +0000 Manifest next update: Tue 10 Jun 2025 06:33:23 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: eD85eVAirYKRwAbk5Ivov3HIg8lAcAkmN3d4dxLbRX4=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Jun 3 06:33:23 2025 GMT Not After : Jun 10 06:33:23 2025 GMT Subject: CN=683e9733-e77e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d6:e8:1b:77:91:a1:bf:8c:f2:cf:c3:2f:df: 86:6c:36:50:85:77:09:24:ce:1e:5a:c3:be:59:6c: ac:0e:c8:20:7e:15:e7:a9:f0:53:78:37:fe:1a:44: ad:c7:fc:f8:b3:d4:a1:f2:0e:85:64:62:79:2e:f6: 87:5e:69:bd:70:7b:4f:80:de:75:27:fc:96:54:b6: f7:e9:26:17:57:17:8f:5f:c5:20:4a:6b:a9:1c:2b: ef:3d:43:3b:38:a1:72:f5:b7:f6:4c:65:0e:d5:c8: 83:29:f9:3b:66:72:ab:2a:f6:8d:a4:4e:f2:76:e7: 43:11:54:60:6e:cf:84:29:c5:b9:a5:a8:ab:22:18: 13:87:6e:27:ba:3a:01:50:9a:c6:a2:9a:30:d0:47: 1e:13:7a:37:c6:22:22:6e:9e:83:12:74:68:f8:62: d6:61:88:76:36:0d:2d:ae:62:c6:f2:f2:48:0b:af: 86:3b:fe:c4:b9:fe:d5:c4:21:9d:c7:ff:fa:d3:4a: a3:5e:6e:4a:c1:d7:ed:a2:9a:c0:d6:a4:15:fb:78: 7d:7f:65:90:42:71:a7:aa:86:37:06:f4:3c:27:9e: 27:e6:be:34:11:36:fa:d6:7d:32:bc:71:c1:ea:3b: 9c:59:3f:b8:8b:31:4f:98:bd:48:e0:4c:4a:10:1e: 71:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7F:73:CD:ED:05:BF:D3:2A:EA:E0:1A:76:B4:54:A7:2B:EC:14:42 X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:0e:7f:66:76:4c:82:b7:89:a8:fb:e1:3e:57:4b:37:f2:38: 0f:ba:80:f9:e1:81:fc:32:ca:03:7f:6c:a0:ce:51:d4:15:70: b4:5e:e0:41:41:7b:07:c3:9b:c4:6c:12:e1:49:ae:20:33:c8: 21:d2:d0:18:4f:a8:ca:bc:aa:48:a9:b4:9c:79:ed:d8:0a:75: 59:a1:0f:d8:ad:83:67:25:82:dc:70:58:e7:fb:13:5b:74:6c: 19:79:ad:65:ea:0b:45:98:ee:14:13:d6:09:d0:dd:70:ef:be: 20:fa:e0:f3:96:44:ca:66:91:76:80:a2:f8:f4:40:ab:3b:0b: 3b:f6:e9:64:c6:e1:61:10:75:37:9f:bf:8b:6e:4e:7b:a1:eb: 06:90:58:f8:ea:53:98:3a:b2:d9:b6:78:1c:95:f0:8c:de:b3: bb:4f:3d:ab:32:67:62:cd:f5:6f:a0:f4:dc:ee:09:81:61:ed: 23:41:70:7a:6e:c1:0c:92:2d:52:59:5b:6c:dc:4d:e6:d0:16: cb:c8:8d:19:9d:eb:02:b1:47:98:23:2b:36:ab:86:b7:75:b5: 87:33:37:02:8f:a5:19:c3:d3:ac:51:a6:e4:b5:37:2f:29:d6: 18:71:e1:67:41:c1:c9:2e:a2:16:8c:20:1d:10:72:05:96:24: f7:9b:87:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoMUREMzNBNjhCQzBCNUM5MzEwRkZGNTJBRDczOTQxMjBE MTAyQTYyNzAeFw0yNTA2MDMwNjMzMjNaFw0yNTA2MTAwNjMzMjNaMBgxFjAUBgNV BAMTDTY4M2U5NzMzLWU3N2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj1ugbd5Ghv4zyz8Mv34ZsNlCFdwkkzh5aw75ZbKwOyCB+Feep8FN4N/4aRK3H /Piz1KHyDoVkYnku9odeab1we0+A3nUn/JZUtvfpJhdXF49fxSBKa6kcK+89Qzs4 oXL1t/ZMZQ7VyIMp+Ttmcqsq9o2kTvJ250MRVGBuz4QpxbmlqKsiGBOHbie6OgFQ msaimjDQRx4TejfGIiJunoMSdGj4YtZhiHY2DS2uYsby8kgLr4Y7/sS5/tXEIZ3H //rTSqNebkrB1+2imsDWpBX7eH1/ZZBCcaeqhjcG9DwnnifmvjQRNvrWfTK8ccHq O5xZP7iLMU+YvUjgTEoQHnGlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCX9zze0F v9Mq6uAadrRUpyvsFEIwHwYDVR0jBBgwFoAUHdM6aLwLXJMQ//Uq1zlBINECpicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5L0Y5NEQ0MUM4OEMy QzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3Bp Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSGRNNmFMd0xYSk1RX19VcTF6bEJJTkVDcGljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 MzE5L0Y5NEQ0MUM4OEMyQzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpN UV9fVXExemxCSU5FQ3BpYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKoOf2Z2TIK3iaj74T5XSzfyOA+6gPnhgfwyygN/bKDOUdQVcLRe4EFB ewfDm8RsEuFJriAzyCHS0BhPqMq8qkiptJx57dgKdVmhD9itg2clgtxwWOf7E1t0 bBl5rWXqC0WY7hQT1gnQ3XDvviD64POWRMpmkXaAovj0QKs7Czv26WTG4WEQdTef v4tuTnuh6waQWPjqU5g6stm2eByV8Izes7tPPasyZ2LN9W+g9NzuCYFh7SNBcHpu wQySLVJZW2zcTebQFsvIjRmd6wKxR5gjKzarhrd1tYczNwKPpRnD06xRpuS1Ny8p 1hhx4WdBwckuohaMIB0QcgWWJPebh94= -----END CERTIFICATE-----Generated at Wed Jun 4 00:03:26 2025 by rpki-client