$ rpki-client -vvf rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft File: HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft (raw, json) Hash identifier: 7v7HZbBkg+AiUsbyj7ZmlE5IIHTqHWNQI4mKy654uOQ= Subject key identifier: 22:0C:4A:1D:9F:1B:BD:16:81:0C:A6:82:66:B7:87:40:5E:9E:9C:91 Authority key identifier: 1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E Certificate issuer: /CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Certificate serial: 066C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft Manifest number: 065D Signing time: Fri 30 May 2025 22:45:42 +0000 Manifest this update: Fri 30 May 2025 22:45:41 +0000 Manifest next update: Fri 06 Jun 2025 22:45:41 +0000 Files and hashes: 1: HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl (hash: uWwQmOzq7aHTfWGg0/y7jVPr4RIJkmrThNHC2XhD7kE=) 2: FF7ABE2C3AE611F083D6AD7FC4F9AE02.roa (hash: ui7/XclXiZW0cPIdTnmCwn+c4uoenWF6KTBq9pEuR7M=) 3: 1DDB4F803AE711F09B94E47FC4F9AE02.roa (hash: jKGh7qYB9/mjUAeo3pLPwOPzfnYdxhoTS9Mo108a0Ok=) 4: 7CDC37C03AE611F089DABB7EC4F9AE02.roa (hash: XCoMjj/a7K84fKvxm+f/Sa+whPmY6o7sv3EG/EHcW4Q=) 5: C28841A201DB11EDA4B7F257C4F9AE02.roa (hash: SRwuKl9iZ5F1PmABZLmK117SIfLF/ZW+yQgLNckgk2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1644 (0x66c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D19ED, serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Validity Not Before: May 30 22:45:41 2025 GMT Not After : Jun 6 22:45:41 2025 GMT Subject: CN=683a3515-f7d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:30:54:54:d1:c1:85:fe:4e:9f:3d:1c:a7:27: e9:4e:19:63:83:ef:b2:88:28:20:53:e6:d4:87:fa: 81:4e:c4:42:fb:ce:a6:11:9f:5f:92:f9:d8:b7:ab: f7:93:c3:a3:a7:2b:e1:db:46:91:60:8e:d3:e3:1d: d3:09:e2:e1:46:71:d0:e4:b1:29:ff:f1:f1:f1:63: 2b:7e:c4:36:e0:6a:b6:07:75:4d:7b:b6:2a:3d:85: 83:1b:f3:c3:ef:f6:fc:12:f6:20:e0:97:91:26:dc: b1:fa:95:aa:80:35:c5:15:29:c9:4e:60:d1:04:c5: ba:94:e8:9f:7b:04:e5:13:98:97:95:cd:5d:1a:0e: 2d:33:42:91:9b:26:5b:90:f1:e0:45:43:9a:93:a6: 9d:7e:12:64:92:40:f6:14:ad:37:f0:43:d5:85:35: 12:75:5e:83:39:db:94:de:c8:41:38:0c:ab:b5:0f: 80:e9:2f:d6:68:bb:c2:df:0b:f9:a6:98:da:aa:14: 2c:dd:a5:db:d5:6d:bd:81:5f:71:98:29:13:58:5d: 5d:c0:a3:6f:20:72:14:84:d2:0d:cb:a6:c0:e2:10: 75:6e:f6:ab:37:57:5e:d6:19:ba:be:68:27:4e:49: c7:87:fe:67:82:f1:02:10:07:5e:6d:6f:80:d3:c2: 21:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0C:4A:1D:9F:1B:BD:16:81:0C:A6:82:66:B7:87:40:5E:9E:9C:91 X509v3 Authority Key Identifier: keyid:1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:27:98:42:24:8a:de:6d:13:b5:9e:17:b8:ff:c6:3e:09:30: ab:ac:d6:5e:c6:69:fc:9d:06:7d:a5:c0:4d:46:00:35:e6:05: 16:bc:9e:d4:67:7b:9f:fd:73:e1:cb:d3:fa:43:43:3a:40:49: db:e8:c9:46:b7:a2:d5:c5:19:13:53:3b:a0:c9:09:c7:24:9c: 1b:b1:59:31:3e:a8:f6:f5:23:7a:97:90:d3:1e:34:0e:8c:e4: c4:9c:a0:e6:81:07:c9:ce:ea:70:57:30:28:09:a0:ea:41:29: 37:c3:4b:ad:a8:6b:c0:f1:91:d6:0d:21:db:c4:c0:fe:35:fa: d5:84:1e:5e:0c:c9:80:32:51:2a:38:fa:eb:7a:23:df:44:c9: 25:be:35:8f:51:1c:21:8d:66:76:80:73:1e:95:f9:4d:64:39: 3c:41:54:68:18:b6:70:38:7b:24:12:c6:45:7f:66:07:29:69: 58:e6:11:2b:4d:30:cd:e0:6f:05:ca:44:2b:28:db:bd:db:35: 09:48:f5:f3:03:a6:5d:54:9f:fc:cc:e2:40:00:5e:73:e8:43: c2:97:0e:12:4c:47:c0:75:7e:a1:50:c0:75:92:eb:ff:1e:f0: e9:e1:37:13:20:e5:95:5a:8d:d5:a3:ff:68:aa:97:08:73:d5: 07:b1:47:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5RUQxMTAvBgNVBAUTKDFFRDRBNTA0NDlGODYyMDBBMEMyNjY4MDY5QTI4MzI0 RjlGNkE5M0UwHhcNMjUwNTMwMjI0NTQxWhcNMjUwNjA2MjI0NTQxWjAYMRYwFAYD VQQDEw02ODNhMzUxNS1mN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DBUVNHBhf5Onz0cpyfpThljg++yiCggU+bUh/qBTsRC+86mEZ9fkvnYt6v3 k8Ojpyvh20aRYI7T4x3TCeLhRnHQ5LEp//Hx8WMrfsQ24Gq2B3VNe7YqPYWDG/PD 7/b8EvYg4JeRJtyx+pWqgDXFFSnJTmDRBMW6lOifewTlE5iXlc1dGg4tM0KRmyZb kPHgRUOak6adfhJkkkD2FK038EPVhTUSdV6DOduU3shBOAyrtQ+A6S/WaLvC3wv5 ppjaqhQs3aXb1W29gV9xmCkTWF1dwKNvIHIUhNINy6bA4hB1bvarN1de1hm6vmgn TknHh/5ngvECEAdebW+A08IhkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIMSh2f G70WgQymgma3h0BenpyRMB8GA1UdIwQYMBaAFB7UpQRJ+GIAoMJmgGmigyT59qk+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTlFRC81NEI5N0EyNjhB QjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFlnQ2d3bWFBYWFLREpQbjJx VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0U2xCRW40WWdDZ3dtYUFhYUtESlBuMnFUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTlFRC81NEI5N0EyNjhBQjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFln Q2d3bWFBYWFLREpQbjJxVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATJ5hCJIrebRO1nhe4/8Y+CTCrrNZexmn8nQZ9pcBNRgA15gUWvJ7U Z3uf/XPhy9P6Q0M6QEnb6MlGt6LVxRkTUzugyQnHJJwbsVkxPqj29SN6l5DTHjQO jOTEnKDmgQfJzupwVzAoCaDqQSk3w0utqGvA8ZHWDSHbxMD+NfrVhB5eDMmAMlEq OPrreiPfRMklvjWPURwhjWZ2gHMelflNZDk8QVRoGLZwOHskEsZFf2YHKWlY5hEr TTDN4G8FykQrKNu92zUJSPXzA6ZdVJ/8zOJAAF5z6EPClw4STEfAdX6hUMB1kuv/ HvDp4TcTIOWVWo3Vo/9oqpcIc9UHsUfH -----END CERTIFICATE-----Generated at Sat May 31 16:39:48 2025 by rpki-client