$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: YYJXcAq1ObONHOPfBLC6wJXxqAjWClyQ0IGIzZesNcA= Subject key identifier: 5A:39:8B:0C:85:B6:90:AF:DF:76:5E:DE:14:27:A7:36:40:4F:A3:59 Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 03EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 03E4 Signing time: Sat 31 May 2025 00:44:22 +0000 Manifest this update: Sat 31 May 2025 00:44:21 +0000 Manifest next update: Sat 07 Jun 2025 00:44:21 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: EyKhGiNz+euu4t9fPWhCPpyplt7oXCwshbWOAaOgIPY=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: May 31 00:44:21 2025 GMT Not After : Jun 7 00:44:21 2025 GMT Subject: CN=683a50e5-4298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:09:0f:da:9f:80:3b:6e:94:16:5b:41:4e:62: da:77:0a:c8:da:a9:2f:06:a4:94:e3:d7:b1:fe:6c: 43:41:d2:46:4a:07:3f:03:8b:29:8a:e1:25:10:4e: 6b:3b:cc:81:b1:0e:7e:be:3e:c8:70:b2:f9:07:38: 23:29:32:5c:b7:c5:8f:9f:be:f3:da:61:fe:c2:b1: 10:98:8e:1e:db:1b:58:c2:21:f4:3a:5e:0c:60:3c: 8c:15:19:0a:35:fd:36:0a:84:4f:12:37:20:d7:ce: 52:24:4a:29:84:45:4e:fe:27:7e:2e:58:a7:66:28: 67:13:5e:04:bd:97:97:ce:16:25:3d:fb:9d:c7:07: 87:bc:91:41:4c:36:84:2f:08:16:8d:d4:d0:e8:1b: 07:65:30:7f:8a:95:53:90:7b:32:0d:a0:24:c5:82: 44:13:ab:b5:ad:a0:41:cb:fc:5e:bc:cf:41:2b:63: 1b:c8:b0:e2:11:3e:f4:25:ee:9f:46:d0:d0:0e:d1: 80:d3:29:0f:c6:40:67:b1:30:85:54:b7:bb:fc:2d: c5:74:d9:20:2a:69:1b:8e:50:f5:22:23:05:ef:74: 67:8a:7a:80:a4:e9:08:44:9b:03:db:db:d8:9c:29: a2:35:68:b5:a9:86:e1:ee:28:ea:34:12:2b:c9:4f: 07:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:39:8B:0C:85:B6:90:AF:DF:76:5E:DE:14:27:A7:36:40:4F:A3:59 X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:04:7a:ad:dc:0e:c9:35:e9:ab:95:e8:8a:82:07:90:78:8d: f3:37:cf:71:ee:f5:1d:e4:69:91:1f:88:c1:5e:0f:c4:f8:22: 3c:e0:d0:e5:0d:5e:6a:28:cd:cc:3f:fb:af:56:65:9d:ba:19: 84:83:e7:54:85:61:ce:3b:64:6d:3a:03:a0:13:cf:01:0c:30: 36:ba:54:0a:2e:66:67:ac:28:6c:9e:bd:5f:78:b0:34:c7:ce: 48:eb:68:ce:31:3f:89:1d:ab:78:c0:b6:cc:a6:33:db:b3:f8: 42:34:5f:38:7c:e8:49:ce:17:6a:30:d5:f2:1a:ca:d7:fc:4c: 4f:4c:29:7a:47:2e:4c:59:ae:f9:19:69:74:88:e0:36:2d:e2: ad:65:fc:10:e9:9f:d0:fc:e1:9b:d3:ef:aa:fd:98:98:2e:0d: 32:da:e6:bc:f2:07:48:52:d9:af:1d:ed:68:d7:b6:62:b5:02: b3:b3:81:99:0c:68:24:3b:33:ac:50:46:93:b8:b5:00:ec:eb: 50:85:e3:4b:cf:86:f5:fc:b9:d5:44:76:96:51:c0:4f:f7:28: 69:33:17:4a:18:78:a8:9b:2b:43:04:14:4a:0b:a8:d5:3b:ac: cd:96:80:ba:a9:62:90:e5:74:b7:e9:29:a3:f9:f2:ed:f1:3c: ac:23:3f:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUwNTMxMDA0NDIxWhcNMjUwNjA3MDA0NDIxWjAYMRYwFAYD VQQDEw02ODNhNTBlNS00Mjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQkP2p+AO26UFltBTmLadwrI2qkvBqSU49ex/mxDQdJGSgc/A4spiuElEE5r O8yBsQ5+vj7IcLL5BzgjKTJct8WPn77z2mH+wrEQmI4e2xtYwiH0Ol4MYDyMFRkK Nf02CoRPEjcg185SJEophEVO/id+LlinZihnE14EvZeXzhYlPfudxweHvJFBTDaE LwgWjdTQ6BsHZTB/ipVTkHsyDaAkxYJEE6u1raBBy/xevM9BK2MbyLDiET70Je6f RtDQDtGA0ykPxkBnsTCFVLe7/C3FdNkgKmkbjlD1IiMF73RninqApOkIRJsD29vY nCmiNWi1qYbh7ijqNBIryU8H9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFo5iwyF tpCv33Ze3hQnpzZAT6NZMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFBHqt3A7JNemrleiKggeQeI3zN89x7vUd5GmRH4jBXg/E+CI84NDl DV5qKM3MP/uvVmWduhmEg+dUhWHOO2RtOgOgE88BDDA2ulQKLmZnrChsnr1feLA0 x85I62jOMT+JHat4wLbMpjPbs/hCNF84fOhJzhdqMNXyGsrX/ExPTCl6Ry5MWa75 GWl0iOA2LeKtZfwQ6Z/Q/OGb0++q/ZiYLg0y2ua88gdIUtmvHe1o17ZitQKzs4GZ DGgkOzOsUEaTuLUA7OtQheNLz4b1/LnVRHaWUcBP9yhpMxdKGHiomytDBBRKC6jV O6zNloC6qWKQ5XS36Smj+fLt8TysIz94 -----END CERTIFICATE-----Generated at Sat May 31 17:08:56 2025 by rpki-client