$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: frIkcDCmINopCiPKvv9GKTV3bMe3P5qnDhFUhU9GVkM= Subject key identifier: ED:49:CC:1A:B6:B8:77:31:92:0D:43:43:FB:66:7F:73:D4:DC:96:41 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 08E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 08DD Signing time: Mon 02 Jun 2025 20:34:50 +0000 Manifest this update: Mon 02 Jun 2025 20:34:50 +0000 Manifest next update: Mon 09 Jun 2025 20:34:50 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: Rhr5w/EN6KB4p+Mkwmm+jvXafjIgLp0fgStttPx3Ccg=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2276 (0x8e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Jun 2 20:34:50 2025 GMT Not After : Jun 9 20:34:50 2025 GMT Subject: CN=683e0aea-1afd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c1:68:cc:2d:21:0c:34:ef:9d:b7:c3:60:bc: a5:f6:b8:44:d3:85:25:31:32:1c:ef:6b:65:d2:c7: a9:f4:b9:62:1e:42:dd:2c:51:99:eb:e1:54:6e:07: 1d:40:34:79:f1:69:b5:57:8e:05:ce:21:a6:ce:af: 85:25:88:11:de:9a:1e:37:1d:ec:a6:97:f8:fe:0c: 2c:be:67:63:41:92:91:ac:f2:c6:9f:04:d3:40:32: 32:5a:f7:b4:77:4d:5e:55:12:9a:fa:7f:e7:ba:fb: d8:3b:87:d3:11:ac:3f:38:6b:ab:3c:63:ec:2d:ce: 6e:1a:39:a3:aa:13:51:11:b5:38:50:3d:ec:ba:38: fd:4b:e9:10:2e:15:6f:c2:e0:7f:14:c0:9d:7c:1d: ca:62:d5:8a:08:82:c8:df:74:65:ed:00:ea:80:6a: a2:ae:58:7a:5c:7a:18:08:76:04:38:54:bd:f8:24: 2e:be:c9:eb:e5:5b:8d:61:ac:6c:b6:63:d3:66:c7: 87:d9:65:62:dd:c8:0f:af:06:13:84:13:3c:a4:23: 9d:bf:a3:ea:d9:2a:f6:ad:65:10:2f:dc:b4:20:8f: 28:4e:09:cb:62:ed:5f:e8:a8:bd:9d:a1:f8:a7:e0: 4f:bb:54:0c:c3:b5:a2:a7:08:ff:77:50:cc:35:da: 49:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:49:CC:1A:B6:B8:77:31:92:0D:43:43:FB:66:7F:73:D4:DC:96:41 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:2e:84:6c:00:da:54:9e:d2:84:9d:6f:35:11:ea:d6:9a:3f: b1:8d:68:be:13:1f:23:b8:f9:56:df:52:28:6f:e3:4d:5d:4b: 9d:f4:da:37:78:fb:81:78:98:f1:cd:6f:37:ba:38:21:f8:58: 2f:c1:77:ca:ba:1f:d1:b4:a9:b6:c6:be:aa:57:47:a9:55:76: 7d:45:83:f7:e1:07:7b:22:bb:02:ad:30:43:05:21:30:f7:28: 14:4c:98:bd:b7:e4:ab:22:06:44:1e:69:39:f9:65:b6:96:a7: 46:2b:28:69:2b:7d:fc:5b:f1:8d:76:c2:40:ce:78:71:62:ff: ee:6e:28:4b:0b:7b:cc:f2:ee:82:a9:63:10:0e:d5:19:96:76: 9c:f4:63:5b:68:af:1a:81:95:46:de:c9:01:81:8b:e9:da:fc: e8:d8:26:89:26:73:2f:76:85:ba:a9:92:1a:05:70:ad:02:d1: 9f:c1:43:2c:51:0f:cc:45:60:8c:f1:9b:55:ad:71:17:40:c0: f9:c8:fc:28:d7:88:26:02:2c:dd:66:d8:a7:9a:48:be:5b:9f: 6a:04:3e:92:d2:59:96:2e:33:84:28:9d:2d:3d:d2:12:6c:cf: c3:1b:ad:7d:88:25:fd:05:02:10:ee:bf:05:39:8b:dd:d5:b8: 61:84:2f:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUwNjAyMjAzNDUwWhcNMjUwNjA5MjAzNDUwWjAYMRYwFAYD VQQDEw02ODNlMGFlYS0xYWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcFozC0hDDTvnbfDYLyl9rhE04UlMTIc72tl0sep9LliHkLdLFGZ6+FUbgcd QDR58Wm1V44FziGmzq+FJYgR3poeNx3sppf4/gwsvmdjQZKRrPLGnwTTQDIyWve0 d01eVRKa+n/nuvvYO4fTEaw/OGurPGPsLc5uGjmjqhNREbU4UD3sujj9S+kQLhVv wuB/FMCdfB3KYtWKCILI33Rl7QDqgGqirlh6XHoYCHYEOFS9+CQuvsnr5VuNYaxs tmPTZseH2WVi3cgPrwYThBM8pCOdv6Pq2Sr2rWUQL9y0II8oTgnLYu1f6Ki9naH4 p+BPu1QMw7Wipwj/d1DMNdpJ3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1JzBq2 uHcxkg1DQ/tmf3PU3JZBMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMLoRsANpUntKEnW81EerWmj+xjWi+Ex8juPlW31Iob+NNXUud9No3 ePuBeJjxzW83ujgh+FgvwXfKuh/RtKm2xr6qV0epVXZ9RYP34Qd7IrsCrTBDBSEw 9ygUTJi9t+SrIgZEHmk5+WW2lqdGKyhpK338W/GNdsJAznhxYv/ubihLC3vM8u6C qWMQDtUZlnac9GNbaK8agZVG3skBgYvp2vzo2CaJJnMvdoW6qZIaBXCtAtGfwUMs UQ/MRWCM8ZtVrXEXQMD5yPwo14gmAizdZtinmki+W59qBD6S0lmWLjOEKJ0tPdIS bM/DG619iCX9BQIQ7r8FOYvd1bhhhC/3 -----END CERTIFICATE-----Generated at Tue Jun 3 23:48:15 2025 by rpki-client