$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft File: HteCvmLXEBdmiyijJonkcO2iAfg.mft (raw, json) Hash identifier: b6oMGbF35szsx+7L9j0oPEQerQ1HbyGMny+QyS3viHI= Subject key identifier: 64:98:DB:F1:1D:D8:3F:9A:3F:EB:BD:76:A6:79:98:D6:B3:94:ED:B9 Authority key identifier: 1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 Certificate issuer: /CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft Manifest number: 0703 Signing time: Fri 30 May 2025 22:08:36 +0000 Manifest this update: Fri 30 May 2025 22:08:36 +0000 Manifest next update: Fri 06 Jun 2025 22:08:36 +0000 Files and hashes: 1: HteCvmLXEBdmiyijJonkcO2iAfg.crl (hash: h5VEkigO2i+T9erP9Yf0lxVrBZUaturVkL3YRKnr6N8=) 2: D41A1814442211EBBF7D9D65C4F9AE02.roa (hash: hsjXTWdh2kRzdeWF4Q+QGn60PDeZ8kmbCtOiIhRsRRM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1257, serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Validity Not Before: May 30 22:08:36 2025 GMT Not After : Jun 6 22:08:36 2025 GMT Subject: CN=683a2c64-bfab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:cc:a3:7c:68:5f:6f:bb:eb:9f:ee:ee:a7: 2c:6e:84:d7:1e:7f:5f:66:fe:14:bf:15:b0:28:87: df:10:9f:e3:4b:e8:b8:fc:77:df:0f:15:3e:df:34: 75:3d:1e:94:7d:3a:c5:90:e9:9d:51:eb:22:5e:4a: 83:19:14:c1:12:1f:9d:92:be:21:6b:67:ce:0e:d9: 4a:86:3f:38:60:7a:1a:a2:f4:2b:50:13:f5:de:b7: 2c:b8:05:34:07:a2:bb:e9:54:14:b2:f3:5c:e5:9a: ab:20:9e:7d:94:30:80:d4:4c:9d:2f:71:ed:61:5a: 6f:97:ab:5e:1a:8b:7f:5f:dc:43:c9:7c:0b:33:36: 01:50:3a:74:52:55:08:44:c4:6c:5e:8a:6c:ee:19: 65:93:c1:4a:7c:ce:c1:a8:28:10:1e:39:81:db:02: 09:94:1e:8e:99:09:2c:50:81:8a:18:fe:d7:8c:5e: 34:6b:39:c5:ee:24:8c:cb:a8:6d:54:07:f1:2b:c6: a3:40:e4:55:45:45:c1:59:3d:d6:d6:19:c6:b5:22: df:66:d8:12:0f:b7:25:0f:eb:02:e3:dd:32:54:7a: 5b:63:32:6f:52:c4:e4:9c:16:0b:eb:82:a0:83:ca: c9:59:00:5b:3f:c0:a5:f7:12:e2:ff:3c:53:c7:83: d6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:98:DB:F1:1D:D8:3F:9A:3F:EB:BD:76:A6:79:98:D6:B3:94:ED:B9 X509v3 Authority Key Identifier: keyid:1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ca:93:35:54:2b:03:35:91:ff:10:d8:48:2f:d3:12:24:33: af:e9:be:ab:24:ba:98:5d:78:25:4f:29:f3:97:1e:cd:76:f0: 60:b4:45:3f:f7:fa:1c:a3:d1:46:1c:af:75:b2:30:3d:fd:0c: 98:dc:2c:aa:78:60:79:51:43:83:72:6e:51:5d:b3:b8:2f:84: 25:30:96:71:2a:7a:f2:a6:19:dc:00:53:47:4f:f0:3c:3c:40: f3:af:25:69:8a:78:02:e6:6f:b6:70:93:60:35:61:ae:f2:f2: 8b:fe:96:80:e7:f1:40:58:28:51:21:72:b3:fe:4d:f7:f5:4a: f8:a5:1f:9a:13:07:ce:0e:21:e8:62:dd:d5:8f:0f:ba:e9:3e: 82:e7:3e:55:60:c4:e7:c0:af:31:71:bd:80:ff:fc:16:27:64: f5:5e:62:7a:a9:bd:b0:14:cb:29:d3:e6:3c:6c:96:b2:f7:55: 3e:74:b8:e0:e4:4f:7e:b8:c9:f7:04:05:06:84:f1:58:15:f8: bf:46:64:7b:2f:b1:d7:c1:7a:41:3d:ae:1d:b8:ba:74:ee:9f: 0a:ad:23:cb:ca:9a:7f:3b:99:a7:a9:38:e5:cc:24:f0:5d:2d: 86:73:62:26:c7:d4:29:ae:f7:7e:3c:e1:fe:2a:75:ff:1f:d5: e8:fa:3f:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyNTcxMTAvBgNVBAUTKDFFRDc4MkJFNjJENzEwMTc2NjhCMjhBMzI2ODlFNDcw RURBMjAxRjgwHhcNMjUwNTMwMjIwODM2WhcNMjUwNjA2MjIwODM2WjAYMRYwFAYD VQQDEw02ODNhMmM2NC1iZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkrMo3xoX2+765/u7qcsboTXHn9fZv4UvxWwKIffEJ/jS+i4/HffDxU+3zR1 PR6UfTrFkOmdUesiXkqDGRTBEh+dkr4ha2fODtlKhj84YHoaovQrUBP13rcsuAU0 B6K76VQUsvNc5ZqrIJ59lDCA1EydL3HtYVpvl6teGot/X9xDyXwLMzYBUDp0UlUI RMRsXops7hllk8FKfM7BqCgQHjmB2wIJlB6OmQksUIGKGP7XjF40aznF7iSMy6ht VAfxK8ajQORVRUXBWT3W1hnGtSLfZtgSD7clD+sC490yVHpbYzJvUsTknBYL64Kg g8rJWQBbP8Cl9xLi/zxTx4PWbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSY2/Ed 2D+aP+u9dqZ5mNazlO25MB8GA1UdIwQYMBaAFB7Xgr5i1xAXZosooyaJ5HDtogH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTI1Ny9BOTBGMUVFNjQ0 MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVCZG1peWlqSm9ua2NPMmlB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZUN2bUxYRUJkbWl5aWpKb25rY08yaUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTI1Ny9BOTBGMUVFNjQ0MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVC ZG1peWlqSm9ua2NPMmlBZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZypM1VCsDNZH/ENhIL9MSJDOv6b6rJLqYXXglTynzlx7NdvBgtEU/ 9/oco9FGHK91sjA9/QyY3CyqeGB5UUODcm5RXbO4L4QlMJZxKnryphncAFNHT/A8 PEDzryVpingC5m+2cJNgNWGu8vKL/paA5/FAWChRIXKz/k339Ur4pR+aEwfODiHo Yt3Vjw+66T6C5z5VYMTnwK8xcb2A//wWJ2T1XmJ6qb2wFMsp0+Y8bJay91U+dLjg 5E9+uMn3BAUGhPFYFfi/RmR7L7HXwXpBPa4duLp07p8KrSPLypp/O5mnqTjlzCTw XS2Gc2Imx9Qprvd+POH+KnX/H9Xo+j95 -----END CERTIFICATE-----Generated at Sat May 31 17:26:19 2025 by rpki-client