$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: zjGC4cbqHQq6OqnCtBQwYDKzHlh/m1xfnT+tR6Urwhc= Subject key identifier: 59:D0:05:B2:95:A3:21:B8:92:29:A4:29:E1:E3:9B:A4:A4:EB:56:B2 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 17E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 17C9 Signing time: Fri 30 May 2025 16:45:37 +0000 Manifest this update: Fri 30 May 2025 16:45:36 +0000 Manifest next update: Fri 06 Jun 2025 16:45:36 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: 28/eZRB1pCFvkkZxPKfF5AMqHoTP3v/g8cLIeODd9b8=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6113 (0x17e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: May 30 16:45:36 2025 GMT Not After : Jun 6 16:45:36 2025 GMT Subject: CN=6839e0b1-538e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c2:85:93:b7:c6:b5:32:3b:7e:82:f9:2c:80: f3:9d:c8:c9:58:c0:54:0c:63:65:0a:1e:76:ff:e1: 97:56:d5:39:fd:5f:9b:b3:64:bf:2e:ba:67:3e:0c: 2a:79:7f:d9:de:e5:70:4b:63:27:61:09:2b:72:9f: 1b:5c:19:73:55:5b:d3:d0:83:a5:70:d7:b5:05:40: 8a:1d:e2:d8:37:5d:09:d9:d3:6b:df:b0:0d:9b:28: c0:56:6a:78:17:ae:da:58:e3:f8:c0:09:b3:16:da: 3e:7d:94:d5:cd:d1:7d:e7:07:04:c0:fd:58:a5:43: dd:c9:a6:60:ea:47:37:5a:5a:d9:19:39:5f:e1:0c: 51:01:56:00:d0:5d:ff:ab:18:67:5c:99:8f:a2:b6: f3:c4:e6:86:85:3b:7d:dd:0b:41:d5:e1:ed:46:42: 9b:a8:b4:35:c9:f3:3a:b1:7b:d7:7b:fe:ec:ad:bb: 5b:fc:d5:8b:34:df:3e:16:23:ca:05:68:80:cf:b3: 6a:d9:c8:f1:59:ed:90:b6:75:ba:23:08:6d:46:03: c5:86:7c:60:f8:9d:64:d4:24:74:0b:71:e7:aa:db: 95:27:ad:cc:fb:c2:df:c4:0b:c2:89:7c:a8:31:28: 66:15:94:8d:84:9d:be:c3:b7:06:3a:4b:24:f3:71: e6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D0:05:B2:95:A3:21:B8:92:29:A4:29:E1:E3:9B:A4:A4:EB:56:B2 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f5:04:31:ba:4b:e0:4e:a2:06:13:b8:29:2b:08:9c:a0:9b: 0f:72:8a:08:db:9b:4a:1a:39:e0:3e:79:46:58:e7:bf:04:d1: d0:0c:19:d7:8e:c6:c4:d9:90:a3:59:e1:3c:61:ff:d0:79:01: 2c:d9:60:0d:63:b4:38:5c:5a:9f:10:cd:2e:4d:36:b9:43:ab: 1c:92:b0:a5:da:05:3f:19:5f:58:08:e0:71:c1:28:2c:c3:ea: 47:40:82:4c:27:c1:16:36:1c:21:c7:ca:2b:c3:59:8c:dd:c4: 07:a2:b7:d8:22:e6:6f:3c:e7:e4:9e:01:c1:ca:e6:9e:3b:b4: 69:ee:5d:3f:13:cb:c4:c9:b1:23:7d:b1:74:4f:db:a6:80:90: 3d:5b:ce:3c:e3:81:26:61:ed:d4:13:b4:7d:e2:f4:95:5b:f2: 8b:3e:f7:2d:d2:56:68:68:45:ca:fe:c7:96:b4:73:6f:2c:ab: 37:a1:7a:3a:36:70:d1:6b:cf:66:62:4c:8b:9d:43:77:1e:21: 13:ab:f4:20:a9:58:24:05:1a:4d:96:2c:aa:b7:75:10:95:f3: 29:15:c8:a8:32:bd:0d:71:fc:04:6c:81:6f:61:26:8a:8e:04: df:25:fc:17:13:64:4d:17:bd:5d:7c:80:d9:99:28:a4:db:ac: d7:6f:f3:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUwNTMwMTY0NTM2WhcNMjUwNjA2MTY0NTM2WjAYMRYwFAYD VQQDEw02ODM5ZTBiMS01MzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MKFk7fGtTI7foL5LIDzncjJWMBUDGNlCh52/+GXVtU5/V+bs2S/LrpnPgwq eX/Z3uVwS2MnYQkrcp8bXBlzVVvT0IOlcNe1BUCKHeLYN10J2dNr37ANmyjAVmp4 F67aWOP4wAmzFto+fZTVzdF95wcEwP1YpUPdyaZg6kc3WlrZGTlf4QxRAVYA0F3/ qxhnXJmPorbzxOaGhTt93QtB1eHtRkKbqLQ1yfM6sXvXe/7srbtb/NWLNN8+FiPK BWiAz7Nq2cjxWe2QtnW6IwhtRgPFhnxg+J1k1CR0C3HnqtuVJ63M+8LfxAvCiXyo MShmFZSNhJ2+w7cGOksk83Hm+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnQBbKV oyG4kimkKeHjm6Sk61ayMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR9QQxukvgTqIGE7gpKwicoJsPcooI25tKGjngPnlGWOe/BNHQDBnX jsbE2ZCjWeE8Yf/QeQEs2WANY7Q4XFqfEM0uTTa5Q6sckrCl2gU/GV9YCOBxwSgs w+pHQIJMJ8EWNhwhx8orw1mM3cQHorfYIuZvPOfkngHByuaeO7Rp7l0/E8vEybEj fbF0T9umgJA9W84844EmYe3UE7R94vSVW/KLPvct0lZoaEXK/seWtHNvLKs3oXo6 NnDRa89mYkyLnUN3HiETq/QgqVgkBRpNliyqt3UQlfMpFcioMr0NcfwEbIFvYSaK jgTfJfwXE2RNF71dfIDZmSik26zXb/PP -----END CERTIFICATE-----Generated at Sat May 31 16:28:49 2025 by rpki-client