$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: DYCO2LPFSrst17kVrPU4d963E4wncJ/QAf+OzE5r3bA= Subject key identifier: F0:92:EC:FC:D5:E4:EB:15:68:A4:CB:4E:C8:00:B9:C6:02:89:46:AA Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 02B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 02A0 Signing time: Sat 31 May 2025 01:47:39 +0000 Manifest this update: Sat 31 May 2025 01:47:38 +0000 Manifest next update: Sat 07 Jun 2025 01:47:38 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: QFG7RDdT2gavmdmGcrfWOICF8OJSnFMLfn+Xzbsuap0=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: JpDBusAldNWd+IJVkNhhqJJDrViCPn/caif2F0IdJAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: May 31 01:47:38 2025 GMT Not After : Jun 7 01:47:38 2025 GMT Subject: CN=683a5fbb-2317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ce:74:8f:5f:1d:61:03:3c:1a:85:0f:f8:b0: dc:73:f7:ff:fe:65:d1:91:fb:de:45:d9:84:02:18: d1:3a:7c:1c:d9:56:74:0d:9b:4e:54:72:80:e4:a0: 36:60:a2:cb:b5:04:50:20:b3:12:72:eb:be:d3:96: bc:32:83:33:40:87:a0:0a:14:00:dc:a6:47:3e:49: b3:87:0d:a5:e7:af:0c:d6:07:7d:f3:f0:d8:38:de: 11:bd:7f:7d:d4:8f:25:92:5d:25:58:0a:46:f8:00: 77:c2:64:21:f1:23:2c:d7:28:5f:42:01:65:2c:42: f1:48:9e:99:33:70:9a:f7:3c:8b:f7:75:25:d6:8b: cf:20:71:62:66:12:a5:02:95:c5:f6:91:35:a4:9f: bc:f9:bd:bd:91:26:65:b6:52:8e:70:5e:94:4d:86: 12:fd:b1:02:40:9b:3e:09:c4:4d:4f:0c:1e:59:d5: c5:d9:45:81:2a:52:c6:5b:e9:9c:e7:37:b6:99:d4: 45:19:11:27:e5:06:02:52:5c:40:85:72:4f:da:61: 8b:c0:de:7c:73:39:56:f3:9c:51:6e:79:41:c0:bf: 95:c1:33:b3:8a:20:1a:66:bc:89:5e:e2:e3:b9:2e: cc:5b:ec:f8:cb:8f:b8:9a:df:16:70:4f:15:f7:b3: 70:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:92:EC:FC:D5:E4:EB:15:68:A4:CB:4E:C8:00:B9:C6:02:89:46:AA X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:4f:cf:ef:be:60:c4:1e:eb:79:3c:55:1c:49:a1:7d:75:a0: 86:78:90:02:26:45:6f:70:59:61:61:b7:82:9f:fe:b7:da:01: 7b:48:fb:c1:42:cd:9c:05:f9:ce:eb:61:60:e8:94:b2:da:a1: b3:b6:bb:4e:ba:4d:2d:c4:ce:29:33:cd:70:f0:a2:d0:33:e0: 37:1e:d5:03:89:a5:27:2e:34:92:a0:17:0b:c3:f2:45:2d:95: ff:c0:b9:9f:c0:a5:b2:3c:30:8b:78:0a:4a:d7:0e:49:5c:cf: 14:98:87:a7:a3:1b:bb:86:a5:c8:98:73:24:7e:49:dc:3f:87: bd:28:d9:d5:56:52:19:36:f2:c4:c5:d2:14:0c:05:bf:97:fc: a2:f3:0e:74:19:58:c3:36:50:b7:d5:1e:3b:b2:5f:6e:6c:ab: 5a:b0:02:ef:c4:de:27:9c:cc:2d:42:80:a2:13:4b:4a:e9:1f: 03:16:ae:8e:37:08:60:c1:98:94:41:2c:2c:4f:2d:08:0a:c5: 2d:6f:d4:12:fc:00:4e:e3:e2:4a:ad:7b:68:45:6b:38:ac:91: 2e:dd:ee:93:17:df:be:10:db:6c:c7:b8:c4:32:8b:a2:01:67: e7:92:3d:61:75:dc:ca:c5:2f:59:5b:0a:27:f3:ae:e2:cb:8c: b1:e0:6f:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUwNTMxMDE0NzM4WhcNMjUwNjA3MDE0NzM4WjAYMRYwFAYD VQQDEw02ODNhNWZiYi0yMzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1s50j18dYQM8GoUP+LDcc/f//mXRkfveRdmEAhjROnwc2VZ0DZtOVHKA5KA2 YKLLtQRQILMScuu+05a8MoMzQIegChQA3KZHPkmzhw2l568M1gd98/DYON4RvX99 1I8lkl0lWApG+AB3wmQh8SMs1yhfQgFlLELxSJ6ZM3Ca9zyL93Ul1ovPIHFiZhKl ApXF9pE1pJ+8+b29kSZltlKOcF6UTYYS/bECQJs+CcRNTwweWdXF2UWBKlLGW+mc 5ze2mdRFGREn5QYCUlxAhXJP2mGLwN58czlW85xRbnlBwL+VwTOziiAaZryJXuLj uS7MW+z4y4+4mt8WcE8V97NwVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCS7PzV 5OsVaKTLTsgAucYCiUaqMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQT8/vvmDEHut5PFUcSaF9daCGeJACJkVvcFlhYbeCn/632gF7SPvB Qs2cBfnO62Fg6JSy2qGztrtOuk0txM4pM81w8KLQM+A3HtUDiaUnLjSSoBcLw/JF LZX/wLmfwKWyPDCLeApK1w5JXM8UmIenoxu7hqXImHMkfkncP4e9KNnVVlIZNvLE xdIUDAW/l/yi8w50GVjDNlC31R47sl9ubKtasALvxN4nnMwtQoCiE0tK6R8DFq6O NwhgwZiUQSwsTy0ICsUtb9QS/ABO4+JKrXtoRWs4rJEu3e6TF9++ENtsx7jEMoui AWfnkj1hddzKxS9ZWwon867iy4yx4G88 -----END CERTIFICATE-----Generated at Sat May 31 16:00:16 2025 by rpki-client