$ rpki-client -vvf rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft File: htoZAOYVDL2c2BWsZ9xTpebTwCc.mft (raw, json) Hash identifier: 2WJghDErOu3fcsxaAhRfnnRyuS8/7L/XVxM9u8uCdqM= Subject key identifier: 55:59:2F:4B:96:57:60:81:97:FE:83:C8:14:B6:1C:A4:2F:E1:FA:2D Authority key identifier: 86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 Certificate issuer: /CN=A911933B/serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft Manifest number: 011B Signing time: Sat 31 May 2025 04:28:18 +0000 Manifest this update: Sat 31 May 2025 04:28:17 +0000 Manifest next update: Sat 07 Jun 2025 04:28:17 +0000 Files and hashes: 1: htoZAOYVDL2c2BWsZ9xTpebTwCc.crl (hash: NsVv5jaLBnaeaTlVELZYlt5gAC2VxTBWz+mFvptyNtQ=) 2: 1B000B60A70A11EE9D90E754C4F9AE02.roa (hash: XRSbm92iiBJ9xxjhhCi5I/tUaB0t9fuY2aP6/h6Ck2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911933B, serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Validity Not Before: May 31 04:28:17 2025 GMT Not After : Jun 7 04:28:17 2025 GMT Subject: CN=683a8561-0d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:11:e8:b3:ec:68:bb:ba:38:2c:82:e4:36:0c: 94:fd:c6:6a:85:df:57:50:af:0c:a6:5e:11:a4:0b: 4b:06:c8:af:26:63:ff:ef:52:39:6c:da:db:0c:e5: 78:18:30:cf:91:89:77:f9:2b:68:94:bd:b6:2d:c3: 4e:92:58:05:e5:ba:26:5f:fc:dd:b4:a2:93:46:96: 49:d2:f8:aa:23:6f:ab:50:54:9f:8a:ca:f8:6c:61: b0:02:20:c9:fb:40:05:45:c5:c9:91:ac:64:bd:b7: 86:5e:ad:b7:57:06:55:76:7f:5f:ca:9e:ac:57:67: 50:ea:35:5d:a5:20:dc:d8:4e:be:51:a8:73:f0:61: 04:d7:4b:7d:41:a2:77:02:f5:03:05:34:40:b9:ed: 7d:b9:95:3a:4c:d3:59:68:05:81:b6:35:fa:ab:f4: 36:59:38:1f:3d:9c:c9:47:6b:ef:60:bc:b4:86:93: f4:76:62:c6:5f:83:a7:6e:8f:1e:99:e0:11:eb:db: e9:d9:79:96:7b:78:4e:ff:20:8a:cd:49:44:30:76: f2:a1:fa:a9:29:8e:80:23:22:46:30:34:0d:df:49: 24:f3:8a:c6:10:e2:67:a5:39:3c:9e:f6:e5:10:9d: 7a:97:d2:23:42:86:da:ab:e7:44:5f:45:bd:54:33: a2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:59:2F:4B:96:57:60:81:97:FE:83:C8:14:B6:1C:A4:2F:E1:FA:2D X509v3 Authority Key Identifier: keyid:86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:de:e2:04:2f:f6:1c:b9:3f:92:76:70:23:e6:36:81:aa:4a: a9:5f:17:3e:36:33:af:74:75:45:71:86:3b:5f:f0:cd:9a:e2: 04:7d:da:94:30:f9:ae:b1:42:43:f1:22:e7:9d:c3:80:0f:7d: d4:83:de:04:90:6c:f1:d0:4d:d7:74:5c:88:5f:b8:58:18:a7: 38:61:58:25:fd:a3:dd:53:0e:57:96:dc:04:54:88:81:56:7d: 74:59:94:11:95:6b:e3:c0:a4:63:ba:a6:5f:e0:47:1f:b2:59: e1:d9:fa:c3:e7:08:bb:db:9d:74:c6:56:38:1c:b3:62:9b:af: 1e:b0:7e:8f:f1:25:88:55:53:4e:52:56:d3:ef:c6:f9:c0:08: be:b6:e7:2f:17:6c:17:cc:e8:22:f4:45:a4:af:7e:a2:fd:d7: 3b:f0:34:5c:61:09:ea:59:94:c5:6a:ed:84:82:6a:54:5a:8a: 9e:15:c3:99:3e:74:a6:72:d5:b5:95:85:12:9e:e6:7e:4d:8f: 89:24:d8:f1:2d:c8:78:5e:1e:21:f6:f3:ec:21:2a:de:75:75: 1e:4c:1b:84:c0:88:fd:fd:33:d5:25:a7:bd:8d:a0:88:6b:fe: d5:a5:2c:b3:b5:f6:fb:19:2b:cd:04:c9:0f:89:b6:05:de:96: e2:ed:0c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzM0IxMTAvBgNVBAUTKDg2REExOTAwRTYxNTBDQkQ5Q0Q4MTVBQzY3REM1M0E1 RTZEM0MwMjcwHhcNMjUwNTMxMDQyODE3WhcNMjUwNjA3MDQyODE3WjAYMRYwFAYD VQQDEw02ODNhODU2MS0wZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBHos+xou7o4LILkNgyU/cZqhd9XUK8Mpl4RpAtLBsivJmP/71I5bNrbDOV4 GDDPkYl3+StolL22LcNOklgF5bomX/zdtKKTRpZJ0viqI2+rUFSfisr4bGGwAiDJ +0AFRcXJkaxkvbeGXq23VwZVdn9fyp6sV2dQ6jVdpSDc2E6+Uahz8GEE10t9QaJ3 AvUDBTRAue19uZU6TNNZaAWBtjX6q/Q2WTgfPZzJR2vvYLy0hpP0dmLGX4Onbo8e meAR69vp2XmWe3hO/yCKzUlEMHbyofqpKY6AIyJGMDQN30kk84rGEOJnpTk8nvbl EJ16l9IjQobaq+dEX0W9VDOiRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVZL0uW V2CBl/6DyBS2HKQv4fotMB8GA1UdIwQYMBaAFIbaGQDmFQy9nNgVrGfcU6Xm08An MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzQi9FOThBMTEzRTky NjQxMUVFOTk0N0RBNUJDNEY5QUUwMi9odG9aQU9ZVkRMMmMyQldzWjl4VHBlYlR3 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h0b1pBT1lWREwyYzJCV3NaOXhUcGViVHdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzQi9FOThBMTEzRTkyNjQxMUVFOTk0N0RBNUJDNEY5QUUwMi9odG9aQU9ZVkRM MmMyQldzWjl4VHBlYlR3Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo3uIEL/YcuT+SdnAj5jaBqkqpXxc+NjOvdHVFcYY7X/DNmuIEfdqU MPmusUJD8SLnncOAD33Ug94EkGzx0E3XdFyIX7hYGKc4YVgl/aPdUw5XltwEVIiB Vn10WZQRlWvjwKRjuqZf4Ecfslnh2frD5wi72510xlY4HLNim68esH6P8SWIVVNO UlbT78b5wAi+tucvF2wXzOgi9EWkr36i/dc78DRcYQnqWZTFau2EgmpUWoqeFcOZ PnSmctW1lYUSnuZ+TY+JJNjxLch4Xh4h9vPsISredXUeTBuEwIj9/TPVJae9jaCI a/7VpSyztfb7GSvNBMkPibYF3pbi7Qxf -----END CERTIFICATE-----Generated at Sat May 31 16:31:28 2025 by rpki-client