$ rpki-client -vvf rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft File: H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft (raw, json) Hash identifier: WUKbjKszNRPOG/+GhLJ9Ic9VjVmpdpryHcdbZR8WmxE= Subject key identifier: F9:3A:4F:8F:7C:15:7E:62:85:A0:DB:CB:BB:B1:CB:24:6F:C1:9B:EC Authority key identifier: 1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB Certificate issuer: /CN=A912708C/serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Certificate serial: 05BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft Manifest number: 05B8 Signing time: Fri 30 May 2025 23:19:21 +0000 Manifest this update: Fri 30 May 2025 23:19:20 +0000 Manifest next update: Fri 06 Jun 2025 23:19:20 +0000 Files and hashes: 1: H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl (hash: aHQ2/KyDDvuwoO/EOmH+hU1NfghLFC1WDoNaaGM39MU=) 2: 8AA59866C55511EBA7DB557EC4F9AE02.roa (hash: E/ZSFb0w8l7IP55HohiEiKQ/xTqSgiZ1I0q7vfGX9Y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1469 (0x5bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912708C, serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Validity Not Before: May 30 23:19:20 2025 GMT Not After : Jun 6 23:19:20 2025 GMT Subject: CN=683a3cf9-9d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:78:4b:e0:5d:8d:a8:57:d9:36:8a:c2:a1:a7: 03:85:f7:66:2f:64:de:2b:1e:b9:71:32:e3:3a:4a: 92:05:a6:c4:75:3e:ea:09:a8:9c:1b:66:40:9e:62: 8e:79:af:05:84:5f:ce:2a:3a:59:47:e0:c2:89:d4: 27:d7:7b:32:bf:1a:2a:a6:8e:04:8d:30:68:95:be: b3:0a:7f:a6:65:81:0b:f7:9d:35:2c:7c:6d:0f:79: 8a:fb:4f:19:a5:77:b6:de:9a:6a:7e:24:f9:ef:13: 73:08:dd:4b:02:f9:d1:6e:4f:3d:19:29:c4:81:da: fe:8f:0e:80:ad:f9:dd:17:a1:7f:17:06:07:72:5e: 13:b2:13:21:db:19:0d:2c:82:f2:a9:72:cb:f8:cd: 27:71:5e:c5:0d:6d:7f:10:d7:54:ce:b0:fb:5d:0d: a7:4c:dc:b6:a4:7a:39:a8:c2:08:e7:50:8d:64:1c: 55:ab:90:0e:d1:68:0c:0a:6c:1a:21:0e:23:ed:c5: 23:96:3f:b5:2d:4c:6a:2f:0f:e9:e6:a5:ca:65:02: 1b:95:10:50:cb:eb:74:1f:d3:ce:da:1f:e5:17:1d: e3:94:82:68:5e:47:99:fd:a9:e1:6a:59:5a:20:0b: 36:31:07:fd:12:ab:80:98:56:e4:5b:c4:ce:77:a0: e8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3A:4F:8F:7C:15:7E:62:85:A0:DB:CB:BB:B1:CB:24:6F:C1:9B:EC X509v3 Authority Key Identifier: keyid:1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:fc:53:34:7c:59:0f:c5:48:c6:98:2e:b3:ac:2b:32:cb:a5: fe:a0:c2:b2:4c:c4:e6:1f:6c:71:a4:af:90:d2:a7:a9:c3:6c: 53:6c:4a:2c:72:18:f5:78:04:29:fd:63:04:82:1f:38:d0:a2: c1:89:f9:78:ec:24:2d:c0:e1:7b:63:60:7e:10:ed:3e:78:1f: 2e:e1:56:53:60:7e:fb:ae:be:9f:29:e9:39:d8:4f:8a:c4:ff: 1b:a2:3b:2e:e9:b2:1c:28:81:0a:b6:01:c4:44:30:95:64:89: fe:bf:7b:76:78:a4:ac:c8:b9:d5:61:f6:c7:4e:5b:55:53:ed: 7b:7f:ca:f3:87:da:9b:65:65:9e:c3:03:ab:e3:1d:62:88:04: a8:57:59:fa:5b:5e:7b:d3:61:ed:12:c7:29:12:ca:e6:cd:5a: d3:7b:70:88:95:b2:f9:cc:8b:b5:78:e3:1c:a2:3e:ba:2c:27: b8:99:18:0f:51:11:f6:52:ad:c0:70:ed:fc:b7:fe:e8:ef:2a: 73:72:21:cf:ae:c7:21:07:ad:20:c1:c8:b7:d3:b7:09:44:49: 71:80:38:b9:82:9f:12:9c:f4:e2:b2:3f:76:8b:f9:32:f6:13: 76:68:0b:96:b3:5c:35:da:f8:94:d6:4a:12:cd:c7:c5:06:ed: f8:61:ff:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcwOEMxMTAvBgNVBAUTKDFGRDVBMTgyRDU5MzM0NzU3MEYyRDkxODZEMjQ4NEM5 MDk1QzVGRkIwHhcNMjUwNTMwMjMxOTIwWhcNMjUwNjA2MjMxOTIwWjAYMRYwFAYD VQQDEw02ODNhM2NmOS05ZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnhL4F2NqFfZNorCoacDhfdmL2TeKx65cTLjOkqSBabEdT7qCaicG2ZAnmKO ea8FhF/OKjpZR+DCidQn13syvxoqpo4EjTBolb6zCn+mZYEL9501LHxtD3mK+08Z pXe23ppqfiT57xNzCN1LAvnRbk89GSnEgdr+jw6ArfndF6F/FwYHcl4TshMh2xkN LILyqXLL+M0ncV7FDW1/ENdUzrD7XQ2nTNy2pHo5qMII51CNZBxVq5AO0WgMCmwa IQ4j7cUjlj+1LUxqLw/p5qXKZQIblRBQy+t0H9PO2h/lFx3jlIJoXkeZ/anhalla IAs2MQf9EquAmFbkW8TOd6DoNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPk6T498 FX5ihaDby7uxyyRvwZvsMB8GA1UdIwQYMBaAFB/VoYLVkzR1cPLZGG0khMkJXF/7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzA4Qy8xNjgwMzRGRUM1 NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5IVnc4dGtZYlNTRXlRbGNY X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5V2hndFdUTkhWdzh0a1liU1NFeVFsY1hfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzA4Qy8xNjgwMzRGRUM1NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5I Vnc4dGtZYlNTRXlRbGNYX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI/FM0fFkPxUjGmC6zrCsyy6X+oMKyTMTmH2xxpK+Q0qepw2xTbEos chj1eAQp/WMEgh840KLBifl47CQtwOF7Y2B+EO0+eB8u4VZTYH77rr6fKek52E+K xP8bojsu6bIcKIEKtgHERDCVZIn+v3t2eKSsyLnVYfbHTltVU+17f8rzh9qbZWWe wwOr4x1iiASoV1n6W15702HtEscpEsrmzVrTe3CIlbL5zIu1eOMcoj66LCe4mRgP URH2Uq3AcO38t/7o7ypzciHPrschB60gwci307cJRElxgDi5gp8SnPTisj92i/ky 9hN2aAuWs1w12viU1koSzcfFBu34Yf8B -----END CERTIFICATE-----Generated at Sat May 31 16:45:49 2025 by rpki-client