$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: En3byYNZOisOzn40zwDYfDFJ27bhSsfGHow+olEYrwY= Subject key identifier: 91:6A:41:41:CC:F4:BC:EE:BD:A7:F5:55:D2:C3:6B:44:1A:F7:E4:13 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 0669 Signing time: Sat 31 May 2025 22:29:27 +0000 Manifest this update: Sat 31 May 2025 22:29:27 +0000 Manifest next update: Sat 07 Jun 2025 22:29:27 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: nQUF/VC5UTuK6a5JZIOIpXbGeBy3LyAG8SrMxjPedjk=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: bzwAo1vTwZtUvpqV0SE31TfJe7tyOs8AEfKtkNJnl48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: May 31 22:29:27 2025 GMT Not After : Jun 7 22:29:27 2025 GMT Subject: CN=683b82c7-8ede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:10:6c:64:90:36:5e:df:ce:45:7a:1e:bd:1e: 3a:ce:29:63:5b:dd:76:ee:e0:1e:fd:87:12:db:d6: 7d:25:c9:4f:5e:01:20:d8:11:80:85:ed:45:83:3e: 1a:9d:b5:b5:b7:a7:e4:71:b9:49:30:35:8b:d3:9e: 6e:c2:1a:29:c1:4c:cf:f4:80:bf:5f:0c:8c:3f:20: 18:1a:21:af:b5:e5:fc:9b:c6:00:27:8e:6e:7a:fd: 3d:81:53:d0:43:93:6d:8e:78:d8:64:11:c3:c6:18: 3e:61:40:d5:67:ae:f2:b0:6b:ea:ea:f6:31:f4:45: 64:ff:80:b4:f7:89:8e:99:0a:e4:e8:d3:24:6d:33: 45:4d:bb:ed:e4:b3:b5:69:f8:ee:f4:86:ca:16:1c: 28:52:e4:4a:44:fd:ba:e5:d4:f8:93:f1:5a:f5:d1: 98:44:18:b7:b4:04:14:a7:a1:f3:82:29:a1:bc:a1: ec:88:eb:6f:47:8a:09:a8:fa:3b:18:5d:2c:ff:a7: 75:d6:0c:e1:d1:3f:51:9b:71:b8:6a:6f:5d:45:4f: 57:bf:d9:a9:0b:70:72:c4:0e:29:bd:4c:45:eb:62: 73:d3:eb:e7:3f:ea:f0:49:ae:6b:b0:bc:ef:b9:cc: 32:21:1f:a2:51:58:8d:e0:f1:9c:18:3f:b9:64:a5: 5d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6A:41:41:CC:F4:BC:EE:BD:A7:F5:55:D2:C3:6B:44:1A:F7:E4:13 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:9d:25:7c:ad:09:7e:1f:96:9b:c5:00:49:5a:3c:d6:dd:ec: 11:bb:c3:61:9e:5f:33:ae:92:f5:37:bd:48:2c:dc:c7:a4:eb: 8d:f7:a3:5e:97:af:e0:aa:03:28:64:47:b1:e8:32:34:74:20: 85:2f:44:d3:85:8e:a3:d7:c3:3d:59:1d:66:90:0d:51:c0:72: a7:e6:56:0d:ad:61:2f:d6:e4:20:96:d1:15:71:4c:f1:23:dd: ae:25:9d:3a:17:71:ec:50:c3:93:d2:75:67:36:de:50:5f:4c: b4:5e:01:b3:0a:fb:17:d0:18:07:18:52:29:f2:50:d8:cf:b9: 66:4f:6c:1d:5d:6f:3e:18:30:a4:69:44:c4:2b:c4:42:e7:9e: 29:bf:b8:1c:82:a3:2d:4e:7f:26:80:34:b9:5e:9c:94:77:81: 3f:c6:1d:2b:53:f9:de:af:88:b0:99:1f:23:d4:8c:73:47:fb: 97:99:04:3d:49:f2:37:79:e0:a6:e4:52:e9:f5:11:cf:ef:1c: 21:72:ac:e5:a5:28:87:cb:65:e4:b6:80:28:19:b8:0f:98:fe: c2:04:30:22:3c:bf:fc:e0:af:4c:fd:25:bd:22:b3:f5:cd:e7: 33:fe:fe:01:a5:25:c9:80:05:13:6d:f2:de:46:56:99:9f:df: 2b:37:a4:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjUwNTMxMjIyOTI3WhcNMjUwNjA3MjIyOTI3WjAYMRYwFAYD VQQDEw02ODNiODJjNy04ZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BBsZJA2Xt/ORXoevR46ziljW9127uAe/YcS29Z9JclPXgEg2BGAhe1Fgz4a nbW1t6fkcblJMDWL055uwhopwUzP9IC/XwyMPyAYGiGvteX8m8YAJ45uev09gVPQ Q5NtjnjYZBHDxhg+YUDVZ67ysGvq6vYx9EVk/4C094mOmQrk6NMkbTNFTbvt5LO1 afju9IbKFhwoUuRKRP265dT4k/Fa9dGYRBi3tAQUp6HzgimhvKHsiOtvR4oJqPo7 GF0s/6d11gzh0T9Rm3G4am9dRU9Xv9mpC3ByxA4pvUxF62Jz0+vnP+rwSa5rsLzv ucwyIR+iUViN4PGcGD+5ZKVdiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFqQUHM 9Lzuvaf1VdLDa0Qa9+QTMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFnSV8rQl+H5abxQBJWjzW3ewRu8Nhnl8zrpL1N71ILNzHpOuN96Ne l6/gqgMoZEex6DI0dCCFL0TThY6j18M9WR1mkA1RwHKn5lYNrWEv1uQgltEVcUzx I92uJZ06F3HsUMOT0nVnNt5QX0y0XgGzCvsX0BgHGFIp8lDYz7lmT2wdXW8+GDCk aUTEK8RC554pv7gcgqMtTn8mgDS5XpyUd4E/xh0rU/ner4iwmR8j1IxzR/uXmQQ9 SfI3eeCm5FLp9RHP7xwhcqzlpSiHy2XktoAoGbgPmP7CBDAiPL/84K9M/SW9IrP1 zecz/v4BpSXJgAUTbfLeRlaZn98rN6R/ -----END CERTIFICATE-----Generated at Mon Jun 2 20:04:19 2025 by rpki-client