$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: IULYccrDXKRMU9FUTNXey20rxnujiK+9x9Q1BDM10zs= Subject key identifier: 5F:64:DA:F0:80:45:64:F1:C1:46:12:B1:58:D4:41:D4:0C:9C:4F:FE Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 0362 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 0349 Signing time: Sat 31 May 2025 01:16:17 +0000 Manifest this update: Sat 31 May 2025 01:16:17 +0000 Manifest next update: Sat 07 Jun 2025 01:16:17 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: egD7enr85YHzTa4S51VhaznEFg8XZ+4p7kXHAFHKV4o=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: UBiYNqcmtBfIzuh2rKChQRqBKv4o6kiL3PCKwJHHiWM=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: 5vOwA9yYve8Rd0veqkKYknGLc6ONCvBt3X45gfOUijw=) 4: 2A616414808A11EF813A8343C4F9AE02.roa (hash: SPcUKAYBAtziUJsb1+HLmMDC9dz+I+2POCJimexdaR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Validity Not Before: May 31 01:16:17 2025 GMT Not After : Jun 7 01:16:17 2025 GMT Subject: CN=683a5861-44ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f1:52:f3:68:dc:d9:bc:60:7a:e6:3f:70:e5: 66:36:7f:3c:13:14:ac:e3:90:c3:a7:0d:96:c6:cc: d9:80:04:ef:95:3e:b6:ec:84:a8:0b:68:92:ce:c3: 33:34:bb:b5:76:8a:f6:9b:ed:47:25:e0:2d:68:4c: c4:09:aa:45:1d:fa:2c:fb:74:5e:6a:f4:d3:41:07: 9e:3b:7c:84:90:19:dc:74:13:de:74:a3:f1:1f:c3: 33:cb:f0:ca:e2:79:79:ce:d6:c5:94:1f:6f:ee:38: 94:0a:4e:73:bf:32:5b:82:50:e4:a4:7b:44:7e:da: 9c:80:17:3d:56:54:8f:11:96:e9:92:99:5a:82:29: 90:26:30:b8:ec:f9:e0:d1:5d:4a:06:ae:6c:50:48: ad:3d:4f:45:49:c2:3b:82:68:01:3d:d1:7b:bf:91: e9:29:ed:bd:65:b8:ce:0e:d2:43:49:4b:6a:7a:ce: 6e:30:68:03:04:4f:11:5e:94:73:3e:42:bc:05:61: d6:c2:34:6d:71:50:c0:cc:92:2b:2c:f5:4b:24:5b: 36:f0:00:25:c7:51:b4:27:33:21:18:64:0f:04:6d: ea:24:41:cc:10:90:7d:8b:21:de:c8:61:ad:4d:56: a1:4a:a6:c6:e1:12:44:ff:b8:cc:81:39:ca:4f:44: c4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:64:DA:F0:80:45:64:F1:C1:46:12:B1:58:D4:41:D4:0C:9C:4F:FE X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:95:ad:c0:5c:e7:7e:24:e2:50:9a:0a:ca:d4:69:68:47:c7: 7d:88:8b:08:b0:fe:0e:db:3c:ab:ae:b9:62:a4:59:cb:60:02: b2:2f:2e:1c:62:84:15:92:f2:44:c2:e2:2b:3a:62:12:ba:a2: 70:ed:e2:3e:6f:b4:1f:7b:a1:4a:d5:e4:53:3a:7d:91:f2:e2: 6a:92:0e:c4:2f:8f:eb:8a:da:45:77:65:e5:db:12:49:7a:0d: ee:9b:0e:81:79:7e:d0:4d:4e:77:91:3e:29:9c:7a:11:40:0c: 33:f6:91:f6:80:37:93:5c:d2:da:d9:9f:d8:27:49:d3:3b:64: 8b:2e:b2:e0:a2:22:e1:d4:e1:2e:aa:33:a2:bb:45:20:0d:ac: 9f:2a:26:4e:dc:17:53:ed:f9:0c:f8:09:90:c2:0f:a6:87:0e: f8:42:e8:80:70:1d:5d:c0:99:4f:53:a9:95:49:42:fe:7f:39: 10:a7:0b:4d:09:86:4c:ee:8d:2d:12:ee:72:ef:0f:d9:63:1f: 6a:c5:71:42:9b:d7:4f:65:30:64:50:dc:55:74:2d:cd:be:0e: 60:1c:0c:8c:ae:2a:c9:d3:60:f3:b8:03:a3:85:f4:55:ad:c3: 3c:c0:b2:8a:48:ce:d9:09:93:88:7a:fb:8b:c5:b4:b7:ea:0f: b4:5b:dc:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjUwNTMxMDExNjE3WhcNMjUwNjA3MDExNjE3WjAYMRYwFAYD VQQDEw02ODNhNTg2MS00NGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/FS82jc2bxgeuY/cOVmNn88ExSs45DDpw2WxszZgATvlT627ISoC2iSzsMz NLu1dor2m+1HJeAtaEzECapFHfos+3ReavTTQQeeO3yEkBncdBPedKPxH8Mzy/DK 4nl5ztbFlB9v7jiUCk5zvzJbglDkpHtEftqcgBc9VlSPEZbpkplagimQJjC47Png 0V1KBq5sUEitPU9FScI7gmgBPdF7v5HpKe29ZbjODtJDSUtqes5uMGgDBE8RXpRz PkK8BWHWwjRtcVDAzJIrLPVLJFs28AAlx1G0JzMhGGQPBG3qJEHMEJB9iyHeyGGt TVahSqbG4RJE/7jMgTnKT0TEgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9k2vCA RWTxwUYSsVjUQdQMnE/+MB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwla3AXOd+JOJQmgrK1GloR8d9iIsIsP4O2zyrrrlipFnLYAKyLy4c YoQVkvJEwuIrOmISuqJw7eI+b7Qfe6FK1eRTOn2R8uJqkg7EL4/ritpFd2Xl2xJJ eg3umw6BeX7QTU53kT4pnHoRQAwz9pH2gDeTXNLa2Z/YJ0nTO2SLLrLgoiLh1OEu qjOiu0UgDayfKiZO3BdT7fkM+AmQwg+mhw74QuiAcB1dwJlPU6mVSUL+fzkQpwtN CYZM7o0tEu5y7w/ZYx9qxXFCm9dPZTBkUNxVdC3Nvg5gHAyMrirJ02DzuAOjhfRV rcM8wLKKSM7ZCZOIevuLxbS36g+0W9zE -----END CERTIFICATE-----Generated at Sat May 31 17:57:48 2025 by rpki-client