$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: zLOk2Udz2sRLgb9hVaajefx5X2zbKMPoFIJEzKI4iQs= Subject key identifier: 8B:8B:19:F6:B4:BD:73:AC:06:C6:1B:44:B0:E2:0A:E8:E4:A2:2D:74 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 0502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 04E6 Signing time: Sat 31 May 2025 00:02:08 +0000 Manifest this update: Sat 31 May 2025 00:02:08 +0000 Manifest next update: Sat 07 Jun 2025 00:02:08 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: vK0hVSrfAJ12u/T/Flu3/VuLFVejlvF12li2ErgLPTQ=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: ZQeH9s5GaYIk1ZxktX3ZDI1XyJXOlpVX7ljtVr42XF4=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: o2ReRLcJlulFpKfpdWmE6u0f7G1G3KpQA2ac4wDJgWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: May 31 00:02:08 2025 GMT Not After : Jun 7 00:02:08 2025 GMT Subject: CN=683a4700-2685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3c:47:45:8f:b4:8b:71:0d:81:7f:4b:48:12: 44:2e:53:94:ca:8c:72:d8:da:b7:75:c0:c2:8e:b6: dc:cf:06:d9:95:86:c6:3e:a6:76:7f:fe:18:e8:d4: 86:cb:b7:14:0a:cb:63:43:a2:bc:10:bc:bd:f2:ab: 92:9e:1d:70:f9:ee:69:aa:d5:ea:93:ab:b3:f0:99: 78:97:29:1f:b4:e0:8d:0e:63:97:88:52:76:36:9a: 5f:ac:9e:86:9e:53:8c:ff:ac:0b:56:b8:6b:d0:63: 57:7b:f5:2e:75:74:a8:7f:69:84:d6:8b:f0:f4:c6: 16:d0:13:71:91:b2:99:aa:9a:51:2c:b8:db:97:3f: fc:b5:fe:d8:f2:f2:88:54:cb:a4:b1:ff:bf:ac:5d: 40:0f:33:b9:73:6d:d0:6c:28:b1:74:86:23:eb:e6: bf:a7:65:4f:d5:c6:d0:ef:ed:c5:cd:8d:e9:a1:48: 84:37:f0:e0:32:6e:87:2c:03:30:4a:28:9e:d1:ff: 4b:bc:a6:d0:2c:18:94:0e:68:1a:ff:67:e2:d2:22: 52:ca:ce:0e:03:3b:2d:5c:e2:88:d0:1e:60:5c:44: 1b:b3:d3:24:ce:e3:01:c2:89:27:e2:8b:80:10:ce: fa:74:46:07:66:a4:ed:ae:f5:71:a3:1e:cd:16:b4: af:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8B:19:F6:B4:BD:73:AC:06:C6:1B:44:B0:E2:0A:E8:E4:A2:2D:74 X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c5:02:84:4d:66:73:a9:38:b1:e9:50:3d:dd:8f:93:0d:b9: f0:01:5b:e1:74:80:c4:c0:82:4c:e1:2b:10:b8:d9:d7:d8:53: 99:e2:db:62:69:67:32:a6:e2:ea:9b:4c:a4:3c:a6:95:c4:8d: cb:db:f9:75:b5:2c:7f:b4:04:86:84:30:67:ff:15:c2:86:0e: 15:95:b9:5e:11:3a:26:03:4d:10:b2:85:9a:89:96:a8:40:9b: ce:7e:c6:aa:e5:b8:4e:4b:b7:ea:50:65:f1:48:7c:80:67:06: fe:85:2b:7b:b0:45:4c:86:28:bd:65:fd:98:71:fa:fa:38:66: 4c:40:b6:2f:8a:b2:e9:c1:52:0b:f3:11:7d:69:5d:17:54:98: 70:be:16:88:f7:1b:cf:b7:7f:1c:d8:7f:aa:f5:9f:2f:e1:0e: 9a:e8:db:c5:a0:5b:4e:0a:be:6e:c2:ff:32:a7:16:43:ce:98: c6:a2:c0:be:8d:df:6c:7c:78:f8:77:6a:c8:be:be:78:7b:61: 42:f0:c9:1a:51:91:5e:77:35:56:61:33:57:f4:ed:00:49:f5: 11:1f:90:a3:47:e6:8b:b3:3a:08:a2:6b:8d:23:db:d9:ca:65: 9d:36:5f:65:37:8b:13:94:6e:b6:6b:ff:09:e6:3c:f3:37:86: b7:31:3c:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjUwNTMxMDAwMjA4WhcNMjUwNjA3MDAwMjA4WjAYMRYwFAYD VQQDEw02ODNhNDcwMC0yNjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DxHRY+0i3ENgX9LSBJELlOUyoxy2Nq3dcDCjrbczwbZlYbGPqZ2f/4Y6NSG y7cUCstjQ6K8ELy98quSnh1w+e5pqtXqk6uz8Jl4lykftOCNDmOXiFJ2NppfrJ6G nlOM/6wLVrhr0GNXe/UudXSof2mE1ovw9MYW0BNxkbKZqppRLLjblz/8tf7Y8vKI VMuksf+/rF1ADzO5c23QbCixdIYj6+a/p2VP1cbQ7+3FzY3poUiEN/DgMm6HLAMw Siie0f9LvKbQLBiUDmga/2fi0iJSys4OAzstXOKI0B5gXEQbs9MkzuMBwokn4ouA EM76dEYHZqTtrvVxox7NFrSv0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuLGfa0 vXOsBsYbRLDiCujkoi10MB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkxQKETWZzqTix6VA93Y+TDbnwAVvhdIDEwIJM4SsQuNnX2FOZ4tti aWcypuLqm0ykPKaVxI3L2/l1tSx/tASGhDBn/xXChg4VlbleETomA00QsoWaiZao QJvOfsaq5bhOS7fqUGXxSHyAZwb+hSt7sEVMhii9Zf2Ycfr6OGZMQLYvirLpwVIL 8xF9aV0XVJhwvhaI9xvPt38c2H+q9Z8v4Q6a6NvFoFtOCr5uwv8ypxZDzpjGosC+ jd9sfHj4d2rIvr54e2FC8MkaUZFedzVWYTNX9O0ASfURH5CjR+aLszoIomuNI9vZ ymWdNl9lN4sTlG62a/8J5jzzN4a3MTwq -----END CERTIFICATE-----Generated at Sat May 31 17:11:21 2025 by rpki-client