$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: 1owbQ6q07Tspy79/Oy03Ry7k9b72IoUJYR6kUc1vJDc= Subject key identifier: 34:9B:D8:05:B5:FC:02:08:1B:0B:B4:34:11:81:57:9E:69:43:B5:65 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 138C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 1378 Signing time: Mon 02 Jun 2025 17:11:03 +0000 Manifest this update: Mon 02 Jun 2025 17:11:02 +0000 Manifest next update: Mon 09 Jun 2025 17:11:02 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: P6pXeTf37GPNZQnOfYvVzFoQ8Vo6yf9V9YSNHi7MuiM=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uB4liRC15aLaiBtidHUNmFUGA+rWusK0euEN/1U3aMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5004 (0x138c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Jun 2 17:11:02 2025 GMT Not After : Jun 9 17:11:02 2025 GMT Subject: CN=683ddb27-8fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f1:28:b9:84:64:24:ba:8b:ee:77:60:79:48: fc:d8:5c:83:4a:d5:47:c3:5c:7d:40:45:67:48:e2: ca:c6:f9:d6:6d:30:8f:a7:61:00:d7:9e:3a:8d:e9: a3:72:b7:a2:cf:7b:3d:5d:0c:df:86:0c:10:e9:85: d9:13:34:f3:93:b4:ab:fc:d4:8c:45:a5:f5:15:f5: 93:7d:5a:b4:74:d0:f6:4b:43:e3:60:ff:72:e7:10: d5:ef:8f:a6:da:38:17:dd:c4:02:74:8d:e6:3a:1d: 4b:ac:49:9c:18:96:de:ab:1e:b3:c7:c3:0b:6d:f8: e5:6b:b2:f0:61:cb:1d:8e:5c:de:41:5a:69:c6:78: 32:17:b4:9f:ed:3b:54:c5:08:cb:f7:52:76:fb:35: 54:99:a8:73:08:d9:f5:2d:2e:92:03:c8:fc:a1:37: 2b:82:8e:ac:df:72:60:9c:0d:aa:b1:df:f3:1d:e0: 9c:76:3a:46:95:cd:2a:3f:67:1b:26:85:32:87:28: 89:c6:33:7a:4f:6d:ed:91:42:b0:ab:40:d7:05:37: 2b:c0:d6:dd:d6:7f:13:74:c1:ea:c1:d2:08:af:0a: b0:d6:0e:78:a1:94:2a:9b:e2:b2:d5:22:da:ec:34: b1:a1:1c:f8:1e:68:a6:72:b4:f0:bb:d4:3d:63:a8: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9B:D8:05:B5:FC:02:08:1B:0B:B4:34:11:81:57:9E:69:43:B5:65 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:06:37:00:4f:92:85:7f:3c:6d:7a:05:3e:7d:c0:d7:79:c8: dc:d5:74:69:43:fa:a7:ec:7c:0e:fd:91:2e:a2:2d:8c:2b:64: 3f:d3:68:7b:3d:fe:57:07:b1:d9:d0:40:2c:91:ac:4d:c2:02: 6b:46:81:9a:50:0a:21:8e:b1:58:ae:e2:d0:38:a1:02:3f:99: 97:a2:fe:29:03:e1:bc:ae:43:b4:b0:e1:9b:94:83:7e:51:7e: 12:a6:a8:8a:f8:e2:47:bd:57:3f:db:07:ee:49:75:af:70:44: ff:ad:b3:96:cb:c0:8b:c3:3a:9b:c4:2e:e2:f8:3d:b7:48:0c: 1d:b9:e8:80:5b:c5:89:2d:85:d3:35:33:e6:c9:5c:5f:f6:89: 62:a7:55:ba:b8:68:88:2b:da:da:56:70:bb:fb:e7:65:89:36: 21:0b:5e:b3:b2:2d:39:6c:bd:d0:1b:49:19:14:a6:92:e3:58: cd:c9:b4:be:21:41:a5:93:41:5d:64:1b:ad:02:46:de:f2:8a: 9b:c9:a0:d4:9f:7e:b2:23:44:c1:cf:1d:c5:fb:8c:1d:00:a7: 2a:82:ca:ae:44:5e:79:94:d5:c4:64:22:92:69:14:47:6b:77: d1:01:b6:48:8c:8d:e7:6d:57:76:9c:8f:15:ba:62:e2:f5:8b: 48:fb:b1:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUwNjAyMTcxMTAyWhcNMjUwNjA5MTcxMTAyWjAYMRYwFAYD VQQDEw02ODNkZGIyNy04ZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPEouYRkJLqL7ndgeUj82FyDStVHw1x9QEVnSOLKxvnWbTCPp2EA1546jemj creiz3s9XQzfhgwQ6YXZEzTzk7Sr/NSMRaX1FfWTfVq0dND2S0PjYP9y5xDV74+m 2jgX3cQCdI3mOh1LrEmcGJbeqx6zx8MLbfjla7LwYcsdjlzeQVppxngyF7Sf7TtU xQjL91J2+zVUmahzCNn1LS6SA8j8oTcrgo6s33JgnA2qsd/zHeCcdjpGlc0qP2cb JoUyhyiJxjN6T23tkUKwq0DXBTcrwNbd1n8TdMHqwdIIrwqw1g54oZQqm+Ky1SLa 7DSxoRz4HmimcrTwu9Q9Y6j20wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSb2AW1 /AIIGwu0NBGBV55pQ7VlMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrBjcAT5KFfzxtegU+fcDXecjc1XRpQ/qn7HwO/ZEuoi2MK2Q/02h7 Pf5XB7HZ0EAskaxNwgJrRoGaUAohjrFYruLQOKECP5mXov4pA+G8rkO0sOGblIN+ UX4SpqiK+OJHvVc/2wfuSXWvcET/rbOWy8CLwzqbxC7i+D23SAwdueiAW8WJLYXT NTPmyVxf9olip1W6uGiIK9raVnC7++dliTYhC16zsi05bL3QG0kZFKaS41jNybS+ IUGlk0FdZButAkbe8oqbyaDUn36yI0TBzx3F+4wdAKcqgsquRF55lNXEZCKSaRRH a3fRAbZIjI3nbVd2nI8VumLi9YtI+7Fk -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:31 2025 by rpki-client