$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: 56+BMZmTm8gKZIK7Iiu5s1j9xnEZueJ7LVVO3fb+LIA= Subject key identifier: A8:72:F7:4B:4C:C5:3A:43:90:2B:6C:39:66:8B:F0:54:BD:75:17:F7 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B0D Signing time: Fri 30 May 2025 19:26:47 +0000 Manifest this update: Fri 30 May 2025 19:26:47 +0000 Manifest next update: Fri 06 Jun 2025 19:26:47 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: JH/NW9qMj5GQA1IIn9xB+jsuzT3gfqNmSE8KqiXHhw4=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: haC4mzBCka2C4XI2abEqyRFQojyis7K+gx1fbeV1iug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2835 (0xb13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: May 30 19:26:47 2025 GMT Not After : Jun 6 19:26:47 2025 GMT Subject: CN=683a0677-da84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6b:cf:17:25:ec:95:fe:ff:b1:9d:de:77:4f: 4c:5b:a8:b7:38:34:3e:23:1a:71:30:72:6c:01:5c: 00:30:d0:0a:cf:e4:d7:a3:73:7b:bc:e3:07:ef:2c: 99:0b:fc:d5:4b:f9:13:b7:24:83:7b:c1:f2:d4:3f: dc:5e:6a:18:16:94:5f:f2:8b:59:f3:b0:49:a2:d0: 7f:61:60:5e:bb:b9:c9:ba:a7:f5:6c:73:d2:1f:e7: e0:06:6e:41:39:9a:d1:ee:bd:ef:39:4a:49:86:bb: b8:39:d9:9f:ef:a0:63:16:71:cc:e8:21:4f:47:9a: f0:f8:9b:1e:13:70:02:97:ba:33:dd:f6:48:9a:ef: 1f:eb:3b:0b:a3:92:9b:c7:a2:01:68:af:5c:f9:0d: 5b:fa:be:54:0a:2c:fa:a4:45:05:6e:6e:10:c5:43: aa:fd:18:08:33:a1:23:ae:b0:d3:cc:fa:78:6c:a2: 47:46:5d:8a:6b:a1:ac:f3:1f:6e:5f:73:a9:3b:a0: 2a:f6:c3:c7:66:19:bb:77:b4:1b:d4:7d:1f:b1:b5: 0d:fe:af:07:6f:1d:2a:e9:f7:34:5d:36:17:da:c1: 2e:0a:74:63:48:7c:4a:1a:76:4c:ca:41:96:3a:56: 60:92:ef:8f:51:e2:52:dd:5f:d0:9b:c8:dc:7f:f8: 27:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:72:F7:4B:4C:C5:3A:43:90:2B:6C:39:66:8B:F0:54:BD:75:17:F7 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:62:8d:66:08:c0:70:85:6c:a0:82:34:51:0c:f8:14:ac:f5: e7:1f:74:be:69:66:63:1b:48:68:b1:a9:2f:6a:d3:b0:0d:c5: e1:61:06:55:1e:e7:b1:7b:21:94:1f:6b:29:66:80:9d:6d:47: cf:c0:57:a1:2d:65:d2:be:8d:32:8f:8a:dc:39:8c:5b:2f:e2: dc:a0:8b:29:c9:32:18:f8:10:da:0a:d0:1d:31:3d:25:a1:7e: 86:d9:c7:3e:5c:1c:67:d9:8f:7c:d5:65:25:aa:11:49:20:dd: dd:72:2c:ea:e9:52:ec:78:50:bc:48:88:ab:e7:a3:65:d7:c2: bb:48:1e:6b:af:da:64:8b:bb:64:55:c6:f3:23:6d:e2:ec:84: 02:1b:54:99:56:1e:80:d0:4a:22:c8:8e:51:6a:c2:24:dd:9c: 8c:7a:64:6d:d9:fb:03:bc:51:36:3a:7e:36:e7:4c:ea:93:c9: ce:2e:3e:db:eb:29:d8:f5:c4:76:c1:c7:7a:ff:76:c6:f3:90: 5f:f2:f7:d8:1f:31:65:11:6d:37:65:41:c3:ec:83:d6:ec:df: c4:32:8d:ef:ac:c0:a6:df:d9:67:9b:53:19:a2:d4:92:ca:74: 4c:11:8c:7e:78:9b:69:25:9e:22:31:64:a2:2f:20:51:88:e3: 00:ca:a4:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUwNTMwMTkyNjQ3WhcNMjUwNjA2MTkyNjQ3WjAYMRYwFAYD VQQDEw02ODNhMDY3Ny1kYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GvPFyXslf7/sZ3ed09MW6i3ODQ+IxpxMHJsAVwAMNAKz+TXo3N7vOMH7yyZ C/zVS/kTtySDe8Hy1D/cXmoYFpRf8otZ87BJotB/YWBeu7nJuqf1bHPSH+fgBm5B OZrR7r3vOUpJhru4Odmf76BjFnHM6CFPR5rw+JseE3ACl7oz3fZImu8f6zsLo5Kb x6IBaK9c+Q1b+r5UCiz6pEUFbm4QxUOq/RgIM6EjrrDTzPp4bKJHRl2Ka6Gs8x9u X3OpO6Aq9sPHZhm7d7Qb1H0fsbUN/q8Hbx0q6fc0XTYX2sEuCnRjSHxKGnZMykGW OlZgku+PUeJS3V/Qm8jcf/gn+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhy90tM xTpDkCtsOWaL8FS9dRf3MB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfYo1mCMBwhWyggjRRDPgUrPXnH3S+aWZjG0hosakvatOwDcXhYQZV HuexeyGUH2spZoCdbUfPwFehLWXSvo0yj4rcOYxbL+LcoIspyTIY+BDaCtAdMT0l oX6G2cc+XBxn2Y981WUlqhFJIN3dcizq6VLseFC8SIir56Nl18K7SB5rr9pki7tk VcbzI23i7IQCG1SZVh6A0EoiyI5RasIk3ZyMemRt2fsDvFE2On4250zqk8nOLj7b 6ynY9cR2wcd6/3bG85Bf8vfYHzFlEW03ZUHD7IPW7N/EMo3vrMCm39lnm1MZotSS ynRMEYx+eJtpJZ4iMWSiLyBRiOMAyqRS -----END CERTIFICATE-----Generated at Sat May 31 16:29:35 2025 by rpki-client