$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft File: hctAGQp33J5olNhX9zu3qQ4JdOQ.mft (raw, json) Hash identifier: LegZzsmQJmy4YZ4STfkwfjkVl5yXUTgXgyfxsDwpKeY= Subject key identifier: 5F:66:A1:21:01:03:BF:86:BB:4D:AC:4A:F0:F9:AA:E6:1E:1E:DE:9D Authority key identifier: 85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 Certificate issuer: /CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Certificate serial: 0570 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft Manifest number: 0566 Signing time: Fri 30 May 2025 23:33:57 +0000 Manifest this update: Fri 30 May 2025 23:33:56 +0000 Manifest next update: Fri 06 Jun 2025 23:33:56 +0000 Files and hashes: 1: hctAGQp33J5olNhX9zu3qQ4JdOQ.crl (hash: z79brd9Q3RZks6MGFbcS6c8K8OjKj1vn8hHUWeO5Ql8=) 2: 7FCFB4745E8411EE89DF693EC4F9AE02.roa (hash: uFNNtsVKGrVOfxCqtFLk0MfQv5FVtYeu4lj2O4PA2Ig=) 3: FD9A4AA0E53111EBAB62446EC4F9AE02.roa (hash: Dqt0GvAw9X9y8Ef/O7ERED07Rd+HbqI7uD9ujxO75Dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BB4, serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Validity Not Before: May 30 23:33:56 2025 GMT Not After : Jun 6 23:33:56 2025 GMT Subject: CN=683a4064-eb26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b6:c7:0c:15:d6:c9:d2:7b:1a:ae:8c:8d:24: 35:9a:85:29:93:71:cf:58:f1:22:93:86:15:48:32: 44:17:d8:27:c9:dc:7c:41:9d:ff:b9:4b:1c:bc:c9: 42:3a:68:2a:c4:92:ff:df:48:77:c7:5b:d1:1d:30: 27:4e:78:bc:ff:da:51:4e:c0:e7:64:d5:6f:fe:db: e1:2a:9b:f5:77:e7:d5:59:bd:a1:bf:96:fc:c2:fc: ba:a9:39:72:36:0c:cb:50:8f:fc:f7:30:45:e4:f4: bc:c9:5a:e8:00:5a:32:ec:0b:07:b7:7a:95:5c:9e: e2:ea:79:d2:7f:ef:8d:0a:ee:e1:cb:c7:5d:ba:4d: f9:b4:9b:6c:fc:29:69:cf:bf:49:c8:9a:af:15:03: 24:50:a0:47:6b:b6:66:e8:a4:64:0a:50:bb:ea:66: 83:e0:08:64:46:32:d7:b0:35:1d:36:e7:a5:ab:9c: cf:15:f9:fc:c2:39:48:dd:e3:09:f5:7f:6b:16:3e: ec:f7:3e:19:72:85:eb:b7:8e:75:35:89:0f:2c:8b: 3e:23:85:f7:ad:de:86:dd:5a:47:de:91:ce:54:12: 57:31:99:eb:6d:26:31:38:f7:f2:d2:30:96:ba:e0: 32:1b:ae:f8:1a:54:8d:e0:52:b0:21:d8:99:ca:17: a0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:66:A1:21:01:03:BF:86:BB:4D:AC:4A:F0:F9:AA:E6:1E:1E:DE:9D X509v3 Authority Key Identifier: keyid:85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:61:48:84:35:9a:63:11:8c:2b:43:27:5d:b1:e3:14:0e:9b: 76:a9:c6:dc:e0:e2:75:73:52:32:e9:29:fb:a4:70:8a:e8:ef: 0e:3f:b7:1c:f8:ac:77:65:8b:04:f2:c5:52:83:e5:94:55:f2: 5a:b5:33:4d:a7:37:25:c5:17:51:2c:5c:f9:97:ec:7d:94:b7: 84:b2:9f:37:76:94:78:1b:16:26:cb:95:13:81:66:52:52:be: 28:52:8d:60:58:ee:99:72:33:44:3e:39:32:bf:7a:b8:c4:80: db:9d:55:6b:77:12:4c:8a:9b:bf:99:3f:d9:11:9a:01:9f:4d: 9e:f6:03:c8:dc:3b:24:92:7c:a8:b3:65:e0:a8:2b:22:6c:99: 67:13:67:82:d8:e2:9a:22:26:03:33:b3:e0:81:ed:d9:3b:36: 7f:c7:e5:78:56:0c:d4:0a:23:e2:15:68:13:92:21:bf:eb:4d: 0b:e0:b0:0a:ad:a7:6e:93:7f:5f:0f:86:63:c0:88:31:fd:87: 6d:05:71:bd:02:45:ec:9a:29:35:e2:2a:2b:6a:91:ad:ae:93: 86:62:cc:39:50:db:c2:58:a3:ff:f8:3f:85:ef:57:af:80:53: c6:64:0e:f8:ee:53:1f:a4:e2:f3:ae:be:58:04:e4:a3:ac:8e: e7:8c:91:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlCQjQxMTAvBgNVBAUTKDg1Q0I0MDE5MEE3N0RDOUU2ODk0RDg1N0Y3M0JCN0E5 MEUwOTc0RTQwHhcNMjUwNTMwMjMzMzU2WhcNMjUwNjA2MjMzMzU2WjAYMRYwFAYD VQQDEw02ODNhNDA2NC1lYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLbHDBXWydJ7Gq6MjSQ1moUpk3HPWPEik4YVSDJEF9gnydx8QZ3/uUscvMlC OmgqxJL/30h3x1vRHTAnTni8/9pRTsDnZNVv/tvhKpv1d+fVWb2hv5b8wvy6qTly NgzLUI/89zBF5PS8yVroAFoy7AsHt3qVXJ7i6nnSf++NCu7hy8dduk35tJts/Clp z79JyJqvFQMkUKBHa7Zm6KRkClC76maD4AhkRjLXsDUdNuelq5zPFfn8wjlI3eMJ 9X9rFj7s9z4ZcoXrt451NYkPLIs+I4X3rd6G3VpH3pHOVBJXMZnrbSYxOPfy0jCW uuAyG674GlSN4FKwIdiZyhegAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9moSEB A7+Gu02sSvD5quYeHt6dMB8GA1UdIwQYMBaAFIXLQBkKd9yeaJTYV/c7t6kOCXTk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJCNC9CM0U3MzA5Q0U1 MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNKNW9sTmhYOXp1M3FRNEpk T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hjdEFHUXAzM0o1b2xOaFg5enUzcVE0SmRPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUJCNC9CM0U3MzA5Q0U1MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNK NW9sTmhYOXp1M3FRNEpkT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFYUiENZpjEYwrQyddseMUDpt2qcbc4OJ1c1Iy6Sn7pHCK6O8OP7cc +Kx3ZYsE8sVSg+WUVfJatTNNpzclxRdRLFz5l+x9lLeEsp83dpR4GxYmy5UTgWZS Ur4oUo1gWO6ZcjNEPjkyv3q4xIDbnVVrdxJMipu/mT/ZEZoBn02e9gPI3Dskknyo s2XgqCsibJlnE2eC2OKaIiYDM7Pgge3ZOzZ/x+V4VgzUCiPiFWgTkiG/600L4LAK raduk39fD4ZjwIgx/YdtBXG9AkXsmik14iorapGtrpOGYsw5UNvCWKP/+D+F71ev gFPGZA747lMfpOLzrr5YBOSjrI7njJEJ -----END CERTIFICATE-----Generated at Sat May 31 17:04:48 2025 by rpki-client