$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: aTLtHDkR4E8paQ0NP9x3FvbvOVHcmlYMxr/ifjh/YGM= Subject key identifier: 74:39:2B:8C:FC:D5:34:F4:7F:FA:38:5C:85:D1:FB:E6:E4:73:56:1A Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 2A Signing time: Sun 01 Jun 2025 07:29:40 +0000 Manifest this update: Sun 01 Jun 2025 07:29:40 +0000 Manifest next update: Sun 08 Jun 2025 07:29:40 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: egxLZovq84KyZU2CvYM4wXFInxijEo2AjUX+PFxa8V4=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Jun 1 07:29:40 2025 GMT Not After : Jun 8 07:29:40 2025 GMT Subject: CN=683c0164-618d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c1:e4:55:21:09:4a:76:b0:71:0a:be:46:12: d7:bf:7f:02:bb:77:bf:3f:85:3b:59:26:27:13:1e: 35:3c:9a:dc:39:47:e9:ab:1f:4d:ee:04:10:61:89: a6:e8:8d:85:99:84:2f:9d:4e:d6:98:ae:8f:4f:c1: 75:eb:07:45:24:5e:fa:57:7c:3f:fe:93:ee:91:e9: bd:13:35:c7:5f:2a:55:d2:67:b0:a0:d2:d1:7b:88: ff:e4:74:2b:3e:33:e9:62:1d:39:ef:50:53:e6:4f: bd:6e:ce:0f:ea:38:5e:2b:03:c4:ee:50:ec:1d:58: 1b:27:b6:1c:d6:59:30:d1:6d:7f:99:4c:9a:e7:4b: be:f3:ff:f1:93:c9:97:3c:63:c5:aa:90:58:6b:cf: 3d:61:c4:70:36:0f:a4:41:fd:27:61:32:dc:cc:fe: e6:0f:a5:63:b7:1b:bd:5f:ac:3c:36:b9:6d:d5:ee: e7:54:68:4b:67:48:f0:2c:e6:d1:77:2a:7e:ff:27: b1:e3:97:e5:be:34:6b:a0:e4:f7:3b:12:60:c3:3e: 8e:5c:ff:e8:85:b2:0b:1b:57:e5:07:f2:97:da:f3: 0d:b2:90:3e:a3:39:75:ed:07:61:4d:7f:07:c9:bf: a6:2f:be:d8:1a:2c:6c:00:58:20:61:bd:6f:b4:7f: 8e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:39:2B:8C:FC:D5:34:F4:7F:FA:38:5C:85:D1:FB:E6:E4:73:56:1A X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:a7:05:94:d0:8d:ef:b7:02:35:c5:2d:d9:cf:20:91:68:25: 48:1e:7b:83:63:15:64:f8:22:75:4d:2d:f1:81:2a:87:f9:06: 46:94:24:a4:09:e7:bc:57:b7:c3:d4:77:f6:de:7a:6c:99:99: c3:83:0d:6b:1d:9a:96:41:4a:29:1b:9a:a9:9f:65:b8:2c:92: 23:95:3e:6c:3d:61:2b:b9:fd:eb:4e:3e:e8:e4:55:48:aa:b4: 12:e7:3a:19:d0:44:80:bb:4c:2f:91:04:cd:3e:b8:d3:2c:90: 01:87:b2:1d:b2:e8:8f:cd:d9:c5:e1:11:3d:99:84:f5:73:f4: 8c:c7:3b:03:30:5f:58:7c:16:fb:3d:82:c8:f6:a3:ed:25:01: 94:09:80:de:a6:2f:94:8f:8c:6b:70:82:9d:d5:28:63:59:f0: d9:27:cd:8a:67:94:dc:97:ce:56:6b:bd:17:d6:2d:ef:a9:dc: e5:0d:8c:fb:fa:fc:ef:8f:18:94:89:bc:64:9b:1a:98:b7:14: af:95:4c:3a:ef:51:62:09:0f:35:60:83:a0:ef:39:fe:92:d0: a7:14:7d:1e:18:96:ac:5c:51:f7:10:fc:8e:df:4e:43:10:6c: 79:7c:43:c8:79:1b:a6:70:95:ce:e1:4a:61:b7:64:f8:26:03: a1:b8:ae:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA2MDEwNzI5NDBaFw0yNTA2MDgwNzI5NDBaMBgxFjAUBgNV BAMTDTY4M2MwMTY0LTYxOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYweRVIQlKdrBxCr5GEte/fwK7d78/hTtZJicTHjU8mtw5R+mrH03uBBBhiabo jYWZhC+dTtaYro9PwXXrB0UkXvpXfD/+k+6R6b0TNcdfKlXSZ7Cg0tF7iP/kdCs+ M+liHTnvUFPmT71uzg/qOF4rA8TuUOwdWBsnthzWWTDRbX+ZTJrnS77z//GTyZc8 Y8WqkFhrzz1hxHA2D6RB/SdhMtzM/uYPpWO3G71frDw2uW3V7udUaEtnSPAs5tF3 Kn7/J7Hjl+W+NGug5Pc7EmDDPo5c/+iFsgsbV+UH8pfa8w2ykD6jOXXtB2FNfwfJ v6YvvtgaLGwAWCBhvW+0f44ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdDkrjPzV NPR/+jhchdH75uRzVhowHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALCnBZTQje+3AjXFLdnPIJFoJUgee4NjFWT4InVNLfGBKof5BkaUJKQJ 57xXt8PUd/beemyZmcODDWsdmpZBSikbmqmfZbgskiOVPmw9YSu5/etOPujkVUiq tBLnOhnQRIC7TC+RBM0+uNMskAGHsh2y6I/N2cXhET2ZhPVz9IzHOwMwX1h8Fvs9 gsj2o+0lAZQJgN6mL5SPjGtwgp3VKGNZ8NknzYpnlNyXzlZrvRfWLe+p3OUNjPv6 /O+PGJSJvGSbGpi3FK+VTDrvUWIJDzVgg6DvOf6S0KcUfR4YlqxcUfcQ/I7fTkMQ bHl8Q8h5G6Zwlc7hSmG3ZPgmA6G4riQ= -----END CERTIFICATE-----Generated at Mon Jun 2 20:10:14 2025 by rpki-client