$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: cmNdW1Ds2cgxpoSeJmu6HZgBm/IUUN4qU78bcOXE+QI= Subject key identifier: 69:7B:86:AC:9E:EC:6E:94:06:A5:BF:A2:AF:EA:BB:30:51:77:9B:AA Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0C39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0C2E Signing time: Wed 04 Jun 2025 18:33:25 +0000 Manifest this update: Wed 04 Jun 2025 18:33:24 +0000 Manifest next update: Wed 11 Jun 2025 18:33:24 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: /tRz0YxxPbG2QiWFTI9Ysc7hYvflJpCdt01WtX/KFL4=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: m+JE5pCglgWFiHYLAbZNmBupgcN+FxTJD3mSp1g3gfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 18:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3129 (0xc39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Jun 4 18:33:24 2025 GMT Not After : Jun 11 18:33:24 2025 GMT Subject: CN=68409175-ff4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6c:db:c9:a5:89:a4:08:0d:a4:6a:4a:1f:33: 47:fc:54:cb:87:85:db:26:e8:ad:9c:c4:58:2f:d7: 8b:6a:65:09:c5:27:19:a4:3b:ef:5d:2b:4e:4f:03: a7:9f:64:da:da:b7:0f:5c:f1:0c:3b:61:f0:97:37: 6f:61:6e:9a:8e:25:92:b0:9a:9a:c5:b0:4f:ae:fe: 61:5c:ec:01:d0:58:a3:d1:8f:cc:38:3f:e9:99:c5: 25:1c:b4:20:61:88:99:f0:e7:57:1c:57:96:86:6e: 7e:56:55:2e:ca:c2:c2:9a:df:8c:6b:13:f5:b2:f9: 7b:d4:a7:50:11:8c:57:5c:50:2a:a1:f9:50:74:d2: 79:2d:95:2d:f2:87:8c:c5:90:56:9a:9b:a8:e9:20: 51:e3:e8:c2:96:5c:b8:f1:9c:07:31:93:4b:11:e0: 8e:e3:46:19:df:f2:e8:d6:64:ea:8a:46:d0:25:c6: 7c:de:b0:ab:95:c3:bc:6b:5e:11:7f:0f:b1:df:d5: 43:ff:90:5e:b2:49:d5:18:e9:d8:bb:ab:16:75:36: 2c:f2:ec:66:0a:5a:bd:1d:00:95:23:f6:f2:d4:2b: b7:2b:52:48:66:3a:8f:82:95:f8:2b:d5:84:ca:45: bd:dc:8f:a1:0c:4f:df:ac:84:4c:00:4a:f3:89:2e: 45:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:7B:86:AC:9E:EC:6E:94:06:A5:BF:A2:AF:EA:BB:30:51:77:9B:AA X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:43:ca:b7:46:1e:d8:90:40:f6:4d:18:a0:76:c3:0e:ec:0a: 02:72:d8:f8:49:4d:1b:22:f3:3e:8c:6e:0d:3a:76:99:a3:4c: 99:13:01:b4:6e:c3:3e:58:b2:73:13:69:5c:86:2b:67:5c:4f: a1:a2:1d:ea:06:f0:55:a1:54:10:d2:ae:52:0b:1f:72:30:e1: d5:1d:2a:a0:c2:f5:3e:e5:81:01:b6:0b:86:e3:cb:7e:4d:9b: 36:b3:a4:7c:7f:10:11:f5:14:fd:2b:c5:52:24:94:44:15:50: 74:64:2b:6a:1f:7e:cd:3b:41:5b:6c:70:42:a4:c8:d9:78:d3: 23:45:15:0c:cf:bd:c8:32:c7:66:55:12:8d:75:19:aa:01:f5: 66:d0:54:0e:f5:63:21:53:1a:cf:dc:88:e5:04:44:54:97:64: 4c:d6:c9:99:83:53:fb:4c:e8:ff:07:be:fb:81:ed:c1:2a:74: b7:8c:e5:bd:e3:79:cf:a0:a2:c1:40:68:0e:04:b6:2a:92:9e: 1d:78:91:37:ed:fb:53:40:07:e7:8d:24:c9:cb:2b:97:6a:9d: 27:56:38:54:24:f2:b2:ff:29:d6:2c:c3:3a:b5:2d:be:0c:f0: 18:ec:a1:59:d7:93:25:e3:64:da:5d:b5:70:3c:91:d1:76:93: ab:b0:5d:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjUwNjA0MTgzMzI0WhcNMjUwNjExMTgzMzI0WjAYMRYwFAYD VQQDEw02ODQwOTE3NS1mZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWzbyaWJpAgNpGpKHzNH/FTLh4XbJuitnMRYL9eLamUJxScZpDvvXStOTwOn n2Ta2rcPXPEMO2HwlzdvYW6ajiWSsJqaxbBPrv5hXOwB0Fij0Y/MOD/pmcUlHLQg YYiZ8OdXHFeWhm5+VlUuysLCmt+MaxP1svl71KdQEYxXXFAqoflQdNJ5LZUt8oeM xZBWmpuo6SBR4+jClly48ZwHMZNLEeCO40YZ3/Lo1mTqikbQJcZ83rCrlcO8a14R fw+x39VD/5BesknVGOnYu6sWdTYs8uxmClq9HQCVI/by1Cu3K1JIZjqPgpX4K9WE ykW93I+hDE/frIRMAErziS5FbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGl7hqye 7G6UBqW/oq/quzBRd5uqMB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKQ8q3Rh7YkED2TRigdsMO7AoCctj4SU0bIvM+jG4NOnaZo0yZEwG0 bsM+WLJzE2lchitnXE+hoh3qBvBVoVQQ0q5SCx9yMOHVHSqgwvU+5YEBtguG48t+ TZs2s6R8fxAR9RT9K8VSJJREFVB0ZCtqH37NO0FbbHBCpMjZeNMjRRUMz73IMsdm VRKNdRmqAfVm0FQO9WMhUxrP3IjlBERUl2RM1smZg1P7TOj/B777ge3BKnS3jOW9 43nPoKLBQGgOBLYqkp4deJE37ftTQAfnjSTJyyuXap0nVjhUJPKy/ynWLMM6tS2+ DPAY7KFZ15Ml42TaXbVwPJHRdpOrsF3e -----END CERTIFICATE-----Generated at Thu Jun 5 19:51:49 2025 by rpki-client