$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: N+xt/3K5ylyBK87cwjNIEuFjmqwRuUwDe4p+GBaG6ek= Subject key identifier: E9:67:89:DE:A4:60:18:E9:22:C4:75:19:51:21:4A:C6:D7:8D:AF:DC Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 033F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 0337 Signing time: Sat 31 May 2025 01:46:50 +0000 Manifest this update: Sat 31 May 2025 01:46:50 +0000 Manifest next update: Sat 07 Jun 2025 01:46:50 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: SRLXtm/UPAWM/wRu1UKx/fSKwc3q+KFcTWanBJp2bmc=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 831 (0x33f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: May 31 01:46:50 2025 GMT Not After : Jun 7 01:46:50 2025 GMT Subject: CN=683a5f8a-c911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:50:75:d7:a3:5c:71:97:ef:a9:c8:49:88:20: be:9f:90:ca:dc:16:4c:e7:b3:f0:86:c9:8a:0f:86: 93:8c:85:d6:68:1a:9f:6e:81:7c:ff:84:16:48:5d: fd:3b:af:ca:cf:d8:c5:d3:12:a7:79:e7:62:b9:33: bd:c6:20:8a:cd:6c:0e:27:88:a2:57:c9:ba:b0:40: 46:11:37:47:cb:8f:66:3b:44:17:57:34:9a:77:6d: 81:e7:3f:00:fb:2f:3e:d1:71:98:4e:78:91:db:8d: 68:55:2f:e4:e9:d8:33:0b:bb:f0:97:28:b3:52:fc: e5:46:d7:3d:15:2f:c6:45:bd:da:66:90:d1:6d:9d: 23:00:07:82:56:b7:bf:ba:b4:05:27:2f:46:c7:a7: f4:01:fe:07:f9:00:9d:8b:10:8a:a1:a8:b0:cc:7f: 51:fd:9f:d7:6e:8d:2e:46:fe:88:e2:b4:a5:9c:06: 9c:27:fe:0b:1d:3e:4b:b2:56:ef:4e:b4:40:3d:38: 12:23:b3:5e:02:6b:5d:45:fc:49:35:37:98:09:d2: 3c:08:93:b0:7c:07:da:4e:0a:de:7c:17:1c:b6:c7: 17:44:e4:b5:71:bf:d6:1b:bd:11:f5:1e:4b:bf:85: 16:b5:db:41:04:f6:99:76:4c:2e:be:f2:ac:61:67: c8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:67:89:DE:A4:60:18:E9:22:C4:75:19:51:21:4A:C6:D7:8D:AF:DC X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e7:1c:33:9b:e0:cd:78:8c:6d:87:cd:39:5a:08:2f:bc:73:8e: a8:5c:af:1e:2f:07:40:bf:7e:8c:9f:15:e7:f6:34:a7:a7:5f: db:b1:13:94:d9:bd:9c:6e:3d:44:34:4d:25:79:71:ce:f1:b6: 02:0b:3e:c8:3e:f6:a3:75:98:b4:98:a3:ce:bf:6e:69:3d:01: 53:31:cc:c7:e0:1c:c7:4f:46:3e:79:dc:1e:c2:9c:7b:e1:12: 17:b7:90:b0:01:ae:16:c0:1a:d0:86:75:cc:25:af:87:25:48: 85:4e:cc:76:76:14:c5:4b:d5:e3:02:30:20:2e:9f:16:a2:66: 24:87:05:b8:06:53:d9:dc:20:11:72:e3:ce:3c:19:04:10:0f: 28:5d:0e:d6:17:b3:5b:06:60:27:af:61:f5:93:7d:89:c6:01: 6a:79:47:15:8e:e0:5c:5a:1a:54:b2:35:25:7e:c6:42:7f:2c: 70:b0:65:b9:5c:07:92:27:fa:c7:d3:41:a0:79:1d:ef:0f:36: db:91:5a:04:52:b5:d6:3a:0d:23:9f:6e:4a:27:89:32:66:12: ab:63:1f:5c:12:2f:9a:40:8c:39:92:98:7a:3b:9b:40:03:29: cb:60:88:ad:4b:ee:41:75:b0:a8:a9:74:bb:0b:8f:13:f6:e2: 8d:bf:1c:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUwNTMxMDE0NjUwWhcNMjUwNjA3MDE0NjUwWjAYMRYwFAYD VQQDEw02ODNhNWY4YS1jOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVB116NccZfvqchJiCC+n5DK3BZM57PwhsmKD4aTjIXWaBqfboF8/4QWSF39 O6/Kz9jF0xKneediuTO9xiCKzWwOJ4iiV8m6sEBGETdHy49mO0QXVzSad22B5z8A +y8+0XGYTniR241oVS/k6dgzC7vwlyizUvzlRtc9FS/GRb3aZpDRbZ0jAAeCVre/ urQFJy9Gx6f0Af4H+QCdixCKoaiwzH9R/Z/Xbo0uRv6I4rSlnAacJ/4LHT5Lslbv TrRAPTgSI7NeAmtdRfxJNTeYCdI8CJOwfAfaTgrefBcctscXROS1cb/WG70R9R5L v4UWtdtBBPaZdkwuvvKsYWfIPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlnid6k YBjpIsR1GVEhSsbXja/cMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDnHDOb4M14jG2HzTlaCC+8c46oXK8eLwdAv36MnxXn9jSnp1/bsROU 2b2cbj1ENE0leXHO8bYCCz7IPvajdZi0mKPOv25pPQFTMczH4BzHT0Y+edwewpx7 4RIXt5CwAa4WwBrQhnXMJa+HJUiFTsx2dhTFS9XjAjAgLp8WomYkhwW4BlPZ3CAR cuPOPBkEEA8oXQ7WF7NbBmAnr2H1k32JxgFqeUcVjuBcWhpUsjUlfsZCfyxwsGW5 XAeSJ/rH00GgeR3vDzbbkVoEUrXWOg0jn25KJ4kyZhKrYx9cEi+aQIw5kph6O5tA AynLYIitS+5BdbCoqXS7C48T9uKNvxzq -----END CERTIFICATE-----Generated at Sat May 31 17:10:16 2025 by rpki-client