$ rpki-client -vvf rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft File: cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft (raw, json) Hash identifier: mmWEuY0yptoHflU07sELljF96aHMSnIIxBuLiyxjEdA= Subject key identifier: 07:A9:5B:90:E1:5F:08:4D:D0:54:21:EA:8B:83:99:D6:C9:A9:BD:45 Authority key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C Certificate issuer: /CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft Manifest number: 0182 Signing time: Thu 05 Jun 2025 03:00:58 +0000 Manifest this update: Thu 05 Jun 2025 03:00:58 +0000 Manifest next update: Thu 12 Jun 2025 03:00:58 +0000 Files and hashes: 1: cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl (hash: AHmsYN6Le0irnHq2Zns0T9rz3PiirGPqznC1c+QfkeE=) 2: 1966C856FB9E11ED8309FC1DC4F9AE02.roa (hash: jsmEuKgoeYiJY/PhkO97a7NHRngriTFFOmRBgoLfjbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 03:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B540, serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Validity Not Before: Jun 5 03:00:58 2025 GMT Not After : Jun 12 03:00:58 2025 GMT Subject: CN=6841086a-327b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:31:de:b5:25:0a:f1:33:22:dc:da:ed:01:53: c2:a1:c8:b1:74:5b:cd:0c:16:dd:09:6e:58:1c:d6: 9a:c1:c7:1d:54:37:7e:3b:9e:2a:4b:76:ae:9b:8e: 08:37:97:0e:58:34:bd:33:7f:e8:b2:3b:09:24:ee: 12:86:91:64:68:57:8e:89:98:7e:77:e7:6c:12:dd: e3:65:38:a7:6e:2d:8f:c4:fd:85:2e:d5:9c:6a:01: 83:7e:ce:5d:af:e0:3f:49:a1:23:a6:ee:60:e9:90: 42:57:cb:fb:61:22:68:6d:4d:f8:1c:d7:55:fd:7a: 9d:24:82:9a:24:4e:de:e2:e2:83:d5:e4:2e:e2:e6: ce:1b:5f:f1:67:d2:66:67:d4:5f:69:05:27:de:50: bb:f1:8e:57:ce:ef:e9:d0:a2:a7:6c:9d:9d:ba:c9: 3e:9b:ac:80:5a:b0:af:ba:5e:e6:54:48:4b:eb:67: 4b:42:12:6f:3c:46:62:84:4b:0a:27:ca:74:85:d3: e1:b2:76:b9:02:0e:66:92:80:80:78:71:dd:62:d3: 22:47:fe:42:7b:2b:cc:03:21:60:7e:37:d8:9d:f2: b1:49:52:32:2b:1e:63:e8:a8:cf:72:fb:d1:76:66: e8:3e:25:b0:bf:ff:42:8e:7c:f4:b0:b3:a9:d1:00: 2c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A9:5B:90:E1:5F:08:4D:D0:54:21:EA:8B:83:99:D6:C9:A9:BD:45 X509v3 Authority Key Identifier: keyid:70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:54:e0:b8:99:1d:aa:0e:c6:d3:e9:60:2e:b4:f8:18:f7:4d: b6:df:da:8d:9e:20:14:c9:79:88:d2:fd:9a:a5:0c:2e:25:37: ed:1a:5c:2a:b1:cf:83:b4:77:94:45:eb:65:71:72:27:b2:60: 64:e1:16:8e:cd:f5:43:55:e3:00:3a:c8:88:15:29:db:ec:85: 07:63:52:0f:e3:1e:fe:1f:ab:83:d4:66:45:ad:6a:91:c5:2b: 72:3b:b4:52:87:e5:76:25:35:57:47:c1:68:4a:26:e8:fc:e6: ed:9d:5f:84:51:3c:66:e9:8c:47:41:07:d2:79:60:7c:2a:5d: 94:98:fd:fe:7e:9b:fc:3f:ee:b5:c2:ec:5f:75:68:68:30:90: 52:1a:e6:cb:ab:08:df:9b:a7:2b:0e:5d:01:c3:da:53:1c:2e: 1b:e0:10:57:46:5d:27:f6:fe:ca:90:de:ca:c1:07:47:d3:13: 50:bd:5b:20:ba:95:f0:ab:6a:93:08:6e:83:05:45:53:02:d6: 2d:eb:e1:af:6f:12:20:81:26:de:96:2c:73:f2:70:04:45:8f: 19:98:a0:c9:b7:a6:83:8a:a1:b4:1f:72:9f:13:33:d3:af:6c: c4:14:f4:07:74:b5:ad:51:e5:26:c7:cd:92:9b:72:c6:b8:13: 18:df:02:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1NDAxMTAvBgNVBAUTKDcwMkZBMUFFOTY4MkIyQjIyRUNERDlBNTMwMTJGMEU2 RjFCQTFCOUMwHhcNMjUwNjA1MDMwMDU4WhcNMjUwNjEyMDMwMDU4WjAYMRYwFAYD VQQDEw02ODQxMDg2YS0zMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDHetSUK8TMi3NrtAVPCocixdFvNDBbdCW5YHNaawccdVDd+O54qS3aum44I N5cOWDS9M3/osjsJJO4ShpFkaFeOiZh+d+dsEt3jZTinbi2PxP2FLtWcagGDfs5d r+A/SaEjpu5g6ZBCV8v7YSJobU34HNdV/XqdJIKaJE7e4uKD1eQu4ubOG1/xZ9Jm Z9RfaQUn3lC78Y5Xzu/p0KKnbJ2dusk+m6yAWrCvul7mVEhL62dLQhJvPEZihEsK J8p0hdPhsna5Ag5mkoCAeHHdYtMiR/5CeyvMAyFgfjfYnfKxSVIyKx5j6KjPcvvR dmboPiWwv/9Cjnz0sLOp0QAssQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAepW5Dh XwhN0FQh6ouDmdbJqb1FMB8GA1UdIwQYMBaAFHAvoa6WgrKyLs3ZpTAS8Obxuhuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjU0MC9EOTdBOTVCQ0Y4 ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3NySXV6ZG1sTUJMdzV2RzZH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDLWhycGFDc3JJdXpkbWxNQkx3NXZHNkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjU0MC9EOTdBOTVCQ0Y4ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3Ny SXV6ZG1sTUJMdzV2RzZHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5VOC4mR2qDsbT6WAutPgY902239qNniAUyXmI0v2apQwuJTftGlwq sc+DtHeURetlcXInsmBk4RaOzfVDVeMAOsiIFSnb7IUHY1IP4x7+H6uD1GZFrWqR xStyO7RSh+V2JTVXR8FoSibo/ObtnV+EUTxm6YxHQQfSeWB8Kl2UmP3+fpv8P+61 wuxfdWhoMJBSGubLqwjfm6crDl0Bw9pTHC4b4BBXRl0n9v7KkN7KwQdH0xNQvVsg upXwq2qTCG6DBUVTAtYt6+GvbxIggSbelixz8nAERY8ZmKDJt6aDiqG0H3KfEzPT r2zEFPQHdLWtUeUmx82Sm3LGuBMY3wIu -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:03 2025 by rpki-client