$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: bZDfpIZu+y/FgKGhXA5mKQvfN3sEWllDuj1SuD1nUoE= Subject key identifier: 3A:79:3F:3E:04:F2:33:02:6F:79:7C:9A:41:A7:DF:FD:CE:9C:23:D8 Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 030F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 0303 Signing time: Sat 31 May 2025 01:27:00 +0000 Manifest this update: Sat 31 May 2025 01:26:59 +0000 Manifest next update: Sat 07 Jun 2025 01:26:59 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: DFbn2ksSm7CRQYOH44ToFiG+dpgRCtHEMOcg8mgfHZU=) 2: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: D/07ECvWp7oQg2+1KPxjiVqoD+wojBNXOMz248kJJ/8=) 3: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) 4: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 783 (0x30f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: May 31 01:26:59 2025 GMT Not After : Jun 7 01:26:59 2025 GMT Subject: CN=683a5ae3-78d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ca:4f:f4:64:55:02:c1:a5:0c:d8:55:ca:64: cd:6e:da:6a:bb:ed:4c:eb:b6:6c:cb:b0:33:5a:60: 71:05:0f:29:6d:45:c3:b1:c5:4f:43:be:d8:d0:e1: 02:61:1c:fa:97:ad:52:6a:6c:7f:6b:ce:94:81:b0: 76:40:36:45:f7:f3:9c:a6:7b:8b:63:6c:6c:cd:81: 35:bf:d3:f4:7e:65:a7:7c:80:41:b3:0a:96:e9:80: 84:db:b8:18:25:00:5e:32:9f:4e:c2:ef:0e:d9:b1: 6f:1a:21:a2:0b:65:88:88:c8:98:c6:c2:0c:cc:a6: 68:68:6e:2f:d1:2c:46:06:05:cd:59:c2:a3:96:ea: 7c:26:31:35:66:ac:ca:51:8a:99:c2:de:8b:7a:24: 45:f9:0c:1d:c2:51:91:8d:de:47:9e:dd:41:39:c8: 01:90:23:ae:1b:36:24:6d:87:3e:45:f2:4e:64:96: a8:c9:ca:ec:9e:a9:ce:ba:a9:b2:8c:b8:d3:56:a4: 03:2e:15:13:3f:74:1d:7b:25:bb:7b:78:e9:32:b1: 0e:6d:49:00:a1:8c:e0:03:2c:75:c6:24:c4:4a:e1: b6:54:4f:bf:53:e9:9b:63:ff:ea:d9:54:ee:14:e7: 73:18:9f:b2:ee:43:bb:78:16:bf:12:27:03:53:e6: d8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:79:3F:3E:04:F2:33:02:6F:79:7C:9A:41:A7:DF:FD:CE:9C:23:D8 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:75:00:71:cc:c8:2e:9f:b4:24:2f:08:d7:8f:24:7f:10:e4: b5:97:ba:bd:67:6c:86:16:f6:14:4b:4c:6d:c2:02:0f:ff:de: bd:c1:0d:36:d4:a3:9f:c1:b9:3b:14:c2:5d:c9:51:db:24:41: ff:38:2a:a9:0b:f6:d0:68:76:a6:40:27:2e:e5:7a:f4:bc:49: ce:30:2c:a9:48:64:45:27:34:f2:2e:9b:2d:52:ee:9e:cd:2d: 1f:50:20:75:01:e5:6a:88:c8:4d:98:eb:14:ad:e0:56:3b:0b: b2:34:b5:bd:7c:ff:ec:ac:fb:20:8b:89:8f:6e:d7:7d:a1:ef: f3:da:0f:d4:f8:1c:0e:fe:4e:4b:88:9f:19:c8:bb:ed:1b:c3: 75:87:ef:95:1f:a3:0a:51:d0:4f:1b:17:f2:24:0d:cd:a4:7e: 39:dc:a7:7e:36:6b:59:3c:cd:b9:41:7e:c7:9b:42:b4:33:dc: 15:20:6c:6c:04:56:92:fc:a7:0c:11:67:f2:c5:bb:34:2b:7b: 9e:c0:34:8d:07:52:bd:15:7e:c0:09:c7:4d:ab:20:26:92:f3: 0d:37:8e:9d:2a:c2:06:f3:f6:ea:ff:44:98:fb:04:39:fc:fd: 20:5b:94:e7:b1:f9:d7:c6:f1:fc:75:2f:ea:f4:80:0b:21:6f: 33:e0:87:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUwNTMxMDEyNjU5WhcNMjUwNjA3MDEyNjU5WjAYMRYwFAYD VQQDEw02ODNhNWFlMy03OGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMpP9GRVAsGlDNhVymTNbtpqu+1M67Zsy7AzWmBxBQ8pbUXDscVPQ77Y0OEC YRz6l61Samx/a86UgbB2QDZF9/OcpnuLY2xszYE1v9P0fmWnfIBBswqW6YCE27gY JQBeMp9Owu8O2bFvGiGiC2WIiMiYxsIMzKZoaG4v0SxGBgXNWcKjlup8JjE1ZqzK UYqZwt6LeiRF+QwdwlGRjd5Hnt1BOcgBkCOuGzYkbYc+RfJOZJaoycrsnqnOuqmy jLjTVqQDLhUTP3QdeyW7e3jpMrEObUkAoYzgAyx1xiTESuG2VE+/U+mbY//q2VTu FOdzGJ+y7kO7eBa/EicDU+bYywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDp5Pz4E 8jMCb3l8mkGn3/3OnCPYMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGdQBxzMgun7QkLwjXjyR/EOS1l7q9Z2yGFvYUS0xtwgIP/969wQ02 1KOfwbk7FMJdyVHbJEH/OCqpC/bQaHamQCcu5Xr0vEnOMCypSGRFJzTyLpstUu6e zS0fUCB1AeVqiMhNmOsUreBWOwuyNLW9fP/srPsgi4mPbtd9oe/z2g/U+BwO/k5L iJ8ZyLvtG8N1h++VH6MKUdBPGxfyJA3NpH453Kd+NmtZPM25QX7Hm0K0M9wVIGxs BFaS/KcMEWfyxbs0K3uewDSNB1K9FX7ACcdNqyAmkvMNN46dKsIG8/bq/0SY+wQ5 /P0gW5TnsfnXxvH8dS/q9IALIW8z4IcZ -----END CERTIFICATE-----Generated at Sat May 31 17:11:27 2025 by rpki-client