$ rpki-client -vvf rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft File: h-gMDkYzEKnTA4zgE88YU3SlxyI.mft (raw, json) Hash identifier: dMv6IKTShfp6rSWt/F6MB0Zz1cuYmto+7vmJb0sP88M= Subject key identifier: 18:80:AE:15:D9:CD:1F:C1:3D:71:1E:16:83:04:1C:86:06:66:6C:43 Authority key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 Certificate issuer: /CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft Manifest number: 05D0 Signing time: Fri 30 May 2025 23:16:37 +0000 Manifest this update: Fri 30 May 2025 23:16:37 +0000 Manifest next update: Fri 06 Jun 2025 23:16:37 +0000 Files and hashes: 1: h-gMDkYzEKnTA4zgE88YU3SlxyI.crl (hash: MfteHkqQH5zYKyjFF9dCf6FcmPwF50ThYNAnQhgmtLw=) 2: C850F3BA89A511EEB6692E43C4F9AE02.roa (hash: UO8+/PNJyP8F2PV5d82ae9pJgiAAnCCFoOA6ej/PePM=) 3: C49CE482BEA411EB85828650C4F9AE02.roa (hash: SYzw7W4I8ERB2k6TGS/FM3oGH7TQqDLdsyK12v9ZWyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918524B, serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Validity Not Before: May 30 23:16:37 2025 GMT Not After : Jun 6 23:16:37 2025 GMT Subject: CN=683a3c55-c977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3a:13:85:ec:04:0c:fe:3e:6b:81:fd:a9:a9: ab:18:da:f9:f6:3b:d1:88:fb:b7:fe:45:2e:9c:86: 9f:2f:92:62:b7:c3:d2:bc:30:fd:b9:a3:c3:9a:99: 41:c0:fe:c7:f2:0e:3b:41:46:e9:fe:55:38:7c:b1: fc:78:43:ef:75:d5:02:96:46:34:1c:ec:d5:e9:18: 96:a4:eb:47:05:9f:55:90:b2:ff:b7:66:d3:c9:c4: 03:44:36:ce:10:a7:95:02:ad:6d:54:44:7c:7b:7a: 5e:7b:4d:81:56:07:d7:e8:a4:87:59:31:6f:85:cb: 65:57:0a:a2:d4:4f:db:b5:f9:d8:b8:a4:2a:d2:9e: d0:97:59:04:e1:e1:eb:1d:68:87:6e:90:bc:53:af: 0a:cf:70:17:12:8b:61:1b:40:d4:5a:e3:a2:35:24: 97:85:d7:be:24:64:3e:3b:17:b4:d6:fb:38:cd:06: 01:3f:b0:9a:c2:a8:bb:fc:e8:4e:1b:e4:4b:80:2a: 11:a2:f7:f6:49:87:01:e0:d6:c6:75:da:0b:ad:7d: 69:b0:17:7c:1f:85:a4:45:74:14:a8:91:01:fc:df: cf:fa:a7:c4:73:60:2d:67:ba:03:14:05:41:89:b6: 16:3b:a5:ed:13:bb:5f:da:81:07:91:80:10:e7:d0: 2e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:80:AE:15:D9:CD:1F:C1:3D:71:1E:16:83:04:1C:86:06:66:6C:43 X509v3 Authority Key Identifier: keyid:87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:45:42:a3:01:9b:bc:3f:14:38:d1:7f:be:72:e0:3a:0d:c3: 15:a5:1f:e3:01:69:a1:e3:ee:31:89:bd:09:d5:79:84:22:49: 8e:96:63:19:be:38:a2:8c:b4:55:26:90:ba:8f:a6:50:db:e4: 6e:8f:c7:2e:ee:67:69:bd:b6:ff:a4:9b:27:34:5f:b9:10:8e: fc:82:d7:be:86:99:2e:fe:c7:6b:7a:02:52:6a:8d:e2:72:4e: 03:fc:e3:e1:92:58:f5:11:c5:b9:0c:18:02:e2:38:e1:16:91: 28:24:d4:af:ef:d2:36:ff:c5:b8:29:71:80:5d:b4:91:45:71: 36:95:81:21:ec:c2:63:ad:fe:01:08:4a:a0:f8:21:44:cf:24: 2e:c4:ee:ef:31:5b:44:42:c7:4c:12:ea:63:00:20:39:28:92: 29:0d:e9:ef:87:88:eb:90:e1:df:33:54:8b:9a:6f:e8:f7:c5: 29:b1:26:93:44:b2:64:bf:2e:e1:fb:05:2f:9d:5d:a5:94:7b: 46:65:26:c2:c7:cf:83:de:c1:d7:a4:8d:a3:2e:f0:30:d2:98: 8d:d8:fe:c0:2f:0c:c9:96:3b:12:19:46:7f:93:49:da:60:d2: 97:a9:51:9d:96:83:65:46:dd:80:10:68:da:d0:a5:fa:65:9e: fc:a0:0a:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyNEIxMTAvBgNVBAUTKDg3RTgwQzBFNDYzMzEwQTlEMzAzOENFMDEzQ0YxODUz NzRBNUM3MjIwHhcNMjUwNTMwMjMxNjM3WhcNMjUwNjA2MjMxNjM3WjAYMRYwFAYD VQQDEw02ODNhM2M1NS1jOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzoThewEDP4+a4H9qamrGNr59jvRiPu3/kUunIafL5Jit8PSvDD9uaPDmplB wP7H8g47QUbp/lU4fLH8eEPvddUClkY0HOzV6RiWpOtHBZ9VkLL/t2bTycQDRDbO EKeVAq1tVER8e3pee02BVgfX6KSHWTFvhctlVwqi1E/btfnYuKQq0p7Ql1kE4eHr HWiHbpC8U68Kz3AXEothG0DUWuOiNSSXhde+JGQ+Oxe01vs4zQYBP7Cawqi7/OhO G+RLgCoRovf2SYcB4NbGddoLrX1psBd8H4WkRXQUqJEB/N/P+qfEc2AtZ7oDFAVB ibYWO6XtE7tf2oEHkYAQ59AucwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiArhXZ zR/BPXEeFoMEHIYGZmxDMB8GA1UdIwQYMBaAFIfoDA5GMxCp0wOM4BPPGFN0pcci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTI0Qi85MjQwNkEwNkJF QTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVLblRBNHpnRTg4WVUzU2x4 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gtZ01Ea1l6RUtuVEE0emdFODhZVTNTbHh5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTI0Qi85MjQwNkEwNkJFQTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVL blRBNHpnRTg4WVUzU2x4eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdRUKjAZu8PxQ40X++cuA6DcMVpR/jAWmh4+4xib0J1XmEIkmOlmMZ vjiijLRVJpC6j6ZQ2+Ruj8cu7mdpvbb/pJsnNF+5EI78gte+hpku/sdregJSao3i ck4D/OPhklj1EcW5DBgC4jjhFpEoJNSv79I2/8W4KXGAXbSRRXE2lYEh7MJjrf4B CEqg+CFEzyQuxO7vMVtEQsdMEupjACA5KJIpDenvh4jrkOHfM1SLmm/o98UpsSaT RLJkvy7h+wUvnV2llHtGZSbCx8+D3sHXpI2jLvAw0piN2P7ALwzJljsSGUZ/k0na YNKXqVGdloNlRt2AEGja0KX6ZZ78oApI -----END CERTIFICATE-----Generated at Sat May 31 15:38:33 2025 by rpki-client