$ rpki-client -vvf rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft File: h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft (raw, json) Hash identifier: xqXFf7aUZ1e2vJMTZPb37QWm1KFfEZ3gdYQcpAPwkDU= Subject key identifier: 73:C6:41:8C:FF:8A:71:BA:F1:21:F4:6D:17:C5:18:96:CF:6F:D6:17 Authority key identifier: 87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 Certificate issuer: /CN=A919D180/serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft Manifest number: 52 Signing time: Sat 31 May 2025 06:59:32 +0000 Manifest this update: Sat 31 May 2025 06:59:32 +0000 Manifest next update: Sat 07 Jun 2025 06:59:32 +0000 Files and hashes: 1: h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl (hash: WDvYFa3/YXN3DVdr/KuSkl/hAyQ9Wi/fCxFrnH/uozg=) 2: C8D5160AE75E11EF97E59E40C4F9AE02.roa (hash: usgzG5l4Fc/vVVRb6d9DCRrnc0s/zMN8s4ksanz/FtM=) 3: 8A991E5AD6DC11EF9E9B2B15C4F9AE02.roa (hash: FHrz83TvBf0PQed/UPRQj7z6Reuifr4TTzu0H0Cz+Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D180, serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Validity Not Before: May 31 06:59:32 2025 GMT Not After : Jun 7 06:59:32 2025 GMT Subject: CN=683aa8d4-51e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1e:38:24:9a:06:84:a9:89:f1:15:c5:21:0d: 9e:df:1d:29:fa:34:79:cc:83:8d:d6:16:39:b8:70: 4a:66:e2:4b:10:ea:81:d4:e8:4a:34:38:a9:d8:10: 17:1b:32:90:20:cb:1a:84:04:18:7d:91:55:0d:6e: 56:a4:62:e6:75:02:0e:e2:82:04:d7:62:2c:10:f7: 97:c1:51:72:b7:75:87:9a:33:cf:fd:8d:54:36:d0: ab:68:fe:15:37:78:a7:4d:25:38:e6:97:3f:8b:1b: 8f:28:d5:dd:7b:4f:a8:f1:b4:7b:84:f7:13:0a:e6: 0b:f4:8c:ff:57:f1:7c:e7:87:dc:4b:ea:33:a1:b9: fa:cc:b8:4a:ec:61:1f:27:9a:63:67:4e:ab:ac:5a: ee:cd:0e:f9:92:e5:f4:06:40:e1:d3:e2:45:ce:75: 2d:33:d9:9a:c9:50:9b:05:9f:84:70:90:ab:62:59: 05:d8:68:e8:24:72:f5:78:d3:e6:79:e1:5b:99:3b: d3:6e:08:5e:bc:5b:f0:d0:45:fe:b4:79:c0:79:44: 0a:dc:49:23:c3:40:55:e5:e2:7f:9f:74:4d:ac:55: af:dd:07:38:0c:5f:6a:4d:09:64:7a:af:a6:de:9b: 18:f8:a3:b9:a0:11:af:6a:fd:e9:59:02:40:b0:63: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C6:41:8C:FF:8A:71:BA:F1:21:F4:6D:17:C5:18:96:CF:6F:D6:17 X509v3 Authority Key Identifier: keyid:87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:7e:d5:02:fd:c7:0b:e4:9c:17:7a:ea:86:cb:75:ea:23:d4: 35:c0:cf:e7:ec:75:64:c5:9a:0b:42:4c:43:f0:9e:9e:4d:2a: 8f:aa:e5:b0:cf:c1:83:cf:c1:bf:d5:0d:aa:b9:d5:73:57:86: e0:ad:23:a7:60:2f:ff:82:76:26:11:7b:44:cc:1f:bf:ce:d0: 5f:53:e5:8e:df:ef:65:06:71:05:3c:dc:86:4d:ac:ce:a2:61: ac:6c:44:27:1a:14:59:04:70:3d:76:48:59:e7:25:8b:57:86: a8:aa:59:d6:04:47:8e:08:81:47:3e:06:ed:f6:39:08:f9:35: cd:6b:93:f6:54:a9:30:50:86:d3:44:76:ed:43:96:3a:1e:c3: 3c:e3:93:fa:29:ad:0e:9c:62:f8:66:e8:79:42:8c:22:57:d2: fe:b6:44:f1:1c:9e:96:85:9d:cd:dc:5a:50:a2:de:04:9d:c7: 63:52:96:df:58:e4:fb:c3:cd:1f:15:6c:49:50:aa:bd:da:45: 51:fe:4e:44:1a:31:c6:30:de:78:ac:ce:34:22:63:ca:bc:ca: b3:7a:cf:15:6a:e6:75:33:f8:cb:b8:ae:c5:52:b1:4f:15:04: ca:84:da:02:68:c1:56:77:6c:b0:f7:24:76:3c:f3:bd:57:d5: 11:0d:48:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDE4MDExMC8GA1UEBRMoODdEQTQ0QTRDRjgzOUMzODgxQzZCQzM4NjgzQ0NEQzMw OENBN0NFOTAeFw0yNTA1MzEwNjU5MzJaFw0yNTA2MDcwNjU5MzJaMBgxFjAUBgNV BAMTDTY4M2FhOGQ0LTUxZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcHjgkmgaEqYnxFcUhDZ7fHSn6NHnMg43WFjm4cEpm4ksQ6oHU6Eo0OKnYEBcb MpAgyxqEBBh9kVUNblakYuZ1Ag7iggTXYiwQ95fBUXK3dYeaM8/9jVQ20Kto/hU3 eKdNJTjmlz+LG48o1d17T6jxtHuE9xMK5gv0jP9X8Xznh9xL6jOhufrMuErsYR8n mmNnTqusWu7NDvmS5fQGQOHT4kXOdS0z2ZrJUJsFn4RwkKtiWQXYaOgkcvV40+Z5 4VuZO9NuCF68W/DQRf60ecB5RArcSSPDQFXl4n+fdE2sVa/dBzgMX2pNCWR6r6be mxj4o7mgEa9q/elZAkCwY1rtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc8ZBjP+K cbrxIfRtF8UYls9v1hcwHwYDVR0jBBgwFoAUh9pEpM+DnDiBxrw4aDzNwwjKfOkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMTgwLzc3NDI4N0YyRDZD NzExRUZBM0UxRDgxQ0M0RjlBRTAyL2g5cEVwTS1EbkRpQnhydzRhRHpOd3dqS2ZP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDlwRXBNLURuRGlCeHJ3NGFEek53d2pLZk9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE MTgwLzc3NDI4N0YyRDZDNzExRUZBM0UxRDgxQ0M0RjlBRTAyL2g5cEVwTS1EbkRp QnhydzRhRHpOd3dqS2ZPay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALN+1QL9xwvknBd66obLdeoj1DXAz+fsdWTFmgtCTEPwnp5NKo+q5bDP wYPPwb/VDaq51XNXhuCtI6dgL/+CdiYRe0TMH7/O0F9T5Y7f72UGcQU83IZNrM6i YaxsRCcaFFkEcD12SFnnJYtXhqiqWdYER44IgUc+Bu32OQj5Nc1rk/ZUqTBQhtNE du1Dljoewzzjk/oprQ6cYvhm6HlCjCJX0v62RPEcnpaFnc3cWlCi3gSdx2NSlt9Y 5PvDzR8VbElQqr3aRVH+TkQaMcYw3niszjQiY8q8yrN6zxVq5nUz+Mu4rsVSsU8V BMqE2gJowVZ3bLD3JHY8871X1RENSFs= -----END CERTIFICATE-----Generated at Sat May 31 17:31:57 2025 by rpki-client