$ rpki-client -vvf rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft File: cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft (raw, json) Hash identifier: DAC/WEw2+t3Lk4mpIgxV3K+ArDzxvoS62bS51nPc6qI= Subject key identifier: AD:0D:8F:06:6F:47:BB:6B:FA:EF:B8:2D:21:D6:13:68:13:E3:F9:98 Authority key identifier: 70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 Certificate issuer: /CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Certificate serial: 1066 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft Manifest number: 105F Signing time: Fri 30 May 2025 17:32:48 +0000 Manifest this update: Fri 30 May 2025 17:32:48 +0000 Manifest next update: Fri 06 Jun 2025 17:32:48 +0000 Files and hashes: 1: cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl (hash: TODves1tCL4RSe13jnFbnLiL27O/NBc/rYUW5y0YftM=) 2: 74087358355111E99EC82E0AC4F9AE02.roa (hash: tyb0mMEVFvr0b00WBN86r+sNpOhKC86WXh33owud0/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4198 (0x1066) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D49F, serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Validity Not Before: May 30 17:32:48 2025 GMT Not After : Jun 6 17:32:48 2025 GMT Subject: CN=6839ebc0-842b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:05:90:3c:14:93:5b:21:80:d3:d8:00:24:a1: ac:5f:94:20:db:88:2b:94:86:b3:ba:5c:4e:50:2b: 22:b3:76:76:51:47:a6:4e:88:2c:ea:fd:ee:e2:e9: b8:1c:96:3d:84:7c:52:1f:a6:8f:d2:16:ae:9c:c0: a6:7c:52:ca:78:f3:28:a0:6f:c1:64:60:17:57:3d: 16:a8:2a:bf:71:7c:49:ee:01:6d:3f:6c:c5:3e:b3: 08:e3:12:c1:c0:ee:dc:23:36:c1:2a:32:f2:b2:1e: c0:75:14:54:92:af:ea:f2:80:93:20:51:56:71:73: 95:93:dc:9c:5b:ea:aa:1a:6a:97:95:f1:ec:58:6f: a3:d5:f6:8d:f8:ae:e7:ea:49:fe:99:33:98:c7:59: 13:80:5d:73:79:b1:d4:0d:54:f0:b5:c5:55:86:f3: 88:dd:68:9c:a5:4c:70:3c:f2:20:dd:a7:44:d1:dc: 28:cb:10:2b:92:64:f7:d4:ff:03:e3:6b:67:d8:25: 6a:92:64:30:da:8e:23:04:04:a4:35:35:7b:25:dd: bb:bc:b5:a8:5e:a9:70:d4:8c:e6:22:67:70:1c:47: 88:36:04:af:bb:82:82:72:af:17:9b:cc:dd:ed:2a: 1f:1c:fb:38:38:08:e2:ce:fe:b0:e5:6d:e5:3a:c4: e4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:0D:8F:06:6F:47:BB:6B:FA:EF:B8:2D:21:D6:13:68:13:E3:F9:98 X509v3 Authority Key Identifier: keyid:70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:77:25:c3:0c:9a:31:3a:4e:7c:b0:36:2e:06:c4:59:69:45: 00:f0:f1:fd:64:f8:6c:f9:b0:cb:d7:8b:11:c0:cb:1f:28:ee: 20:65:2c:67:9d:14:9b:5e:5d:76:1d:f8:d1:5c:3d:4d:f7:ad: f7:7e:af:60:fd:c1:1f:04:b8:d5:f7:db:36:0d:cd:50:78:70: c9:85:b8:5a:9a:e7:6f:09:28:dd:c1:bb:6c:2e:c0:8c:72:1d: 17:0f:40:dc:2a:a3:d9:eb:ec:a7:c6:f4:c7:7c:de:ad:e3:b6: 80:0d:0c:78:e7:c8:4c:58:37:88:d1:c7:60:79:e2:2c:e7:d4: 50:ae:49:7b:3b:5c:42:b6:2b:29:02:49:28:af:d3:4a:61:4d: 06:6a:ea:c6:55:08:93:64:b1:0b:25:a6:73:9d:e0:70:30:76: 47:ac:72:f1:fb:7d:d4:e3:27:e0:03:d1:0d:21:db:2a:d4:fa: 7c:3d:43:c1:3d:58:3d:54:bc:78:0d:eb:24:4c:c8:d5:59:04: 39:1e:50:a7:ea:46:f7:ec:04:31:89:34:b8:3c:64:33:6b:a6: 6a:93:9c:2a:80:7d:97:8b:a9:3c:6c:3a:a0:c9:9c:96:be:54: 37:27:db:3b:d8:3e:8f:93:d5:38:bc:71:bf:91:40:30:e3:04: dc:2e:7d:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ0OUYxMTAvBgNVBAUTKDcwN0Q0ODYwNUEwRDg1NzcyRjkwREM0QjExNzJCRUYz MDI5NEEwODcwHhcNMjUwNTMwMTczMjQ4WhcNMjUwNjA2MTczMjQ4WjAYMRYwFAYD VQQDEw02ODM5ZWJjMC04NDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAWQPBSTWyGA09gAJKGsX5Qg24grlIazulxOUCsis3Z2UUemTogs6v3u4um4 HJY9hHxSH6aP0haunMCmfFLKePMooG/BZGAXVz0WqCq/cXxJ7gFtP2zFPrMI4xLB wO7cIzbBKjLysh7AdRRUkq/q8oCTIFFWcXOVk9ycW+qqGmqXlfHsWG+j1faN+K7n 6kn+mTOYx1kTgF1zebHUDVTwtcVVhvOI3WicpUxwPPIg3adE0dwoyxArkmT31P8D 42tn2CVqkmQw2o4jBASkNTV7Jd27vLWoXqlw1IzmImdwHEeINgSvu4KCcq8Xm8zd 7SofHPs4OAjizv6w5W3lOsTk8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0NjwZv R7tr+u+4LSHWE2gT4/mYMB8GA1UdIwQYMBaAFHB9SGBaDYV3L5DcSxFyvvMClKCH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDQ5Ri8wQkFDODU1NjM1 NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhYY3ZrTnhMRVhLLTh3S1Vv SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIMUlZRm9OaFhjdmtOeExFWEstOHdLVW9JYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDQ5Ri8wQkFDODU1NjM1NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhY Y3ZrTnhMRVhLLTh3S1VvSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOdyXDDJoxOk58sDYuBsRZaUUA8PH9ZPhs+bDL14sRwMsfKO4gZSxn nRSbXl12HfjRXD1N9633fq9g/cEfBLjV99s2Dc1QeHDJhbhamudvCSjdwbtsLsCM ch0XD0DcKqPZ6+ynxvTHfN6t47aADQx458hMWDeI0cdgeeIs59RQrkl7O1xCtisp Akkor9NKYU0GaurGVQiTZLELJaZzneBwMHZHrHLx+33U4yfgA9ENIdsq1Pp8PUPB PVg9VLx4DeskTMjVWQQ5HlCn6kb37AQxiTS4PGQza6Zqk5wqgH2Xi6k8bDqgyZyW vlQ3J9s72D6Pk9U4vHG/kUAw4wTcLn1l -----END CERTIFICATE-----Generated at Sat May 31 17:28:54 2025 by rpki-client