$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: amyC9pLpTT2wGp9eGUemlUT4XtMU8Tuhr5JDZP3DbQQ= Subject key identifier: 8C:E2:72:00:DF:F2:71:90:1A:A0:2C:48:11:15:4B:B7:09:3E:F1:7B Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0BDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0BD5 Signing time: Sat 31 May 2025 18:54:32 +0000 Manifest this update: Sat 31 May 2025 18:54:31 +0000 Manifest next update: Sat 07 Jun 2025 18:54:31 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: GI9NTqbvItUOBUpBw5y75wqtKNyOp7DPJJBGCH9ESb4=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3036 (0xbdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: May 31 18:54:31 2025 GMT Not After : Jun 7 18:54:31 2025 GMT Subject: CN=683b5067-2f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:22:08:67:21:24:de:ef:83:a9:52:86:f4:ee: 58:97:06:3e:69:3c:ce:0c:9e:ba:c3:f6:fc:91:64: a0:b9:1a:0b:10:a2:f3:2a:d7:66:31:f8:b0:20:9a: 55:7b:02:45:60:73:1c:c9:31:60:64:a5:43:37:89: 1a:46:a0:0c:7a:b8:f8:ef:fa:93:19:04:f9:c6:9e: 02:8a:39:99:df:71:5c:6c:ce:91:b0:7b:1c:32:73: ec:67:61:47:2f:c9:af:59:60:36:b5:91:84:89:87: 97:fc:26:b6:b8:5d:86:e4:bd:88:07:28:dd:4f:61: f0:58:86:6a:f3:b4:05:a7:55:52:24:51:1e:07:4c: 65:50:06:b8:d1:a4:33:05:7e:40:a8:8a:06:e8:b2: 1e:50:6f:a2:3d:9d:c8:8f:f9:f1:1b:5d:fd:86:d6: d8:d5:8b:94:f7:e1:96:ea:a5:bf:c7:83:de:fb:0d: e4:4f:69:d0:7a:36:35:36:fd:59:c6:8a:e9:9e:3f: b3:d5:76:94:94:84:3a:5f:1f:13:da:7e:08:fd:c1: 73:af:67:88:53:ce:a2:6c:d5:22:3e:10:11:48:6d: 8c:4e:de:1b:12:9b:c7:84:97:4f:89:b6:94:3b:bc: 08:05:b6:2a:8c:eb:98:08:39:3a:20:7f:1c:43:26: ec:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E2:72:00:DF:F2:71:90:1A:A0:2C:48:11:15:4B:B7:09:3E:F1:7B X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:31:0e:f2:87:af:9b:2d:f3:a0:c1:62:a2:af:d7:ba:02:60: 43:9e:4e:ea:16:52:62:a8:ce:55:c4:6b:a7:2d:de:26:a6:d5: dd:dd:72:5f:b2:5b:2a:88:38:0d:c9:a3:39:e6:da:3e:dc:3a: 99:8a:08:5f:f0:d9:f4:58:ca:40:6a:46:40:6d:2f:7c:e4:49: 3b:f2:20:ab:dc:47:19:92:a9:eb:6b:e6:57:87:a0:34:cd:4b: 65:c7:e3:1a:f1:eb:21:b7:e8:38:d1:e1:5e:4a:64:bc:7f:26: 45:69:74:ed:54:d0:4f:74:d8:e0:a0:81:fe:8b:d0:96:e4:e0: fd:44:7e:12:37:01:38:07:29:3b:94:55:f5:3e:23:39:c6:06: 15:f6:de:37:56:d5:20:96:61:b2:cd:d7:4c:42:a4:e4:74:a7: eb:e8:68:d1:70:a6:65:9b:ac:8d:03:3b:43:43:b7:a7:87:28: 6c:f4:81:03:3c:e0:29:4c:a7:a0:72:75:93:b3:3a:dd:d9:39: 80:3d:71:10:45:3d:44:74:0d:49:8c:54:b3:d2:1d:b6:4d:62: b4:47:ad:1d:2b:da:4b:d5:9a:9e:5d:cc:b4:43:30:43:d7:29: 17:f2:77:ac:c0:5b:3d:8d:22:5a:7c:fc:08:52:ee:4d:7f:ff: 4f:ae:b7:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUwNTMxMTg1NDMxWhcNMjUwNjA3MTg1NDMxWjAYMRYwFAYD VQQDEw02ODNiNTA2Ny0yZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyIIZyEk3u+DqVKG9O5YlwY+aTzODJ66w/b8kWSguRoLEKLzKtdmMfiwIJpV ewJFYHMcyTFgZKVDN4kaRqAMerj47/qTGQT5xp4CijmZ33FcbM6RsHscMnPsZ2FH L8mvWWA2tZGEiYeX/Ca2uF2G5L2IByjdT2HwWIZq87QFp1VSJFEeB0xlUAa40aQz BX5AqIoG6LIeUG+iPZ3Ij/nxG139htbY1YuU9+GW6qW/x4Pe+w3kT2nQejY1Nv1Z xorpnj+z1XaUlIQ6Xx8T2n4I/cFzr2eIU86ibNUiPhARSG2MTt4bEpvHhJdPibaU O7wIBbYqjOuYCDk6IH8cQybsYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzicgDf 8nGQGqAsSBEVS7cJPvF7MB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8MQ7yh6+bLfOgwWKir9e6AmBDnk7qFlJiqM5VxGunLd4mptXd3XJf slsqiDgNyaM55to+3DqZighf8Nn0WMpAakZAbS985Ek78iCr3EcZkqnra+ZXh6A0 zUtlx+Ma8esht+g40eFeSmS8fyZFaXTtVNBPdNjgoIH+i9CW5OD9RH4SNwE4Byk7 lFX1PiM5xgYV9t43VtUglmGyzddMQqTkdKfr6GjRcKZlm6yNAztDQ7enhyhs9IED POApTKegcnWTszrd2TmAPXEQRT1EdA1JjFSz0h22TWK0R60dK9pL1ZqeXcy0QzBD 1ykX8neswFs9jSJafPwIUu5Nf/9PrrdW -----END CERTIFICATE-----Generated at Mon Jun 2 07:16:23 2025 by rpki-client