$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: L/VYjYYMMhzvNxP3c/MLlWFPqpLLguq9dHXxuYreBw0= Subject key identifier: A0:72:91:8A:AA:99:33:37:C4:1C:8B:2B:92:11:58:F6:C7:F6:9A:C1 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 09F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 09EB Signing time: Fri 30 May 2025 20:04:57 +0000 Manifest this update: Fri 30 May 2025 20:04:57 +0000 Manifest next update: Fri 06 Jun 2025 20:04:57 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: ws+swhvSGXhmG+z+itVrmL5ClLdKrycWPVDfktX045M=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2552 (0x9f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: May 30 20:04:57 2025 GMT Not After : Jun 6 20:04:57 2025 GMT Subject: CN=683a0f69-a5f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bb:eb:f7:56:6d:f3:dc:68:f9:95:cc:68:cf: e0:2f:42:e5:49:31:84:ed:9c:81:06:bb:45:16:a2: e1:ac:1d:7f:ed:2e:d3:aa:84:d7:56:99:ae:d2:4b: ef:ec:17:99:86:51:62:be:67:8b:ce:2b:da:59:9b: e8:50:4d:14:3b:a6:47:f0:4c:76:9c:d0:ad:98:52: 96:4d:c6:b5:4e:e7:f8:3b:fd:da:81:fc:18:41:1a: c4:a1:cf:2f:29:3f:0c:17:05:ce:ad:99:85:b3:21: 6c:f5:d2:04:4a:28:6c:7e:ac:29:f1:ab:bf:3a:10: 99:d3:93:33:a5:44:d5:4f:57:be:3d:a0:5b:f2:9f: 9b:ed:1d:5b:8d:2f:11:15:60:dc:20:68:5b:81:f0: 51:0b:15:64:28:df:16:c9:ac:18:51:9d:9e:ea:f9: 75:d0:d0:00:9f:12:a3:06:b8:b3:92:ef:b9:98:f7: 45:ab:0b:b1:c1:84:44:9c:19:61:ed:0c:69:52:1c: 57:46:de:94:86:e9:06:07:30:66:35:3c:10:9b:95: 62:09:3f:0b:2a:e2:58:a9:21:e0:5d:3e:e3:bb:87: 55:39:9a:76:77:09:8c:db:9d:7c:47:2d:03:90:aa: b4:0b:e2:2f:6e:e3:8d:a4:74:6c:3e:dd:49:54:35: d8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:72:91:8A:AA:99:33:37:C4:1C:8B:2B:92:11:58:F6:C7:F6:9A:C1 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:f0:84:6e:ee:13:b0:2e:76:0c:25:dc:76:c5:e3:3e:b4:3a: 9f:a4:58:c6:01:4d:06:1b:88:37:dd:6f:6f:fc:24:64:4b:c5: 88:c3:91:c3:92:50:7e:36:56:b4:4a:a2:81:f0:f1:8c:6e:88: 5a:0f:a7:1e:8f:ef:ee:33:0d:46:c8:97:2e:a7:f8:36:76:b0: 2c:72:70:5d:17:05:03:ea:08:45:4d:ac:fb:5d:d6:85:a3:8b: c6:99:af:42:4c:82:80:7c:1d:e1:5b:2e:c8:a5:19:74:8a:8c: 9b:04:7b:aa:cb:bb:71:a7:8c:8c:3c:c7:da:cf:56:6c:d3:21: ad:6a:ec:85:fa:2d:43:58:01:77:a2:10:2f:99:96:04:12:b6: cd:f5:38:96:81:50:78:81:99:64:6e:c5:61:f1:41:a4:b5:f6: 3b:b2:7e:d2:c7:34:72:1e:5e:58:09:be:f6:2d:08:bf:0c:7f: fd:cc:00:5c:6a:9b:b7:1f:c7:08:8c:1a:5c:9a:6c:bc:5a:e0: 93:63:ab:7d:d8:a4:ff:08:e5:1e:ae:ac:03:38:54:58:1a:3a: 2a:ad:63:88:f5:78:fe:e1:d8:ad:6a:72:1d:02:0e:42:15:fc: 4d:20:6c:b1:12:e9:81:6e:c8:f6:7c:99:46:12:86:41:bd:bc: ab:eb:97:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwNTMwMjAwNDU3WhcNMjUwNjA2MjAwNDU3WjAYMRYwFAYD VQQDEw02ODNhMGY2OS1hNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7vr91Zt89xo+ZXMaM/gL0LlSTGE7ZyBBrtFFqLhrB1/7S7TqoTXVpmu0kvv 7BeZhlFivmeLzivaWZvoUE0UO6ZH8Ex2nNCtmFKWTca1Tuf4O/3agfwYQRrEoc8v KT8MFwXOrZmFsyFs9dIESihsfqwp8au/OhCZ05MzpUTVT1e+PaBb8p+b7R1bjS8R FWDcIGhbgfBRCxVkKN8WyawYUZ2e6vl10NAAnxKjBrizku+5mPdFqwuxwYREnBlh 7QxpUhxXRt6UhukGBzBmNTwQm5ViCT8LKuJYqSHgXT7ju4dVOZp2dwmM2518Ry0D kKq0C+IvbuONpHRsPt1JVDXYxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBykYqq mTM3xByLK5IRWPbH9prBMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA88IRu7hOwLnYMJdx2xeM+tDqfpFjGAU0GG4g33W9v/CRkS8WIw5HD klB+Nla0SqKB8PGMbohaD6cej+/uMw1GyJcup/g2drAscnBdFwUD6ghFTaz7XdaF o4vGma9CTIKAfB3hWy7IpRl0ioybBHuqy7txp4yMPMfaz1Zs0yGtauyF+i1DWAF3 ohAvmZYEErbN9TiWgVB4gZlkbsVh8UGktfY7sn7SxzRyHl5YCb72LQi/DH/9zABc apu3H8cIjBpcmmy8WuCTY6t92KT/COUerqwDOFRYGjoqrWOI9Xj+4ditanIdAg5C FfxNIGyxEumBbsj2fJlGEoZBvbyr65fi -----END CERTIFICATE-----Generated at Sat May 31 17:49:40 2025 by rpki-client