$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft File: Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft (raw, json) Hash identifier: tIwizOVRF0CQqTBrx2yTyZcsehD3ald805udc3f1JdA= Subject key identifier: 02:52:F2:9F:0E:28:AA:5A:DE:6C:CB:D1:1D:77:52:F7:33:A4:67:44 Authority key identifier: 1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A Certificate issuer: /CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Certificate serial: 0483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft Manifest number: 047F Signing time: Sat 07 Jun 2025 00:06:08 +0000 Manifest this update: Sat 07 Jun 2025 00:06:08 +0000 Manifest next update: Sat 14 Jun 2025 00:06:08 +0000 Files and hashes: 1: Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl (hash: kfwzptNr49V+yJSHQT/OPnd3CvNyeGhyoGbXCpkvPpo=) 2: B5F911E8429411EC8882FA1EC4F9AE02.roa (hash: Ib+CF/sk+KvnPvMxoim8MHqeWZYKc+NyST1cJiaAhsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 00:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFC4E, serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Validity Not Before: Jun 7 00:06:08 2025 GMT Not After : Jun 14 00:06:08 2025 GMT Subject: CN=68438270-e0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:df:22:28:e4:86:c6:ae:1f:18:dd:3e:75:ea: 9a:d5:3f:0f:d3:08:1f:8e:f0:b5:b9:59:73:fd:8c: 9a:b4:7b:30:99:0c:6f:01:d9:32:59:5c:ee:c7:89: b4:5d:9b:78:f5:0a:6e:88:a2:bb:a7:94:15:f3:64: d9:db:b3:09:27:13:0a:76:55:54:1c:52:44:cd:c3: 98:44:89:a4:aa:3d:d6:00:a4:87:34:4b:14:b0:2f: d8:1d:23:29:15:41:69:14:57:af:ae:26:5e:55:c7: fe:40:7c:9e:a9:a0:cf:b4:19:40:94:53:66:03:4e: 29:90:d8:83:09:cc:29:08:f2:f8:ff:c3:ed:fa:29: 35:93:f9:41:dc:fc:2c:a3:2a:35:a0:de:95:b7:42: e7:d5:6c:f2:18:56:71:00:67:a3:a6:e0:8b:a4:a5: a4:fa:39:01:85:9f:83:1d:1b:02:f8:c1:1c:2b:3f: c4:3f:30:36:8d:62:0d:b5:34:22:bc:4b:ad:a3:79: 2d:70:97:30:8e:d8:79:22:a4:19:b4:2b:1d:ba:44: 30:6b:42:4c:ae:3c:c3:46:52:24:ea:dc:29:af:34: 14:ac:53:21:35:a6:69:b2:7d:04:5e:f3:ac:d4:b0: 2e:6c:59:c0:bb:3b:b0:9f:06:a0:1a:fb:47:34:c2: e8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:52:F2:9F:0E:28:AA:5A:DE:6C:CB:D1:1D:77:52:F7:33:A4:67:44 X509v3 Authority Key Identifier: keyid:1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:64:6b:4b:be:e0:38:b2:4d:5e:c1:6b:a1:ea:60:bd:92:19: 02:ed:f6:33:c1:2c:11:be:cb:6b:db:7d:9e:15:02:45:66:e4: 0b:90:5f:f1:b4:cc:6b:be:02:15:39:89:ab:1d:a9:52:8f:e9: 3c:cb:d8:32:6e:9b:81:98:1e:1a:28:02:7e:da:f6:89:53:fc: 02:b7:d5:52:f8:ae:70:0a:9a:e8:73:87:4d:f5:62:c9:d6:65: 3f:bc:13:64:5d:03:87:53:22:27:96:f8:62:75:77:69:51:7c: cc:d6:1c:d7:0c:8f:25:b6:ed:88:8a:db:ce:0d:52:82:b6:a4: bc:b0:86:73:21:77:95:41:fa:10:13:bb:6e:51:0e:06:99:da: 37:bb:80:f4:08:87:95:fb:78:3d:16:54:ef:88:5f:1c:ba:e2: db:13:65:36:fd:63:8d:90:91:38:9a:ea:d3:d6:0b:fb:ba:45: ed:38:3b:8b:07:08:d2:f9:eb:22:9c:04:f2:eb:af:a8:0d:82: 23:d6:12:99:c2:91:05:ff:6f:b6:47:30:d5:8c:da:2c:68:21: ed:73:d5:9a:36:46:20:e4:9e:ff:62:5d:13:f0:43:7b:6b:d5: 58:ed:f7:4a:bc:1c:34:06:f0:df:b9:d9:c5:f3:6e:a9:e2:6d: 64:12:a3:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZDNEUxMTAvBgNVBAUTKDFFRkVEQTM0Mjg3Rjg1OEREQ0Y0RENFODQyOEMzM0I2 MUM0MUQ5OUEwHhcNMjUwNjA3MDAwNjA4WhcNMjUwNjE0MDAwNjA4WjAYMRYwFAYD VQQDEw02ODQzODI3MC1lMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4N8iKOSGxq4fGN0+deqa1T8P0wgfjvC1uVlz/YyatHswmQxvAdkyWVzux4m0 XZt49QpuiKK7p5QV82TZ27MJJxMKdlVUHFJEzcOYRImkqj3WAKSHNEsUsC/YHSMp FUFpFFevriZeVcf+QHyeqaDPtBlAlFNmA04pkNiDCcwpCPL4/8Pt+ik1k/lB3Pws oyo1oN6Vt0Ln1WzyGFZxAGejpuCLpKWk+jkBhZ+DHRsC+MEcKz/EPzA2jWINtTQi vEuto3ktcJcwjth5IqQZtCsdukQwa0JMrjzDRlIk6twprzQUrFMhNaZpsn0EXvOs 1LAubFnAuzuwnwagGvtHNMLowQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJS8p8O KKpa3mzL0R13UvczpGdEMB8GA1UdIwQYMBaAFB7+2jQof4WN3PTc6EKMM7YcQdma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkM0RS9GQjIyMUQ0MDQy OTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZM2M5TnpvUW93enRoeEIy Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2N2FOQ2hfaFkzYzlOem9Rb3d6dGh4QjJaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkM0RS9GQjIyMUQ0MDQyOTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZ M2M5TnpvUW93enRoeEIyWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArZGtLvuA4sk1ewWuh6mC9khkC7fYzwSwRvstr232eFQJFZuQLkF/x tMxrvgIVOYmrHalSj+k8y9gybpuBmB4aKAJ+2vaJU/wCt9VS+K5wCproc4dN9WLJ 1mU/vBNkXQOHUyInlvhidXdpUXzM1hzXDI8ltu2IitvODVKCtqS8sIZzIXeVQfoQ E7tuUQ4Gmdo3u4D0CIeV+3g9FlTviF8cuuLbE2U2/WONkJE4murT1gv7ukXtODuL BwjS+esinATy66+oDYIj1hKZwpEF/2+2RzDVjNosaCHtc9WaNkYg5J7/Yl0T8EN7 a9VY7fdKvBw0BvDfudnF826p4m1kEqOm -----END CERTIFICATE-----Generated at Mon Jun 9 00:56:54 2025 by rpki-client