$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: WefD/7DqzyzdqIAzSqPMeJKguW1ytCTErU6M9zNB4O8= Subject key identifier: 4D:5D:4A:AE:E2:A7:AF:0D:6A:DD:59:96:D2:4B:21:DD:E7:B9:94:BF Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0BB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BA9 Signing time: Fri 30 May 2025 19:10:31 +0000 Manifest this update: Fri 30 May 2025 19:10:31 +0000 Manifest next update: Fri 06 Jun 2025 19:10:31 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: ZR7f33yUV/bOL3NbnxwxqE99FCCSxuTHtuO6w7viaDI=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2999 (0xbb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: May 30 19:10:31 2025 GMT Not After : Jun 6 19:10:31 2025 GMT Subject: CN=683a02a7-5d24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7b:a4:77:1e:7b:b7:57:35:4a:58:09:54:e7: ff:bd:0f:b6:08:53:e7:83:fe:71:e5:56:34:fc:fd: f1:32:73:97:ab:ce:95:4f:5c:69:8f:ad:b1:2f:48: 73:1a:3f:25:b7:fc:e5:bc:8a:40:6d:a2:30:67:7d: db:3a:5a:05:bb:9a:dc:97:f0:c0:a7:34:36:a1:d8: c8:4d:65:78:85:b4:35:53:4c:ea:4d:f9:20:3d:db: 84:45:32:bf:2f:4c:68:85:3e:34:0b:ea:cc:5d:71: 72:fc:9c:d4:6c:11:2e:8d:38:c6:28:23:89:81:0a: 98:78:97:c3:6c:e9:79:ae:e3:c8:d0:6b:54:c5:b5: c0:ce:c7:a2:a3:cd:60:a4:b9:9b:b8:a6:7f:fd:aa: 2d:60:98:89:06:5b:47:0a:5a:a8:b6:9a:b5:0b:f2: 55:f1:0e:6f:18:32:d1:15:d3:60:9f:73:96:57:3f: 4c:de:99:2e:df:65:99:f2:52:e6:c0:39:10:07:4e: ca:c6:35:6d:70:39:f2:6a:d3:58:ee:48:a4:5e:d1: 89:76:68:52:76:94:f2:af:99:14:8b:7b:e1:1c:33: 90:64:34:ae:69:40:61:46:8d:ef:82:28:72:48:3b: a2:a4:12:26:f9:8a:a7:99:2f:21:fe:2d:21:d0:ef: bb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5D:4A:AE:E2:A7:AF:0D:6A:DD:59:96:D2:4B:21:DD:E7:B9:94:BF X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:10:d3:eb:10:2a:8e:e5:b6:7d:91:63:71:76:c7:fc:5d:f1: 42:2d:ce:16:66:b2:12:c7:fe:c2:dc:d0:8f:5b:85:81:42:70: 2a:03:04:dc:00:75:7d:b7:e5:76:85:8f:ba:f7:c8:0e:ea:79: 60:f9:9e:d8:37:78:49:2d:6d:7f:28:de:ab:99:48:2b:92:b5: a1:ba:73:27:db:83:47:d4:86:1b:b0:06:7b:b0:19:79:bb:51: 21:85:ab:ca:99:be:47:54:c0:00:69:98:2e:40:32:38:1a:98: cb:70:8f:c5:a7:ea:7e:34:ae:75:90:1b:54:81:da:ef:81:b0: 02:04:0c:3c:d6:8c:9f:bc:68:d7:c6:4f:f3:60:7c:d9:12:96: ee:95:17:9f:1a:ed:ea:1a:31:28:b9:da:d1:c9:e3:e5:ea:ce: 11:ff:be:44:7b:b6:a6:2a:c6:19:36:e2:a2:6e:27:ca:38:ef: 88:7d:26:da:41:54:09:fd:6d:35:86:3e:01:9d:66:ba:5c:85: 74:0a:6b:9d:ed:a0:7f:81:76:c7:b6:23:11:e4:ab:e6:f8:fd: 1a:69:ad:3f:41:64:db:59:f6:02:e7:a4:4a:a1:be:36:5c:eb: 61:63:11:50:6f:14:82:25:ba:a0:79:42:9f:1f:c2:a3:54:0e: 89:16:79:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUwNTMwMTkxMDMxWhcNMjUwNjA2MTkxMDMxWjAYMRYwFAYD VQQDEw02ODNhMDJhNy01ZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Hukdx57t1c1SlgJVOf/vQ+2CFPng/5x5VY0/P3xMnOXq86VT1xpj62xL0hz Gj8lt/zlvIpAbaIwZ33bOloFu5rcl/DApzQ2odjITWV4hbQ1U0zqTfkgPduERTK/ L0xohT40C+rMXXFy/JzUbBEujTjGKCOJgQqYeJfDbOl5ruPI0GtUxbXAzseio81g pLmbuKZ//aotYJiJBltHClqotpq1C/JV8Q5vGDLRFdNgn3OWVz9M3pku32WZ8lLm wDkQB07KxjVtcDnyatNY7kikXtGJdmhSdpTyr5kUi3vhHDOQZDSuaUBhRo3vgihy SDuipBIm+YqnmS8h/i0h0O+78QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1dSq7i p68Nat1ZltJLId3nuZS/MB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABENPrECqO5bZ9kWNxdsf8XfFCLc4WZrISx/7C3NCPW4WBQnAqAwTc AHV9t+V2hY+698gO6nlg+Z7YN3hJLW1/KN6rmUgrkrWhunMn24NH1IYbsAZ7sBl5 u1EhhavKmb5HVMAAaZguQDI4GpjLcI/Fp+p+NK51kBtUgdrvgbACBAw81oyfvGjX xk/zYHzZEpbulRefGu3qGjEoudrRyePl6s4R/75Ee7amKsYZNuKibifKOO+IfSba QVQJ/W01hj4BnWa6XIV0Cmud7aB/gXbHtiMR5Kvm+P0aaa0/QWTbWfYC56RKob42 XOthYxFQbxSCJbqgeUKfH8KjVA6JFnkQ -----END CERTIFICATE-----Generated at Sat May 31 17:17:28 2025 by rpki-client