$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: qgVOY0kb9r72hfStNI42o720dmdBXicccEmF2xZRJik= Subject key identifier: C2:74:4C:4C:C0:67:CB:31:1E:35:28:04:4F:12:DF:F7:A3:AE:34:EC Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 01F3 Signing time: Mon 09 Jun 2025 01:41:20 +0000 Manifest this update: Mon 09 Jun 2025 01:41:20 +0000 Manifest next update: Mon 16 Jun 2025 01:41:20 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: duVhD3k1SRRFzdBu+/8xObf41sCqURVmlvgOOMCUwjE=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: f6YvpcInK7aMZI/gTlnIjzNzS2LMqoG/bSzJ7lAf9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 01:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Jun 9 01:41:20 2025 GMT Not After : Jun 16 01:41:20 2025 GMT Subject: CN=68463bc0-3243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:95:17:66:bf:b6:29:c2:2c:a8:56:b6:d1:c1: 79:c1:e0:62:98:cd:dd:0c:a4:17:3c:b5:36:f5:12: 66:63:17:ad:25:d0:1a:41:77:a3:de:e7:7f:82:ad: b0:2f:fa:a9:f4:be:b6:5f:cf:ef:9c:9d:51:67:ce: 4d:f4:db:9d:ce:9b:9b:d7:59:fa:7f:0b:46:40:13: 81:6a:23:6f:62:3a:03:ba:b7:d1:c5:4e:3d:54:80: e9:5f:60:33:98:02:6b:52:fd:56:0f:a9:2a:b9:9d: d7:12:19:9c:d5:82:fd:9f:a7:db:cc:34:2d:d3:1c: 78:25:ca:1f:5a:49:c2:e1:8d:77:9e:47:06:9b:c8: e0:30:2f:4b:9a:27:31:29:a8:e2:c8:57:dd:0e:c6: b9:96:8d:4c:d2:a6:ac:8e:dc:e9:eb:99:34:88:a5: 68:8c:8c:e0:1c:74:45:1b:9e:3a:62:b7:81:7a:de: e5:0a:53:d9:c9:da:8c:b7:e5:d6:b3:37:d9:89:95: 70:b5:4a:98:cf:85:50:ca:79:ff:d9:2b:cc:4d:95: 0f:8f:99:1a:b7:7a:8e:bc:97:31:05:9a:a6:96:d9: 08:c5:fa:aa:d3:b4:1f:8a:10:e4:ac:c5:b4:01:05: f8:2a:81:a7:88:eb:52:90:88:fc:de:b3:02:ca:27: 3f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:74:4C:4C:C0:67:CB:31:1E:35:28:04:4F:12:DF:F7:A3:AE:34:EC X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:5d:fa:35:3e:65:54:4f:16:e5:b0:cc:85:c7:3f:1a:10:29: 3d:70:21:d0:e4:3b:0a:8c:dc:1d:ab:b3:4c:36:b2:7d:c7:4e: 31:27:05:7e:6b:41:d2:d5:aa:aa:6c:4f:65:a9:ee:aa:fb:03: 5b:bc:f8:7a:f2:89:27:07:70:86:2b:cf:a2:66:60:c4:c7:48: 2e:fd:1d:ff:c9:a0:ab:6a:94:69:6f:ea:40:a8:1b:7c:b0:23: 53:8d:e5:8d:a2:fa:cc:21:c9:1c:33:31:13:84:b1:6c:14:49: 36:bc:63:ff:f2:84:b0:a8:2c:81:52:2f:2f:c2:1f:67:46:9e: 65:22:20:f1:24:fd:ea:e2:7d:08:7b:25:af:c2:31:a2:ee:61: ef:c2:8b:d0:5f:12:b5:b6:7b:0c:a7:37:d5:e1:6b:78:db:cb: 6e:6d:e0:db:e5:bd:99:3a:7c:ea:d2:f2:9c:25:4a:05:44:3f: 91:31:cd:95:7a:e2:78:e4:37:3a:80:bc:c2:4b:d1:96:44:fe: 4a:6a:56:4e:73:76:03:bf:78:3d:55:94:ac:d1:83:12:be:31: 7e:38:90:f9:3f:53:8f:91:99:14:fd:a4:87:27:f1:8a:c5:c8: 15:64:f4:0a:60:58:db:bd:75:8a:af:8f:12:67:8b:4f:d3:1c: 09:ca:23:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUwNjA5MDE0MTIwWhcNMjUwNjE2MDE0MTIwWjAYMRYwFAYD VQQDEw02ODQ2M2JjMC0zMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupUXZr+2KcIsqFa20cF5weBimM3dDKQXPLU29RJmYxetJdAaQXej3ud/gq2w L/qp9L62X8/vnJ1RZ85N9Nudzpub11n6fwtGQBOBaiNvYjoDurfRxU49VIDpX2Az mAJrUv1WD6kquZ3XEhmc1YL9n6fbzDQt0xx4JcofWknC4Y13nkcGm8jgMC9Lmicx KajiyFfdDsa5lo1M0qasjtzp65k0iKVojIzgHHRFG546YreBet7lClPZydqMt+XW szfZiZVwtUqYz4VQynn/2SvMTZUPj5kat3qOvJcxBZqmltkIxfqq07QfihDkrMW0 AQX4KoGniOtSkIj83rMCyic/cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJ0TEzA Z8sxHjUoBE8S3/ejrjTsMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsXfo1PmVUTxblsMyFxz8aECk9cCHQ5DsKjNwdq7NMNrJ9x04xJwV+ a0HS1aqqbE9lqe6q+wNbvPh68oknB3CGK8+iZmDEx0gu/R3/yaCrapRpb+pAqBt8 sCNTjeWNovrMIckcMzEThLFsFEk2vGP/8oSwqCyBUi8vwh9nRp5lIiDxJP3q4n0I eyWvwjGi7mHvwovQXxK1tnsMpzfV4Wt428tubeDb5b2ZOnzq0vKcJUoFRD+RMc2V euJ45Dc6gLzCS9GWRP5KalZOc3YDv3g9VZSs0YMSvjF+OJD5P1OPkZkU/aSHJ/GK xcgVZPQKYFjbvXWKr48SZ4tP0xwJyiM8 -----END CERTIFICATE-----Generated at Mon Jun 9 06:24:42 2025 by rpki-client