$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: UYS9WaGzdq834uWvLlh3vqUrP+s1y0n/MdH5cXC2h7Y= Subject key identifier: 2E:41:E4:F6:33:6B:63:D9:8B:22:43:0B:79:F0:A1:50:4E:6B:34:32 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0340 Signing time: Sat 07 Jun 2025 01:05:49 +0000 Manifest this update: Sat 07 Jun 2025 01:05:48 +0000 Manifest next update: Sat 14 Jun 2025 01:05:48 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: BcskC/4co1xkaZCZtykDvXg2SCWJVywTJgiICGsnM9A=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 01:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Jun 7 01:05:48 2025 GMT Not After : Jun 14 01:05:48 2025 GMT Subject: CN=6843906d-8eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:9b:68:27:15:1c:f9:62:fa:5f:ac:f3:c0: cf:05:cb:d8:45:f1:3f:60:a5:2d:89:00:90:64:46: 67:05:ab:42:c5:f6:83:a8:58:af:4e:1b:31:d4:2f: 6b:af:94:b8:59:2b:2d:18:a5:71:2d:c0:49:b3:ae: e2:42:1e:2f:c3:9d:75:ef:57:c2:f8:fc:3f:bd:a4: 03:0a:25:0e:9c:aa:71:10:5a:fd:e5:b7:f7:21:95: eb:09:7b:23:f2:a7:04:1a:be:63:ca:d7:dc:2c:bd: 20:d5:59:f2:90:65:29:23:3f:d5:26:39:0a:83:bc: f0:4f:f5:ef:00:b9:54:26:85:b2:a1:6a:fa:28:12: fa:6a:a7:f5:c1:ed:54:4d:75:78:9c:7a:a6:54:82: ba:10:cf:12:82:20:73:96:ad:27:a3:c7:8d:a1:ea: 79:47:14:f3:5f:a7:1b:57:72:02:b7:61:88:d1:ff: 9d:68:2c:90:ee:41:26:54:34:29:2c:a5:9e:c5:2e: 9f:6a:86:b9:b5:ca:8b:3f:91:98:a3:53:ba:51:33: fd:42:fe:c3:f8:c2:22:ce:a9:08:9c:c7:43:ee:a3: 18:8a:83:73:7f:c2:75:e2:91:ab:8b:bd:96:15:2c: e4:14:e5:7d:e8:34:92:5c:c9:fe:a0:c1:23:de:27: 60:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:41:E4:F6:33:6B:63:D9:8B:22:43:0B:79:F0:A1:50:4E:6B:34:32 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:57:c4:23:24:9a:f6:de:ec:0e:da:bb:44:54:91:44:90:c7: 62:cf:6a:ef:8c:00:3a:75:34:b4:22:a2:f3:eb:e5:0d:f8:fa: 21:a4:59:96:42:bc:39:41:b8:72:d1:f0:a5:7d:f6:ee:01:3a: be:17:20:ec:6b:60:4a:06:08:4c:18:cb:f9:95:a5:d3:39:15: 33:62:96:57:97:a3:9b:fc:ef:2e:d0:62:21:7e:8f:7e:fe:b4: 4a:ce:94:0d:43:6f:fe:42:c6:7b:54:ac:c2:83:37:6d:4a:89: d9:2d:1e:c3:64:0c:12:24:f4:29:ac:09:c2:7d:f5:cb:67:0a: 48:09:4e:8c:ac:4d:31:ed:db:92:43:2d:92:50:77:84:71:c2: 44:45:b8:41:a4:e4:8f:39:86:85:94:1e:62:52:44:f8:16:de: 28:09:c7:2f:13:f0:46:ba:21:30:3a:4a:08:79:ed:3a:a7:b2: 0e:58:f4:57:76:85:48:17:11:fe:94:f8:22:2c:02:5c:31:9c: a5:78:bb:b1:09:28:20:e0:3d:af:16:70:56:2a:c4:a5:9e:0d: e4:ab:59:d3:20:ba:5b:8b:d3:fc:8a:21:08:b1:8d:bc:93:00: 5f:89:f2:38:1f:88:3b:b6:98:db:51:9c:d2:5b:c9:c5:ba:59: 08:da:ac:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwNjA3MDEwNTQ4WhcNMjUwNjE0MDEwNTQ4WjAYMRYwFAYD VQQDEw02ODQzOTA2ZC04ZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvKbaCcVHPli+l+s88DPBcvYRfE/YKUtiQCQZEZnBatCxfaDqFivThsx1C9r r5S4WSstGKVxLcBJs67iQh4vw51171fC+Pw/vaQDCiUOnKpxEFr95bf3IZXrCXsj 8qcEGr5jytfcLL0g1VnykGUpIz/VJjkKg7zwT/XvALlUJoWyoWr6KBL6aqf1we1U TXV4nHqmVIK6EM8SgiBzlq0no8eNoep5RxTzX6cbV3ICt2GI0f+daCyQ7kEmVDQp LKWexS6faoa5tcqLP5GYo1O6UTP9Qv7D+MIizqkInMdD7qMYioNzf8J14pGri72W FSzkFOV96DSSXMn+oMEj3idgLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5B5PYz a2PZiyJDC3nwoVBOazQyMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+V8QjJJr23uwO2rtEVJFEkMdiz2rvjAA6dTS0IqLz6+UN+PohpFmW Qrw5Qbhy0fClffbuATq+FyDsa2BKBghMGMv5laXTORUzYpZXl6Ob/O8u0GIhfo9+ /rRKzpQNQ2/+QsZ7VKzCgzdtSonZLR7DZAwSJPQprAnCffXLZwpICU6MrE0x7duS Qy2SUHeEccJERbhBpOSPOYaFlB5iUkT4Ft4oCccvE/BGuiEwOkoIee06p7IOWPRX doVIFxH+lPgiLAJcMZyleLuxCSgg4D2vFnBWKsSlng3kq1nTILpbi9P8iiEIsY28 kwBfifI4H4g7tpjbUZzSW8nFulkI2qzl -----END CERTIFICATE-----Generated at Sat Jun 7 05:01:08 2025 by rpki-client