$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: nqdXBnNb1wKVcU+nIBTYnOuSZ+i5N1mSX6yV6Y4xaoY= Subject key identifier: 37:B0:A1:AF:1B:57:D4:2A:FA:EB:77:E9:20:BD:33:0A:DF:0E:A2:41 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1516 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 1505 Signing time: Fri 30 May 2025 17:00:28 +0000 Manifest this update: Fri 30 May 2025 17:00:28 +0000 Manifest next update: Fri 06 Jun 2025 17:00:28 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: /w1ICLRVzLjuDkU6TPt0vGNlIHNVk0s5/2fFVZw3Jf8=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5398 (0x1516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: May 30 17:00:28 2025 GMT Not After : Jun 6 17:00:28 2025 GMT Subject: CN=6839e42c-b107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e7:06:1f:83:cc:7a:d4:86:ee:3b:5e:f1:dd: 8f:d7:58:a0:b7:46:55:3a:3e:58:92:af:47:87:84: 4e:f3:ba:1b:66:d0:2a:92:ac:30:89:47:a4:63:2c: f0:88:70:26:85:fa:47:60:35:49:40:e6:b5:3d:ad: 68:02:61:00:24:12:b5:33:5c:fa:df:84:64:e8:71: 67:3e:47:dc:84:86:c3:31:cd:e8:4a:0e:88:15:a2: 36:d0:42:9d:11:18:2c:12:e2:7f:b9:ec:21:3e:6c: 95:6e:c9:30:93:87:2f:0e:da:b9:80:e2:9e:a6:8e: d4:e1:3a:83:20:5f:17:01:29:22:a5:d8:db:2e:b8: 79:a4:e4:94:0c:1b:b7:ce:9e:b4:93:4b:ea:9d:84: 03:2f:12:b9:31:ff:66:93:bf:95:66:8d:de:88:ec: 30:57:d0:b7:77:be:46:20:7f:58:92:2e:61:d3:ef: f2:6d:6b:7e:15:64:37:85:86:39:3e:80:46:75:31: b4:74:af:84:70:66:47:c4:39:c6:20:8e:f7:0a:a0: 34:73:56:01:70:3e:b5:de:ee:eb:db:f5:6b:38:49: f2:52:ed:b9:ff:fe:90:bd:f5:0e:2c:f7:19:a5:14: 16:67:52:2f:bf:d5:6a:ac:7b:76:13:a4:6f:58:8e: 50:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B0:A1:AF:1B:57:D4:2A:FA:EB:77:E9:20:BD:33:0A:DF:0E:A2:41 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8c:f7:1c:86:6c:6e:3e:c2:8c:44:43:52:6c:32:6f:d0:25: 1c:8f:9a:c6:f2:ed:bf:f6:e7:28:13:eb:dd:b5:66:3b:eb:a1: 90:93:b5:60:48:8a:3d:1f:9e:e7:47:19:4f:51:4c:3e:ca:28: 55:ca:a7:c9:27:31:f2:62:2d:49:e2:98:40:26:7b:3a:2c:7e: a8:10:6f:de:2d:f7:f9:a2:14:0d:68:05:96:ef:32:c0:cc:f2: 1f:04:9f:80:c3:a3:67:c3:b2:ea:fd:3d:06:ac:ac:ca:2b:fa: b8:70:10:88:82:80:87:fe:1a:88:e9:08:8e:42:00:20:4c:fa: f4:45:3f:8e:36:9a:b9:bb:63:4c:85:82:64:b1:7f:7c:f1:0e: 34:f0:e7:56:0e:5e:b3:e6:6c:76:d7:2c:37:b3:7e:e8:61:3d: 65:72:aa:1b:a9:26:e0:5c:1c:65:9a:bb:1c:d8:25:84:43:e9: fb:78:f5:61:0b:17:1a:68:26:ea:b9:b7:11:01:67:f7:26:d4: 54:0f:67:3a:52:3d:8e:13:7e:32:9a:03:ea:66:50:ae:52:af: 0a:73:88:b3:db:e9:6f:f4:01:57:86:73:4e:08:90:b7:fa:66: 2f:a8:93:ca:4d:4a:79:8c:02:ab:ec:09:b2:22:22:dd:6f:48: 4d:d3:74:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwNTMwMTcwMDI4WhcNMjUwNjA2MTcwMDI4WjAYMRYwFAYD VQQDEw02ODM5ZTQyYy1iMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnecGH4PMetSG7jte8d2P11igt0ZVOj5Ykq9Hh4RO87obZtAqkqwwiUekYyzw iHAmhfpHYDVJQOa1Pa1oAmEAJBK1M1z634Rk6HFnPkfchIbDMc3oSg6IFaI20EKd ERgsEuJ/uewhPmyVbskwk4cvDtq5gOKepo7U4TqDIF8XASkipdjbLrh5pOSUDBu3 zp60k0vqnYQDLxK5Mf9mk7+VZo3eiOwwV9C3d75GIH9Yki5h0+/ybWt+FWQ3hYY5 PoBGdTG0dK+EcGZHxDnGII73CqA0c1YBcD613u7r2/VrOEnyUu25//6QvfUOLPcZ pRQWZ1Ivv9VqrHt2E6RvWI5Q4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDewoa8b V9Qq+ut36SC9MwrfDqJBMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7jPcchmxuPsKMRENSbDJv0CUcj5rG8u2/9ucoE+vdtWY766GQk7Vg SIo9H57nRxlPUUw+yihVyqfJJzHyYi1J4phAJns6LH6oEG/eLff5ohQNaAWW7zLA zPIfBJ+Aw6Nnw7Lq/T0GrKzKK/q4cBCIgoCH/hqI6QiOQgAgTPr0RT+ONpq5u2NM hYJksX988Q408OdWDl6z5mx21yw3s37oYT1lcqobqSbgXBxlmrsc2CWEQ+n7ePVh CxcaaCbqubcRAWf3JtRUD2c6Uj2OE34ymgPqZlCuUq8Kc4iz2+lv9AFXhnNOCJC3 +mYvqJPKTUp5jAKr7AmyIiLdb0hN03QD -----END CERTIFICATE-----Generated at Sat May 31 17:27:54 2025 by rpki-client