$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: fbr9SjqfjEzEVIlJAw0RVBbGokUnLrGXjYkpWYJtHvo= Subject key identifier: 7D:CF:C6:A3:36:A1:A8:79:78:CF:E3:33:5E:E0:AC:B4:B7:A2:0C:EB Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 20E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 20D6 Signing time: Fri 30 May 2025 16:07:54 +0000 Manifest this update: Fri 30 May 2025 16:07:53 +0000 Manifest next update: Fri 06 Jun 2025 16:07:53 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: TtNHteHf5YjC/b+/DnymfNBVJUBxra5/AFBsrMmCP58=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8424 (0x20e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: May 30 16:07:53 2025 GMT Not After : Jun 6 16:07:53 2025 GMT Subject: CN=6839d7da-593e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:c6:e5:8d:59:4e:90:7e:53:d4:b4:d8:31: c8:2d:cf:e1:b5:ad:19:e9:bb:3d:2e:d1:91:dc:22: ce:c9:c5:44:8f:33:bd:29:a3:40:2d:11:66:42:c5: 7c:5b:d2:ec:5f:d3:9f:59:de:13:7d:b0:24:8f:c0: 7a:1b:80:33:29:c9:5b:76:d9:d0:53:aa:03:4f:0a: 60:13:61:6b:69:d4:76:1e:23:2c:54:58:2b:12:ea: d4:fa:a5:f3:ea:7e:de:98:64:4e:35:b6:6f:09:e7: 1b:db:4c:a4:4d:ca:cb:5f:ab:db:dc:aa:1d:20:90: 41:4d:c8:7d:0f:89:7c:ea:af:a2:1f:52:91:52:16: c9:35:0b:58:2e:fd:3d:be:09:b5:2e:ce:08:7d:bd: 8c:92:cf:b7:d5:45:a4:29:a8:52:08:43:8e:bc:fa: 13:b7:46:30:bc:bc:b6:d8:2a:32:c6:e3:b4:d8:3c: b3:e3:f0:4a:63:29:60:e8:09:bf:f3:1e:f6:24:a6: 6a:b2:3e:b5:38:76:a5:f0:1e:dd:3a:b0:bc:64:23: 9b:36:32:fa:de:15:0d:ce:c2:72:fa:3a:7f:ee:2a: fc:85:84:95:10:5a:24:3d:f4:e3:28:f8:20:ee:71: 7b:33:97:91:fa:59:1b:17:e5:6b:47:05:15:b1:a8: 34:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CF:C6:A3:36:A1:A8:79:78:CF:E3:33:5E:E0:AC:B4:B7:A2:0C:EB X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:05:21:9a:f7:da:d0:9b:f2:0f:54:2c:55:9a:ef:6a:f7:46: 99:3a:6e:23:c1:8c:3e:11:a3:37:73:46:8d:41:4c:af:2c:e7: 4c:56:02:9e:f2:e1:5d:db:52:35:6d:87:66:4c:03:96:d0:07: 94:fc:a3:e9:a9:55:67:75:6a:13:d7:24:f9:96:72:a8:90:bf: 80:2b:53:d1:d1:2e:39:e7:e7:09:da:bd:81:af:e7:f7:11:cb: e0:9b:89:b5:1b:53:51:0e:c8:c2:e1:c5:78:bc:eb:1b:5a:4b: 1e:84:24:75:a2:f5:8f:10:66:85:3c:1a:24:28:b9:9c:74:72: c3:3e:ba:3d:a7:b7:85:a9:5b:2a:03:ab:22:78:f3:17:1f:8b: 48:fa:3b:ca:a5:50:e9:aa:fb:b7:8a:84:02:8d:62:40:0a:90: 0b:cb:45:6a:89:42:9f:b0:90:45:a3:c0:7f:bb:87:3c:1a:f3: a9:02:e7:60:98:09:7f:74:eb:e2:a4:07:bc:ca:b8:de:d6:15: 97:55:b0:f8:71:04:76:60:5b:db:5a:e6:e4:d3:c0:b9:6d:1f: 68:ae:df:66:78:36:4c:cb:c7:6d:e8:90:9d:42:7f:60:72:33: 21:df:55:65:46:80:72:b3:38:ff:66:99:3b:fb:ff:a7:4f:fa: fb:c7:8c:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUwNTMwMTYwNzUzWhcNMjUwNjA2MTYwNzUzWjAYMRYwFAYD VQQDEw02ODM5ZDdkYS01OTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1HG5Y1ZTpB+U9S02DHILc/hta0Z6bs9LtGR3CLOycVEjzO9KaNALRFmQsV8 W9LsX9OfWd4TfbAkj8B6G4AzKclbdtnQU6oDTwpgE2FradR2HiMsVFgrEurU+qXz 6n7emGRONbZvCecb20ykTcrLX6vb3KodIJBBTch9D4l86q+iH1KRUhbJNQtYLv09 vgm1Ls4Ifb2Mks+31UWkKahSCEOOvPoTt0YwvLy22CoyxuO02Dyz4/BKYylg6Am/ 8x72JKZqsj61OHal8B7dOrC8ZCObNjL63hUNzsJy+jp/7ir8hYSVEFokPfTjKPgg 7nF7M5eR+lkbF+VrRwUVsag05wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3PxqM2 oah5eM/jM17grLS3ogzrMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPBSGa99rQm/IPVCxVmu9q90aZOm4jwYw+EaM3c0aNQUyvLOdMVgKe 8uFd21I1bYdmTAOW0AeU/KPpqVVndWoT1yT5lnKokL+AK1PR0S455+cJ2r2Br+f3 Ecvgm4m1G1NRDsjC4cV4vOsbWksehCR1ovWPEGaFPBokKLmcdHLDPro9p7eFqVsq A6siePMXH4tI+jvKpVDpqvu3ioQCjWJACpALy0VqiUKfsJBFo8B/u4c8GvOpAudg mAl/dOvipAe8yrje1hWXVbD4cQR2YFvbWubk08C5bR9ort9meDZMy8dt6JCdQn9g cjMh31VlRoByszj/Zpk7+/+nT/r7x4zm -----END CERTIFICATE-----Generated at Sat May 31 16:44:50 2025 by rpki-client