$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: 39u9ZO62kFdqqiADwD5pjDAx3eP7Wog9uddu9DbEu+U= Subject key identifier: 08:47:59:3C:0C:15:14:ED:E7:BE:EA:2E:69:0F:D6:16:F8:22:AD:5C Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0BCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0BC0 Signing time: Fri 30 May 2025 19:05:37 +0000 Manifest this update: Fri 30 May 2025 19:05:37 +0000 Manifest next update: Fri 06 Jun 2025 19:05:37 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: kcy2LpMR7CY9TaYe3QJ/ZdjiWfz+U6/k0xl4C+1k1y0=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: EeQ1Nt52m1hyZ6VPZEPVHxza1Z77ig7QYE1EDDBnm08=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: TRjcmxyqZohfOlB4LLbzqsFvH4uXUeHEH5tCE+DExYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3018 (0xbca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: May 30 19:05:37 2025 GMT Not After : Jun 6 19:05:37 2025 GMT Subject: CN=683a0181-637c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f4:71:24:19:66:cf:ad:df:42:86:9f:e6:17: 30:e0:6b:79:37:95:36:74:04:51:fe:51:4c:ee:fb: 33:47:b9:75:62:da:cf:f9:90:96:1e:92:a4:b7:3d: 69:66:48:e6:1f:2d:5a:62:4c:55:88:d2:a4:24:b8: 58:0a:33:95:79:e3:b8:e8:85:8a:59:11:0f:26:1f: 1a:0f:b1:ac:a7:f7:0e:32:a4:ee:b0:01:7e:8a:f4: 00:f2:78:ac:5b:58:e4:f4:b3:30:67:72:b5:b6:e7: e6:eb:8d:ec:b9:0f:af:ea:db:1c:5b:bb:94:7f:10: 4b:ba:d0:4d:f1:c6:15:0c:4a:16:f8:1c:00:22:a2: 55:c3:2d:71:b6:f3:d5:f1:f5:9c:f4:8b:62:d4:c0: c9:0e:c8:2a:eb:a8:2f:58:11:1a:26:15:0a:5f:3d: b8:c1:93:57:18:11:4a:92:91:57:e0:00:0d:5c:df: 69:22:6e:85:64:2f:f4:1f:31:2a:35:bb:02:07:24: ef:5b:fe:0b:7e:86:58:56:2e:8d:1f:99:a6:08:09: 56:de:ce:92:7f:26:de:f7:a2:be:0f:47:c0:83:ad: 6a:40:87:8a:90:25:fa:09:05:5f:14:ca:aa:8e:f3: 28:58:d1:46:0e:50:de:68:f7:69:6a:2c:d2:c2:0e: 00:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:47:59:3C:0C:15:14:ED:E7:BE:EA:2E:69:0F:D6:16:F8:22:AD:5C X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:c7:e5:47:4d:d8:9d:94:1c:e3:9d:64:cf:03:10:4d:f3:67: 54:f0:c9:7b:25:c0:97:1c:69:34:99:95:5f:5e:b4:69:b6:7f: 58:0f:ff:a8:4b:da:90:02:5c:15:38:27:37:c1:87:d5:c7:9f: 6d:54:74:43:b8:24:a5:3c:8c:a8:da:30:6a:11:82:52:8c:a7: 05:93:1f:90:d1:58:aa:05:ea:7e:77:35:a4:3a:e4:14:52:bd: b7:70:1a:97:4f:cf:2b:a1:6e:96:0f:1d:e9:3d:3a:36:bd:20: d0:7b:81:f4:3f:12:09:a4:52:27:2f:04:fa:04:92:63:90:97: 8c:02:bc:e3:5e:d9:e2:2b:9e:96:a0:63:ea:e6:64:67:24:6e: 54:ab:2b:88:3f:24:0a:4a:77:9d:19:60:69:0b:b1:86:c0:52: ca:cd:42:53:ec:78:49:aa:0d:65:36:4c:8f:88:05:c8:91:07: 2a:85:75:87:a1:c3:08:45:cd:18:b8:19:c1:ec:00:f7:f1:7e: ae:43:91:fd:1c:37:dc:bd:8c:81:95:ba:d8:7e:16:58:36:2d: a0:1f:e1:98:18:de:94:cb:45:ce:cd:8e:c3:d5:e3:c6:7b:85: c1:42:1a:4d:06:17:ba:60:01:89:bb:3e:31:b6:8e:7f:90:7b: 14:ce:6b:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUwNTMwMTkwNTM3WhcNMjUwNjA2MTkwNTM3WjAYMRYwFAYD VQQDEw02ODNhMDE4MS02MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPRxJBlmz63fQoaf5hcw4Gt5N5U2dARR/lFM7vszR7l1YtrP+ZCWHpKktz1p ZkjmHy1aYkxViNKkJLhYCjOVeeO46IWKWREPJh8aD7Gsp/cOMqTusAF+ivQA8nis W1jk9LMwZ3K1tufm643suQ+v6tscW7uUfxBLutBN8cYVDEoW+BwAIqJVwy1xtvPV 8fWc9Iti1MDJDsgq66gvWBEaJhUKXz24wZNXGBFKkpFX4AANXN9pIm6FZC/0HzEq NbsCByTvW/4LfoZYVi6NH5mmCAlW3s6Sfybe96K+D0fAg61qQIeKkCX6CQVfFMqq jvMoWNFGDlDeaPdpaizSwg4AnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhHWTwM FRTt577qLmkP1hb4Iq1cMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUx+VHTdidlBzjnWTPAxBN82dU8Ml7JcCXHGk0mZVfXrRptn9YD/+o S9qQAlwVOCc3wYfVx59tVHRDuCSlPIyo2jBqEYJSjKcFkx+Q0ViqBep+dzWkOuQU Ur23cBqXT88roW6WDx3pPTo2vSDQe4H0PxIJpFInLwT6BJJjkJeMArzjXtniK56W oGPq5mRnJG5UqyuIPyQKSnedGWBpC7GGwFLKzUJT7HhJqg1lNkyPiAXIkQcqhXWH ocMIRc0YuBnB7AD38X6uQ5H9HDfcvYyBlbrYfhZYNi2gH+GYGN6Uy0XOzY7D1ePG e4XBQhpNBhe6YAGJuz4xto5/kHsUzmsZ -----END CERTIFICATE-----Generated at Sat May 31 17:34:23 2025 by rpki-client