$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft File: hEIqhfpOTNTW7plGMaPQ8OboLTo.mft (raw, json) Hash identifier: 8FiimV87FBXaXqwF7kDfZLvzliaGGckX6qWMLkPvpPY= Subject key identifier: 42:40:F4:37:8F:E3:EC:BA:01:8D:5F:51:10:48:FE:B5:E0:98:36:6F Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft Manifest number: 0350 Signing time: Sun 11 May 2025 00:33:47 +0000 Manifest this update: Sun 11 May 2025 00:33:47 +0000 Manifest next update: Sun 18 May 2025 00:33:47 +0000 Files and hashes: 1: hEIqhfpOTNTW7plGMaPQ8OboLTo.crl (hash: rooK14TQCwlxmN0zngW7qj3BFMIbL0dyJVGYyxpcIj0=) 2: 214E0454B58A11ECAF32FE29C4F9AE02.roa (hash: m/bIsnc72f+GKlsPAyrWqEs82wNRpWBNpwKZDStdnM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: May 11 00:33:47 2025 GMT Not After : May 18 00:33:47 2025 GMT Subject: CN=681ff06b-aab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2b:39:aa:44:ea:d3:01:3a:55:38:33:eb:5e: 5b:9f:20:50:08:8c:3d:bf:1f:3d:3e:52:55:fc:12: d9:93:6a:40:48:86:0a:84:77:cc:7b:ce:43:c0:35: e5:65:69:8d:4f:1a:d7:a1:a8:4c:d1:f1:7b:ef:e4: ff:b4:ef:4a:c6:a7:bb:ba:f8:6a:6a:a4:d0:da:e2: 4b:46:82:19:c5:53:f0:97:9a:b9:5a:db:ce:27:df: df:84:01:f8:1e:8c:4c:94:51:20:e9:58:4f:49:9f: 17:ec:ef:9a:98:3a:a7:60:7f:92:da:cd:6d:d0:6d: a0:89:af:51:5c:49:87:8e:fa:46:4c:83:c0:c7:a8: 90:a1:44:48:c2:cf:58:38:6e:54:06:fd:af:76:85: 34:82:d4:80:19:06:bd:5c:d8:8b:d2:4c:6a:e4:14: 16:c7:a4:f2:82:19:a8:76:67:36:ed:80:dd:bc:57: 4f:c4:69:df:d8:ca:c2:34:19:50:c8:ba:ff:9b:9d: 0b:ed:ef:68:e2:1d:42:de:e2:c1:e2:3f:3f:9b:e9: ac:eb:f0:60:09:e5:e1:49:11:8d:56:07:33:42:b3: 8d:bb:6e:06:04:3b:f8:bc:9c:3c:71:83:8d:49:a3: 1d:8a:45:44:07:ca:5f:89:0a:d6:8d:45:a3:a4:ea: dd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:40:F4:37:8F:E3:EC:BA:01:8D:5F:51:10:48:FE:B5:E0:98:36:6F X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:67:d9:40:42:43:19:fe:fb:6a:9c:3d:82:97:e1:69:86:a6: 22:87:ec:e0:b2:94:ad:20:77:a7:fd:a8:73:80:17:80:25:1a: 10:59:a1:b1:d0:0e:8e:36:ef:4d:8d:e0:27:f2:b2:42:1e:98: 1c:5e:fd:14:bc:ea:d6:4d:83:1d:e6:28:46:85:31:0b:76:ee: 2b:3c:0a:39:50:8d:c8:46:97:8c:f6:cf:52:42:60:52:88:81: 60:53:21:6e:ce:5e:f1:57:4b:43:ef:36:70:9e:9e:75:32:a6: 21:90:c0:74:56:11:7b:71:f8:3e:f9:9c:53:1b:6f:64:34:e0: f3:22:8d:2e:9e:fc:8f:98:2f:89:3b:9b:1b:a3:5a:b9:a9:52: 27:1f:dd:52:59:7d:00:a8:a5:41:64:87:ff:15:49:df:c9:ab: bc:57:31:32:dc:d0:43:f8:d9:9f:3c:1c:cc:0c:36:d0:bf:bb: 95:3e:5f:45:a0:25:3b:fa:6d:33:33:98:02:83:76:ae:16:88: 82:18:6e:0d:4c:57:61:40:fd:64:5c:4e:a4:cb:f5:6a:cd:b7: 45:f9:8f:8e:e7:91:6d:dc:90:bc:e6:87:5a:15:fe:98:0b:18: 3d:ce:fa:16:b1:04:9a:0e:30:c6:2a:ac:fa:b6:43:ac:31:a2: df:ec:14:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjUwNTExMDAzMzQ3WhcNMjUwNTE4MDAzMzQ3WjAYMRYwFAYD VQQDEw02ODFmZjA2Yi1hYWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Cs5qkTq0wE6VTgz615bnyBQCIw9vx89PlJV/BLZk2pASIYKhHfMe85DwDXl ZWmNTxrXoahM0fF77+T/tO9Kxqe7uvhqaqTQ2uJLRoIZxVPwl5q5WtvOJ9/fhAH4 HoxMlFEg6VhPSZ8X7O+amDqnYH+S2s1t0G2gia9RXEmHjvpGTIPAx6iQoURIws9Y OG5UBv2vdoU0gtSAGQa9XNiL0kxq5BQWx6Tyghmodmc27YDdvFdPxGnf2MrCNBlQ yLr/m50L7e9o4h1C3uLB4j8/m+ms6/BgCeXhSRGNVgczQrONu24GBDv4vJw8cYON SaMdikVEB8pfiQrWjUWjpOrdtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJA9DeP 4+y6AY1fURBI/rXgmDZvMB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzYxQy8yQTcwOTBGQUI1ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1RO VFc3cGxHTWFQUThPYm9MVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRZ9lAQkMZ/vtqnD2Cl+FphqYih+zgspStIHen/ahzgBeAJRoQWaGx 0A6ONu9NjeAn8rJCHpgcXv0UvOrWTYMd5ihGhTELdu4rPAo5UI3IRpeM9s9SQmBS iIFgUyFuzl7xV0tD7zZwnp51MqYhkMB0VhF7cfg++ZxTG29kNODzIo0unvyPmC+J O5sbo1q5qVInH91SWX0AqKVBZIf/FUnfyau8VzEy3NBD+NmfPBzMDDbQv7uVPl9F oCU7+m0zM5gCg3auFoiCGG4NTFdhQP1kXE6ky/VqzbdF+Y+O55Ft3JC85odaFf6Y Cxg9zvoWsQSaDjDGKqz6tkOsMaLf7BQc -----END CERTIFICATE-----Generated at Mon May 12 16:49:28 2025 by rpki-client