$ rpki-client -vvf rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft File: 5HXUQnchUazw-uprObkBK9Ij05M.mft (raw, json) Hash identifier: mzSs7jEAt3AcHGiqA0uvg2ejCI5p/KJDQF/gV+lmVVM= Subject key identifier: 30:01:A1:6A:7B:E2:B4:16:98:F1:AB:FB:8D:4D:A9:8A:6C:48:C1:EC Authority key identifier: E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 Certificate issuer: /CN=A912809D/serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft Manifest number: 0117 Signing time: Sun 11 May 2025 03:41:45 +0000 Manifest this update: Sun 11 May 2025 03:41:45 +0000 Manifest next update: Sun 18 May 2025 03:41:45 +0000 Files and hashes: 1: 5HXUQnchUazw-uprObkBK9Ij05M.crl (hash: 0oMQm2g90tRxHg7jU5NbD8NLerX+/WxCGplwwWX6HgA=) 2: 2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa (hash: KgQSXjT0/AcvVs+PHWWF/UPrCiIk9MVvntWwSCiQouc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912809D, serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Validity Not Before: May 11 03:41:45 2025 GMT Not After : May 18 03:41:45 2025 GMT Subject: CN=68201c79-ed15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:39:21:a6:2c:49:36:66:35:78:ab:9b:a5:12: 4e:c8:27:24:29:17:71:f1:5b:41:e9:db:5b:85:19: 27:d8:d9:d5:f9:bb:1e:1d:7f:ad:ba:9a:87:0b:20: 3a:4b:5b:ae:2f:ef:28:d0:65:48:35:f1:21:0e:7f: e2:9f:e9:2e:f0:39:66:ea:1a:33:66:ba:8b:5a:88: f6:df:f7:cc:d1:d0:fe:a8:61:9c:87:c9:65:ce:9d: ce:03:13:ef:22:8a:b0:7f:7e:9f:ce:fa:d7:8f:74: df:3c:a2:0c:16:9d:8e:d0:a9:05:d0:d0:5d:79:36: 5a:78:db:11:f2:c0:4f:71:64:8f:6a:bb:f6:73:09: 31:1c:44:e2:52:23:3c:b0:e5:78:0d:c1:0d:2c:7a: a0:8c:fe:46:27:7e:64:58:c9:19:29:be:ac:4b:c4: 8a:36:b4:af:3f:ac:22:91:f8:71:09:a1:57:91:31: e3:36:fb:1c:79:c9:c5:ab:1a:d3:33:9b:22:fb:85: 67:11:79:27:b0:06:28:e3:78:d6:86:92:78:4b:bb: ea:81:15:9d:62:19:0b:81:44:2e:bd:77:f8:c6:40: b6:9a:de:12:b4:1b:c9:ac:0c:2e:46:c1:9c:ac:0a: 8c:cd:68:a7:e0:3a:a6:08:f8:e7:db:b8:19:93:74: 99:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:01:A1:6A:7B:E2:B4:16:98:F1:AB:FB:8D:4D:A9:8A:6C:48:C1:EC X509v3 Authority Key Identifier: keyid:E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:c4:ea:b2:4d:83:e8:99:7c:1f:db:1f:62:b1:1e:db:2b:0a: 2f:fe:c0:9b:fb:50:99:8f:d7:a5:20:57:0d:e7:5a:e7:63:25: 18:e2:17:91:ab:4e:30:11:ba:30:0b:00:9c:10:17:2c:24:84: c6:09:45:01:5a:e5:07:af:e8:b1:6c:f6:9b:cb:22:57:f5:16: 7a:64:24:26:67:ab:2f:db:f4:b9:ca:00:f0:2a:b0:e6:bd:c8: bd:7c:d8:97:4b:24:f7:d1:71:5f:98:57:c8:74:e4:b0:8e:53: 75:c7:57:99:f6:03:5d:e1:61:6c:8f:3f:a1:0c:af:98:66:e8: 05:a3:bd:4f:6d:c0:72:6d:c7:a3:94:60:00:ae:82:6b:29:04: b2:7d:98:a5:f4:0e:22:f2:63:d9:8c:cc:ae:43:53:b9:13:05: b1:75:b0:09:d2:bb:58:7c:1a:f1:35:d6:ca:c7:e5:90:ef:e7: 30:70:98:a6:45:91:48:77:fb:dc:d7:55:ec:20:5d:49:d5:60: 6b:35:fd:51:56:27:bd:82:9e:c8:18:dd:df:63:fd:a0:b0:94: 8c:3b:17:c0:09:00:1f:c5:a1:3d:53:58:af:dd:3c:0d:e0:f6: ab:4e:67:49:ed:c4:d7:d9:71:03:cc:5d:56:f7:9c:81:cc:e5: f9:7a:47:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwOUQxMTAvBgNVBAUTKEU0NzVENDQyNzcyMTUxQUNGMEZBRUE2QjM5QjkwMTJC RDIyM0QzOTMwHhcNMjUwNTExMDM0MTQ1WhcNMjUwNTE4MDM0MTQ1WjAYMRYwFAYD VQQDEw02ODIwMWM3OS1lZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmjkhpixJNmY1eKubpRJOyCckKRdx8VtB6dtbhRkn2NnV+bseHX+tupqHCyA6 S1uuL+8o0GVINfEhDn/in+ku8Dlm6hozZrqLWoj23/fM0dD+qGGch8llzp3OAxPv Ioqwf36fzvrXj3TfPKIMFp2O0KkF0NBdeTZaeNsR8sBPcWSParv2cwkxHETiUiM8 sOV4DcENLHqgjP5GJ35kWMkZKb6sS8SKNrSvP6wikfhxCaFXkTHjNvscecnFqxrT M5si+4VnEXknsAYo43jWhpJ4S7vqgRWdYhkLgUQuvXf4xkC2mt4StBvJrAwuRsGc rAqMzWin4DqmCPjn27gZk3SZnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDABoWp7 4rQWmPGr+41NqYpsSMHsMB8GA1UdIwQYMBaAFOR11EJ3IVGs8Prqazm5ASvSI9OT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA5RC8wMUZBQzk4QTg0 RjkxMUVFQTc1QzJGMzlDNEY5QUUwMi81SFhVUW5jaFVhenctdXByT2JrQks5SWow NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIWFVRbmNoVWF6dy11cHJPYmtCSzlJajA1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA5RC8wMUZBQzk4QTg0RjkxMUVFQTc1QzJGMzlDNEY5QUUwMi81SFhVUW5jaFVh enctdXByT2JrQks5SWowNU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOxOqyTYPomXwf2x9isR7bKwov/sCb+1CZj9elIFcN51rnYyUY4heR q04wEbowCwCcEBcsJITGCUUBWuUHr+ixbPabyyJX9RZ6ZCQmZ6sv2/S5ygDwKrDm vci9fNiXSyT30XFfmFfIdOSwjlN1x1eZ9gNd4WFsjz+hDK+YZugFo71PbcBybcej lGAAroJrKQSyfZil9A4i8mPZjMyuQ1O5EwWxdbAJ0rtYfBrxNdbKx+WQ7+cwcJim RZFId/vc11XsIF1J1WBrNf1RVie9gp7IGN3fY/2gsJSMOxfACQAfxaE9U1iv3TwN 4ParTmdJ7cTX2XEDzF1W95yBzOX5ekcZ -----END CERTIFICATE-----Generated at Tue May 13 05:05:30 2025 by rpki-client