$ rpki-client -vvf rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft File: H3amlEQsq0PX0XzW_fmpfgt_qo4.mft (raw, json) Hash identifier: 43qFe0U5e3K2TSkTzfwh1F3Nim2YJuEs37EWXab2jjQ= Subject key identifier: F2:5E:20:60:91:E0:1B:E7:5A:FE:4B:62:1C:52:66:E9:92:78:96:70 Authority key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E Certificate issuer: /CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Certificate serial: 061C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft Manifest number: 0617 Signing time: Wed 14 May 2025 22:51:20 +0000 Manifest this update: Wed 14 May 2025 22:51:19 +0000 Manifest next update: Wed 21 May 2025 22:51:19 +0000 Files and hashes: 1: H3amlEQsq0PX0XzW_fmpfgt_qo4.crl (hash: twa2XOZH9WLFfTAShO3JFa2xwvGBykrVQ4UoZVOnofY=) 2: 702A62CE9CC311EBA5A7A47BC4F9AE02.roa (hash: casLvQjbiWmoUm1zZDsT8rFqITbKKo8QIpvIUSskW7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Validity Not Before: May 14 22:51:19 2025 GMT Not After : May 21 22:51:19 2025 GMT Subject: CN=68251e67-4bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:70:f3:46:bd:5d:2c:9a:02:5a:e7:a2:9b:c5: 9e:aa:9f:0b:34:0a:a3:32:f8:a0:a9:3e:e2:55:dd: f5:d4:1f:7d:3a:ee:b8:ce:83:10:c0:e8:b0:4e:60: 65:db:cc:0b:a9:9e:3c:39:93:60:79:de:79:8b:7e: 24:ba:01:33:69:c3:aa:de:12:0f:0e:9c:af:20:ac: e7:ec:93:9b:e6:bd:e6:98:de:14:d2:0b:0d:2c:48: 11:3f:17:23:84:0b:31:24:f9:bc:6f:3a:ea:4b:ea: 34:87:5f:38:b7:0c:cf:2b:58:e6:57:b3:69:c9:91: 7d:a8:5c:3e:56:c7:42:a7:b1:1d:52:53:b8:fb:cd: 22:ba:01:cd:04:20:01:0a:9f:2c:4e:6d:a0:15:4f: 39:2e:14:73:f6:5d:a2:29:81:59:59:54:27:fc:95: 9a:59:e8:01:b3:7d:04:e4:fd:ca:0d:4a:37:30:7b: 92:ee:26:c3:fe:31:70:27:d8:4a:b9:75:d3:51:af: ea:15:5a:c7:49:32:e1:da:32:f7:ff:ae:0d:bd:66: db:e6:dd:85:79:9d:ef:c3:d7:92:a2:09:39:c8:1a: 96:3c:76:7b:34:ca:e0:e9:c7:63:34:45:39:b4:8e: 20:cc:8d:35:00:0a:31:70:71:b8:5c:22:23:ee:20: 4a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:5E:20:60:91:E0:1B:E7:5A:FE:4B:62:1C:52:66:E9:92:78:96:70 X509v3 Authority Key Identifier: keyid:1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:89:8a:75:13:61:86:11:fe:2e:0d:08:b0:94:eb:c7:ec:a2: fb:6f:e2:ff:6b:d8:15:6e:fc:b6:e2:b3:b8:ec:ad:07:31:19: ac:85:b1:b9:8b:a1:fe:dc:3e:80:84:cb:58:6e:03:c4:cf:5e: b6:0c:bf:58:52:24:49:19:f2:11:5a:de:3a:ef:31:14:09:02: 61:90:62:7c:7b:f4:f8:7f:bc:f5:52:cf:8c:25:64:c1:b0:10: 2f:51:7a:6e:68:b5:64:d2:1e:5e:00:89:8e:00:a0:9c:75:7c: cb:0f:c6:e2:52:c3:7e:10:28:fd:e3:8b:d4:b0:09:08:97:93: f0:61:ab:9f:d1:44:c9:0c:be:51:51:80:42:f7:bb:35:80:f6: 7b:4a:a8:d6:cf:e8:1e:4f:1d:d5:97:a5:73:32:58:75:2c:48: 29:9a:f4:e2:8b:7b:a2:1d:8f:10:a8:f8:77:04:37:7f:1e:af: 32:3b:0d:3b:7f:3b:7e:44:e4:db:a0:32:e3:3a:c8:0f:be:e7: 7c:2a:19:63:ba:e6:7d:22:33:f6:2c:b1:59:5e:01:c1:9c:38: 76:3f:07:ae:99:d7:b3:49:2f:95:42:4b:34:2b:83:ce:9f:ad: 49:2b:77:b7:20:13:7a:6b:3e:b2:c8:aa:3a:28:35:e4:69:61: 1f:8e:83:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NENkZERjlBOTdF MEI3RkFBOEUwHhcNMjUwNTE0MjI1MTE5WhcNMjUwNTIxMjI1MTE5WjAYMRYwFAYD VQQDEw02ODI1MWU2Ny00YmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHDzRr1dLJoCWueim8Weqp8LNAqjMvigqT7iVd311B99Ou64zoMQwOiwTmBl 28wLqZ48OZNged55i34kugEzacOq3hIPDpyvIKzn7JOb5r3mmN4U0gsNLEgRPxcj hAsxJPm8bzrqS+o0h184twzPK1jmV7NpyZF9qFw+VsdCp7EdUlO4+80iugHNBCAB Cp8sTm2gFU85LhRz9l2iKYFZWVQn/JWaWegBs30E5P3KDUo3MHuS7ibD/jFwJ9hK uXXTUa/qFVrHSTLh2jL3/64NvWbb5t2FeZ3vw9eSogk5yBqWPHZ7NMrg6cdjNEU5 tI4gzI01AAoxcHG4XCIj7iBKLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJeIGCR 4BvnWv5LYhxSZumSeJZwMB8GA1UdIwQYMBaAFB92ppRELKtD19F81v35qX4Lf6qO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODA1OS9CQkQ4MURBODlD QzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3EwUFgwWHpXX2ZtcGZndF9x bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gzYW1sRVFzcTBQWDBYeldfZm1wZmd0X3FvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3Ew UFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFiYp1E2GGEf4uDQiwlOvH7KL7b+L/a9gVbvy24rO47K0HMRmshbG5 i6H+3D6AhMtYbgPEz162DL9YUiRJGfIRWt467zEUCQJhkGJ8e/T4f7z1Us+MJWTB sBAvUXpuaLVk0h5eAImOAKCcdXzLD8biUsN+ECj944vUsAkIl5PwYauf0UTJDL5R UYBC97s1gPZ7SqjWz+geTx3Vl6VzMlh1LEgpmvTii3uiHY8QqPh3BDd/Hq8yOw07 fzt+ROTboDLjOsgPvud8KhljuuZ9IjP2LLFZXgHBnDh2PweumdezSS+VQks0K4PO n61JK3e3IBN6az6yyKo6KDXkaWEfjoMn -----END CERTIFICATE-----Generated at Fri May 16 09:31:35 2025 by rpki-client