$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: 4t2AmCZLPlK8m9wAD6Bv42gGGrpys94Zy6T4GiD2S7Q= Subject key identifier: 8A:7A:7B:0B:B4:92:B4:C3:CE:02:DE:2B:92:75:44:66:7B:DD:9A:A3 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 032D Signing time: Tue 13 May 2025 00:53:14 +0000 Manifest this update: Tue 13 May 2025 00:53:14 +0000 Manifest next update: Tue 20 May 2025 00:53:14 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: bqX4z4QG0m1odHqaEUyn4BwtXgwsGC6KQsypPLD2XTs=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: JGWjIhX5RIjoHrKhwJbgn3Pu8vTcZZqlk7E2DqruuO8=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: wILHqpy9Ti/8MJSzUe1aVFwRV4mS5BPVF4SBXg86ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: May 13 00:53:14 2025 GMT Not After : May 20 00:53:14 2025 GMT Subject: CN=682297fa-544a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5c:3b:9a:83:ea:48:49:6e:5c:b5:e5:69:95: 75:70:aa:0c:c0:81:56:ef:1f:30:e9:fb:10:88:03: c9:f3:d6:97:d5:80:fc:ba:fc:a7:22:f8:b7:81:b6: 53:af:7b:11:27:7d:f6:8c:5e:39:29:1e:a1:83:53: 5b:bc:df:b9:bd:f3:97:99:ed:06:09:00:e1:a2:30: f0:5b:8e:21:ff:f5:e4:06:fb:04:7d:ee:0c:96:84: 3c:31:21:ae:68:ac:38:b3:b5:f9:46:b7:e7:4d:9c: 0d:02:6a:af:fa:a0:d6:da:17:24:ad:27:c4:fe:56: 8e:88:47:78:f5:bc:57:b4:10:fa:b0:2a:84:68:e9: 47:1b:e2:10:20:2d:f5:80:5e:8b:48:19:63:a2:cf: b6:c2:ff:5d:7b:1d:b1:20:f7:08:64:78:15:87:5f: 6c:c1:9b:43:d9:98:93:14:ec:af:5e:4b:89:58:1c: 7c:d3:51:e6:f9:3d:73:2d:fa:de:de:b0:2b:6f:56: 41:47:0d:0a:a6:11:ee:c9:c7:8c:26:38:bb:58:96: be:7a:df:94:a0:d4:06:72:97:68:ed:bd:3c:12:37: 48:d9:6b:1f:86:65:22:e5:8e:e9:02:5b:85:20:67: 35:9b:ae:4c:00:75:3c:89:c5:14:0a:ff:58:aa:6b: 63:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7A:7B:0B:B4:92:B4:C3:CE:02:DE:2B:92:75:44:66:7B:DD:9A:A3 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:17:de:2d:de:f6:8b:03:ef:ac:cb:1a:87:1d:d1:a7:48:a8: d7:e2:d3:fd:6b:cf:99:89:30:47:26:1e:cf:90:10:0a:85:a2: b7:ac:0e:66:dc:fd:0b:80:9a:2c:1d:31:19:a4:a6:8a:20:a5: 4e:cc:c9:29:8e:f4:bf:98:8a:e7:31:74:73:e0:30:fd:ab:0e: 61:f7:45:13:df:8c:22:d6:e4:3a:29:30:6e:49:b4:77:21:98: f4:fa:f2:1f:ca:5c:49:ba:40:f0:b5:c0:aa:87:fb:7a:52:46: 19:2f:23:56:95:86:a9:c7:d8:41:cd:64:e8:f0:c5:81:66:9b: 09:85:1c:b7:9d:9d:39:d9:23:b7:cb:76:c4:c0:9e:12:95:3b: a3:90:47:12:16:e7:f3:1d:e6:51:49:30:13:0d:15:d4:e2:0c: 01:25:95:63:76:bb:b9:ad:16:6d:02:83:9d:b9:de:58:4c:e8: 75:54:58:ca:62:5c:d3:35:ec:7c:e7:09:16:99:57:53:6d:75: 21:36:49:43:bb:5f:ea:8b:6f:ea:68:fd:f1:8e:47:6a:88:35: 7b:ee:9c:2c:89:08:b6:b1:4f:79:90:1b:39:e0:bf:8e:2a:4e: 2a:e3:65:59:86:0c:9b:3e:f2:8c:23:96:5e:ab:d2:fe:f2:40: 6a:14:b1:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUwNTEzMDA1MzE0WhcNMjUwNTIwMDA1MzE0WjAYMRYwFAYD VQQDEw02ODIyOTdmYS01NDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1w7moPqSEluXLXlaZV1cKoMwIFW7x8w6fsQiAPJ89aX1YD8uvynIvi3gbZT r3sRJ332jF45KR6hg1NbvN+5vfOXme0GCQDhojDwW44h//XkBvsEfe4MloQ8MSGu aKw4s7X5RrfnTZwNAmqv+qDW2hckrSfE/laOiEd49bxXtBD6sCqEaOlHG+IQIC31 gF6LSBljos+2wv9dex2xIPcIZHgVh19swZtD2ZiTFOyvXkuJWBx801Hm+T1zLfre 3rArb1ZBRw0KphHuyceMJji7WJa+et+UoNQGcpdo7b08EjdI2WsfhmUi5Y7pAluF IGc1m65MAHU8icUUCv9YqmtjvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIp6ewu0 krTDzgLeK5J1RGZ73ZqjMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0F94t3vaLA++syxqHHdGnSKjX4tP9a8+ZiTBHJh7PkBAKhaK3rA5m 3P0LgJosHTEZpKaKIKVOzMkpjvS/mIrnMXRz4DD9qw5h90UT34wi1uQ6KTBuSbR3 IZj0+vIfylxJukDwtcCqh/t6UkYZLyNWlYapx9hBzWTo8MWBZpsJhRy3nZ052SO3 y3bEwJ4SlTujkEcSFufzHeZRSTATDRXU4gwBJZVjdru5rRZtAoOdud5YTOh1VFjK YlzTNex85wkWmVdTbXUhNklDu1/qi2/qaP3xjkdqiDV77pwsiQi2sU95kBs54L+O Kk4q42VZhgybPvKMI5Zeq9L+8kBqFLFu -----END CERTIFICATE-----Generated at Tue May 13 19:23:55 2025 by rpki-client