$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: i0BcxTNvmOwqnbczL3IJIYRE23eZBl/2PyOO4bvctpg= Subject key identifier: 05:D5:3D:4F:DD:77:D8:F3:F1:78:A2:0F:63:52:AE:0E:F6:D4:9F:EC Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0A78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0A72 Signing time: Wed 14 May 2025 19:44:31 +0000 Manifest this update: Wed 14 May 2025 19:44:30 +0000 Manifest next update: Wed 21 May 2025 19:44:30 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: SdGiFd4lhubv1UbQWQD4HNuAXbKNpwUVo1W9zF/cO5c=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2680 (0xa78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: May 14 19:44:30 2025 GMT Not After : May 21 19:44:30 2025 GMT Subject: CN=6824f29f-d1e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ce:f2:17:3e:5d:8a:c2:8d:88:2f:66:11:19: e8:9e:9f:1e:55:e5:8d:9e:35:e1:77:a5:0a:58:2d: e0:29:c6:55:09:31:03:cd:e0:12:b3:71:02:16:5c: cd:38:05:d2:1d:53:8b:7f:6c:a4:ac:23:2a:2f:45: bf:30:db:ab:02:12:1c:90:3d:a7:0e:32:0b:c1:8f: b1:37:75:be:2e:a3:23:aa:97:2f:18:45:95:1e:fe: 54:3e:79:3b:49:56:d6:4f:fe:cf:ad:f5:1c:9b:c6: c2:3f:91:60:ef:10:8c:ae:96:12:0c:52:44:82:fe: 9b:7b:8a:f1:e2:97:a6:3c:60:6b:2c:93:35:7a:c5: c7:6a:22:cf:05:a7:04:27:ed:81:6a:af:44:65:0b: f3:9f:72:eb:3f:a2:67:fc:89:47:65:0d:42:db:6d: 09:ab:e6:b6:70:8e:76:1c:31:f1:80:b7:36:ab:0d: 0c:b1:2b:39:29:13:e9:b8:f8:b4:95:bc:58:0f:0b: 11:12:46:62:23:84:07:3a:4f:d3:5f:58:5c:af:f7: 00:85:78:c3:67:0f:85:a9:1e:cf:32:4b:d6:17:0e: e4:85:32:4a:81:6f:dd:03:64:b7:1b:34:75:7e:f0: d7:33:80:11:30:89:03:f3:9f:07:f0:07:ac:75:1f: 02:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D5:3D:4F:DD:77:D8:F3:F1:78:A2:0F:63:52:AE:0E:F6:D4:9F:EC X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:0e:fa:a0:ad:96:05:ca:ba:01:aa:fb:c9:e8:34:25:7c:b4: 4f:f8:1f:fb:b6:41:fb:7b:d1:6b:b4:93:c1:a0:fa:a3:0a:2c: ad:2a:57:9d:95:48:1e:9b:f7:7d:81:d5:33:88:0c:73:0d:11: e9:45:08:b6:84:0d:8b:64:59:fe:26:29:5d:64:14:39:22:55: 63:71:51:7d:df:00:3c:5a:ec:e2:88:5d:86:6d:2c:03:e3:bf: 6d:bf:3e:20:b5:5c:f5:42:42:ea:88:62:8d:5d:26:50:01:5b: 1f:45:f0:41:b4:13:d6:56:eb:43:dd:8a:47:ba:26:72:8b:88: cd:e6:39:99:d7:ee:cb:4c:11:f0:5a:f4:6c:d3:35:a8:38:4f: 2c:6f:ac:b6:28:64:83:59:01:f2:bd:69:cf:6a:f5:ec:e4:65: d9:0d:1f:fb:68:e3:9f:2a:cc:77:d9:e1:9f:49:68:83:c0:6d: e4:33:31:93:85:b5:cb:0d:d9:d2:f3:56:9b:6f:20:f3:33:f3: 7f:1e:b6:5a:21:82:8f:2d:d7:c4:5f:17:30:33:37:2c:c1:de: 75:f8:76:fd:12:b9:18:01:1e:ba:38:4a:3d:f5:aa:c5:02:d2: 93:a1:c7:89:d9:c7:37:8c:cd:bd:63:0c:90:40:ef:57:90:97: 22:4a:af:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUwNTE0MTk0NDMwWhcNMjUwNTIxMTk0NDMwWjAYMRYwFAYD VQQDEw02ODI0ZjI5Zi1kMWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0M7yFz5disKNiC9mERnonp8eVeWNnjXhd6UKWC3gKcZVCTEDzeASs3ECFlzN OAXSHVOLf2ykrCMqL0W/MNurAhIckD2nDjILwY+xN3W+LqMjqpcvGEWVHv5UPnk7 SVbWT/7PrfUcm8bCP5Fg7xCMrpYSDFJEgv6be4rx4pemPGBrLJM1esXHaiLPBacE J+2Baq9EZQvzn3LrP6Jn/IlHZQ1C220Jq+a2cI52HDHxgLc2qw0MsSs5KRPpuPi0 lbxYDwsREkZiI4QHOk/TX1hcr/cAhXjDZw+FqR7PMkvWFw7khTJKgW/dA2S3GzR1 fvDXM4ARMIkD858H8AesdR8CWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXVPU/d d9jz8XiiD2NSrg721J/sMB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIDvqgrZYFyroBqvvJ6DQlfLRP+B/7tkH7e9FrtJPBoPqjCiytKled lUgem/d9gdUziAxzDRHpRQi2hA2LZFn+JildZBQ5IlVjcVF93wA8WuziiF2GbSwD 479tvz4gtVz1QkLqiGKNXSZQAVsfRfBBtBPWVutD3YpHuiZyi4jN5jmZ1+7LTBHw WvRs0zWoOE8sb6y2KGSDWQHyvWnPavXs5GXZDR/7aOOfKsx32eGfSWiDwG3kMzGT hbXLDdnS81abbyDzM/N/HrZaIYKPLdfEXxcwMzcswd51+Hb9ErkYAR66OEo99arF AtKToceJ2cc3jM29YwyQQO9XkJciSq/B -----END CERTIFICATE-----Generated at Fri May 16 16:51:15 2025 by rpki-client