$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: izEsaGyvBpkAnLRdIREA8aFxI+CWgUx1bjw7AHMoR/M= Subject key identifier: F1:00:78:FB:31:11:ED:05:0A:49:C8:F0:21:E1:BC:68:B8:9B:89:63 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0F8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0F76 Signing time: Mon 12 May 2025 17:28:51 +0000 Manifest this update: Mon 12 May 2025 17:28:51 +0000 Manifest next update: Mon 19 May 2025 17:28:51 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: Kz/k+zN0qVXxBRXlYSayA10t7G6VZqXSGJ1Fh9jXmPQ=) 2: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (hash: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc=) 3: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3978 (0xf8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: May 12 17:28:51 2025 GMT Not After : May 19 17:28:51 2025 GMT Subject: CN=68222fd3-24e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fe:e1:5e:4f:ce:0d:1d:b2:c0:62:e8:10:f5: 90:86:3a:37:e9:24:fa:e9:ec:fc:53:fd:db:4d:f1: e7:60:40:89:ea:1c:45:09:64:53:76:64:c4:f0:d1: 98:e7:cc:4b:fd:58:80:b4:19:bd:84:ad:80:b1:60: cc:9e:c5:e5:cf:4c:e8:73:01:a3:ea:a7:b5:0d:83: 3c:73:8b:46:50:14:58:1e:b0:ba:54:07:e2:24:f7: 48:46:15:a3:6f:f0:94:8d:54:ff:89:e0:a8:4a:10: 56:4a:88:24:4d:be:b0:19:29:da:c3:85:b4:e9:71: 72:fb:a0:66:c7:fa:d1:b1:ff:f0:b2:70:4a:c3:c2: 74:ed:0e:30:bb:91:35:d6:76:80:e8:8e:27:c3:c6: c2:ed:cf:b1:9f:a8:f2:55:c0:7f:16:55:07:8c:a6: b0:4e:15:45:12:b9:f4:97:5f:6d:af:07:d5:e6:b6: 83:2e:fb:74:d1:90:23:19:4e:c3:ca:59:8d:44:b0: 21:3b:02:2d:62:63:27:f8:17:81:d7:f1:8c:17:74: 03:20:57:ec:5e:9a:3d:33:6e:56:3b:b9:d4:f4:9a: 03:f8:75:df:cd:df:3a:fd:76:34:4d:56:f4:96:3f: e2:ed:02:68:0b:b4:47:2d:6e:fd:ec:ae:86:b0:70: 09:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:00:78:FB:31:11:ED:05:0A:49:C8:F0:21:E1:BC:68:B8:9B:89:63 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:4e:d7:72:43:e7:83:e6:b7:fa:39:d3:65:14:a3:7d:4c:c9: 9f:72:b9:c9:24:32:f4:0c:85:c0:d6:69:27:e3:7e:4d:10:0d: 10:48:39:c5:a4:c7:29:2d:86:e9:98:12:9f:d9:60:f3:cc:a5: 7e:18:0f:75:71:f3:11:7a:40:c8:76:bc:15:51:79:24:1d:48: 78:ca:41:c3:7d:dc:35:67:16:2f:c5:f8:c9:e8:5c:39:49:4c: 4c:1e:9c:39:2d:dd:28:39:0a:3f:5e:4b:49:3b:73:85:ed:d9: 93:b4:ce:fa:d4:38:61:f3:73:62:3e:4e:bc:1a:da:c6:50:98: 07:45:1a:48:c2:3d:37:b7:af:0d:a6:44:2f:41:a4:2b:8e:6f: 67:3a:3f:2c:56:90:27:cc:90:54:a5:24:cb:4f:af:e4:b1:d8: 50:56:bf:cd:1b:60:bc:51:26:17:93:b5:85:54:36:52:7d:7b: 59:3d:de:b8:c5:12:d9:8c:d0:8c:ec:4a:36:04:cf:2a:e0:ce: 4e:08:b7:ae:aa:7c:8d:6b:88:0c:ac:4c:e5:56:08:81:c9:97: 2d:a2:c4:a2:29:9d:93:db:22:a1:9c:6b:51:ec:db:08:ea:b3: 33:cc:b6:51:fc:e9:22:19:bd:55:42:e7:86:56:50:6e:5b:d1: 1e:66:d1:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwNTEyMTcyODUxWhcNMjUwNTE5MTcyODUxWjAYMRYwFAYD VQQDEw02ODIyMmZkMy0yNGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxv7hXk/ODR2ywGLoEPWQhjo36ST66ez8U/3bTfHnYECJ6hxFCWRTdmTE8NGY 58xL/ViAtBm9hK2AsWDMnsXlz0zocwGj6qe1DYM8c4tGUBRYHrC6VAfiJPdIRhWj b/CUjVT/ieCoShBWSogkTb6wGSnaw4W06XFy+6Bmx/rRsf/wsnBKw8J07Q4wu5E1 1naA6I4nw8bC7c+xn6jyVcB/FlUHjKawThVFErn0l19trwfV5raDLvt00ZAjGU7D ylmNRLAhOwItYmMn+BeB1/GMF3QDIFfsXpo9M25WO7nU9JoD+HXfzd86/XY0TVb0 lj/i7QJoC7RHLW797K6GsHAJnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEAePsx Ee0FCknI8CHhvGi4m4ljMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnTtdyQ+eD5rf6OdNlFKN9TMmfcrnJJDL0DIXA1mkn435NEA0QSDnF pMcpLYbpmBKf2WDzzKV+GA91cfMRekDIdrwVUXkkHUh4ykHDfdw1ZxYvxfjJ6Fw5 SUxMHpw5Ld0oOQo/XktJO3OF7dmTtM761Dhh83NiPk68GtrGUJgHRRpIwj03t68N pkQvQaQrjm9nOj8sVpAnzJBUpSTLT6/ksdhQVr/NG2C8USYXk7WFVDZSfXtZPd64 xRLZjNCM7Eo2BM8q4M5OCLeuqnyNa4gMrEzlVgiByZctosSiKZ2T2yKhnGtR7NsI 6rMzzLZR/OkiGb1VQueGVlBuW9EeZtGg -----END CERTIFICATE-----Generated at Mon May 12 21:36:06 2025 by rpki-client