$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: vNIpLacFDsj4Ya2ExxnohpSns0361/MicwcPyYLUmek= Subject key identifier: F8:0F:EA:CD:0A:92:27:72:EB:A3:BE:37:E4:23:3E:8B:41:31:66:59 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 09F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 09E5 Signing time: Fri 16 May 2025 20:09:32 +0000 Manifest this update: Fri 16 May 2025 20:09:31 +0000 Manifest next update: Fri 23 May 2025 20:09:31 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: hBE9GbF38AoydZxeIv35vqagP7DW7JstW409U73JXws=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2546 (0x9f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: May 16 20:09:31 2025 GMT Not After : May 23 20:09:31 2025 GMT Subject: CN=68279b7c-6dd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fc:31:1d:db:9b:40:dc:7c:86:8a:fd:77:6e: c4:a2:c7:6b:94:dd:53:0c:08:6f:f0:29:d7:c8:4a: fa:12:fe:52:55:64:b2:9f:45:c9:9c:1e:3e:e9:5b: b7:1b:5d:0f:d6:5e:04:65:1d:ac:f4:3d:8a:ef:73: 9e:10:4e:99:73:71:75:bf:28:05:a4:d4:c2:ba:fe: 48:5a:f0:4e:9d:b1:ea:c8:98:a9:dd:43:ff:bf:6d: e7:5d:65:e5:1c:d1:26:4e:cf:f7:2f:88:06:7c:f9: 4d:71:9c:4a:45:c9:76:4b:8c:82:36:63:0f:7c:e4: 4a:c5:ce:45:0c:26:13:52:83:46:f8:7e:1f:82:2e: 84:fc:63:04:0a:8c:38:05:88:e8:fc:23:13:26:91: ba:3c:f6:c8:59:2c:b8:46:1c:53:b1:34:98:e1:b6: 64:5c:82:04:87:87:86:ab:54:8c:af:70:4a:ef:5f: 47:52:01:e9:24:f9:84:17:c5:7e:a1:1f:66:4a:e0: 56:86:7b:fb:b8:59:e9:75:17:8a:9b:62:9d:4b:40: 33:e0:70:32:e3:12:75:50:1d:29:02:45:5b:6d:00: 49:f1:95:a0:0b:37:3b:d9:10:8e:61:5b:9d:46:5c: 31:ea:38:4c:20:31:8b:6b:d4:a5:66:c0:25:a4:86: 7a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0F:EA:CD:0A:92:27:72:EB:A3:BE:37:E4:23:3E:8B:41:31:66:59 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:16:23:ca:c3:2f:f5:fb:5b:e2:2a:50:54:31:88:9c:46:ea: c7:1d:66:59:92:62:c6:1e:1b:45:eb:e9:64:61:9a:a5:1e:ab: 04:37:6c:89:c6:31:2a:fe:c3:71:5f:f1:fa:50:9d:d2:db:5c: 86:52:96:4f:a3:6f:c0:f9:b4:1b:3c:85:f8:ad:f4:85:5f:e4: 87:a2:45:dd:8d:85:c2:38:20:f4:3b:34:da:bf:14:30:ec:8a: 23:b2:3c:e5:5c:90:fe:02:8f:72:65:ae:97:ec:52:79:3b:72: 19:0e:a3:5b:6d:6a:93:93:eb:b0:34:8a:8e:25:37:09:c2:ea: 0f:e9:9e:f2:a1:83:41:b1:01:84:65:70:4e:2d:1c:73:c9:d0: fa:bb:6b:03:93:2a:c4:42:da:19:9a:0e:8d:b8:b8:d2:4f:60: 67:01:de:b0:3c:bb:82:20:8c:c3:02:23:c3:06:07:b1:7d:72: f0:55:b1:80:24:cc:0d:be:e6:0f:9c:75:d4:18:aa:2d:f4:14: df:9d:72:ea:7e:da:6b:bf:e8:42:f3:99:6e:ea:fe:bb:30:c7: 5d:15:90:80:98:93:59:fa:4a:57:63:34:ac:21:2b:e8:f4:76: eb:ef:39:7d:f3:bd:1f:70:7a:7d:c2:42:14:53:eb:b0:83:0e: 66:8c:07:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwNTE2MjAwOTMxWhcNMjUwNTIzMjAwOTMxWjAYMRYwFAYD VQQDEw02ODI3OWI3Yy02ZGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fwxHdubQNx8hor9d27EosdrlN1TDAhv8CnXyEr6Ev5SVWSyn0XJnB4+6Vu3 G10P1l4EZR2s9D2K73OeEE6Zc3F1vygFpNTCuv5IWvBOnbHqyJip3UP/v23nXWXl HNEmTs/3L4gGfPlNcZxKRcl2S4yCNmMPfORKxc5FDCYTUoNG+H4fgi6E/GMECow4 BYjo/CMTJpG6PPbIWSy4RhxTsTSY4bZkXIIEh4eGq1SMr3BK719HUgHpJPmEF8V+ oR9mSuBWhnv7uFnpdReKm2KdS0Az4HAy4xJ1UB0pAkVbbQBJ8ZWgCzc72RCOYVud Rlwx6jhMIDGLa9SlZsAlpIZ68wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgP6s0K kidy66O+N+QjPotBMWZZMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChFiPKwy/1+1viKlBUMYicRurHHWZZkmLGHhtF6+lkYZqlHqsEN2yJ xjEq/sNxX/H6UJ3S21yGUpZPo2/A+bQbPIX4rfSFX+SHokXdjYXCOCD0OzTavxQw 7IojsjzlXJD+Ao9yZa6X7FJ5O3IZDqNbbWqTk+uwNIqOJTcJwuoP6Z7yoYNBsQGE ZXBOLRxzydD6u2sDkyrEQtoZmg6NuLjST2BnAd6wPLuCIIzDAiPDBgexfXLwVbGA JMwNvuYPnHXUGKot9BTfnXLqftprv+hC85lu6v67MMddFZCAmJNZ+kpXYzSsISvo 9Hbr7zl9870fcHp9wkIUU+uwgw5mjAeK -----END CERTIFICATE-----Generated at Fri May 16 23:00:55 2025 by rpki-client