$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft File: H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft (raw, json) Hash identifier: P5ekrRKTFACFaq3c0Rgb7NYz8HL/nzxUWsd5S+aJ6iU= Subject key identifier: 99:50:EA:B1:15:CE:08:4A:0D:AF:4A:4D:EA:4C:25:22:DD:75:2E:F5 Authority key identifier: 1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 Certificate issuer: /CN=A91C3ED8/serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft Manifest number: 01CA Signing time: Sun 11 May 2025 01:55:41 +0000 Manifest this update: Sun 11 May 2025 01:55:40 +0000 Manifest next update: Sun 18 May 2025 01:55:40 +0000 Files and hashes: 1: H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl (hash: UkAl3Xoewue2Q4udv1TaOnPdyJ/x6s3F7FmzfE2QVU0=) 2: 51CC97DE72D711ED95179B5EC4F9AE02.roa (hash: k1Zwpv5X+PU26A87kFtIjFMNyUjqNWGBGW/MolkeBNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ED8, serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Validity Not Before: May 11 01:55:40 2025 GMT Not After : May 18 01:55:40 2025 GMT Subject: CN=6820039d-db06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d1:4e:90:2c:39:49:6f:5a:f9:a4:79:9b:6d: dc:76:e3:c4:78:1d:2a:91:09:ba:2a:5e:c2:70:94: cd:06:d9:a3:ee:c0:8b:7c:63:a8:32:a4:13:06:70: ae:ea:e7:62:ae:32:a4:e6:22:1b:61:21:e6:cc:73: ae:79:78:20:55:8e:e8:4a:93:5a:17:03:23:16:76: a7:23:6f:94:b3:28:c1:24:10:62:33:10:ca:b3:c5: 02:e6:2c:0d:de:0f:61:f4:f7:f2:a1:bd:f6:f4:dc: 99:2a:33:5b:2e:70:ce:11:2e:3c:64:97:99:10:80: 39:08:c9:59:dc:36:ef:c6:fe:1c:2a:4f:1e:27:b2: f5:fe:82:d9:72:be:9e:7e:75:5f:0e:74:ee:1b:92: f4:81:5c:f7:18:fb:ef:50:8b:34:6d:f4:d8:0f:79: 9a:e1:f6:da:41:da:34:69:56:a8:e2:ca:5c:40:ba: 12:21:d5:f1:05:16:37:df:89:83:25:e9:bd:72:4a: 8e:74:53:cf:6b:95:38:62:0b:7d:d4:a5:9e:48:1e: 4e:be:7e:27:76:cc:8b:b9:75:4a:99:23:2d:5c:83: 5b:99:49:af:89:a8:61:b6:62:00:5f:67:a1:b1:a9: 2f:ee:9f:a3:59:f3:ae:2b:c2:c7:23:11:65:ca:95: 36:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:50:EA:B1:15:CE:08:4A:0D:AF:4A:4D:EA:4C:25:22:DD:75:2E:F5 X509v3 Authority Key Identifier: keyid:1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b9:22:f6:80:e3:fa:fa:4a:cf:8d:86:0f:cc:a8:84:59:c3: fb:d2:3b:a1:c5:4c:1d:a7:9f:64:6c:76:80:2a:07:cf:8f:94: 53:e8:c4:db:21:bb:61:ee:fa:95:f5:bb:88:5d:f5:f1:7e:dd: 44:d1:b5:4a:c0:40:01:65:27:6c:1b:16:39:90:ea:10:77:22: ec:eb:1d:15:6a:ea:47:a0:0a:fe:e4:3d:50:78:ae:e7:45:41: 44:03:0d:a8:c6:23:61:f7:92:f6:b9:f4:12:ab:08:72:08:c2: bf:10:e6:bb:1b:40:66:9a:85:ad:2c:06:a7:8f:33:cd:c9:e6: 0e:3e:25:f0:91:1d:43:2f:52:5b:65:70:d5:d2:b8:00:8f:04: 5f:84:7f:5a:08:5e:d6:ba:57:1e:67:1e:bf:91:83:60:2a:a9: 6c:c3:2b:01:4e:4a:ac:b7:a1:6d:40:9b:60:b8:23:12:2c:42: 04:91:9e:fd:a0:34:6e:45:4d:3e:9b:86:e8:17:5d:02:c9:32: 98:21:49:12:36:d8:36:eb:70:36:ea:03:ab:21:53:64:86:ec: f0:68:40:5e:d5:b6:b5:23:29:2d:17:e3:e2:f0:41:ff:17:0f: 36:5a:d4:f5:a9:f2:07:17:ad:46:f0:62:0b:ab:d9:86:b0:4e: 7e:2c:99:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNFRDgxMTAvBgNVBAUTKDFGREY4OEIzNTlGNDQ4RUQ0QzcxMkY5RjE1N0QwODND QzIxMTRDMTQwHhcNMjUwNTExMDE1NTQwWhcNMjUwNTE4MDE1NTQwWjAYMRYwFAYD VQQDEw02ODIwMDM5ZC1kYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldFOkCw5SW9a+aR5m23cduPEeB0qkQm6Kl7CcJTNBtmj7sCLfGOoMqQTBnCu 6udirjKk5iIbYSHmzHOueXggVY7oSpNaFwMjFnanI2+UsyjBJBBiMxDKs8UC5iwN 3g9h9Pfyob329NyZKjNbLnDOES48ZJeZEIA5CMlZ3Dbvxv4cKk8eJ7L1/oLZcr6e fnVfDnTuG5L0gVz3GPvvUIs0bfTYD3ma4fbaQdo0aVao4spcQLoSIdXxBRY334mD Jem9ckqOdFPPa5U4Ygt91KWeSB5Ovn4ndsyLuXVKmSMtXINbmUmviahhtmIAX2eh sakv7p+jWfOuK8LHIxFlypU2ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlQ6rEV zghKDa9KTepMJSLddS71MB8GA1UdIwQYMBaAFB/fiLNZ9EjtTHEvnxV9CDzCEUwU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0VEOC8zQzU1MzNBRTcy RDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNPMU1jUy1mRlgwSVBNSVJU QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5LUlzMW4wU08xTWNTLWZGWDBJUE1JUlRCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0VEOC8zQzU1MzNBRTcyRDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNP MU1jUy1mRlgwSVBNSVJUQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKuSL2gOP6+krPjYYPzKiEWcP70juhxUwdp59kbHaAKgfPj5RT6MTb Ibth7vqV9buIXfXxft1E0bVKwEABZSdsGxY5kOoQdyLs6x0VaupHoAr+5D1QeK7n RUFEAw2oxiNh95L2ufQSqwhyCMK/EOa7G0BmmoWtLAanjzPNyeYOPiXwkR1DL1Jb ZXDV0rgAjwRfhH9aCF7WulceZx6/kYNgKqlswysBTkqst6FtQJtguCMSLEIEkZ79 oDRuRU0+m4boF10CyTKYIUkSNtg263A26gOrIVNkhuzwaEBe1ba1IyktF+Pi8EH/ Fw82WtT1qfIHF61G8GILq9mGsE5+LJnA -----END CERTIFICATE-----Generated at Sun May 11 04:20:41 2025 by rpki-client