$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: tiBP8B83oqV5OMn71wqM+ckykqdSx//60hpqde1k+B0= Subject key identifier: E8:F2:DF:35:A8:3F:9C:32:DB:67:C7:32:74:91:53:AE:BB:AD:83:30 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 033F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0333 Signing time: Sun 11 May 2025 00:39:31 +0000 Manifest this update: Sun 11 May 2025 00:39:30 +0000 Manifest next update: Sun 18 May 2025 00:39:30 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: +Ngev46JZut8LJGcRxg31gnidXbOnYCPA6wE786TsDg=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 831 (0x33f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: May 11 00:39:30 2025 GMT Not After : May 18 00:39:30 2025 GMT Subject: CN=681ff1c3-d285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:36:37:44:2d:9b:54:b7:d7:8b:01:a1:56:7e: 9b:00:66:e4:b0:c5:75:b4:67:68:5d:ea:1e:10:55: 98:eb:0a:25:08:3e:14:c9:15:3d:f3:96:dc:63:e4: ff:b1:29:55:85:42:f6:b3:9c:6c:03:a8:c9:85:7c: 95:ce:3b:da:7f:43:e0:d3:80:8c:81:57:66:9c:e0: e0:7a:a6:24:aa:f3:89:50:2c:f5:ae:15:af:f4:c9: 98:4a:79:78:ba:4c:f2:68:4c:d8:5d:d6:9e:1e:f2: 63:71:84:78:66:40:a8:b9:cf:13:10:bf:38:0c:39: 21:ae:66:2f:1f:bf:f7:7e:9d:5d:c1:6a:4b:e3:55: fe:32:7b:66:71:50:2d:82:05:1b:7d:16:98:f4:4e: 55:98:7f:af:2a:9d:bd:f0:69:c8:38:90:ad:51:cf: ec:75:49:4c:ba:ec:54:87:e4:ba:ea:7d:ba:e3:77: 20:3b:80:6c:04:1d:d3:9e:ee:cf:2a:1e:45:c6:3a: 54:8b:08:0a:4d:43:5a:23:bc:1d:08:1b:ee:e3:71: 13:7e:38:50:90:57:bf:76:d6:71:3c:23:7b:c5:5e: f8:10:cc:ae:cd:13:62:a8:5e:70:82:da:83:72:2e: 5e:83:74:75:b7:8a:6a:33:fc:1c:dd:3f:92:e1:0b: 44:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F2:DF:35:A8:3F:9C:32:DB:67:C7:32:74:91:53:AE:BB:AD:83:30 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:a7:b4:ae:cc:c2:1b:62:55:ec:6c:34:c8:19:8b:4b:c0:46: 16:dd:12:3e:ec:8f:03:dd:24:44:a8:25:13:c3:57:9c:a2:5b: f5:64:a5:82:71:06:e2:4d:af:08:c4:45:76:4c:ce:fd:93:a8: a0:cb:35:22:fa:58:71:bd:aa:fd:72:c5:52:4d:71:fb:5a:44: fe:da:73:b3:fd:a6:4f:d8:d7:7a:46:a5:16:32:38:f7:24:be: 5d:81:a7:27:61:04:3a:28:99:06:ec:17:b1:f9:62:88:f3:89: 3c:68:21:27:df:21:2d:8e:54:ec:ce:ef:57:77:58:f6:98:17: b9:4d:37:d6:f3:a8:f5:62:5a:db:2e:77:cc:b5:e9:9c:29:1c: 68:b3:bc:2c:57:ee:61:9c:aa:c9:a0:75:e4:0f:e0:71:15:89: a0:48:67:44:5e:f1:f4:79:33:d7:44:02:17:1b:c4:ff:39:a3: c8:12:bf:ba:13:76:0f:16:14:2b:91:cb:44:fd:b1:d5:96:f4: ab:22:0b:f9:39:60:df:da:21:c2:89:ab:5d:ea:e2:b3:83:31: e9:74:06:24:e3:81:5b:5b:ab:c6:72:68:00:d4:bf:8e:f7:40: c5:a6:fb:24:d8:0a:7f:ec:e3:dd:35:6b:05:55:3c:24:bb:78: 02:5c:3d:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwNTExMDAzOTMwWhcNMjUwNTE4MDAzOTMwWjAYMRYwFAYD VQQDEw02ODFmZjFjMy1kMjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDY3RC2bVLfXiwGhVn6bAGbksMV1tGdoXeoeEFWY6wolCD4UyRU985bcY+T/ sSlVhUL2s5xsA6jJhXyVzjvaf0Pg04CMgVdmnODgeqYkqvOJUCz1rhWv9MmYSnl4 ukzyaEzYXdaeHvJjcYR4ZkCouc8TEL84DDkhrmYvH7/3fp1dwWpL41X+MntmcVAt ggUbfRaY9E5VmH+vKp298GnIOJCtUc/sdUlMuuxUh+S66n2643cgO4BsBB3Tnu7P Kh5FxjpUiwgKTUNaI7wdCBvu43ETfjhQkFe/dtZxPCN7xV74EMyuzRNiqF5wgtqD ci5eg3R1t4pqM/wc3T+S4QtEfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjy3zWo P5wy22fHMnSRU667rYMwMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0p7SuzMIbYlXsbDTIGYtLwEYW3RI+7I8D3SREqCUTw1ecolv1ZKWC cQbiTa8IxEV2TM79k6igyzUi+lhxvar9csVSTXH7WkT+2nOz/aZP2Nd6RqUWMjj3 JL5dgacnYQQ6KJkG7Bex+WKI84k8aCEn3yEtjlTszu9Xd1j2mBe5TTfW86j1Ylrb LnfMtemcKRxos7wsV+5hnKrJoHXkD+BxFYmgSGdEXvH0eTPXRAIXG8T/OaPIEr+6 E3YPFhQrkctE/bHVlvSrIgv5OWDf2iHCiatd6uKzgzHpdAYk44FbW6vGcmgA1L+O 90DFpvsk2Ap/7OPdNWsFVTwku3gCXD0R -----END CERTIFICATE-----Generated at Sun May 11 08:49:52 2025 by rpki-client