$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: t/pfhTIQbIUHoK1GxZz16vfm3ruQYkI4e5T9+GSyJiE= Subject key identifier: 0C:CF:56:5C:06:9A:B2:63:A0:C8:FB:BB:15:70:BD:C7:36:E7:BA:92 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0357 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 034B Signing time: Sun 29 Jun 2025 00:34:57 +0000 Manifest this update: Sun 29 Jun 2025 00:34:57 +0000 Manifest next update: Sun 06 Jul 2025 00:34:57 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: zOm/pIoXcwj0J4hxylVL6+2cyN8VMtx9Zk4ozw5TpQc=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 855 (0x357) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Jun 29 00:34:57 2025 GMT Not After : Jul 6 00:34:57 2025 GMT Subject: CN=68608a31-629f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9b:ce:eb:86:b1:db:7b:24:aa:db:47:b5:d8: 0b:62:b5:28:aa:4c:22:21:33:ff:2d:01:1f:30:1e: b1:19:24:1e:d8:eb:14:2b:3b:97:89:9b:d6:9c:2d: 3a:8e:2d:ca:34:7a:b1:af:58:c5:af:32:d1:87:30: a4:9e:e1:69:e2:fb:b0:07:f3:e7:83:d3:8c:3b:3e: 4b:5c:8e:f1:e6:12:b8:17:cd:92:45:14:4f:8c:55: db:35:e1:9e:e6:a0:5c:5d:a4:af:f1:ac:cb:7c:b3: e5:f6:c7:00:c3:0d:ed:5f:45:9c:61:96:43:9d:a8: e3:10:88:00:70:44:75:0a:ec:b4:5e:6f:6d:e2:94: 69:4d:5b:72:db:c2:51:de:bf:b7:68:f9:69:ed:e5: f9:23:98:d0:0d:21:78:30:7b:f4:be:e0:01:5c:34: b5:f9:71:42:b4:64:f4:74:88:e0:ca:8f:e5:ee:f7: fa:53:4c:af:e4:33:18:21:4b:a6:58:b2:84:0c:1a: 8e:f0:88:23:f8:0a:33:c9:8d:87:3c:e7:83:bf:09: 92:1b:66:ca:e6:4a:fb:91:d0:d9:9d:0e:f8:63:de: 4a:2b:fd:fe:b4:65:ee:02:a3:ac:bb:7a:71:18:17: ff:e9:41:ab:b3:f1:3a:27:0e:b3:72:03:6c:ea:d7: 8f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:CF:56:5C:06:9A:B2:63:A0:C8:FB:BB:15:70:BD:C7:36:E7:BA:92 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:0a:b6:f4:f9:3c:a5:93:aa:1a:d4:d3:80:66:e8:cb:65:00: 5c:62:2f:f5:f0:09:92:02:ff:95:74:da:b4:9d:f2:cb:55:b0: e6:af:f5:b6:5e:27:48:24:69:f7:41:1c:e9:18:92:ce:26:3c: 22:cd:75:ca:f0:90:d4:4a:ad:aa:84:ae:a7:1b:8f:62:30:1f: ea:f6:19:eb:2a:55:2c:c5:59:d4:b4:57:38:dd:58:b7:93:ca: 94:cb:c2:30:9d:d3:66:7d:10:19:13:b0:5d:78:7b:d6:f5:6c: 9a:89:77:f9:75:5c:64:e1:dc:55:b2:b1:1f:c6:cd:dd:08:b3: ae:56:63:ce:73:b3:98:55:f9:f8:38:a3:15:b8:fc:2b:fe:90: 7f:f6:45:08:a1:4d:86:04:f6:57:f0:e5:a5:a0:b7:98:bd:c1: 5e:39:6a:7c:95:a4:8b:4b:bc:28:18:46:f7:71:58:95:a5:8d: 4b:2a:a6:ed:1c:c4:cd:69:34:11:34:28:4c:0b:b7:cb:c5:43: fd:c1:23:00:2d:a9:6e:ff:27:a4:7f:ea:29:d9:6e:ae:35:97: b3:38:27:a6:aa:30:8d:70:88:fd:ea:ed:5c:22:20:c8:12:80: 30:9e:2a:20:82:42:e3:b0:59:39:a2:f9:9d:e7:e2:ad:9f:78: a1:3c:16:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwNjI5MDAzNDU3WhcNMjUwNzA2MDAzNDU3WjAYMRYwFAYD VQQDEw02ODYwOGEzMS02MjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JvO64ax23skqttHtdgLYrUoqkwiITP/LQEfMB6xGSQe2OsUKzuXiZvWnC06 ji3KNHqxr1jFrzLRhzCknuFp4vuwB/Png9OMOz5LXI7x5hK4F82SRRRPjFXbNeGe 5qBcXaSv8azLfLPl9scAww3tX0WcYZZDnajjEIgAcER1Cuy0Xm9t4pRpTVty28JR 3r+3aPlp7eX5I5jQDSF4MHv0vuABXDS1+XFCtGT0dIjgyo/l7vf6U0yv5DMYIUum WLKEDBqO8Igj+AozyY2HPOeDvwmSG2bK5kr7kdDZnQ74Y95KK/3+tGXuAqOsu3px GBf/6UGrs/E6Jw6zcgNs6tePowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzPVlwG mrJjoMj7uxVwvcc257qSMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaCrb0+Tylk6oa1NOAZujLZQBcYi/18AmSAv+VdNq0nfLLVbDmr/W2 XidIJGn3QRzpGJLOJjwizXXK8JDUSq2qhK6nG49iMB/q9hnrKlUsxVnUtFc43Vi3 k8qUy8IwndNmfRAZE7BdeHvW9WyaiXf5dVxk4dxVsrEfxs3dCLOuVmPOc7OYVfn4 OKMVuPwr/pB/9kUIoU2GBPZX8OWloLeYvcFeOWp8laSLS7woGEb3cViVpY1LKqbt HMTNaTQRNChMC7fLxUP9wSMALalu/yekf+op2W6uNZezOCemqjCNcIj96u1cIiDI EoAwnioggkLjsFk5ovmd5+Ktn3ihPBZ7 -----END CERTIFICATE-----Generated at Mon Jun 30 19:43:51 2025 by rpki-client