$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: aq5jMsw6CrROFmNMUG4zKCuvlMiTH8Kck8j4y8kQ8kg= Subject key identifier: 9B:61:0E:3B:C5:5E:19:9E:46:D8:5E:FF:36:0D:01:84:09:49:C7:BC Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 150D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 14FC Signing time: Mon 12 May 2025 16:45:35 +0000 Manifest this update: Mon 12 May 2025 16:45:35 +0000 Manifest next update: Mon 19 May 2025 16:45:35 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: koD3Rzv1Cc2LkrjiRbqQvarSzbk/4qcvoZpAKByXEcc=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5389 (0x150d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: May 12 16:45:35 2025 GMT Not After : May 19 16:45:35 2025 GMT Subject: CN=682225af-f6e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:78:43:6f:9a:d2:83:e1:c9:0f:08:9b:e3: fa:b0:a9:8c:bd:57:66:56:df:83:0a:b8:9b:71:4e: 83:b0:0e:60:62:9f:af:ca:f3:95:9f:aa:2e:24:33: 1d:aa:6f:53:a7:40:62:23:72:a6:92:47:7d:ee:40: 83:89:0c:16:b5:6f:ad:38:a9:cb:da:fb:a9:a4:8c: 35:03:d5:50:9c:33:d1:77:1c:2b:84:4b:76:df:e2: 42:24:67:32:93:ce:2c:09:8b:d6:40:6f:a9:aa:93: fa:ad:41:44:6f:69:60:ee:78:b5:5c:bd:3d:15:62: b4:e8:35:2d:d6:82:21:20:85:84:eb:b5:9d:35:96: 49:f9:4c:64:37:e1:23:9c:b3:66:20:c0:eb:07:80: b5:74:de:70:a7:fe:dd:a0:3e:0a:61:62:5b:da:49: 2e:37:95:5a:d6:94:c2:cb:e9:03:87:67:eb:16:a3: e5:c8:a2:a3:1e:9b:e1:85:49:15:7e:93:b9:fb:03: 67:4b:cf:fa:58:70:23:68:89:b9:cd:14:c3:46:da: 48:37:9f:59:9f:c9:52:2c:6a:4d:ad:22:f8:09:b4: 6b:61:19:d8:f5:cd:cc:4c:7a:13:0f:1e:7b:7a:cc: a5:6b:98:82:ac:ee:f2:06:82:8a:92:30:1d:fb:06: 6d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:61:0E:3B:C5:5E:19:9E:46:D8:5E:FF:36:0D:01:84:09:49:C7:BC X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:fb:fa:7f:ea:20:59:6e:c4:c5:82:4a:6d:6d:6f:3f:4b:9d: e1:dc:21:04:df:7c:39:13:62:f3:2f:80:c3:82:47:aa:60:9b: 88:0c:3b:ea:f1:f7:ba:d4:8c:ac:a9:51:44:8c:16:d1:f0:3c: 08:58:0b:04:af:f4:83:44:ec:6b:c4:09:e7:12:a8:19:2d:77: 73:91:26:de:31:04:07:28:98:ce:6f:97:94:3d:e0:91:a6:d1: 9b:05:55:00:d1:33:bf:b0:7c:cc:bc:00:fa:20:b8:47:d8:d6: f7:31:c7:0d:e9:98:20:3c:23:34:54:10:e4:69:fa:87:36:11: 1e:87:39:bc:ad:f2:46:1b:74:26:d3:02:58:80:74:8e:e6:fa: 97:67:21:60:d7:d0:34:39:45:95:bc:80:3a:71:f3:3b:c1:d6: 20:d0:08:08:7e:98:e8:a2:fb:c6:5b:e6:cf:f8:84:3f:6b:60: b7:5a:29:fe:be:ae:15:84:d0:16:71:f6:14:9c:36:cd:80:b9: 0d:7a:9e:87:49:85:9c:6b:70:43:59:56:b4:98:12:5b:da:da: 74:c9:f8:e2:84:04:ec:b6:a8:6c:54:88:79:28:26:3a:3d:40: 4a:3e:97:a1:03:a0:35:53:46:1f:17:f5:b4:fe:cf:65:74:a8: b5:43:2d:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwNTEyMTY0NTM1WhcNMjUwNTE5MTY0NTM1WjAYMRYwFAYD VQQDEw02ODIyMjVhZi1mNmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0id4Q2+a0oPhyQ8Im+P6sKmMvVdmVt+DCribcU6DsA5gYp+vyvOVn6ouJDMd qm9Tp0BiI3Kmkkd97kCDiQwWtW+tOKnL2vuppIw1A9VQnDPRdxwrhEt23+JCJGcy k84sCYvWQG+pqpP6rUFEb2lg7ni1XL09FWK06DUt1oIhIIWE67WdNZZJ+UxkN+Ej nLNmIMDrB4C1dN5wp/7doD4KYWJb2kkuN5Va1pTCy+kDh2frFqPlyKKjHpvhhUkV fpO5+wNnS8/6WHAjaIm5zRTDRtpIN59Zn8lSLGpNrSL4CbRrYRnY9c3MTHoTDx57 esyla5iCrO7yBoKKkjAd+wZtxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJthDjvF XhmeRthe/zYNAYQJSce8MB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw+/p/6iBZbsTFgkptbW8/S53h3CEE33w5E2LzL4DDgkeqYJuIDDvq 8fe61IysqVFEjBbR8DwIWAsEr/SDROxrxAnnEqgZLXdzkSbeMQQHKJjOb5eUPeCR ptGbBVUA0TO/sHzMvAD6ILhH2Nb3MccN6ZggPCM0VBDkafqHNhEehzm8rfJGG3Qm 0wJYgHSO5vqXZyFg19A0OUWVvIA6cfM7wdYg0AgIfpjoovvGW+bP+IQ/a2C3Win+ vq4VhNAWcfYUnDbNgLkNep6HSYWca3BDWVa0mBJb2tp0yfjihATstqhsVIh5KCY6 PUBKPpehA6A1U0YfF/W0/s9ldKi1Qy3o -----END CERTIFICATE-----Generated at Wed May 14 15:27:07 2025 by rpki-client