$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: z5YrmE5JQNAaHy9yR5k6rOyGRdezVxkXIRYT+Jgm+80= Subject key identifier: FE:F5:74:0F:82:77:43:8B:BE:07:FC:0F:AE:AE:36:07:80:90:4F:EB Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 17E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 17D0 Signing time: Thu 12 Jun 2025 16:32:11 +0000 Manifest this update: Thu 12 Jun 2025 16:32:11 +0000 Manifest next update: Thu 19 Jun 2025 16:32:11 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: QidFYMbl9FEgjK08D8bxxvjbL8TsRzJvV86dDXMjMWQ=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6120 (0x17e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Jun 12 16:32:11 2025 GMT Not After : Jun 19 16:32:11 2025 GMT Subject: CN=684b010b-e70b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7d:15:d5:1a:3f:b7:f5:ed:01:e4:5b:c6:5e: f5:3c:69:e5:2d:26:27:80:68:86:80:12:26:ce:49: 2c:0f:87:57:b2:c2:e9:fe:8f:38:ab:42:39:ae:2c: dd:9f:d6:73:ea:00:40:46:39:c5:64:3c:e5:00:3c: 98:c2:d4:7c:73:95:b5:50:50:2e:6a:6e:29:97:b4: e7:d9:de:31:25:3a:47:0a:68:83:13:a5:9b:81:4c: 60:d1:74:b8:1a:c1:93:da:3d:dd:03:0a:d4:29:00: 76:11:7b:42:a0:a6:d4:23:1e:79:91:8b:8b:3a:98: c3:d9:52:aa:76:6e:a4:8a:06:64:34:4c:2b:ba:b1: c1:47:7a:2a:2b:0a:de:21:82:75:8c:6e:ce:7b:a6: e5:9f:c9:7a:29:80:de:83:5e:f0:35:9f:88:dd:65: 6e:cd:39:a3:b5:15:57:0c:4d:76:66:20:41:de:73: 23:a0:e6:5f:2f:96:11:59:3b:09:f5:bf:11:a4:6a: 99:e5:20:8e:b4:48:be:09:5e:f2:b3:cc:11:bd:83: 3c:b4:ed:36:0a:3e:cf:f3:54:ea:55:bd:4b:e1:9a: 4e:03:fd:8f:ff:62:55:2f:30:f9:1d:06:c0:9a:13: 65:3e:e4:6d:f7:a4:aa:84:63:d9:31:e2:fd:ff:5f: d7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F5:74:0F:82:77:43:8B:BE:07:FC:0F:AE:AE:36:07:80:90:4F:EB X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:c2:86:c0:00:56:08:34:92:4e:cf:d1:96:8e:3a:31:95:a8: c4:74:a9:75:50:0d:d0:ad:48:52:b4:82:d3:0f:af:81:6f:4b: b1:02:0e:0e:8b:c7:35:72:a7:9c:f2:a0:f2:32:f3:d4:1d:b3: d4:b3:3f:72:f0:45:88:ad:13:fe:cb:f5:7f:bb:59:68:47:84: 39:0a:5f:d4:92:4a:eb:70:a9:32:9b:b1:06:62:e3:4c:df:9e: 22:8c:ae:67:62:fa:01:4e:f4:c5:f3:22:2b:4d:2c:23:53:ad: 4f:10:bb:9e:c1:8a:44:b3:8b:6a:71:df:f3:d3:59:5f:c9:d3: 74:53:d8:51:0a:fe:27:5b:c6:14:46:12:7c:f9:91:08:7f:46: ce:b6:f5:bf:72:86:f1:a1:e9:f8:57:96:02:80:96:25:13:16: 9d:8c:5a:de:89:a9:69:e8:05:37:dd:1f:0f:26:82:67:f1:8f: 79:0e:45:16:6e:8a:c2:03:86:ab:de:9b:43:01:29:11:05:a8: 89:64:b1:9b:e2:82:82:31:25:97:d1:02:d8:4d:1c:a8:d7:20: c1:87:10:f9:ca:e5:30:ed:da:79:8c:9c:1e:d6:04:cd:ec:32: e9:a6:83:11:54:b1:53:b0:04:d6:19:a5:6e:56:16:d0:81:99: e8:ac:8f:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUwNjEyMTYzMjExWhcNMjUwNjE5MTYzMjExWjAYMRYwFAYD VQQDEw02ODRiMDEwYi1lNzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2X0V1Ro/t/XtAeRbxl71PGnlLSYngGiGgBImzkksD4dXssLp/o84q0I5rizd n9Zz6gBARjnFZDzlADyYwtR8c5W1UFAuam4pl7Tn2d4xJTpHCmiDE6WbgUxg0XS4 GsGT2j3dAwrUKQB2EXtCoKbUIx55kYuLOpjD2VKqdm6kigZkNEwrurHBR3oqKwre IYJ1jG7Oe6bln8l6KYDeg17wNZ+I3WVuzTmjtRVXDE12ZiBB3nMjoOZfL5YRWTsJ 9b8RpGqZ5SCOtEi+CV7ys8wRvYM8tO02Cj7P81TqVb1L4ZpOA/2P/2JVLzD5HQbA mhNlPuRt96SqhGPZMeL9/1/XhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP71dA+C d0OLvgf8D66uNgeAkE/rMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRwobAAFYINJJOz9GWjjoxlajEdKl1UA3QrUhStILTD6+Bb0uxAg4O i8c1cqec8qDyMvPUHbPUsz9y8EWIrRP+y/V/u1loR4Q5Cl/UkkrrcKkym7EGYuNM 354ijK5nYvoBTvTF8yIrTSwjU61PELuewYpEs4tqcd/z01lfydN0U9hRCv4nW8YU RhJ8+ZEIf0bOtvW/cobxoen4V5YCgJYlExadjFreialp6AU33R8PJoJn8Y95DkUW borCA4ar3ptDASkRBaiJZLGb4oKCMSWX0QLYTRyo1yDBhxD5yuUw7dp5jJwe1gTN 7DLppoMRVLFTsATWGaVuVhbQgZnorI9M -----END CERTIFICATE-----Generated at Sat Jun 14 17:18:22 2025 by rpki-client