$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: pstK3F3VioMVIvrIYj/pbgH/ErOMiXEho5PvQgboWU0= Subject key identifier: 38:AE:25:81:C9:08:70:87:AF:7A:5F:CA:9D:96:06:E5:8D:A6:56:79 Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 0145 Signing time: Fri 13 Jun 2025 03:16:28 +0000 Manifest this update: Fri 13 Jun 2025 03:16:27 +0000 Manifest next update: Fri 20 Jun 2025 03:16:27 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: IfiAj5ZW6t4OUXBojSZxp1LxNycpWZIH5hhNwXGxRCg=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: jSX8BBXcDhKRO02h61flDcL9PRKVJzf27mu274wCdhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Jun 13 03:16:27 2025 GMT Not After : Jun 20 03:16:27 2025 GMT Subject: CN=684b980c-e628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:27:76:5b:af:df:d4:60:a8:87:1e:45:bd:f8: 04:bf:72:a4:53:55:3e:53:d2:31:aa:28:39:df:ca: f8:49:e4:7f:b9:4a:36:cb:eb:df:1d:6e:54:e0:34: ba:e0:96:ff:cf:a6:e6:7c:08:ad:e2:74:53:2e:4c: 10:19:c6:f0:57:ef:01:3b:9c:8f:db:bc:03:59:89: b2:c8:77:70:66:8e:31:ee:34:cd:b3:9c:2a:22:3b: a9:2d:b6:3f:d8:46:13:1d:d7:93:b2:42:d6:33:94: 08:ec:09:e6:d9:ce:cc:0f:cf:c9:52:1c:3c:f6:59: d3:f8:d4:60:c3:a5:c3:91:66:26:9b:9d:8d:d0:d6: bf:4c:6c:20:74:08:00:cf:4b:6e:53:b6:47:4c:a8: ec:29:a4:b8:55:37:01:c6:ea:82:72:77:9d:8c:3c: 01:da:9d:5b:05:11:44:8b:77:eb:00:6f:d1:37:b4: 7f:ae:18:eb:52:75:de:5e:cc:ef:d8:d3:7b:51:b8: b5:ea:b5:60:2e:98:79:05:a1:95:53:4f:2a:ea:a0: 1c:95:9a:6e:70:14:b6:d7:03:d0:e3:29:a0:52:d7: 67:25:ef:1c:20:d8:02:37:7d:03:ce:6c:69:9e:6d: a4:59:ee:dc:a0:b4:5f:25:60:a4:c4:6f:4a:85:89: 62:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AE:25:81:C9:08:70:87:AF:7A:5F:CA:9D:96:06:E5:8D:A6:56:79 X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d6:88:6f:d0:c8:6b:3a:4c:d0:38:94:c9:56:6c:b3:dd:13: 82:32:62:63:ce:4c:8b:8b:e2:4e:ad:16:81:66:9e:c5:f6:be: a5:63:08:3c:cd:31:0d:96:3a:1a:ac:11:24:a0:25:00:e7:5b: c4:50:3a:f5:85:4d:4e:51:b7:db:5e:7b:77:b2:96:ff:77:4a: 8e:69:ef:4a:82:a1:e2:88:24:a1:d9:d1:10:16:eb:95:29:5a: 3f:c9:40:79:73:78:0b:ef:cb:39:7f:ec:38:a3:71:cf:08:d8: 2a:d5:f2:5e:f7:9b:a0:6c:8d:05:28:95:3f:d6:90:34:db:e4: 31:45:35:93:b4:58:0c:db:cd:6c:35:44:e0:ee:6c:03:81:7f: 1e:12:68:2b:dc:07:fc:e3:89:b5:42:46:61:ad:c2:5f:ae:4c: 9d:d7:b4:a4:0b:e3:9b:c1:13:00:bc:80:33:b9:4a:87:7a:f0: ea:ae:9a:58:cf:fa:8a:69:30:9f:59:a8:a0:5e:94:c3:1f:e2: ae:65:c3:98:11:b9:e6:a1:61:00:c9:10:a5:64:bc:cc:a2:9c: a5:e5:3f:c2:7d:00:8d:c9:06:60:b0:e8:07:c5:d9:b6:06:3e: 24:d0:0b:fb:09:36:f8:ef:85:20:09:f8:00:53:a7:cf:8b:99: da:d0:f2:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjUwNjEzMDMxNjI3WhcNMjUwNjIwMDMxNjI3WjAYMRYwFAYD VQQDEw02ODRiOTgwYy1lNjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Cd2W6/f1GCohx5FvfgEv3KkU1U+U9Ixqig538r4SeR/uUo2y+vfHW5U4DS6 4Jb/z6bmfAit4nRTLkwQGcbwV+8BO5yP27wDWYmyyHdwZo4x7jTNs5wqIjupLbY/ 2EYTHdeTskLWM5QI7Anm2c7MD8/JUhw89lnT+NRgw6XDkWYmm52N0Na/TGwgdAgA z0tuU7ZHTKjsKaS4VTcBxuqCcnedjDwB2p1bBRFEi3frAG/RN7R/rhjrUnXeXszv 2NN7Ubi16rVgLph5BaGVU08q6qAclZpucBS21wPQ4ymgUtdnJe8cINgCN30Dzmxp nm2kWe7coLRfJWCkxG9KhYli3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiuJYHJ CHCHr3pfyp2WBuWNplZ5MB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl1ohv0MhrOkzQOJTJVmyz3ROCMmJjzkyLi+JOrRaBZp7F9r6lYwg8 zTENljoarBEkoCUA51vEUDr1hU1OUbfbXnt3spb/d0qOae9KgqHiiCSh2dEQFuuV KVo/yUB5c3gL78s5f+w4o3HPCNgq1fJe95ugbI0FKJU/1pA02+QxRTWTtFgM281s NUTg7mwDgX8eEmgr3Af844m1QkZhrcJfrkyd17SkC+ObwRMAvIAzuUqHevDqrppY z/qKaTCfWaigXpTDH+KuZcOYEbnmoWEAyRClZLzMopyl5T/CfQCNyQZgsOgHxdm2 Bj4k0Av7CTb474UgCfgAU6fPi5na0PKB -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:43 2025 by rpki-client