$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft File: h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft (raw, json) Hash identifier: 4YVBeQyYyuRDpDNIfAXpWvdODTwU3FUD42lQMUV0x08= Subject key identifier: 90:03:D7:7B:5F:74:CB:DB:AA:74:4B:71:B1:B8:57:2E:D9:D3:DB:AF Authority key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C Certificate issuer: /CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Certificate serial: 120E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft Manifest number: 11FF Signing time: Thu 24 Apr 2025 17:10:53 +0000 Manifest this update: Thu 24 Apr 2025 17:10:53 +0000 Manifest next update: Thu 01 May 2025 17:10:53 +0000 Files and hashes: 1: h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl (hash: qrXF0cJsPy9BLQD6djMFywosvOtxC7I5B6XdvWs3nYA=) 2: 698B3FA6986011EE969A225FC4F9AE02.roa (hash: IPMaIsA9uRnd6F5Aml0jreWHK2WPPMV0a6PLoDBBAuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4622 (0x120e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Validity Not Before: Apr 24 17:10:53 2025 GMT Not After : May 1 17:10:53 2025 GMT Subject: CN=680a709d-085e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:97:b9:bf:73:7e:59:fc:42:6b:c5:12:9e:ba: c5:4d:2e:18:c7:3d:52:ab:cb:e6:59:4a:3c:db:00: f5:8d:00:fa:c4:02:48:d0:18:36:5b:97:70:c2:d3: 41:ca:17:8c:3c:c0:f2:e8:92:d4:ea:6f:6d:e8:86: 3a:e1:ec:a8:6c:13:07:00:c0:66:1f:33:90:14:55: 4f:8b:1a:8a:be:06:c2:cc:bd:ab:cf:de:0e:73:67: df:cb:37:ec:cc:77:80:5d:19:1d:fa:cb:7e:35:96: 45:e1:16:d5:7d:13:6f:53:e4:23:2a:9b:75:cf:89: b0:2a:44:76:c6:8a:2a:e4:ef:30:11:dd:88:bb:91: 1d:e4:29:1d:65:21:85:57:ff:38:ac:c4:8f:69:2b: b3:a8:12:41:d3:7c:fd:0f:29:e9:51:f8:e8:cd:40: a5:d5:c5:6a:4c:c0:74:1d:4b:bf:f2:7e:0b:8c:2b: 9d:89:29:0d:b0:fd:6f:50:f6:40:2f:c9:e9:bf:83: e8:a0:77:0b:42:4b:54:e9:d2:30:1c:74:cf:d6:11: 57:41:7e:0e:7c:b2:ad:21:fb:97:ae:f9:86:69:40: 9c:4a:aa:71:89:88:36:a1:c8:97:73:5e:07:ae:8d: b7:93:22:ba:ca:08:e7:59:f3:09:db:4a:5f:59:b5: 6e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:03:D7:7B:5F:74:CB:DB:AA:74:4B:71:B1:B8:57:2E:D9:D3:DB:AF X509v3 Authority Key Identifier: keyid:87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:c1:40:0e:3e:51:8c:1c:89:b7:2b:14:97:54:54:1e:ad:80: a3:2e:d9:e2:19:20:bf:fe:84:d4:ec:7d:76:f4:ec:af:e2:f3: 1d:38:01:0c:34:d2:ac:a7:ef:9a:54:ab:d5:11:9e:4e:00:d9: 05:61:6a:52:07:75:47:7d:70:a2:b1:79:63:c5:6e:33:d1:40: 25:9d:6f:3b:b7:58:85:65:bd:e1:96:ef:2f:38:82:e6:12:72: 5c:3d:b0:46:84:29:78:56:79:d7:20:7d:04:df:86:27:b6:1c: 17:58:46:34:90:19:e3:82:28:23:1e:a9:f9:38:3f:4b:9e:50: c5:66:2d:7d:08:36:a4:73:00:fd:e0:ff:a3:47:a3:02:cd:cc: f9:98:0e:c4:e3:e5:a3:74:b9:53:a8:5e:f8:24:97:fa:0c:1d: 38:e5:a1:de:8f:ad:11:b7:e8:34:12:0b:b5:d5:28:41:3a:27: a3:be:ba:9b:93:54:43:6f:f3:83:09:6b:24:13:83:46:3e:a6: 1e:2f:36:fb:84:ba:b8:38:d3:92:2c:02:f5:10:61:1d:58:d5: 3d:47:d1:90:59:e5:71:a4:5a:77:57:ce:ac:7c:4f:b7:08:34: f5:70:48:a3:2e:31:d0:c7:b6:7d:cb:79:f1:0c:c9:0c:2a:8e: d9:c1:5c:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDg3OTU0QzAyMzFDQUFDQjJCRTJERkRCNTY3Qzc0QUY1 RUNCNzVCMEMwHhcNMjUwNDI0MTcxMDUzWhcNMjUwNTAxMTcxMDUzWjAYMRYwFAYD VQQDEw02ODBhNzA5ZC0wODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ze5v3N+WfxCa8USnrrFTS4Yxz1Sq8vmWUo82wD1jQD6xAJI0Bg2W5dwwtNB yheMPMDy6JLU6m9t6IY64eyobBMHAMBmHzOQFFVPixqKvgbCzL2rz94Oc2ffyzfs zHeAXRkd+st+NZZF4RbVfRNvU+QjKpt1z4mwKkR2xooq5O8wEd2Iu5Ed5CkdZSGF V/84rMSPaSuzqBJB03z9DynpUfjozUCl1cVqTMB0HUu/8n4LjCudiSkNsP1vUPZA L8npv4PooHcLQktU6dIwHHTP1hFXQX4OfLKtIfuXrvmGaUCcSqpxiYg2ociXc14H ro23kyK6ygjnWfMJ20pfWbVuywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAD13tf dMvbqnRLcbG4Vy7Z09uvMB8GA1UdIwQYMBaAFIeVTAIxyqyyvi39tWfHSvXst1sM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9FQ0UwRkJFNkUz NkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JMSy1MZjIxWjhkSzlleTNX d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2g1Vk1BakhLckxLLUxmMjFaOGRLOWV5M1d3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9FQ0UwRkJFNkUzNkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JM Sy1MZjIxWjhkSzlleTNXd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUwUAOPlGMHIm3KxSXVFQerYCjLtniGSC//oTU7H129Oyv4vMdOAEM NNKsp++aVKvVEZ5OANkFYWpSB3VHfXCisXljxW4z0UAlnW87t1iFZb3hlu8vOILm EnJcPbBGhCl4VnnXIH0E34YnthwXWEY0kBnjgigjHqn5OD9LnlDFZi19CDakcwD9 4P+jR6MCzcz5mA7E4+WjdLlTqF74JJf6DB045aHej60Rt+g0Egu11ShBOiejvrqb k1RDb/ODCWskE4NGPqYeLzb7hLq4ONOSLAL1EGEdWNU9R9GQWeVxpFp3V86sfE+3 CDT1cEijLjHQx7Z9y3nxDMkMKo7ZwVwB -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:06 2025 by rpki-client