$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: Dnh41QAMH/9kKkx8goXsK0flEINYBVyMrMz4rlP5WZk= Subject key identifier: 5B:0B:B3:1B:FF:6B:DB:73:AE:7C:41:3D:78:E4:66:B7:AA:49:16:3F Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0C3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0C33 Signing time: Sat 14 Jun 2025 18:26:24 +0000 Manifest this update: Sat 14 Jun 2025 18:26:24 +0000 Manifest next update: Sat 21 Jun 2025 18:26:24 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: XPVUBCprTk4Ui0BLaqPs+cDL50mlIAapTI8joSIVF+Y=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: m+JE5pCglgWFiHYLAbZNmBupgcN+FxTJD3mSp1g3gfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3134 (0xc3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Jun 14 18:26:24 2025 GMT Not After : Jun 21 18:26:24 2025 GMT Subject: CN=684dbed0-0c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:50:06:58:ac:9c:9f:0f:b3:fd:4a:e4:77:03: 2d:49:80:07:31:6c:c9:ef:96:19:90:2f:14:b3:03: 8b:15:36:77:6b:f9:00:de:f0:a9:01:1c:4e:57:92: c5:52:75:54:77:57:e8:e8:51:95:bc:d8:f5:93:a7: 6f:4a:fc:80:06:5c:a3:9d:26:a8:4c:8f:d7:7b:b5: 78:68:f9:ea:f5:ce:da:25:66:60:22:ae:7a:88:d8: 11:28:05:cc:1a:d2:63:7e:88:05:e6:72:bf:a4:7a: 64:28:b7:ea:9f:20:9f:aa:9d:de:5e:2b:e8:d0:4c: 8a:36:61:b5:cd:db:d4:65:ad:dc:d2:6f:a1:f4:e1: bd:2a:6b:71:45:ba:f8:be:bc:f5:d6:ad:3c:0b:70: 7f:05:ed:59:3e:be:78:00:4c:74:9e:43:9c:37:53: 34:d7:8d:fa:ef:84:29:7c:3c:14:13:72:65:7b:2c: a6:29:4b:58:2d:61:e4:12:02:40:d0:ff:64:ba:0a: de:3f:c1:dd:be:80:5b:67:ce:9a:da:0c:b9:bd:30: 23:26:46:75:e7:18:73:96:27:6c:d8:10:12:ec:1d: 98:cf:6d:89:8c:e1:d1:f4:34:fc:32:6a:5a:e7:45: 01:df:3f:e7:27:f3:40:93:f9:c1:e8:9e:5b:af:dd: 1e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0B:B3:1B:FF:6B:DB:73:AE:7C:41:3D:78:E4:66:B7:AA:49:16:3F X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:35:c0:9f:a5:a9:39:93:1f:5c:00:75:a5:10:ca:2e:60:82: eb:f9:23:72:88:d6:76:ec:27:a7:3c:a5:77:fe:bc:55:9b:ce: 25:31:3f:d2:30:45:b1:c5:e8:2e:45:4a:ba:a0:da:54:d9:79: d8:76:58:f8:a2:b0:8e:5b:be:a5:2d:64:60:f5:d2:ac:b0:71: b8:6a:46:a1:5a:24:9f:bd:3b:6f:bc:b2:59:6e:b0:6c:5e:4c: 18:25:ce:7f:61:5d:cf:49:e1:f0:7d:cf:89:99:33:8a:03:15: fc:ea:cf:cb:9b:bf:1d:75:ca:bf:55:a1:e0:57:b4:c2:89:2a: 2d:e1:cd:0f:ad:b0:4a:1a:49:79:d6:59:65:bc:01:d2:d5:bb: de:ac:7c:50:60:48:10:15:93:78:d5:6c:c4:df:5b:a6:08:89: db:3c:ec:4f:e6:f9:b8:be:48:d9:56:7e:2a:db:b3:4c:be:b7: 8d:a2:60:99:ba:86:93:90:32:e2:63:65:bf:19:60:8c:61:fa: c4:dd:d1:b1:45:14:14:11:2d:5e:99:e9:d5:b6:2d:46:2d:a3: aa:75:19:2a:62:94:c7:3b:3e:f8:e7:78:a0:10:14:56:ee:0a: f3:c8:6d:00:d6:b7:28:51:92:62:ca:ca:2d:99:c8:a5:9f:41: dd:32:69:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjUwNjE0MTgyNjI0WhcNMjUwNjIxMTgyNjI0WjAYMRYwFAYD VQQDEw02ODRkYmVkMC0wYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VAGWKycnw+z/UrkdwMtSYAHMWzJ75YZkC8UswOLFTZ3a/kA3vCpARxOV5LF UnVUd1fo6FGVvNj1k6dvSvyABlyjnSaoTI/Xe7V4aPnq9c7aJWZgIq56iNgRKAXM GtJjfogF5nK/pHpkKLfqnyCfqp3eXivo0EyKNmG1zdvUZa3c0m+h9OG9KmtxRbr4 vrz11q08C3B/Be1ZPr54AEx0nkOcN1M0143674QpfDwUE3JleyymKUtYLWHkEgJA 0P9kugreP8HdvoBbZ86a2gy5vTAjJkZ15xhzlids2BAS7B2Yz22JjOHR9DT8Mmpa 50UB3z/nJ/NAk/nB6J5br90edQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsLsxv/ a9tzrnxBPXjkZreqSRY/MB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3NcCfpak5kx9cAHWlEMouYILr+SNyiNZ27CenPKV3/rxVm84lMT/S MEWxxeguRUq6oNpU2XnYdlj4orCOW76lLWRg9dKssHG4akahWiSfvTtvvLJZbrBs XkwYJc5/YV3PSeHwfc+JmTOKAxX86s/Lm78ddcq/VaHgV7TCiSot4c0PrbBKGkl5 1lllvAHS1bverHxQYEgQFZN41WzE31umCInbPOxP5vm4vkjZVn4q27NMvreNomCZ uoaTkDLiY2W/GWCMYfrE3dGxRRQUES1emenVti1GLaOqdRkqYpTHOz7453igEBRW 7grzyG0A1rcoUZJiysotmciln0HdMmlM -----END CERTIFICATE-----Generated at Sun Jun 15 08:32:18 2025 by rpki-client