$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: Mjna4QzCEACOE1LURo7m4sZ5Qz0IDLaPKRQoDDNoLQY= Subject key identifier: 5C:22:77:BF:56:02:AA:1E:B8:DF:6D:25:95:E5:AA:49:F6:38:39:CB Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 0605 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 05FE Signing time: Thu 12 Jun 2025 22:31:09 +0000 Manifest this update: Thu 12 Jun 2025 22:31:09 +0000 Manifest next update: Thu 19 Jun 2025 22:31:09 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: DEdx8tvWDMZRHxN+ZKe9AgUkq3NbSuWsA8KRkgVDuXU=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1541 (0x605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Jun 12 22:31:09 2025 GMT Not After : Jun 19 22:31:09 2025 GMT Subject: CN=684b552d-b129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:d2:b5:76:37:b2:4b:93:e1:5d:fa:94:7e: 60:f8:34:02:5e:dc:73:30:12:aa:74:29:25:80:b8: 54:3d:90:b1:b5:3b:00:a1:84:e1:98:35:ff:1d:6e: 62:64:00:79:96:76:55:a5:16:f3:79:6d:84:cc:03: c4:0f:b0:15:35:da:3d:b8:03:45:56:bb:fc:22:ce: 88:7e:f0:4b:cf:c2:a8:e4:83:a4:42:f7:ab:98:71: 40:04:6f:6d:c5:72:f3:ec:95:3a:b4:17:b6:c6:37: 3d:28:4a:d4:df:a9:a7:65:11:71:d1:0a:f1:74:76: a2:25:be:29:92:90:e2:39:05:51:21:0d:9f:3a:c3: 67:ef:d2:74:e3:1e:c2:94:8d:a4:99:d4:c3:c0:7f: 61:2b:3e:63:c5:0e:0f:54:52:7e:c4:14:42:20:55: 44:2b:5c:f4:1e:a7:9f:ed:32:b6:c6:c5:49:85:65: a3:d8:a6:3d:42:7d:58:43:5c:f8:6e:d4:8c:65:25: c5:fc:89:5d:df:11:35:4f:46:f9:cd:f5:df:6e:fe: f8:f9:8d:dc:90:e3:9c:98:bb:75:a1:73:f1:51:fe: 5c:4b:eb:1f:d7:bc:b4:f1:31:67:46:b9:fa:bf:35: de:6d:46:69:34:0a:b8:0d:7c:96:a8:fc:9a:a3:4b: c7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:22:77:BF:56:02:AA:1E:B8:DF:6D:25:95:E5:AA:49:F6:38:39:CB X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:36:d7:8f:ba:73:1b:12:da:20:c3:5f:ca:ab:da:bd:3a:56: c2:e3:56:0d:f9:49:aa:7f:2d:2f:74:9c:3f:ea:3d:a4:ec:88: 4a:8b:94:ba:4d:3f:30:8a:23:02:4c:d7:cf:67:6f:b9:a3:d7: 39:45:a6:b5:04:2d:95:0e:44:36:d3:ea:40:0e:f9:da:62:c9: 9f:93:70:bc:6c:c6:6c:9b:39:0f:99:ac:9d:84:90:e1:64:59: 19:21:42:ce:93:b6:49:db:08:e8:eb:28:f4:80:e2:54:c1:c7: b4:e1:05:99:2f:86:b4:31:fd:80:e5:86:d3:a2:84:99:ea:43: 3a:d6:d6:2d:85:45:e3:72:b0:eb:2c:f9:22:eb:1f:f7:1b:7f: c0:1b:58:85:01:10:2e:5f:ce:da:5b:c8:93:81:7f:55:e3:90: 84:03:0a:19:af:11:dd:55:f6:e4:45:69:87:53:6c:dd:3a:c7: 43:51:bf:c7:55:5c:71:c3:9a:ae:b1:88:63:ce:ce:28:0c:98: a5:d7:7f:2b:28:08:1d:15:39:a4:0a:66:aa:8d:be:33:d5:df: 4e:31:6f:1b:21:40:b7:20:f9:bf:e2:5a:31:36:0d:ed:8c:cb: 5d:6c:ce:4b:0f:4b:54:f9:8a:51:de:5c:d6:ec:07:2e:e6:c9: 3f:6d:24:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwNjEyMjIzMTA5WhcNMjUwNjE5MjIzMTA5WjAYMRYwFAYD VQQDEw02ODRiNTUyZC1iMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9/StXY3skuT4V36lH5g+DQCXtxzMBKqdCklgLhUPZCxtTsAoYThmDX/HW5i ZAB5lnZVpRbzeW2EzAPED7AVNdo9uANFVrv8Is6IfvBLz8Ko5IOkQvermHFABG9t xXLz7JU6tBe2xjc9KErU36mnZRFx0QrxdHaiJb4pkpDiOQVRIQ2fOsNn79J04x7C lI2kmdTDwH9hKz5jxQ4PVFJ+xBRCIFVEK1z0Hqef7TK2xsVJhWWj2KY9Qn1YQ1z4 btSMZSXF/Ild3xE1T0b5zfXfbv74+Y3ckOOcmLt1oXPxUf5cS+sf17y08TFnRrn6 vzXebUZpNAq4DXyWqPyao0vHmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwid79W AqoeuN9tJZXlqkn2ODnLMB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBANtePunMbEtogw1/Kq9q9OlbC41YN+Umqfy0vdJw/6j2k7IhKi5S6 TT8wiiMCTNfPZ2+5o9c5Raa1BC2VDkQ20+pADvnaYsmfk3C8bMZsmzkPmaydhJDh ZFkZIULOk7ZJ2wjo6yj0gOJUwce04QWZL4a0Mf2A5YbTooSZ6kM61tYthUXjcrDr LPki6x/3G3/AG1iFARAuX87aW8iTgX9V45CEAwoZrxHdVfbkRWmHU2zdOsdDUb/H VVxxw5qusYhjzs4oDJil138rKAgdFTmkCmaqjb4z1d9OMW8bIUC3IPm/4loxNg3t jMtdbM5LD0tU+YpR3lzW7Acu5sk/bSQH -----END CERTIFICATE-----Generated at Sat Jun 14 18:44:23 2025 by rpki-client