$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: +c671B14axXJ9BeneDzZmVYtopOKZoPIg0TYExVVhOM= Subject key identifier: A8:A2:BC:5E:31:9A:CD:B2:2A:20:4E:A8:00:E9:3A:AB:D7:0D:1C:CF Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 030B Signing time: Sun 15 Jun 2025 00:56:12 +0000 Manifest this update: Sun 15 Jun 2025 00:56:11 +0000 Manifest next update: Sun 22 Jun 2025 00:56:11 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: C+lz8G5zyrWFuIjtvH5irkEqBuQHYq0g+p3/TqUgAMo=) 2: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: D/07ECvWp7oQg2+1KPxjiVqoD+wojBNXOMz248kJJ/8=) 3: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) 4: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Jun 15 00:56:11 2025 GMT Not After : Jun 22 00:56:11 2025 GMT Subject: CN=684e1a2c-2a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f3:56:7e:8d:d3:81:40:bc:f2:11:18:eb:89: 4f:5f:07:07:71:39:ff:fd:06:58:89:ee:8d:20:2c: 85:54:80:d5:7b:1e:3c:87:87:71:83:23:f7:19:c1: 19:75:30:3c:68:13:05:32:bb:4c:85:08:97:8a:dd: 03:be:b9:23:0e:b3:c7:92:17:c5:56:41:e1:92:ba: 5b:09:6b:8e:70:1a:bf:ce:88:22:f0:71:ab:31:64: 37:7e:a4:30:68:26:49:2e:9b:19:38:94:00:07:38: 14:54:93:33:f7:d3:df:66:aa:9c:2c:ce:ee:c2:b0: 3d:06:88:1a:a9:b6:b6:63:f5:a1:63:ac:e9:ed:c2: b5:c1:e4:9b:d6:bc:41:6c:cc:6e:b2:5d:53:8f:e8: f7:6c:53:eb:84:8b:1d:8a:f5:c0:4d:d8:a5:36:4d: c5:86:9a:36:3f:a4:25:09:4c:db:c9:64:ba:a3:06: 97:7b:43:48:c2:7e:a9:6f:01:81:ab:4f:c6:46:49: 55:39:b4:66:b1:b4:65:11:59:eb:0b:86:75:25:b7: f8:68:bd:87:68:64:cd:36:5b:53:8a:3c:ba:1f:8c: c0:bc:69:4f:7e:ef:ba:5b:41:b4:ae:d3:2e:91:e9: b5:b9:9e:2b:18:27:82:96:68:3c:42:3f:c8:69:b6: 60:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A2:BC:5E:31:9A:CD:B2:2A:20:4E:A8:00:E9:3A:AB:D7:0D:1C:CF X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c1:ed:ba:47:89:e6:ca:15:48:1e:5e:63:34:52:45:0f:f2: b3:8f:0f:49:1d:d4:66:34:92:ae:ff:6c:7b:b0:0c:cd:a5:d5: 81:ed:f1:26:fa:bb:5e:76:11:f8:de:82:54:8d:9c:88:c5:d4: 29:ad:e7:bb:1c:9b:08:c0:d3:50:84:8b:cf:4f:a9:cd:41:95: be:f4:cf:e2:4e:d2:6a:9a:a6:83:bd:54:f0:b7:da:a7:eb:d8: c7:c2:87:6d:cd:70:6b:c6:d4:3a:37:e7:65:73:28:00:4a:5a: b9:45:5e:f9:53:e7:23:af:1f:be:f9:84:ce:5e:85:8c:7c:7f: 34:5a:5c:f1:e5:19:99:e1:77:c4:87:f3:e6:d3:5f:bf:36:6a: 6a:ec:bc:2c:1a:88:f7:0c:7d:52:de:7a:61:bf:cc:12:91:82: ed:88:eb:67:3d:37:1a:f9:60:8d:84:06:36:14:bc:d5:a7:9e: 73:8b:d6:4e:09:61:03:cc:cd:53:de:0f:9b:40:dc:f8:d2:cb: 76:a5:42:30:19:ea:46:26:96:9e:fe:fc:46:62:e1:c7:78:c8: 19:68:65:04:ea:be:ca:04:ef:bc:82:2e:1a:e3:66:f3:0d:1d: 3d:a9:54:8f:b8:4c:5b:a0:be:62:08:f0:a8:b8:b0:e2:36:a1: 58:69:f6:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUwNjE1MDA1NjExWhcNMjUwNjIyMDA1NjExWjAYMRYwFAYD VQQDEw02ODRlMWEyYy0yYTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfNWfo3TgUC88hEY64lPXwcHcTn//QZYie6NICyFVIDVex48h4dxgyP3GcEZ dTA8aBMFMrtMhQiXit0DvrkjDrPHkhfFVkHhkrpbCWuOcBq/zogi8HGrMWQ3fqQw aCZJLpsZOJQABzgUVJMz99PfZqqcLM7uwrA9Bogaqba2Y/WhY6zp7cK1weSb1rxB bMxusl1Tj+j3bFPrhIsdivXATdilNk3Fhpo2P6QlCUzbyWS6owaXe0NIwn6pbwGB q0/GRklVObRmsbRlEVnrC4Z1Jbf4aL2HaGTNNltTijy6H4zAvGlPfu+6W0G0rtMu kem1uZ4rGCeClmg8Qj/IabZgRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiivF4x ms2yKiBOqADpOqvXDRzPMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmwe26R4nmyhVIHl5jNFJFD/Kzjw9JHdRmNJKu/2x7sAzNpdWB7fEm +rtedhH43oJUjZyIxdQpree7HJsIwNNQhIvPT6nNQZW+9M/iTtJqmqaDvVTwt9qn 69jHwodtzXBrxtQ6N+dlcygASlq5RV75U+cjrx+++YTOXoWMfH80Wlzx5RmZ4XfE h/Pm01+/Nmpq7LwsGoj3DH1S3nphv8wSkYLtiOtnPTca+WCNhAY2FLzVp55zi9ZO CWEDzM1T3g+bQNz40st2pUIwGepGJpae/vxGYuHHeMgZaGUE6r7KBO+8gi4a42bz DR09qVSPuExboL5iCPCouLDiNqFYafbo -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:59 2025 by rpki-client