$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: Wgp/mGoNnQRZZSxQc28dadvsqTVCakJ8XHcBeZwhasw= Subject key identifier: 47:70:12:D9:66:E2:0A:09:D7:6F:13:7F:3F:88:A4:73:0D:50:F4:63 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 09FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 09F2 Signing time: Thu 12 Jun 2025 19:39:51 +0000 Manifest this update: Thu 12 Jun 2025 19:39:51 +0000 Manifest next update: Thu 19 Jun 2025 19:39:51 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: NOPwYMRX6mlzd8X+wmeJKBFpXUaUArnWPq8SWMr2nsE=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2559 (0x9ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Jun 12 19:39:51 2025 GMT Not After : Jun 19 19:39:51 2025 GMT Subject: CN=684b2d07-3e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:84:11:f3:49:b3:ec:db:5d:90:69:5d:53:1d: 99:25:cd:a6:e6:ad:d2:8c:33:0b:d2:14:7b:3b:49: 4f:21:33:3e:30:e8:7a:eb:26:82:cb:94:70:93:f6: 58:67:5a:5a:58:8e:b6:25:3f:06:30:93:30:79:0a: b7:97:f0:45:98:08:23:2e:bf:7c:55:0e:e9:f5:ad: 20:90:a5:72:bf:4f:dd:1c:39:53:32:d5:b8:34:2c: 6b:fc:31:3b:b6:79:52:48:7b:bf:b4:55:e6:65:84: 56:07:16:9c:97:d1:e7:6a:66:89:08:34:f4:81:cb: a3:65:95:fb:3e:30:e3:a6:8f:fb:3e:8d:3e:dd:43: 29:00:97:a0:c3:c9:ee:62:9d:68:28:19:03:8c:4a: e3:a8:d1:8b:34:17:10:ef:6b:f2:04:e3:9a:29:75: 72:42:cc:65:1b:0a:af:9b:83:ea:9c:72:3f:fd:b9: 25:16:47:98:72:6f:69:b6:00:ff:fc:8c:80:39:2a: 1d:14:00:5f:85:82:9c:95:69:0d:86:d2:b1:6e:e6: 24:d1:ca:3c:8b:e8:7c:2b:a5:10:9a:cf:eb:be:ac: 8c:1e:83:80:b1:d9:99:00:81:bb:51:f3:cd:6d:95: 65:dd:de:6c:40:92:88:b9:da:95:56:c5:af:57:31: fd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:70:12:D9:66:E2:0A:09:D7:6F:13:7F:3F:88:A4:73:0D:50:F4:63 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:ef:14:67:63:a0:84:75:34:b9:1a:7f:30:08:7f:84:6f:46: c8:7f:88:91:a0:6e:66:7f:06:87:11:ce:81:75:af:af:16:42: 29:bb:08:0a:da:1c:d2:bf:55:36:f3:f5:44:78:b5:9e:93:ac: 2a:13:19:d1:92:d6:2e:be:0d:97:1e:ca:ee:fb:1b:83:8e:5a: f8:41:39:e5:4d:57:b6:d3:8a:ef:b4:ca:1b:6b:3b:85:04:c1: cb:e3:41:d5:16:ec:af:df:cf:fa:12:48:f7:05:fa:cd:d7:7c: cf:83:e2:ea:17:1e:02:99:42:4f:8f:82:a6:a1:a4:03:37:7f: bc:8e:3e:b2:f3:ee:23:96:bf:31:59:90:7d:07:97:7e:1a:a1: 6f:df:a0:b3:1c:d0:2c:4a:9f:71:04:20:75:6e:c4:92:8c:c5: a6:b9:d6:58:df:75:d3:95:31:58:71:05:94:b3:5d:e2:3a:8a: 3f:15:ca:03:8a:6d:fe:a9:43:ee:c5:df:13:14:0f:44:36:45: b5:2e:e1:22:c5:f8:a3:33:ae:a9:2f:cd:be:0e:47:ea:c5:52: df:00:03:de:ae:c7:95:24:b7:62:30:81:5f:6b:bc:83:98:b4: c4:c7:56:ea:1c:01:29:da:d3:74:ed:c9:59:a2:5a:bc:a2:9b: 87:38:15:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwNjEyMTkzOTUxWhcNMjUwNjE5MTkzOTUxWjAYMRYwFAYD VQQDEw02ODRiMmQwNy0zZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYQR80mz7NtdkGldUx2ZJc2m5q3SjDML0hR7O0lPITM+MOh66yaCy5Rwk/ZY Z1paWI62JT8GMJMweQq3l/BFmAgjLr98VQ7p9a0gkKVyv0/dHDlTMtW4NCxr/DE7 tnlSSHu/tFXmZYRWBxacl9HnamaJCDT0gcujZZX7PjDjpo/7Po0+3UMpAJegw8nu Yp1oKBkDjErjqNGLNBcQ72vyBOOaKXVyQsxlGwqvm4PqnHI//bklFkeYcm9ptgD/ /IyAOSodFABfhYKclWkNhtKxbuYk0co8i+h8K6UQms/rvqyMHoOAsdmZAIG7UfPN bZVl3d5sQJKIudqVVsWvVzH9kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdwEtlm 4goJ128Tfz+IpHMNUPRjMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI7xRnY6CEdTS5Gn8wCH+Eb0bIf4iRoG5mfwaHEc6Bda+vFkIpuwgK 2hzSv1U28/VEeLWek6wqExnRktYuvg2XHsru+xuDjlr4QTnlTVe204rvtMobazuF BMHL40HVFuyv38/6Ekj3BfrN13zPg+LqFx4CmUJPj4KmoaQDN3+8jj6y8+4jlr8x WZB9B5d+GqFv36CzHNAsSp9xBCB1bsSSjMWmudZY33XTlTFYcQWUs13iOoo/FcoD im3+qUPuxd8TFA9ENkW1LuEixfijM66pL82+DkfqxVLfAAPerseVJLdiMIFfa7yD mLTEx1bqHAEp2tN07clZolq8opuHOBWX -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:00 2025 by rpki-client