$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft File: hDJHwKwYH8NmZqRDchryHZ2mUNo.mft (raw, json) Hash identifier: VgyN9vm9MaadPf05FAQqCiJK+HJFJ2bgSy+0zDMYRnA= Subject key identifier: 45:3D:FE:09:01:7E:EB:EE:F7:3D:03:5C:D3:EF:F2:81:2B:F4:55:DB Authority key identifier: 84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA Certificate issuer: /CN=A91CEAE0/serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft Manifest number: CC Signing time: Fri 13 Jun 2025 04:42:21 +0000 Manifest this update: Fri 13 Jun 2025 04:42:20 +0000 Manifest next update: Fri 20 Jun 2025 04:42:20 +0000 Files and hashes: 1: hDJHwKwYH8NmZqRDchryHZ2mUNo.crl (hash: lm+oxvrUZR5PIvUZV9fe4xI5U3tqso5Xxclb1u59U9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Validity Not Before: Jun 13 04:42:20 2025 GMT Not After : Jun 20 04:42:20 2025 GMT Subject: CN=684bac2c-a5cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bf:bb:92:ad:26:bf:c3:6b:ea:08:a1:ce:58: 3f:a0:0d:36:75:da:35:82:a1:fd:0a:c9:0b:d8:ab: b5:f8:63:4e:87:f8:e6:d6:f9:06:a6:31:3e:f4:da: 58:65:18:b1:1e:39:32:2a:da:67:dc:00:5d:5b:ac: 58:83:68:64:d5:a1:e4:4b:0a:63:a1:58:58:1a:e7: 00:c9:f1:af:f8:f6:d7:11:2e:0d:cb:52:14:b4:5e: 9e:ec:ca:29:f3:f9:d3:2a:08:7a:c3:1c:ac:25:fc: de:bc:1f:38:fb:25:4f:9d:d2:f6:ad:15:b4:3d:ef: 04:59:6c:4c:d5:c8:30:2c:25:6c:59:26:e5:b1:77: b0:94:a5:66:78:87:c1:c1:3a:68:c8:1b:bf:f7:3a: 3d:06:fa:52:9e:d4:31:fd:06:a0:b7:90:4d:97:6f: 73:f2:5b:ee:d1:89:23:d1:1b:68:be:35:54:97:bf: ec:20:94:16:d0:d8:8f:38:7b:19:71:16:a4:8b:7c: ac:6f:d9:d4:07:a4:df:33:7b:3e:29:b1:3f:95:33: a1:40:a2:41:a7:d8:23:49:e2:dc:5a:6c:f5:c8:e5: 2d:63:1f:44:12:bf:0f:27:3c:e7:6f:8c:98:8f:e9: a6:a5:67:20:fb:38:e6:86:7d:2c:da:49:21:bb:9e: 53:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3D:FE:09:01:7E:EB:EE:F7:3D:03:5C:D3:EF:F2:81:2B:F4:55:DB X509v3 Authority Key Identifier: keyid:84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:d0:a8:33:b3:53:8c:e7:fd:a0:89:e5:20:7a:c2:d8:f1:7b: fb:ac:f8:57:e4:4d:7f:75:9a:5f:3e:aa:e9:71:d8:5d:0f:4c: f9:59:88:d1:d9:cf:b8:f2:60:22:2b:6e:f7:36:b0:1f:51:c6: 93:d4:ec:1b:d7:dc:49:92:93:2d:a7:c4:03:d5:f6:76:96:9c: 3c:c8:b9:fb:64:92:90:60:c8:86:02:6c:77:c7:7c:d8:92:f1: 34:81:72:af:cc:ee:9d:d3:5e:3a:2d:6d:57:6e:19:4b:fc:08: a6:ff:62:ff:98:0b:32:b6:bb:eb:39:27:0d:86:b6:75:fe:43: ff:60:ca:83:e7:89:54:6d:9b:a8:6b:28:dd:b6:91:58:89:8b: cc:b4:80:ec:da:39:ed:81:f7:d7:38:52:28:8e:c7:df:91:41: bc:f5:6f:90:9c:a1:54:87:7e:a9:05:0c:22:f8:55:6c:c2:35: 37:74:45:0e:2c:8c:05:27:b9:c4:8b:8c:3e:16:e6:ba:16:85: 41:a4:54:12:05:c3:33:24:20:5d:7b:70:8a:e9:18:c2:d4:d2: cd:f2:bf:27:88:bd:c2:08:1d:91:64:12:c5:40:48:69:3f:1a: 94:a3:45:c3:1b:66:a8:a4:0b:de:37:ce:66:ad:fe:cd:e3:e4: de:12:8a:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDg0MzI0N0MwQUMxODFGQzM2NjY2QTQ0MzcyMUFGMjFE OURBNjUwREEwHhcNMjUwNjEzMDQ0MjIwWhcNMjUwNjIwMDQ0MjIwWjAYMRYwFAYD VQQDEw02ODRiYWMyYy1hNWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApL+7kq0mv8Nr6gihzlg/oA02ddo1gqH9CskL2Ku1+GNOh/jm1vkGpjE+9NpY ZRixHjkyKtpn3ABdW6xYg2hk1aHkSwpjoVhYGucAyfGv+PbXES4Ny1IUtF6e7Mop 8/nTKgh6wxysJfzevB84+yVPndL2rRW0Pe8EWWxM1cgwLCVsWSblsXewlKVmeIfB wTpoyBu/9zo9BvpSntQx/Qagt5BNl29z8lvu0Ykj0RtovjVUl7/sIJQW0NiPOHsZ cRaki3ysb9nUB6TfM3s+KbE/lTOhQKJBp9gjSeLcWmz1yOUtYx9EEr8PJzznb4yY j+mmpWcg+zjmhn0s2kkhu55TrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEU9/gkB fuvu9z0DXNPv8oEr9FXbMB8GA1UdIwQYMBaAFIQyR8CsGB/DZmakQ3Ia8h2dplDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9CQzUyMUE1NDE5 MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4Tm1acVJEY2hyeUhaMm1V Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hESkh3S3dZSDhObVpxUkRjaHJ5SFoybVVOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9CQzUyMUE1NDE5MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4 Tm1acVJEY2hyeUhaMm1VTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA30Kgzs1OM5/2gieUgesLY8Xv7rPhX5E1/dZpfPqrpcdhdD0z5WYjR 2c+48mAiK273NrAfUcaT1Owb19xJkpMtp8QD1fZ2lpw8yLn7ZJKQYMiGAmx3x3zY kvE0gXKvzO6d0146LW1XbhlL/Aim/2L/mAsytrvrOScNhrZ1/kP/YMqD54lUbZuo ayjdtpFYiYvMtIDs2jntgffXOFIojsffkUG89W+QnKFUh36pBQwi+FVswjU3dEUO LIwFJ7nEi4w+Fua6FoVBpFQSBcMzJCBde3CK6RjC1NLN8r8niL3CCB2RZBLFQEhp PxqUo0XDG2aopAveN85mrf7N4+TeEooY -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:08 2025 by rpki-client