$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: O3vn2j5t6lvrcoT5XANlvLFJdE7YFtT8OuR5xJt3y+0= Subject key identifier: D4:57:39:86:24:41:57:56:63:97:ED:F2:B0:F3:72:A2:A0:1A:EF:72 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 0193 Signing time: Fri 13 Jun 2025 02:38:58 +0000 Manifest this update: Fri 13 Jun 2025 02:38:58 +0000 Manifest next update: Fri 20 Jun 2025 02:38:58 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: gKlj2ACQpXpvBZ1uos0yh+qW4djVdMLaSplVJ16I8L0=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: Aaq+TCQ/KTzVoqOiGqBuyk59qeKatX9nZx11XR64nYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Jun 13 02:38:58 2025 GMT Not After : Jun 20 02:38:58 2025 GMT Subject: CN=684b8f42-6ab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:55:23:1a:da:26:62:a6:6d:d6:6c:c8:7a:ba: fe:b9:22:e3:36:8c:21:dd:dd:53:50:d4:f7:38:33: e2:c6:88:09:bc:40:5c:6e:8a:ba:76:da:69:df:df: d5:98:05:62:e4:b6:fc:21:19:37:69:98:95:fc:9f: f7:a8:9a:4d:b1:ec:dd:c8:5a:74:81:d1:63:f8:30: ef:ce:c4:3d:85:53:2a:10:b4:0b:ca:bb:cb:34:92: 37:4f:3d:30:2a:db:49:d2:bf:0b:37:9a:91:b5:50: 8f:c0:22:cd:34:54:d5:63:ae:17:69:b3:f7:6e:01: 9d:89:5c:d8:ac:e7:ef:6a:fe:0a:33:6f:6d:40:cf: b4:34:aa:cb:49:25:26:3c:24:ff:fc:19:44:26:59: ac:29:48:7e:93:69:86:69:bb:4e:2b:df:71:70:9b: 61:8b:27:11:64:e5:81:c8:da:94:67:5a:38:53:6e: 45:f5:19:bd:d2:ef:3b:61:18:2e:40:fb:60:51:db: dc:5f:d1:fa:ed:9b:92:ef:75:16:73:2b:75:10:95: 36:a4:ff:a5:7e:53:e6:ba:14:2a:d7:c6:ba:5f:f6: 65:52:7a:0e:33:03:8d:9f:ca:eb:70:f0:f7:30:2f: 9e:eb:0c:dc:d5:33:e6:4c:5b:cf:60:1a:cd:09:07: 53:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:57:39:86:24:41:57:56:63:97:ED:F2:B0:F3:72:A2:A0:1A:EF:72 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f1:f0:3f:14:1e:0a:b0:fc:ee:30:74:2b:49:d3:34:f5:d5: 37:68:e8:fd:d2:bb:10:d1:9a:2d:90:b3:74:82:f7:0e:7f:83: 5e:62:c8:8b:b2:39:ea:ad:91:cc:e9:b0:3a:ca:7f:ad:dd:1b: 30:7f:74:29:3a:b5:b9:cd:78:b7:ec:91:a0:d4:dd:0e:20:c1: 93:29:6b:61:6c:a4:b9:5c:af:2a:b1:a0:09:7b:7b:a6:d6:08: 05:56:b6:b5:3e:d8:c5:ff:79:73:a4:c0:7c:84:40:5c:2e:24: 81:1c:0e:36:1d:32:e4:67:b4:df:8e:47:e2:36:3c:33:65:11: 51:15:63:3a:9e:f8:a7:ec:a9:7d:cf:d0:49:a3:46:79:28:6a: 46:08:66:01:ec:a6:bb:36:b9:7a:1d:98:9c:09:23:93:49:84: 42:0c:7c:fe:4f:20:77:d5:d3:de:66:33:9b:47:b8:0e:63:c7: 7a:4f:fe:04:58:20:4b:7c:14:4d:80:24:40:85:82:16:ec:9b: 44:d6:d8:92:9b:39:37:ae:57:67:c5:44:7d:f1:13:5b:81:4f: 96:87:23:5a:e0:cc:10:a4:83:69:0e:f6:69:4d:b8:5a:46:50: 90:52:56:28:57:c8:5a:1c:63:b2:5c:4c:e4:ee:9e:4f:1b:b5: a6:82:b8:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUwNjEzMDIzODU4WhcNMjUwNjIwMDIzODU4WjAYMRYwFAYD VQQDEw02ODRiOGY0Mi02YWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFUjGtomYqZt1mzIerr+uSLjNowh3d1TUNT3ODPixogJvEBcboq6dtpp39/V mAVi5Lb8IRk3aZiV/J/3qJpNsezdyFp0gdFj+DDvzsQ9hVMqELQLyrvLNJI3Tz0w KttJ0r8LN5qRtVCPwCLNNFTVY64XabP3bgGdiVzYrOfvav4KM29tQM+0NKrLSSUm PCT//BlEJlmsKUh+k2mGabtOK99xcJthiycRZOWByNqUZ1o4U25F9Rm90u87YRgu QPtgUdvcX9H67ZuS73UWcyt1EJU2pP+lflPmuhQq18a6X/ZlUnoOMwONn8rrcPD3 MC+e6wzc1TPmTFvPYBrNCQdTZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRXOYYk QVdWY5ft8rDzcqKgGu9yMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB78fA/FB4KsPzuMHQrSdM09dU3aOj90rsQ0ZotkLN0gvcOf4NeYsiL sjnqrZHM6bA6yn+t3Rswf3QpOrW5zXi37JGg1N0OIMGTKWthbKS5XK8qsaAJe3um 1ggFVra1PtjF/3lzpMB8hEBcLiSBHA42HTLkZ7TfjkfiNjwzZRFRFWM6nvin7Kl9 z9BJo0Z5KGpGCGYB7Ka7Nrl6HZicCSOTSYRCDHz+TyB31dPeZjObR7gOY8d6T/4E WCBLfBRNgCRAhYIW7JtE1tiSmzk3rldnxUR98RNbgU+WhyNa4MwQpINpDvZpTbha RlCQUlYoV8haHGOyXEzk7p5PG7WmgrgA -----END CERTIFICATE-----Generated at Sat Jun 14 19:13:57 2025 by rpki-client