$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: FjCk6nUXltDfnMWwOzcvOqU4r+3czSGfl18DVpSwRa0= Subject key identifier: 9B:E3:20:A8:05:FE:6D:01:13:A9:2C:E7:BB:BF:69:43:03:49:30:5E Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 04B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 04B3 Signing time: Thu 12 Jun 2025 23:29:30 +0000 Manifest this update: Thu 12 Jun 2025 23:29:30 +0000 Manifest next update: Thu 19 Jun 2025 23:29:29 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: pINKewrkIgMLeL/y8yYBQP4RgMBGBTftX2QuiWIB38E=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Jun 12 23:29:30 2025 GMT Not After : Jun 19 23:29:29 2025 GMT Subject: CN=684b62da-9f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cf:ad:ed:dc:c5:74:05:ce:e2:34:27:53:a7: f3:d4:16:7a:96:8a:9e:bf:b1:52:d4:8e:a0:7b:9d: c6:ee:c9:3f:84:aa:80:18:da:c6:8a:74:04:52:8b: a5:a3:27:78:d2:72:38:b6:ac:00:c9:da:65:0a:24: 79:1b:31:73:0e:c8:ff:02:74:fb:ba:43:b2:9b:10: e7:94:61:29:23:da:67:23:8b:44:23:70:43:95:c6: ba:92:a6:8f:31:28:fa:c0:54:e4:50:e5:4e:d6:c7: 97:33:eb:52:a2:4f:92:ac:3c:6c:f5:90:59:f0:24: 51:8a:d3:ba:fe:e5:02:5c:7c:15:05:b6:cc:a0:59: ce:3e:49:3a:3c:2c:e2:8f:54:82:dd:5b:8d:70:f5: 4d:88:2c:18:99:38:fa:1e:de:c7:c4:d9:3b:7b:0b: 3b:76:7b:aa:56:6b:2e:9c:a9:41:41:05:bd:af:7c: 10:ff:65:84:94:1c:c8:72:4f:be:c6:c5:ed:c6:9b: 56:47:8d:4c:ab:25:de:e2:5a:ef:7e:ac:de:25:24: ef:c0:8d:ba:a0:8a:79:6e:50:b0:b7:3c:00:8b:d3: 50:6d:5f:4e:5b:24:84:84:5b:96:3d:9d:73:1e:83: 49:b8:35:e5:ee:f8:e9:1d:03:97:af:07:ff:46:3a: b4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E3:20:A8:05:FE:6D:01:13:A9:2C:E7:BB:BF:69:43:03:49:30:5E X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:5e:78:20:c1:f1:e0:83:9f:34:f1:95:27:77:b8:7f:5d:b7: 18:2b:9e:b2:f4:10:f2:66:7e:33:c4:6d:2a:c1:56:86:83:e5: ad:86:f2:d6:0e:a9:90:ab:45:8d:b2:ef:bb:73:db:80:f3:8a: d9:c3:f1:23:7d:be:43:30:fc:c9:29:7c:5c:55:bd:ab:8c:f0: 15:84:9a:fb:74:7e:4e:1b:57:7b:c9:89:61:60:02:cd:b4:ac: 9a:e1:0d:ad:c2:f8:3f:ec:db:81:fa:a4:5a:de:ed:9d:dd:fb: e0:ad:02:90:5a:b7:61:97:cf:8a:d0:4a:45:a4:d9:1c:f0:b5: 58:10:4d:3c:9d:ec:c4:d1:13:36:2e:74:33:fe:40:e4:80:b6: 92:81:20:55:54:14:e3:f6:3b:bc:6b:ad:98:69:4c:19:3b:d5: 50:69:b4:64:55:dd:03:6f:7e:71:7c:94:15:a4:d5:b2:c9:a7: c1:df:45:d8:22:8c:97:ab:93:1d:1e:d2:09:7b:3f:f3:5a:8a: c3:47:96:5d:97:79:fd:bc:11:04:36:4c:92:6f:d5:21:01:7a: 97:25:c3:08:e7:8e:2a:5b:9b:ff:1c:36:59:6f:ab:a1:63:61: f5:d2:c4:66:bf:02:51:16:28:e8:4f:da:4f:6f:39:fd:9f:fa: 72:8f:b6:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUwNjEyMjMyOTMwWhcNMjUwNjE5MjMyOTI5WjAYMRYwFAYD VQQDEw02ODRiNjJkYS05ZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArM+t7dzFdAXO4jQnU6fz1BZ6loqev7FS1I6ge53G7sk/hKqAGNrGinQEUoul oyd40nI4tqwAydplCiR5GzFzDsj/AnT7ukOymxDnlGEpI9pnI4tEI3BDlca6kqaP MSj6wFTkUOVO1seXM+tSok+SrDxs9ZBZ8CRRitO6/uUCXHwVBbbMoFnOPkk6PCzi j1SC3VuNcPVNiCwYmTj6Ht7HxNk7ews7dnuqVmsunKlBQQW9r3wQ/2WElBzIck++ xsXtxptWR41MqyXe4lrvfqzeJSTvwI26oIp5blCwtzwAi9NQbV9OWySEhFuWPZ1z HoNJuDXl7vjpHQOXrwf/Rjq04wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvjIKgF /m0BE6ks57u/aUMDSTBeMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbXnggwfHgg5808ZUnd7h/XbcYK56y9BDyZn4zxG0qwVaGg+WthvLW DqmQq0WNsu+7c9uA84rZw/Ejfb5DMPzJKXxcVb2rjPAVhJr7dH5OG1d7yYlhYALN tKya4Q2twvg/7NuB+qRa3u2d3fvgrQKQWrdhl8+K0EpFpNkc8LVYEE08nezE0RM2 LnQz/kDkgLaSgSBVVBTj9ju8a62YaUwZO9VQabRkVd0Db35xfJQVpNWyyafB30XY IoyXq5MdHtIJez/zWorDR5Zdl3n9vBEENkySb9UhAXqXJcMI544qW5v/HDZZb6uh Y2H10sRmvwJRFijoT9pPbzn9n/pyj7Yo -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:08 2025 by rpki-client