$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: sAMTOSUWW2YYF+HgXXUuPhU4qgR7nXEYhBdlX778XTs= Subject key identifier: 50:24:F6:9E:B8:73:65:74:42:D9:03:4B:DD:A9:BD:49:93:AD:72:AC Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 0856 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 0851 Signing time: Thu 12 Jun 2025 20:26:59 +0000 Manifest this update: Thu 12 Jun 2025 20:26:59 +0000 Manifest next update: Thu 19 Jun 2025 20:26:59 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: WkU7UhfMbVIm4istPRYgSq8kxYOn30RNmM9PrJvyWx0=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: rarNamT8etGmrzl2oBorgmdNrF9oOnpcrAlb12sZ65o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2134 (0x856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A, serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Jun 12 20:26:59 2025 GMT Not After : Jun 19 20:26:59 2025 GMT Subject: CN=684b3813-311d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b8:c6:57:2f:9c:78:fd:a2:0c:88:ce:26:74: ab:3f:c6:4d:50:98:0b:5a:35:f5:32:fa:b0:e6:50: 7c:ee:07:21:08:27:c0:08:93:07:95:26:00:ad:d5: f3:b0:f8:3a:7a:67:2d:2a:d4:ca:f1:6f:a4:8f:9e: 8e:49:8a:1f:d9:ab:96:c6:b2:6e:80:70:b9:55:86: 5c:30:2e:9e:48:92:52:b2:e4:3e:b8:be:61:53:75: e3:40:ae:c8:69:e9:aa:d0:95:99:32:5d:2e:9e:c0: e8:7b:b0:ae:b1:96:24:f9:74:c9:88:70:ea:c8:50: 41:08:ad:f5:8c:08:01:23:58:31:54:05:65:fb:53: 4c:6b:5f:95:00:1b:05:34:fc:ab:f3:1f:1f:81:44: 20:05:40:7e:3d:f6:23:10:47:59:a9:b2:56:ff:1b: bb:da:5a:52:46:00:e6:19:96:71:38:b6:ec:fc:1e: a0:d8:7d:97:e0:35:cd:44:d4:c9:69:fb:89:49:13: 92:1c:6d:5d:1a:15:d7:cc:14:08:b0:34:88:4e:b3: a7:fa:a2:b0:6f:23:d5:85:25:43:c2:b3:fd:c8:a7: 72:e9:1f:1f:db:d4:e3:2d:46:07:a4:1d:37:c0:27: 54:d6:7c:b7:0e:9c:56:72:46:d1:e5:da:92:83:81: a4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:24:F6:9E:B8:73:65:74:42:D9:03:4B:DD:A9:BD:49:93:AD:72:AC X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:9e:53:88:bc:fc:34:ad:09:f7:b5:83:9f:32:ad:a0:94:de: 31:5a:47:0d:66:95:2e:06:4f:d1:2a:50:97:6b:a3:0a:d3:24: 69:22:15:cd:37:f0:29:b9:13:ea:c2:83:99:28:0b:93:c5:7f: f1:16:26:9d:d6:db:cd:dd:c4:e8:da:1a:c9:03:60:85:ff:34: e3:b9:87:d7:8b:18:a9:60:bb:76:b2:90:9e:65:ae:4e:64:7d: 50:cc:d1:c8:80:a3:6c:3b:7d:79:f1:14:17:5b:4b:22:d9:43: 4c:cc:12:92:3c:0d:09:75:57:6e:97:ca:a0:e7:fe:23:bb:6a: 1a:d7:6c:d6:6b:d1:31:c2:1c:a5:e8:0e:7c:82:02:e0:04:b7: b9:f3:90:a0:05:d5:53:89:d2:68:fa:f4:f7:42:99:64:cf:79: 26:ed:38:80:4f:c5:74:f0:1e:95:8f:4e:09:7c:93:24:76:fb: e5:a1:f9:3b:ba:45:d2:33:73:71:36:84:3c:25:50:83:4c:a2: 82:2c:d0:4f:0c:3f:81:2c:11:c0:d2:e3:de:d5:0a:5d:33:46: 7a:9c:c8:fe:28:61:b0:ad:a9:22:19:89:da:90:be:b6:1b:50: 01:b2:c6:ea:40:f3:01:66:59:1b:18:18:0f:38:8b:c1:fd:cb: ea:86:54:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjUwNjEyMjAyNjU5WhcNMjUwNjE5MjAyNjU5WjAYMRYwFAYD VQQDEw02ODRiMzgxMy0zMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7jGVy+ceP2iDIjOJnSrP8ZNUJgLWjX1Mvqw5lB87gchCCfACJMHlSYArdXz sPg6emctKtTK8W+kj56OSYof2auWxrJugHC5VYZcMC6eSJJSsuQ+uL5hU3XjQK7I aemq0JWZMl0unsDoe7CusZYk+XTJiHDqyFBBCK31jAgBI1gxVAVl+1NMa1+VABsF NPyr8x8fgUQgBUB+PfYjEEdZqbJW/xu72lpSRgDmGZZxOLbs/B6g2H2X4DXNRNTJ afuJSROSHG1dGhXXzBQIsDSITrOn+qKwbyPVhSVDwrP9yKdy6R8f29TjLUYHpB03 wCdU1ny3DpxWckbR5dqSg4GkQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAk9p64 c2V0QtkDS92pvUmTrXKsMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGnlOIvPw0rQn3tYOfMq2glN4xWkcNZpUuBk/RKlCXa6MK0yRpIhXN N/ApuRPqwoOZKAuTxX/xFiad1tvN3cTo2hrJA2CF/zTjuYfXixipYLt2spCeZa5O ZH1QzNHIgKNsO3158RQXW0si2UNMzBKSPA0JdVdul8qg5/4ju2oa12zWa9Exwhyl 6A58ggLgBLe585CgBdVTidJo+vT3Qplkz3km7TiAT8V08B6Vj04JfJMkdvvlofk7 ukXSM3NxNoQ8JVCDTKKCLNBPDD+BLBHA0uPe1QpdM0Z6nMj+KGGwrakiGYnakL62 G1ABssbqQPMBZlkbGBgPOIvB/cvqhlSc -----END CERTIFICATE-----Generated at Sat Jun 14 17:13:58 2025 by rpki-client