$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: S/ac1WyR1lNU7IbX1bvEMupqpbouzJGbyeHWIvJk/tI= Subject key identifier: 0E:1D:56:1B:4F:BD:F2:F7:86:80:B4:CC:5F:84:78:D1:C2:15:A9:20 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0332 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0329 Signing time: Fri 25 Apr 2025 00:53:33 +0000 Manifest this update: Fri 25 Apr 2025 00:53:32 +0000 Manifest next update: Fri 02 May 2025 00:53:32 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: ZywlnU95q0M0emSW5hITTfWMbgFC6ryCTVXpELxgJ2g=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: KULh3Cwj4pTsQ4NdFS2oaGBEZ1LXp6l0HQDgLQQ16OI=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: dxGl/7gfmwIzrpPvuQV22Q3Xb8qBR16UFLioFibE54M=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: /XL7p2Q1hHPtidLAFeXIsJVDG0l7K1bzPg/w/IkAkqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:53:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 818 (0x332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Apr 25 00:53:32 2025 GMT Not After : May 2 00:53:32 2025 GMT Subject: CN=680add0d-0fc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5e:6f:dc:77:75:38:1b:11:ca:b9:ce:2c:a9: e2:ee:89:65:ce:8a:c8:c2:8e:69:38:94:74:3b:80: 7a:e3:98:75:e4:0b:70:df:f8:06:a8:0a:82:a9:d6: 6b:72:35:46:ec:73:fc:61:80:9e:d9:c5:7c:4c:71: aa:23:bc:4c:42:c4:db:3f:6a:3e:e6:aa:2f:6d:e0: 42:af:33:08:64:b1:b5:46:68:2e:98:ac:ec:59:af: 77:34:ac:e0:bc:60:5f:61:4f:a6:63:d8:14:2d:f3: 02:1b:d1:4b:ff:d1:e6:2e:1a:23:d7:5e:31:32:a5: 1a:88:6f:69:b5:80:29:a4:7c:16:17:93:d8:12:e6: 01:5b:3e:9e:3f:10:72:8d:ad:dd:7f:44:26:b2:b8: 0a:75:8a:fe:52:ae:a2:b3:6b:7c:3a:08:8a:6e:38: 22:f5:33:e1:37:a2:53:6d:a7:dd:da:b7:90:c6:12: ba:9c:0c:91:eb:16:d1:a1:11:72:9b:2b:0f:e5:db: ce:eb:56:97:89:9f:15:69:f9:04:02:ce:80:20:5c: a9:0c:cb:1d:22:42:a1:ab:65:e2:08:19:8e:3f:0c: 69:c8:19:91:b5:ee:49:3b:63:3a:64:19:f0:d6:37: dc:d5:5f:43:c4:90:75:e9:76:e1:a8:f1:a9:73:11: 96:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1D:56:1B:4F:BD:F2:F7:86:80:B4:CC:5F:84:78:D1:C2:15:A9:20 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:12:cd:df:55:a9:9d:30:26:a2:48:90:5c:00:08:92:77:fb: 85:74:6d:07:d8:49:ba:45:34:c0:44:8a:cb:4b:31:2a:a7:1d: ec:ba:17:4d:78:b0:67:10:f7:cd:09:85:ea:42:88:a6:e6:16: c5:ef:b2:45:bf:86:38:0b:c0:59:7e:2e:9f:7d:4d:af:8c:4d: b3:08:3d:f4:44:30:ce:6b:bb:ce:1d:e7:26:11:84:8d:3d:b2: 6c:f2:e8:8a:09:01:fb:d7:0c:2b:e5:e5:de:8a:79:42:8f:5f: cd:b2:c3:ff:b6:46:0e:7b:80:9a:95:09:12:52:7a:45:8c:11: 1a:75:76:12:14:c5:53:69:68:75:01:67:99:a7:d3:80:c9:9a: f0:11:69:bd:b2:71:60:ff:09:05:ce:9f:10:74:70:bc:71:06: 30:95:4c:06:f1:bf:3d:0b:97:12:2d:1b:bf:35:87:b7:c3:8e: 52:36:d7:e9:6b:7b:18:67:94:5b:00:50:a7:34:11:bd:0d:d3: f3:9f:7e:43:8e:89:e7:ae:10:ef:a1:13:21:e7:0b:58:c4:d4: c7:cf:eb:80:01:d3:56:6f:24:b8:21:a1:4c:2f:08:a8:22:b2: d4:f0:4a:f9:f7:55:e2:7e:75:52:86:fd:d1:3a:3b:99:32:f0: dc:bf:57:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwNDI1MDA1MzMyWhcNMjUwNTAyMDA1MzMyWjAYMRYwFAYD VQQDEw02ODBhZGQwZC0wZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm15v3Hd1OBsRyrnOLKni7ollzorIwo5pOJR0O4B645h15Atw3/gGqAqCqdZr cjVG7HP8YYCe2cV8THGqI7xMQsTbP2o+5qovbeBCrzMIZLG1RmgumKzsWa93NKzg vGBfYU+mY9gULfMCG9FL/9HmLhoj114xMqUaiG9ptYAppHwWF5PYEuYBWz6ePxBy ja3df0QmsrgKdYr+Uq6is2t8OgiKbjgi9TPhN6JTbafd2reQxhK6nAyR6xbRoRFy mysP5dvO61aXiZ8VafkEAs6AIFypDMsdIkKhq2XiCBmOPwxpyBmRte5JO2M6ZBnw 1jfc1V9DxJB16XbhqPGpcxGWKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4dVhtP vfL3hoC0zF+EeNHCFakgMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuEs3fVamdMCaiSJBcAAiSd/uFdG0H2Em6RTTARIrLSzEqpx3suhdN eLBnEPfNCYXqQoim5hbF77JFv4Y4C8BZfi6ffU2vjE2zCD30RDDOa7vOHecmEYSN PbJs8uiKCQH71wwr5eXeinlCj1/NssP/tkYOe4CalQkSUnpFjBEadXYSFMVTaWh1 AWeZp9OAyZrwEWm9snFg/wkFzp8QdHC8cQYwlUwG8b89C5cSLRu/NYe3w45SNtfp a3sYZ5RbAFCnNBG9DdPzn35DjonnrhDvoRMh5wtYxNTHz+uAAdNWbyS4IaFMLwio IrLU8Er591XifnVShv3ROjuZMvDcv1er -----END CERTIFICATE-----Generated at Sat Apr 26 16:17:56 2025 by rpki-client