$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: rwQvqJrVI7mLfQZmIbd7F0MSefJFZ6iwLlj0ZQHYyTs= Subject key identifier: 67:DE:B2:B8:34:94:6A:6A:E9:FA:21:EB:F3:4D:29:AD:88:69:13:96 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 034F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0343 Signing time: Fri 13 Jun 2025 00:35:40 +0000 Manifest this update: Fri 13 Jun 2025 00:35:39 +0000 Manifest next update: Fri 20 Jun 2025 00:35:39 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: ZzTrtopysDmb+xn7uR1ErrTk+E9OW8uD9G9YKLlFKJk=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Jun 13 00:35:39 2025 GMT Not After : Jun 20 00:35:39 2025 GMT Subject: CN=684b725c-ab68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:77:cb:95:d4:20:99:09:37:a7:b1:16:dd:0d: b6:78:b9:fd:0e:1b:0a:b9:e9:90:8f:ab:e8:bb:76: 52:97:eb:e0:bb:6e:5c:d4:42:ac:ab:87:cb:e8:d7: 78:11:f3:6e:09:3d:c6:ea:8d:c7:2f:fe:5e:f5:9e: 0f:ab:87:26:9e:7a:99:c1:2d:23:bc:6d:63:ff:e7: c5:a4:eb:8e:68:4a:a9:d2:10:86:a8:ec:75:1c:c7: c8:ef:95:ee:9e:60:04:c4:f8:88:28:77:46:6d:8e: cc:0d:2e:a8:b8:8a:64:95:fc:88:e4:f9:1d:4e:80: a6:e0:b3:49:0b:b6:6d:68:47:af:c5:cf:72:7f:b7: 08:43:cf:8d:73:51:b9:69:9b:23:cc:8e:ff:ab:95: ba:02:1d:52:6b:dc:d8:fa:2a:37:f9:3d:2d:36:da: 38:6c:00:84:0c:7c:0b:ad:05:7c:e3:55:b9:7a:a1: ad:b1:c2:87:3c:5a:60:77:e0:49:dc:7d:2e:7e:24: ff:ba:3c:1d:e6:ef:5c:51:13:16:6c:7d:d5:a1:58: d8:32:21:7f:00:13:87:28:24:e3:fe:a7:23:fa:22: 59:d2:53:60:c8:3f:ac:41:b4:41:05:81:40:9c:41: 58:8f:24:62:23:5e:da:17:dc:4d:63:ad:03:01:65: 8c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:DE:B2:B8:34:94:6A:6A:E9:FA:21:EB:F3:4D:29:AD:88:69:13:96 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8e:84:3f:d0:ee:1e:1b:a2:bc:9b:e5:29:ce:1f:91:37:f9: 35:27:94:86:6f:04:19:5c:d0:41:e6:d0:ee:dd:24:a7:99:bd: 74:ac:5f:2e:05:cf:40:a3:7e:7a:76:22:ce:3a:d4:95:f9:fb: e2:dc:59:fd:97:3d:54:9d:bb:b7:5a:7c:01:75:64:c0:a4:3b: 52:e8:97:bd:cd:e1:16:79:ec:3d:e3:b5:54:b8:df:54:cf:43: 6f:9a:37:42:36:0b:5b:05:3c:88:e6:95:9a:7f:04:da:d1:bd: f5:40:a6:39:c3:a6:aa:6a:14:11:96:06:5b:d8:ec:a4:2d:a2: c3:9e:e0:5b:31:2c:ef:c2:ca:78:5b:60:0c:48:75:c8:80:ca: 16:9c:6b:23:cb:0c:38:1a:0f:f8:51:3e:2f:3f:f4:a7:bb:32: 77:1f:67:ad:22:e5:fb:d6:ef:a4:f8:52:ec:54:bd:6d:a8:1e: a2:62:ca:4d:04:1e:a6:27:0f:a3:8b:8c:92:3f:04:8d:64:c3: 5f:16:32:e4:5c:2d:1b:de:89:b4:59:c9:21:38:23:99:02:7f: 38:29:65:f1:5b:40:9d:86:d4:d2:4f:23:89:4f:19:40:83:20: 81:9d:3b:cd:b5:a6:61:f8:57:4b:0d:14:cb:0c:cd:13:50:b5: a8:59:6a:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwNjEzMDAzNTM5WhcNMjUwNjIwMDAzNTM5WjAYMRYwFAYD VQQDEw02ODRiNzI1Yy1hYjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnfLldQgmQk3p7EW3Q22eLn9DhsKuemQj6vou3ZSl+vgu25c1EKsq4fL6Nd4 EfNuCT3G6o3HL/5e9Z4Pq4cmnnqZwS0jvG1j/+fFpOuOaEqp0hCGqOx1HMfI75Xu nmAExPiIKHdGbY7MDS6ouIpklfyI5PkdToCm4LNJC7ZtaEevxc9yf7cIQ8+Nc1G5 aZsjzI7/q5W6Ah1Sa9zY+io3+T0tNto4bACEDHwLrQV841W5eqGtscKHPFpgd+BJ 3H0ufiT/ujwd5u9cURMWbH3VoVjYMiF/ABOHKCTj/qcj+iJZ0lNgyD+sQbRBBYFA nEFYjyRiI17aF9xNY60DAWWMTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfesrg0 lGpq6foh6/NNKa2IaROWMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZjoQ/0O4eG6K8m+Upzh+RN/k1J5SGbwQZXNBB5tDu3SSnmb10rF8u Bc9Ao356diLOOtSV+fvi3Fn9lz1Unbu3WnwBdWTApDtS6Je9zeEWeew947VUuN9U z0NvmjdCNgtbBTyI5pWafwTa0b31QKY5w6aqahQRlgZb2OykLaLDnuBbMSzvwsp4 W2AMSHXIgMoWnGsjyww4Gg/4UT4vP/SnuzJ3H2etIuX71u+k+FLsVL1tqB6iYspN BB6mJw+ji4ySPwSNZMNfFjLkXC0b3om0WckhOCOZAn84KWXxW0CdhtTSTyOJTxlA gyCBnTvNtaZh+FdLDRTLDM0TULWoWWqb -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:03 2025 by rpki-client