$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: gHaetPLHX+b9Q+ad+pI9UWK9ZCBud0jDJf80VSF2mBM= Subject key identifier: 1E:58:B7:A9:AB:48:C6:0A:F5:ED:5B:1C:C9:19:16:18:D0:C4:18:B9 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 151E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 150D Signing time: Sat 14 Jun 2025 16:46:34 +0000 Manifest this update: Sat 14 Jun 2025 16:46:33 +0000 Manifest next update: Sat 21 Jun 2025 16:46:33 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: FJagouUoeDw0JvB6AFin1ogLguwdulk9kwyeBXqaUFM=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5406 (0x151e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Jun 14 16:46:33 2025 GMT Not After : Jun 21 16:46:33 2025 GMT Subject: CN=684da76a-d8fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:0c:37:be:e4:24:e8:26:3c:80:93:a4:d9: 64:d7:fb:17:7d:a8:b5:24:70:3f:df:f6:dc:b5:44: 56:fc:9f:4a:6f:6a:c2:e6:ff:b0:ae:20:21:a6:81: 2f:bb:16:e4:93:5a:ff:ef:29:64:d7:f3:3f:04:e4: 41:d6:32:f5:f0:53:df:bc:78:1c:13:f1:bd:14:87: bf:74:c7:e6:0c:50:1a:0b:49:cc:71:82:5b:b7:19: 42:e2:9f:6f:af:95:9c:3d:fc:81:b4:2b:a3:97:4b: 3c:d3:e1:10:54:9e:f3:b7:03:4e:ac:b8:31:39:44: b5:2a:2e:c3:b7:40:d4:d5:e1:7f:97:f2:e8:b8:7c: 4a:c4:91:ab:38:6e:d8:d7:22:59:33:c0:00:a4:fe: ff:1b:8b:9f:db:5c:cd:ad:5b:74:45:41:6e:64:ef: 60:03:20:0b:25:c9:94:7d:2c:d2:d7:bf:00:93:aa: 31:21:0d:09:39:2b:f3:f1:ba:fe:bd:3a:d8:5e:10: bb:93:2b:56:23:61:0b:15:1d:6a:76:82:29:69:ac: 7c:6d:3a:21:5b:f3:22:57:2b:7b:e0:dc:5c:b7:ea: 04:31:b8:30:31:ab:c6:eb:b3:01:96:8b:6b:0b:77: 1b:73:d4:7d:ec:60:03:64:c5:67:e0:25:d6:d0:f1: ce:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:58:B7:A9:AB:48:C6:0A:F5:ED:5B:1C:C9:19:16:18:D0:C4:18:B9 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:99:7c:91:eb:e0:50:e2:b5:17:25:e7:66:28:48:1a:7e:6c: 2e:34:92:82:e5:4b:e6:6a:4b:f3:e6:8f:57:bf:f2:fe:bc:10: cd:06:76:d1:19:b1:fc:9a:fa:ed:37:8d:45:6c:37:ab:69:dc: c1:e0:b3:bf:72:20:d7:6f:35:1d:75:bc:45:29:8b:14:73:eb: 55:a9:65:c9:47:2d:9e:ca:32:08:84:79:7d:36:d3:ce:07:27: 7d:61:be:24:63:0c:7c:73:fc:6d:f8:86:86:71:46:cf:6e:27: f7:ab:0f:e9:17:8b:9e:bb:74:3a:b9:20:2a:54:86:17:98:ee: 54:74:a6:63:8f:f9:96:53:d7:9f:47:5e:72:8d:24:04:92:bd: ab:35:f4:49:22:52:34:6d:0a:ed:6a:7b:fb:1d:cc:3a:35:fc: 56:9a:28:a4:05:ec:77:f0:8c:80:3d:26:d3:48:e6:59:42:43: cc:e8:d9:00:13:4f:c7:71:79:93:6e:63:ba:2b:92:3b:27:4a: c8:1d:cc:6e:b9:ef:25:c2:dc:3e:e5:7a:19:b8:86:a6:28:44: 8d:88:5b:a0:cd:8f:6a:17:bc:96:a0:79:88:e3:d7:6e:ee:68: 83:7f:53:09:6b:70:b4:e9:de:0f:fa:3b:f5:5e:4b:90:d2:46: 03:9d:95:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwNjE0MTY0NjMzWhcNMjUwNjIxMTY0NjMzWjAYMRYwFAYD VQQDEw02ODRkYTc2YS1kOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiwMN77kJOgmPICTpNlk1/sXfai1JHA/3/bctURW/J9Kb2rC5v+wriAhpoEv uxbkk1r/7ylk1/M/BORB1jL18FPfvHgcE/G9FIe/dMfmDFAaC0nMcYJbtxlC4p9v r5WcPfyBtCujl0s80+EQVJ7ztwNOrLgxOUS1Ki7Dt0DU1eF/l/LouHxKxJGrOG7Y 1yJZM8AApP7/G4uf21zNrVt0RUFuZO9gAyALJcmUfSzS178Ak6oxIQ0JOSvz8br+ vTrYXhC7kytWI2ELFR1qdoIpaax8bTohW/MiVyt74Nxct+oEMbgwMavG67MBlotr C3cbc9R97GADZMVn4CXW0PHOzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5Yt6mr SMYK9e1bHMkZFhjQxBi5MB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsmXyR6+BQ4rUXJedmKEgafmwuNJKC5Uvmakvz5o9Xv/L+vBDNBnbR GbH8mvrtN41FbDeradzB4LO/ciDXbzUddbxFKYsUc+tVqWXJRy2eyjIIhHl9NtPO Byd9Yb4kYwx8c/xt+IaGcUbPbif3qw/pF4ueu3Q6uSAqVIYXmO5UdKZjj/mWU9ef R15yjSQEkr2rNfRJIlI0bQrtanv7Hcw6NfxWmiikBex38IyAPSbTSOZZQkPM6NkA E0/HcXmTbmO6K5I7J0rIHcxuue8lwtw+5XoZuIamKESNiFugzY9qF7yWoHmI49du 7miDf1MJa3C06d4P+jv1XkuQ0kYDnZW8 -----END CERTIFICATE-----Generated at Sun Jun 15 10:00:09 2025 by rpki-client