$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: ElYG1fktUu5jZWpy/YtX/8Q1KtH74JBe2uJ3AWxZyFY= Subject key identifier: AC:80:44:5D:AC:95:D2:BE:C6:A0:F8:35:1A:02:5A:A9:2E:F6:E0:F8 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 14F1 Signing time: Thu 24 Apr 2025 16:50:43 +0000 Manifest this update: Thu 24 Apr 2025 16:50:42 +0000 Manifest next update: Thu 01 May 2025 16:50:42 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: PZ5wOxMgTRxrcHP4I1KJOwzdzznd74XSwU1/ex5+aJY=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: tzptSWrCu7leujBpAxl0r7s1OXoHlY5rMMlXgr5Raxw=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: CYK+uI2bxtOr291BnZawHgoP/6miR+B6epnu6Vsoz0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5376 (0x1500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Apr 24 16:50:42 2025 GMT Not After : May 1 16:50:42 2025 GMT Subject: CN=680a6be2-4ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b3:99:44:49:2a:ee:c3:e2:e7:8c:68:75:c8: 51:de:d2:33:3b:0a:db:81:46:4a:5a:e1:fb:7e:d6: 4a:45:b4:65:d9:4a:a7:ab:76:7d:4d:ff:06:1f:05: f4:14:e3:b1:56:a2:02:ab:06:6a:c2:39:ac:5d:20: 91:06:10:1f:b6:20:2a:88:0b:7a:90:f0:8b:70:d0: 7a:0e:b1:f5:0a:6c:7a:c7:a4:34:7e:e5:1c:44:e7: d8:ed:00:e3:49:ab:a5:55:36:aa:3e:7c:0f:08:6c: 4f:54:5f:21:2a:4c:16:fa:af:4f:47:b7:25:b5:e0: c5:85:ec:83:95:df:27:c0:49:ee:c8:88:44:70:ed: d5:8d:c9:5f:04:5d:3a:21:fb:4d:e8:d2:32:80:45: 32:f5:b4:45:34:98:4f:f2:35:06:00:e6:2d:38:54: 6b:0c:3e:34:46:9c:f2:2c:f6:cd:7d:56:13:3a:5c: 63:cb:4b:80:fe:dd:df:61:c6:17:8b:01:9c:cf:3f: 1e:ac:1a:c4:76:be:04:56:d5:bc:61:6f:a2:27:10: b4:40:88:bf:58:78:7e:7f:cf:a9:56:4c:08:7d:f4: de:da:8e:1b:d5:25:aa:a2:1b:a3:8a:f8:88:da:7b: 0f:8a:57:c8:5c:11:d6:d9:4c:28:06:7f:8d:19:1e: 42:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:80:44:5D:AC:95:D2:BE:C6:A0:F8:35:1A:02:5A:A9:2E:F6:E0:F8 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:a0:76:07:a0:1e:fe:22:b8:ae:e8:5a:83:5a:43:7d:50:20: bb:87:ff:ed:55:ed:fe:ee:09:a2:4e:ad:0f:6e:3f:7d:10:2d: 0f:98:56:b3:33:4c:c4:3d:6a:e0:42:aa:97:0e:43:ac:ca:b1: 3d:7b:e9:76:ce:de:f9:67:62:b0:73:1a:ab:79:77:9d:bc:14: d4:c1:15:14:75:3c:f5:db:c0:62:6a:a2:02:34:76:ae:ac:6d: 82:ef:e9:b8:b4:2a:93:e0:c5:17:fa:a5:ad:95:5a:65:cf:a1: e0:42:05:d0:cf:51:df:0c:e6:7d:8c:bb:7a:fa:04:9a:f3:1f: 11:cb:cb:7a:fb:ba:95:88:ae:a9:da:9f:cc:45:a0:f0:c0:aa: 93:50:fb:1b:56:13:a8:aa:c2:18:f2:62:f0:0a:f6:05:2e:be: bc:cb:59:2a:67:f5:32:9b:5b:5d:90:9a:39:1f:52:d0:21:95: 45:1c:8c:c3:cd:69:bc:27:d7:89:a9:0e:bd:d2:3f:bc:77:8e: 6d:fd:6d:4f:a9:79:e2:94:8d:60:4d:c6:7f:f9:79:9d:bf:6b: 4b:93:db:d4:ec:f7:7d:62:0e:b8:ac:1f:53:62:37:ce:28:ee: 45:07:07:1d:4b:51:66:96:08:c1:ed:9b:93:1d:07:57:a1:77: 4f:f0:62:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwNDI0MTY1MDQyWhcNMjUwNTAxMTY1MDQyWjAYMRYwFAYD VQQDEw02ODBhNmJlMi00Y2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurOZREkq7sPi54xodchR3tIzOwrbgUZKWuH7ftZKRbRl2Uqnq3Z9Tf8GHwX0 FOOxVqICqwZqwjmsXSCRBhAftiAqiAt6kPCLcNB6DrH1Cmx6x6Q0fuUcROfY7QDj SaulVTaqPnwPCGxPVF8hKkwW+q9PR7clteDFheyDld8nwEnuyIhEcO3VjclfBF06 IftN6NIygEUy9bRFNJhP8jUGAOYtOFRrDD40RpzyLPbNfVYTOlxjy0uA/t3fYcYX iwGczz8erBrEdr4EVtW8YW+iJxC0QIi/WHh+f8+pVkwIffTe2o4b1SWqohujiviI 2nsPilfIXBHW2UwoBn+NGR5CGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyARF2s ldK+xqD4NRoCWqku9uD4MB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnoHYHoB7+Iriu6FqDWkN9UCC7h//tVe3+7gmiTq0Pbj99EC0PmFaz M0zEPWrgQqqXDkOsyrE9e+l2zt75Z2KwcxqreXedvBTUwRUUdTz128BiaqICNHau rG2C7+m4tCqT4MUX+qWtlVplz6HgQgXQz1HfDOZ9jLt6+gSa8x8Ry8t6+7qViK6p 2p/MRaDwwKqTUPsbVhOoqsIY8mLwCvYFLr68y1kqZ/Uym1tdkJo5H1LQIZVFHIzD zWm8J9eJqQ690j+8d45t/W1PqXnilI1gTcZ/+Xmdv2tLk9vU7Pd9Yg64rB9TYjfO KO5FBwcdS1FmlgjB7ZuTHQdXoXdP8GJw -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:18 2025 by rpki-client