$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft File: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft (raw, json) Hash identifier: PqQZWnxldNJYQ0XJt1SJ/Q+Q0cYkxPERx99qPjNd2qo= Subject key identifier: 23:00:60:2B:D8:87:C5:10:89:C7:06:E2:92:00:A1:01:4A:20:F6:C5 Authority key identifier: 1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C Certificate issuer: /CN=A91F7BE4/serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Certificate serial: 0FE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft Manifest number: 0FDE Signing time: Thu 12 Jun 2025 17:23:28 +0000 Manifest this update: Thu 12 Jun 2025 17:23:28 +0000 Manifest next update: Thu 19 Jun 2025 17:23:28 +0000 Files and hashes: 1: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl (hash: TwQ8Ty4W+imHDVI6Yfd9XMVu2/b+5Q13YBLldqD0YdM=) 2: DB63DD0C511311E998B6E814C4F9AE02.roa (hash: Mh1zi5YD9Zt1qZTGwDKJ/p09AgZsGk5KhqRaFO5mGTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4071 (0xfe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7BE4, serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Validity Not Before: Jun 12 17:23:28 2025 GMT Not After : Jun 19 17:23:28 2025 GMT Subject: CN=684b0d10-1b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:66:83:5f:25:0a:be:dd:9e:09:8d:10:37:e2: 20:a1:0e:95:a1:db:4c:3a:79:5b:4d:c3:f5:7e:c6: 63:18:84:5e:65:aa:e6:70:04:15:3a:20:34:93:d0: 60:b5:c8:2c:8f:22:d2:92:15:ec:e6:2b:1a:af:a8: 96:26:1a:a9:4e:ea:e7:b7:39:4a:8d:2f:cd:39:ba: 12:7e:ad:d8:e1:1d:85:6d:d2:5a:fd:89:27:df:12: 40:d3:32:08:0e:43:10:7a:3d:d5:40:ee:94:3e:36: 64:e0:61:dc:fb:3b:71:cb:f9:d1:f6:7b:4d:c8:a1: f4:b3:a1:82:e8:d6:9b:fa:2b:59:e0:b4:cf:6c:55: e5:bf:77:fd:b8:79:8a:30:0e:ee:1a:84:10:7f:f8: ec:fa:63:4c:30:6b:49:70:9b:29:87:61:13:ec:15: 42:64:75:db:05:ee:36:a7:5f:5a:6f:ee:83:32:c6: c5:bf:8d:3e:46:ca:96:d5:79:74:d7:48:03:06:a6: a5:e7:04:b7:b0:4b:76:9b:0f:41:7f:8a:57:8e:c3: 24:96:09:ec:46:dd:42:e4:48:fc:59:5b:e5:5d:6e: 93:bb:fe:9d:46:9c:09:99:90:6b:d0:07:7e:01:5f: 49:ae:11:52:c1:a0:37:d7:57:79:c1:7e:68:cf:68: 91:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:00:60:2B:D8:87:C5:10:89:C7:06:E2:92:00:A1:01:4A:20:F6:C5 X509v3 Authority Key Identifier: keyid:1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:ad:fb:97:f9:93:06:95:c7:df:21:9c:f0:e2:a7:bd:69:4f: 9f:5e:e2:d8:15:59:bf:88:7a:76:8a:7a:30:b5:18:7e:1e:f7: 19:8c:91:5f:cd:be:5f:dc:95:60:a2:9b:ed:12:2d:ee:f7:f1: cf:db:fc:7d:2f:be:d5:8a:6d:5f:6e:82:d8:c3:4c:0c:65:d3: 20:46:98:57:8b:93:bf:16:bc:09:f0:99:ff:d4:ee:85:cc:d6: ba:b8:44:9d:25:cd:1b:46:ed:05:68:bb:44:de:3b:d3:92:a8: ad:4d:ee:da:28:a2:6c:78:17:cd:83:ae:df:b4:65:55:f3:0d: 5b:27:2d:1d:63:72:cd:2e:7e:71:4a:4a:9f:46:34:4b:fa:86: b9:af:87:db:95:81:df:e5:af:f6:ee:aa:fe:cb:c9:68:58:35: ca:f3:8d:d8:7a:86:05:90:50:6f:79:ad:a8:4e:39:44:21:fa: ce:f8:2e:4b:07:37:09:3d:a4:96:ba:f4:b8:7f:65:51:d5:45: 63:fd:a9:a2:a7:6a:d4:58:be:a0:04:38:37:fe:67:94:bb:42: e8:fe:1f:8f:18:e3:50:af:74:70:bd:26:b1:a1:7b:91:2f:0a: 50:68:4e:dc:d1:81:1a:38:7d:96:30:a8:7c:50:20:68:6b:db: c7:c6:0e:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdCRTQxMTAvBgNVBAUTKDFFNkIzOTQ0QjY3ODhFOTBFOTk3RDhBOEU4MDY3QzU5 NjlCODg5OEMwHhcNMjUwNjEyMTcyMzI4WhcNMjUwNjE5MTcyMzI4WjAYMRYwFAYD VQQDEw02ODRiMGQxMC0xYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWaDXyUKvt2eCY0QN+IgoQ6VodtMOnlbTcP1fsZjGIReZarmcAQVOiA0k9Bg tcgsjyLSkhXs5isar6iWJhqpTurntzlKjS/NOboSfq3Y4R2FbdJa/Ykn3xJA0zII DkMQej3VQO6UPjZk4GHc+ztxy/nR9ntNyKH0s6GC6Nab+itZ4LTPbFXlv3f9uHmK MA7uGoQQf/js+mNMMGtJcJsph2ET7BVCZHXbBe42p19ab+6DMsbFv40+RsqW1Xl0 10gDBqal5wS3sEt2mw9Bf4pXjsMklgnsRt1C5Ej8WVvlXW6Tu/6dRpwJmZBr0Ad+ AV9JrhFSwaA311d5wX5oz2iRywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMAYCvY h8UQiccG4pIAoQFKIPbFMB8GA1UdIwQYMBaAFB5rOUS2eI6Q6ZfYqOgGfFlpuImM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0JFNC9BMDYzMDVDMjUx MTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpwRHBsOWlvNkFaOFdXbTRp WXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htczVSTFo0anBEcGw5aW82QVo4V1dtNGlZdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0JFNC9BMDYzMDVDMjUxMTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpw RHBsOWlvNkFaOFdXbTRpWXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvrfuX+ZMGlcffIZzw4qe9aU+fXuLYFVm/iHp2inowtRh+HvcZjJFf zb5f3JVgopvtEi3u9/HP2/x9L77Vim1fboLYw0wMZdMgRphXi5O/FrwJ8Jn/1O6F zNa6uESdJc0bRu0FaLtE3jvTkqitTe7aKKJseBfNg67ftGVV8w1bJy0dY3LNLn5x SkqfRjRL+oa5r4fblYHf5a/27qr+y8loWDXK843YeoYFkFBvea2oTjlEIfrO+C5L BzcJPaSWuvS4f2VR1UVj/amip2rUWL6gBDg3/meUu0Lo/h+PGONQr3RwvSaxoXuR LwpQaE7c0YEaOH2WMKh8UCBoa9vHxg5j -----END CERTIFICATE-----Generated at Sat Jun 14 19:09:38 2025 by rpki-client