$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft File: H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft (raw, json) Hash identifier: DGWmnL2ko69yJLMiv+9BJybp/nYsSXPbp1TGJufTZHs= Subject key identifier: A2:32:CB:65:9A:05:24:C9:A5:0D:AA:88:51:8C:94:70:77:D2:E4:10 Authority key identifier: 1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 Certificate issuer: /CN=A91F8282/serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft Manifest number: 38 Signing time: Sat 21 Jun 2025 06:36:47 +0000 Manifest this update: Sat 21 Jun 2025 06:36:47 +0000 Manifest next update: Sat 28 Jun 2025 06:36:47 +0000 Files and hashes: 1: H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl (hash: fSCaJ6kf25DBDoRgbGNwXRWNZLihshGK0EwGvizdmjY=) 2: 0664C974FEF811EFB0C52572C4F9AE02.roa (hash: LMQmjwLQrmdrjw5ITfcjjvXTHrCvldYng4+Bqh2xDu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 06:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Validity Not Before: Jun 21 06:36:47 2025 GMT Not After : Jun 28 06:36:47 2025 GMT Subject: CN=685652ff-3cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1d:1c:c4:3e:45:f4:45:75:21:38:98:2d:f0: 5f:08:85:be:dd:1d:da:b7:10:a8:f7:40:68:d0:61: ff:93:63:10:60:9b:00:53:83:20:cb:d2:45:b2:7f: 30:09:cf:6c:be:1a:37:63:76:3c:08:38:90:84:d4: 52:2f:75:90:c0:2c:06:de:5c:e8:0a:47:63:60:1d: 98:e6:bf:ac:7a:10:63:b6:2b:66:71:29:77:fe:9a: e8:b7:8b:a3:11:56:55:c7:eb:1e:f0:67:0e:56:e8: 00:35:5a:ec:2f:1f:d9:f7:e8:1b:8c:2d:90:2b:f0: 73:6f:42:0a:75:d8:94:ae:9b:7e:ca:f7:70:17:1e: 37:3e:8c:df:8c:27:b2:f6:59:64:e4:ca:ce:c8:d0: 78:e8:a0:f0:a5:5c:3c:62:51:96:b5:f6:6d:0f:ee: e1:bc:cc:7a:43:37:81:23:b9:11:eb:bb:32:e4:c9: 14:7b:2c:8d:52:bd:44:3d:77:eb:f2:f8:34:95:26: 0f:7b:9f:0c:4d:b2:e8:ad:72:7d:5c:ea:48:87:c7: 16:3c:a0:0f:d2:c0:b5:ec:20:a9:67:76:d4:44:cc: a7:18:e7:19:04:56:99:df:d1:de:36:58:68:0a:8f: 21:16:c9:11:b4:3c:e7:15:02:8a:77:e5:6b:0d:ae: b0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:32:CB:65:9A:05:24:C9:A5:0D:AA:88:51:8C:94:70:77:D2:E4:10 X509v3 Authority Key Identifier: keyid:1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:e8:b9:3b:23:34:e2:d8:45:cc:c4:b0:ca:4f:cd:12:bd:7c: 54:c2:b1:4a:68:d4:55:c9:db:f7:fe:39:71:02:3a:bd:fb:c9: 5b:5e:69:5f:94:ae:a7:20:1f:58:f3:db:4c:ac:44:00:e8:33: 69:b5:25:e1:06:21:a7:de:7e:eb:53:6c:f2:dd:90:62:d9:62: 7c:42:35:3e:2a:69:13:50:f0:41:06:a3:d7:2a:ac:51:ae:91: 46:08:a7:e9:fc:36:89:70:71:31:af:a2:02:c5:d6:5c:fe:b0: 4d:07:21:71:7c:31:c1:fd:c5:cf:bd:0b:05:10:41:46:03:ae: 6d:b2:5d:c4:d0:95:47:6d:37:25:d9:ab:7a:b6:9b:5b:f9:0e: 68:04:03:86:a3:6d:4d:30:1d:da:48:53:a8:c5:82:d5:a3:fc: 6a:44:b9:0f:dc:07:43:b0:0c:63:2e:da:13:0e:30:bb:5b:0b: d6:3e:2b:ad:e7:b6:a3:75:d1:31:11:7a:d6:a8:16:b7:f1:bb: 24:e8:3e:fe:cf:af:68:ce:9a:0d:a8:00:23:b6:5e:a3:ac:11: 4b:6e:6c:60:f8:e3:40:5e:db:55:2f:f7:d3:2d:4a:ff:21:3d: f6:36:30:56:fe:07:8c:89:78:70:99:9d:80:9b:bd:ba:3e:ed: f2:b2:bd:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODI4MjExMC8GA1UEBRMoMUY0RENFMzQzOUIxRjQwMzVGRkY4QzcxQ0UzNTlFNUQy MEU2OUEyNDAeFw0yNTA2MjEwNjM2NDdaFw0yNTA2MjgwNjM2NDdaMBgxFjAUBgNV BAMTDTY4NTY1MmZmLTNjYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwHRzEPkX0RXUhOJgt8F8Ihb7dHdq3EKj3QGjQYf+TYxBgmwBTgyDL0kWyfzAJ z2y+GjdjdjwIOJCE1FIvdZDALAbeXOgKR2NgHZjmv6x6EGO2K2ZxKXf+mui3i6MR VlXH6x7wZw5W6AA1WuwvH9n36BuMLZAr8HNvQgp12JSum37K93AXHjc+jN+MJ7L2 WWTkys7I0HjooPClXDxiUZa19m0P7uG8zHpDN4EjuRHruzLkyRR7LI1SvUQ9d+vy +DSVJg97nwxNsuitcn1c6kiHxxY8oA/SwLXsIKlndtREzKcY5xkEVpnf0d42WGgK jyEWyRG0POcVAop35WsNrrBJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUojLLZZoF JMmlDaqIUYyUcHfS5BAwHwYDVR0jBBgwFoAUH03ONDmx9ANf/4xxzjWeXSDmmiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MjgyLzJGMjUzQzFBRkJG RTExRUZCNTUyMEExMkM0RjlBRTAyL0gwM09ORG14OUFOZl80eHh6aldlWFNEbW1p US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSDAzT05EbXg5QU5mXzR4eHpqV2VYU0RtbWlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MjgyLzJGMjUzQzFBRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL0gwM09ORG14OUFO Zl80eHh6aldlWFNEbW1pUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIHouTsjNOLYRczEsMpPzRK9fFTCsUpo1FXJ2/f+OXECOr37yVteaV+U rqcgH1jz20ysRADoM2m1JeEGIafefutTbPLdkGLZYnxCNT4qaRNQ8EEGo9cqrFGu kUYIp+n8NolwcTGvogLF1lz+sE0HIXF8McH9xc+9CwUQQUYDrm2yXcTQlUdtNyXZ q3q2m1v5DmgEA4ajbU0wHdpIU6jFgtWj/GpEuQ/cB0OwDGMu2hMOMLtbC9Y+K63n tqN10TERetaoFrfxuyToPv7Pr2jOmg2oACO2XqOsEUtubGD440Be21Uv99MtSv8h PfY2MFb+B4yJeHCZnYCbvbo+7fKyvR0= -----END CERTIFICATE-----Generated at Sat Jun 21 20:48:38 2025 by rpki-client