$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft File: 0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft (raw, json) Hash identifier: MWzl0oouj+lQ4+zT7VCpfQzaS+pm5/PRBMTLKDHo7lE= Subject key identifier: 57:F0:75:08:54:5F:70:03:9B:9E:02:0A:90:9E:36:14:03:95:1F:93 Authority key identifier: D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F Certificate issuer: /CN=A91139AB/serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft Manifest number: 0896 Signing time: Mon 30 Jun 2025 21:54:07 +0000 Manifest this update: Mon 30 Jun 2025 21:54:07 +0000 Manifest next update: Mon 07 Jul 2025 21:54:07 +0000 Files and hashes: 1: 0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl (hash: pfStI8c8cwYuD/QssdZNCajHJBYeU27nfhX90/PIrLQ=) 2: 5428E56AF53911EEB8A4592AC4F9AE02.roa (hash: V0jvv16GxWWSgYF6je4xv4QElPKOl/7nA+3XTVSMXTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB, serialNumber=D10BAF7AA8DB734B952D036087783C6437843C8F Validity Not Before: Jun 30 21:54:07 2025 GMT Not After : Jul 7 21:54:07 2025 GMT Subject: CN=6863077f-69a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e2:44:18:72:f1:11:2a:7c:87:6e:3e:2b:86: 86:a5:04:95:e6:36:49:c2:fe:d1:02:af:98:df:b5: 96:87:fe:13:1a:07:04:b4:59:7a:d8:72:79:16:f3: 4e:5c:5d:cd:98:bc:57:db:a5:42:c2:81:c0:20:ca: 06:3b:c3:ec:3c:61:2e:68:27:8d:ca:b0:0c:4e:43: ea:dd:15:86:c8:3b:8a:c2:ee:f7:d7:a2:88:98:41: 9a:72:9a:d9:8e:3c:54:cc:79:cf:cc:56:d4:48:11: ff:35:40:de:87:9c:7c:d1:33:4a:30:a4:ff:54:e1: 6f:5a:b8:8a:09:b9:77:1f:f7:b9:91:a8:93:1c:a1: 19:d3:ab:17:60:00:48:07:d1:bf:89:c7:d4:7b:fd: ab:e5:c5:56:c6:ff:63:0f:15:5c:cb:5e:d5:43:1d: df:c2:de:46:e0:c8:86:5d:19:13:af:89:d8:42:e3: 56:27:0a:d2:87:a5:d6:30:76:30:85:4c:7a:63:78: b3:ad:59:52:4d:03:a8:a8:c6:d2:4c:01:19:f2:b3: a5:07:2e:f9:d7:6e:b2:ea:7e:7d:11:34:07:08:11: 44:0a:f6:6f:5c:5c:3d:1d:c8:d6:fe:ed:d8:6d:ce: d6:1f:e7:a7:f1:fd:a2:34:e5:e3:b3:54:ef:34:fd: b3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F0:75:08:54:5F:70:03:9B:9E:02:0A:90:9E:36:14:03:95:1F:93 X509v3 Authority Key Identifier: keyid:D1:0B:AF:7A:A8:DB:73:4B:95:2D:03:60:87:78:3C:64:37:84:3C:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Quveqjbc0uVLQNgh3g8ZDeEPI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/0Quveqjbc0uVLQNgh3g8ZDeEPI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:f5:81:00:3f:14:c0:f2:0f:69:12:7d:10:12:33:6d:1f:a4: a6:c9:32:bd:ae:92:08:4a:16:3b:05:b7:e8:3c:87:a1:93:82: 1e:fa:e5:d3:01:dc:8f:bc:06:2f:44:08:5b:0b:ef:32:8c:a5: ae:98:69:ec:92:9e:73:79:d0:2e:e1:53:45:df:73:8f:59:c7: 0b:58:74:35:49:01:f7:39:0c:17:7f:86:b3:dd:69:ec:6d:6e: ce:73:8c:a4:6e:9c:2d:92:99:25:4c:ac:e2:62:a0:1c:c2:10: e2:49:8e:4b:56:81:b8:96:db:7d:66:f5:26:e0:7d:7b:d4:f4: 6b:56:8b:6e:22:97:ff:1b:0f:92:99:77:2c:be:55:b8:d1:de: 21:e4:c8:7f:27:d9:b3:c5:2c:1a:01:fb:a6:fc:fb:93:31:4a: 32:f3:9f:d3:41:08:5d:0a:d7:e9:c4:48:ce:ac:5a:c1:52:e4: 25:eb:4a:ee:9a:a1:a7:a9:51:5b:8e:05:ab:37:f5:7b:47:63: 53:02:f0:d4:44:48:93:fd:c3:94:99:75:bc:c3:a3:37:4a:27: d9:47:45:77:92:10:16:4c:40:fc:47:11:26:47:14:b9:cc:ad: e7:fa:01:18:3f:5e:b7:1e:9d:59:8c:3f:da:2f:74:2f:b1:55: 67:67:d2:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEQxMEJBRjdBQThEQjczNEI5NTJEMDM2MDg3NzgzQzY0 Mzc4NDNDOEYwHhcNMjUwNjMwMjE1NDA3WhcNMjUwNzA3MjE1NDA3WjAYMRYwFAYD VQQDEw02ODYzMDc3Zi02OWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruJEGHLxESp8h24+K4aGpQSV5jZJwv7RAq+Y37WWh/4TGgcEtFl62HJ5FvNO XF3NmLxX26VCwoHAIMoGO8PsPGEuaCeNyrAMTkPq3RWGyDuKwu7316KImEGacprZ jjxUzHnPzFbUSBH/NUDeh5x80TNKMKT/VOFvWriKCbl3H/e5kaiTHKEZ06sXYABI B9G/icfUe/2r5cVWxv9jDxVcy17VQx3fwt5G4MiGXRkTr4nYQuNWJwrSh6XWMHYw hUx6Y3izrVlSTQOoqMbSTAEZ8rOlBy75126y6n59ETQHCBFECvZvXFw9HcjW/u3Y bc7WH+en8f2iNOXjs1TvNP2zywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfwdQhU X3ADm54CCpCeNhQDlR+TMB8GA1UdIwQYMBaAFNELr3qo23NLlS0DYId4PGQ3hDyP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi8wUXV2ZXFqYmMwdVZMUU5naDNnOFpEZUVQ STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRdXZlcWpiYzB1VkxRTmdoM2c4WkRlRVBJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi8wUXV2ZXFqYmMw dVZMUU5naDNnOFpEZUVQSTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV9YEAPxTA8g9pEn0QEjNtH6SmyTK9rpIIShY7BbfoPIehk4Ie+uXT AdyPvAYvRAhbC+8yjKWumGnskp5zedAu4VNF33OPWccLWHQ1SQH3OQwXf4az3Wns bW7Oc4ykbpwtkpklTKziYqAcwhDiSY5LVoG4ltt9ZvUm4H171PRrVotuIpf/Gw+S mXcsvlW40d4h5Mh/J9mzxSwaAfum/PuTMUoy85/TQQhdCtfpxEjOrFrBUuQl60ru mqGnqVFbjgWrN/V7R2NTAvDUREiT/cOUmXW8w6M3SifZR0V3khAWTED8RxEmRxS5 zK3n+gEYP163Hp1ZjD/aL3QvsVVnZ9LT -----END CERTIFICATE-----Generated at Tue Jul 1 19:53:31 2025 by rpki-client