$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: gC7hwsFeVD8Yo7+lZ/AbvygnDzzBfYOh8BZAIVS0Sgs= Subject key identifier: 7E:05:5A:5B:3A:2B:B4:F5:02:71:F2:42:01:28:5F:B0:68:69:CC:35 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1BF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1BC5 Signing time: Fri 30 May 2025 16:26:27 +0000 Manifest this update: Fri 30 May 2025 16:26:27 +0000 Manifest next update: Fri 06 Jun 2025 16:26:27 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: Tgc9QViw8I2E8PhB8kr+IZN7K5+aUoeZg/FdUdoNA3s=) 2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: DzfAqd947/aw0GqhghbdVi3PbAms0DDMSaZSwYpp3rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7159 (0x1bf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: May 30 16:26:27 2025 GMT Not After : Jun 6 16:26:27 2025 GMT Subject: CN=6839dc33-a0b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:73:5f:0c:1f:f3:8a:14:43:a7:5d:fd:82:6a: ac:64:75:8b:49:d0:02:1f:80:0b:e4:c8:77:7b:f9: c9:d2:90:98:3c:d9:1e:ae:ee:49:cf:ae:0e:c0:75: ef:4b:22:0d:d4:78:f9:5a:ea:e2:23:c0:27:2a:84: bc:d3:87:f0:25:f0:d4:0f:27:fe:f4:14:fa:0b:96: e8:4c:dd:20:ed:33:0f:f8:a3:fb:1e:03:2a:5f:28: ee:09:b9:8b:76:9c:59:f8:d0:5b:ae:5f:e8:b7:38: 59:9a:4f:f7:56:91:9b:8b:49:c5:e9:5f:e9:a2:92: 97:ea:e0:fd:2d:40:cc:e1:06:b7:6c:4c:70:d1:92: 24:38:03:ad:2e:66:f6:2b:5b:05:49:78:28:64:10: bf:4a:e4:9d:a2:4a:2c:d8:69:67:c9:22:0c:de:7a: d6:7a:e3:60:17:98:1c:75:56:52:36:dc:f3:de:a5: a4:1d:5e:9f:b5:ad:ca:88:7e:bf:4d:39:9b:1a:b8: 2e:28:78:9d:f7:31:bc:97:a6:e8:8f:e4:2f:d4:10: 4a:1c:58:25:18:ac:7e:de:52:6b:8d:ee:00:04:d8: be:a3:6c:95:49:42:be:22:d6:bd:ff:5d:5f:df:d5: d6:41:86:46:42:f9:86:8a:50:23:d7:59:83:43:82: b1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:05:5A:5B:3A:2B:B4:F5:02:71:F2:42:01:28:5F:B0:68:69:CC:35 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:01:1f:e3:34:7f:8d:7b:aa:a9:ec:b9:d9:37:36:be:18:6e: a3:cd:54:f7:a9:f5:a0:dc:09:ba:8b:f7:e1:b8:da:ff:21:4e: b4:c4:3c:4c:8e:59:10:70:eb:92:e2:5a:2f:fe:4f:8a:f1:41: d7:31:aa:cc:9f:1e:f2:e0:24:90:4d:76:14:3c:4a:cb:00:e3: 2d:05:bc:0f:39:99:2b:6a:fa:58:1d:7c:cb:cd:fb:e9:42:f8: 06:66:ad:eb:5f:49:32:3b:ee:44:30:22:8f:d9:be:7b:d6:f1: 72:35:e5:74:e2:24:64:9b:b4:cd:df:52:60:83:8f:77:05:1a: 5b:66:1f:a9:b9:20:58:0a:78:fa:61:c9:9b:a9:12:f4:6a:78: 90:7b:ed:1a:4e:b2:c0:e5:42:67:ad:dc:51:d5:e8:71:e8:42: b1:59:b2:a1:50:31:09:78:dc:dc:6c:ff:13:e7:2f:5d:74:80: 5d:71:32:f2:1f:2b:0f:27:8b:55:fd:bf:95:b7:7d:d9:1e:a3: a4:bf:34:66:00:9a:d2:c0:ce:30:7a:33:47:e8:aa:22:a8:51: 42:2a:1a:4b:84:d9:3a:f1:40:a7:9a:94:a9:8d:98:9c:48:54: a0:e3:16:ec:7f:a0:58:6f:25:eb:52:99:1d:dc:10:00:8b:e9: d1:58:c3:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUwNTMwMTYyNjI3WhcNMjUwNjA2MTYyNjI3WjAYMRYwFAYD VQQDEw02ODM5ZGMzMy1hMGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXNfDB/zihRDp139gmqsZHWLSdACH4AL5Mh3e/nJ0pCYPNkeru5Jz64OwHXv SyIN1Hj5WuriI8AnKoS804fwJfDUDyf+9BT6C5boTN0g7TMP+KP7HgMqXyjuCbmL dpxZ+NBbrl/otzhZmk/3VpGbi0nF6V/popKX6uD9LUDM4Qa3bExw0ZIkOAOtLmb2 K1sFSXgoZBC/SuSdokos2GlnySIM3nrWeuNgF5gcdVZSNtzz3qWkHV6fta3KiH6/ TTmbGrguKHid9zG8l6boj+Qv1BBKHFglGKx+3lJrje4ABNi+o2yVSUK+Ita9/11f 39XWQYZGQvmGilAj11mDQ4Kx1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4FWls6 K7T1AnHyQgEoX7Boacw1MB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtAR/jNH+Ne6qp7LnZNza+GG6jzVT3qfWg3Am6i/fhuNr/IU60xDxM jlkQcOuS4lov/k+K8UHXMarMnx7y4CSQTXYUPErLAOMtBbwPOZkravpYHXzLzfvp QvgGZq3rX0kyO+5EMCKP2b571vFyNeV04iRkm7TN31Jgg493BRpbZh+puSBYCnj6 YcmbqRL0aniQe+0aTrLA5UJnrdxR1ehx6EKxWbKhUDEJeNzcbP8T5y9ddIBdcTLy HysPJ4tV/b+Vt33ZHqOkvzRmAJrSwM4wejNH6KoiqFFCKhpLhNk68UCnmpSpjZic SFSg4xbsf6BYbyXrUpkd3BAAi+nRWMNu -----END CERTIFICATE-----Generated at Sat May 31 16:38:09 2025 by rpki-client