$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: iC9twou6UPYrQ690Oed/wiT5+9/UHeZ1xSMSUustpMM= Subject key identifier: 3C:8B:ED:12:69:D0:E1:5B:20:69:D3:4F:DB:D6:FA:17:79:BB:E1:DE Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 061E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 0606 Signing time: Fri 30 May 2025 23:16:07 +0000 Manifest this update: Fri 30 May 2025 23:16:07 +0000 Manifest next update: Fri 06 Jun 2025 23:16:07 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: km3/jT/CCOKoDzrrRWMRFhNqBK8jcz/YPo6l2/I/TNM=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: 6YYJp70ovWJbV5hwBiIeegk/fbVe4hEWR6AUPM6tWHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1566 (0x61e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: May 30 23:16:07 2025 GMT Not After : Jun 6 23:16:07 2025 GMT Subject: CN=683a3c37-2283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:fe:ff:86:7d:5d:8d:7c:54:d9:f2:ab:bb:d9: 28:cf:06:ec:46:5e:a6:c9:d5:23:ef:2c:7a:a2:40: 7f:30:9b:bd:9b:2f:6e:25:b4:cf:e2:87:62:46:70: fa:ad:e6:e6:49:16:5b:0c:9e:c7:76:53:87:e6:bb: 90:25:fc:c0:de:cf:4a:2b:c4:9c:b6:a3:be:f5:2c: 34:fa:c3:a6:4c:93:a9:e7:03:f0:2e:c6:17:65:d0: 2b:30:dd:93:ed:6d:2b:ee:ba:2c:b9:37:7d:61:bb: 4f:40:12:4e:1e:d1:cd:60:29:97:91:ba:44:d0:c1: ed:87:5f:46:ea:0c:3c:8f:16:9a:46:59:05:10:1b: eb:18:96:1f:43:54:2f:2c:a4:00:86:41:79:98:a8: af:76:85:c3:3e:38:e6:8b:20:92:dd:e6:91:69:2d: 30:7b:bb:24:7b:4a:0b:09:0a:f1:a2:f3:30:d7:8b: 5f:aa:27:4a:2d:3e:20:43:e2:19:42:78:4e:d4:20: a6:a2:e3:6c:2c:ab:74:50:f0:39:f6:15:bb:38:9a: 42:95:b5:12:a5:80:e4:7c:1e:e3:d0:a6:27:22:0f: 3e:f8:8e:91:7e:a8:30:e1:b5:17:2d:63:b8:35:31: 36:78:56:19:09:2e:ac:da:be:21:39:40:81:51:e8: 8c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8B:ED:12:69:D0:E1:5B:20:69:D3:4F:DB:D6:FA:17:79:BB:E1:DE X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:7c:9c:78:97:db:14:df:f6:ad:0b:e2:7e:76:28:87:39:4d: 0d:d6:b1:4a:90:17:b8:f0:03:9a:83:f1:83:92:1c:4e:3c:76: e6:09:5e:46:f7:b1:a8:9d:80:b4:6c:dd:f2:20:6e:fc:71:e6: ba:bc:d0:dd:c4:41:33:02:0b:c2:0f:95:a0:5b:33:2c:45:d9: bc:05:8a:a2:0b:8e:0c:48:c3:75:12:31:b1:51:1a:2b:1f:7a: 91:bd:fe:2c:9d:6b:70:b3:9f:10:cf:2d:a0:18:ee:42:51:23: 5f:5c:05:5c:66:c6:ab:5a:6c:23:13:8a:07:31:72:e3:43:33: 07:1c:b8:71:fb:8e:f5:a5:0c:83:99:ff:6e:fd:43:81:b2:f4: 42:d3:ac:8f:ca:c7:6a:bb:30:bf:28:09:f3:4b:32:9b:da:a6: 2c:5a:97:ba:87:04:d4:a7:e8:74:3e:cd:2a:2b:4a:51:f9:a7: 9a:09:db:1c:93:15:85:5b:19:eb:3b:9f:48:d4:21:ce:3b:07: 23:95:07:28:14:12:23:3f:f2:23:d8:9c:55:6c:21:9b:d4:08: 37:58:06:67:68:4d:b5:6b:56:af:4c:59:da:90:1f:b0:35:0b: 10:c7:d6:88:ee:9b:21:f3:e6:4e:e4:65:cb:fb:64:4a:cf:4f: dd:78:65:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwNTMwMjMxNjA3WhcNMjUwNjA2MjMxNjA3WjAYMRYwFAYD VQQDEw02ODNhM2MzNy0yMjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6v7/hn1djXxU2fKru9kozwbsRl6mydUj7yx6okB/MJu9my9uJbTP4odiRnD6 rebmSRZbDJ7HdlOH5ruQJfzA3s9KK8SctqO+9Sw0+sOmTJOp5wPwLsYXZdArMN2T 7W0r7rosuTd9YbtPQBJOHtHNYCmXkbpE0MHth19G6gw8jxaaRlkFEBvrGJYfQ1Qv LKQAhkF5mKivdoXDPjjmiyCS3eaRaS0we7ske0oLCQrxovMw14tfqidKLT4gQ+IZ QnhO1CCmouNsLKt0UPA59hW7OJpClbUSpYDkfB7j0KYnIg8++I6Rfqgw4bUXLWO4 NTE2eFYZCS6s2r4hOUCBUeiMKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyL7RJp 0OFbIGnTT9vW+hd5u+HeMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByfJx4l9sU3/atC+J+diiHOU0N1rFKkBe48AOag/GDkhxOPHbmCV5G 97GonYC0bN3yIG78cea6vNDdxEEzAgvCD5WgWzMsRdm8BYqiC44MSMN1EjGxURor H3qRvf4snWtws58Qzy2gGO5CUSNfXAVcZsarWmwjE4oHMXLjQzMHHLhx+471pQyD mf9u/UOBsvRC06yPysdquzC/KAnzSzKb2qYsWpe6hwTUp+h0Ps0qK0pR+aeaCdsc kxWFWxnrO59I1CHOOwcjlQcoFBIjP/Ij2JxVbCGb1Ag3WAZnaE21a1avTFnakB+w NQsQx9aI7psh8+ZO5GXL+2RKz0/deGW3 -----END CERTIFICATE-----Generated at Sat May 31 17:48:44 2025 by rpki-client