$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft File: qo4b42JCQNwzAgR_tBp9TkeAjvg.mft (raw, json) Hash identifier: JT1jAtACvDlv/UjdKpruGWexwZFE7SKH+Fkf4DdIBhw= Subject key identifier: F0:BD:05:9F:EA:3D:6C:25:66:62:D4:9E:BC:4C:7F:D8:15:70:22:ED Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 0959 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft Manifest number: 0934 Signing time: Fri 30 May 2025 20:33:57 +0000 Manifest this update: Fri 30 May 2025 20:33:57 +0000 Manifest next update: Fri 06 Jun 2025 20:33:57 +0000 Files and hashes: 1: qo4b42JCQNwzAgR_tBp9TkeAjvg.crl (hash: gpbJq9g0AVg3aqfynNXX1DtOaHubH+FBg/jUqxcUyGM=) 2: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (hash: y+1LcMZWVq0sxCzTaWENpdmxk9z32hroZYUL1UHWPKM=) 3: 31AFACDC349211F0BA15B357C4F9AE02.roa (hash: PUqEA442AAa7n+fxZ3wZ6UWoFba4yC5gZ7zTzgopBgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2393 (0x959) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: May 30 20:33:57 2025 GMT Not After : Jun 6 20:33:57 2025 GMT Subject: CN=683a1635-f34c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e4:89:63:7b:d8:79:41:1e:be:e9:2d:e8:fc: 5d:fe:62:9b:e4:66:66:8b:37:49:b9:d3:29:dc:31: 00:ca:87:c1:3f:4d:b5:0d:74:a2:27:81:f2:af:80: f4:ec:88:47:98:56:da:e8:29:a1:72:3b:96:b8:7f: ce:64:42:2d:9d:1c:10:92:17:94:6e:4f:23:44:32: 8e:48:64:ae:0c:2e:40:57:83:2f:40:77:73:75:e1: ed:bb:71:c7:92:a6:9f:f2:24:5e:9f:72:32:7e:37: 38:e6:12:39:0f:7e:ca:60:3f:06:5c:18:bb:95:96: 0e:fe:cc:73:34:f7:ca:78:19:8d:86:7e:0f:27:1a: 3c:c2:fe:ae:12:e7:7a:b4:25:f3:c4:5e:9f:f3:57: 27:7e:bd:5b:27:17:9f:18:5c:63:b6:70:3f:ed:2e: ca:6a:7d:d8:d0:7f:a0:04:23:3a:f4:b2:59:b9:e6: f5:96:ce:2b:54:3f:29:69:49:ae:fd:69:d4:2a:9b: 69:ff:86:d6:81:70:cf:4c:0f:48:ed:5e:d9:e1:26: bf:42:02:80:c4:f2:75:13:3d:34:71:7a:b2:82:18: 2b:4a:92:3f:06:ee:a8:6b:35:98:04:fa:51:fc:1c: 06:83:a1:10:fb:b1:e3:2c:df:8f:4f:22:f5:87:9f: 63:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:BD:05:9F:EA:3D:6C:25:66:62:D4:9E:BC:4C:7F:D8:15:70:22:ED X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:cb:37:79:62:f6:72:e9:d9:97:b5:68:76:d9:ea:24:2c:f7: f2:40:72:b9:89:82:4c:1f:40:80:9b:30:5e:f7:1c:d8:a0:11: 6b:54:54:cd:31:76:11:fe:ce:d5:21:61:4a:df:c2:1c:c1:e0: e2:27:24:7b:c6:70:0d:62:7e:90:5e:12:70:c5:03:c4:20:12: 14:8a:31:ae:9b:41:d4:43:85:db:16:be:71:90:04:e2:f4:4d: 82:01:bf:c3:96:be:7c:18:8e:c2:c9:a2:18:02:e9:97:9c:59: 8e:86:f0:bf:69:33:bf:25:ab:f2:72:03:1f:c3:b5:c5:19:9d: 92:9f:85:c7:9f:07:75:c1:37:d4:2f:e3:b8:09:d1:59:5a:68: 5a:1e:5c:80:05:99:fb:2a:79:df:04:b1:58:9a:18:3d:d6:10: 42:90:39:80:2d:2b:36:ab:cd:08:18:00:88:7d:c9:27:c9:f0: 3d:28:1d:85:78:99:e5:43:3f:a2:21:ad:df:61:07:44:9e:3b: ff:84:3a:b0:fd:22:47:de:79:1d:2e:43:4e:e6:82:7d:b9:52: f7:ef:22:da:8e:14:ed:36:fc:f8:2c:62:41:d5:a4:54:09:a1: 07:bc:0d:4f:1c:41:d5:1f:b3:47:f8:4a:64:b3:dd:94:e7:14: 56:1b:c3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjUwNTMwMjAzMzU3WhcNMjUwNjA2MjAzMzU3WjAYMRYwFAYD VQQDEw02ODNhMTYzNS1mMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneSJY3vYeUEevukt6Pxd/mKb5GZmizdJudMp3DEAyofBP021DXSiJ4Hyr4D0 7IhHmFba6CmhcjuWuH/OZEItnRwQkheUbk8jRDKOSGSuDC5AV4MvQHdzdeHtu3HH kqaf8iRen3Iyfjc45hI5D37KYD8GXBi7lZYO/sxzNPfKeBmNhn4PJxo8wv6uEud6 tCXzxF6f81cnfr1bJxefGFxjtnA/7S7Kan3Y0H+gBCM69LJZueb1ls4rVD8paUmu /WnUKptp/4bWgXDPTA9I7V7Z4Sa/QgKAxPJ1Ez00cXqyghgrSpI/Bu6oazWYBPpR /BwGg6EQ+7HjLN+PTyL1h59jUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPC9BZ/q PWwlZmLUnrxMf9gVcCLtMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwOS83OUVBNTkxRUE3QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FO d3pBZ1JfdEJwOVRrZUFqdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDyzd5YvZy6dmXtWh22eokLPfyQHK5iYJMH0CAmzBe9xzYoBFrVFTN MXYR/s7VIWFK38IcweDiJyR7xnANYn6QXhJwxQPEIBIUijGum0HUQ4XbFr5xkATi 9E2CAb/Dlr58GI7CyaIYAumXnFmOhvC/aTO/JavycgMfw7XFGZ2Sn4XHnwd1wTfU L+O4CdFZWmhaHlyABZn7KnnfBLFYmhg91hBCkDmALSs2q80IGACIfcknyfA9KB2F eJnlQz+iIa3fYQdEnjv/hDqw/SJH3nkdLkNO5oJ9uVL37yLajhTtNvz4LGJB1aRU CaEHvA1PHEHVH7NH+Epks92U5xRWG8Nw -----END CERTIFICATE-----Generated at Sat May 31 17:07:41 2025 by rpki-client