$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft File: ifWWEQAwvcmzutds_QXDEkYXyVI.mft (raw, json) Hash identifier: DIWcbNOLDTfzZ2fppXFvQcstjaqY+J2KIgeCmm6YiyE= Subject key identifier: 77:40:32:21:EE:F4:3A:E7:EA:74:1E:DB:26:F7:E7:A9:66:8A:12:A7 Authority key identifier: 89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 Certificate issuer: /CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Certificate serial: 03FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft Manifest number: 03EE Signing time: Sat 31 May 2025 00:44:35 +0000 Manifest this update: Sat 31 May 2025 00:44:35 +0000 Manifest next update: Sat 07 Jun 2025 00:44:35 +0000 Files and hashes: 1: ifWWEQAwvcmzutds_QXDEkYXyVI.crl (hash: fqqDRjByP9AdFvV7w25eXfs2N2ITCD3y+btjrw/6qvI=) 2: 969AE080A14211EC8C49D660C4F9AE02.roa (hash: n7VFHzeUDeBuyUWNvkox2wNIAXMws0upgX8rIok/ab4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA62, serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Validity Not Before: May 31 00:44:35 2025 GMT Not After : Jun 7 00:44:35 2025 GMT Subject: CN=683a50f3-42d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:d2:1b:ab:83:e6:4d:e6:cc:92:27:97:8f: 9a:80:56:cc:f4:66:81:9e:c9:2f:3e:97:fc:2c:93: 5c:c9:00:eb:2e:cc:8f:80:38:92:a0:65:90:a1:df: 4d:2a:78:e1:b5:e9:68:81:57:ca:e0:21:c9:80:ba: 7c:c6:2b:e6:ef:55:2c:80:d8:d3:3e:9b:eb:5e:d7: 9d:23:56:fe:fd:c3:c3:b3:ea:c3:7f:82:24:b1:8b: f8:a5:51:ab:9a:79:14:95:58:61:4a:02:01:ce:be: ce:67:1c:b3:09:63:b8:40:78:9a:89:cc:94:c2:4f: 02:5c:90:c3:f4:2b:1f:19:53:04:4d:9e:6b:96:7c: b3:17:c0:00:e7:9d:87:ab:8d:1c:28:1a:e9:ee:0b: cc:aa:6d:db:8a:b4:39:04:80:c9:da:6f:12:43:37: c1:e8:48:f8:b5:ea:34:94:f0:3e:12:10:bf:9a:75: b4:7c:6e:6d:7c:3b:1f:be:2a:4d:18:bb:31:cc:2d: 54:61:70:14:af:72:22:f5:3a:2a:43:39:6b:54:7e: 43:4b:c7:07:ff:14:5f:14:70:ce:f5:07:a0:79:f7: 98:25:3d:3e:09:ed:12:dd:d7:af:ff:9c:1d:82:37: fd:b8:4d:bf:9b:54:0e:ba:2d:d3:36:00:c1:5c:c9: 2e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:40:32:21:EE:F4:3A:E7:EA:74:1E:DB:26:F7:E7:A9:66:8A:12:A7 X509v3 Authority Key Identifier: keyid:89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:22:22:69:ea:b8:98:c8:71:94:23:71:28:45:71:27:60:7a: 3a:f7:81:9a:2b:3f:11:ad:8c:59:f7:43:26:56:7e:8c:a5:fa: 33:f2:96:95:d4:36:0b:8a:e1:c0:55:d2:73:a9:54:18:5c:55: 34:5e:3d:6f:2d:3e:71:ba:aa:71:68:f6:8a:97:81:dd:ea:6d: 3a:2c:1d:04:fd:d6:cc:b6:7e:1d:43:4c:ec:82:50:9d:db:99: 60:50:38:4a:09:f2:44:91:33:f5:c5:af:d2:f4:17:78:17:25: 70:d4:39:97:08:d6:ab:29:02:ee:11:9c:03:53:21:ff:ff:ed: 13:18:c8:ef:ac:95:6c:62:c0:1f:2f:20:f1:54:bb:24:03:b7: dd:49:e7:99:9e:aa:c7:e3:26:ef:87:d6:18:84:6d:cf:bb:fa: b1:35:9a:87:f0:db:79:7e:11:9c:6c:49:40:a2:2d:f0:68:0b: b5:1b:25:39:00:2b:c0:f6:07:b4:88:ce:64:95:80:6c:b5:f1: 66:0b:1d:e9:26:cc:79:fa:3f:dd:44:38:07:28:b9:d0:74:56: 6e:1e:6c:f6:ec:ed:fb:3c:bf:1d:b5:d6:d1:ec:9b:c2:8e:ab: ca:2c:08:83:76:7d:c0:1d:10:da:4a:fa:cf:54:e9:0e:d7:d0: b3:e4:65:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBNjIxMTAvBgNVBAUTKDg5RjU5NjExMDAzMEJEQzlCM0JBRDc2Q0ZEMDVDMzEy NDYxN0M5NTIwHhcNMjUwNTMxMDA0NDM1WhcNMjUwNjA3MDA0NDM1WjAYMRYwFAYD VQQDEw02ODNhNTBmMy00MmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QHSG6uD5k3mzJInl4+agFbM9GaBnskvPpf8LJNcyQDrLsyPgDiSoGWQod9N KnjhtelogVfK4CHJgLp8xivm71UsgNjTPpvrXtedI1b+/cPDs+rDf4IksYv4pVGr mnkUlVhhSgIBzr7OZxyzCWO4QHiaicyUwk8CXJDD9CsfGVMETZ5rlnyzF8AA552H q40cKBrp7gvMqm3birQ5BIDJ2m8SQzfB6Ej4teo0lPA+EhC/mnW0fG5tfDsfvipN GLsxzC1UYXAUr3Ii9ToqQzlrVH5DS8cH/xRfFHDO9QegefeYJT0+Ce0S3dev/5wd gjf9uE2/m1QOui3TNgDBXMku4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdAMiHu 9Drn6nQe2yb356lmihKnMB8GA1UdIwQYMBaAFIn1lhEAML3Js7rXbP0FwxJGF8lS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE2Mi8xMTY4MjExQzgw NkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3ZjbXp1dGRzX1FYREVrWVh5 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmV1dFUUF3dmNtenV0ZHNfUVhERWtZWHlWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUE2Mi8xMTY4MjExQzgwNkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3Zj bXp1dGRzX1FYREVrWVh5VkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4IiJp6riYyHGUI3EoRXEnYHo694GaKz8RrYxZ90MmVn6Mpfoz8paV 1DYLiuHAVdJzqVQYXFU0Xj1vLT5xuqpxaPaKl4Hd6m06LB0E/dbMtn4dQ0zsglCd 25lgUDhKCfJEkTP1xa/S9Bd4FyVw1DmXCNarKQLuEZwDUyH//+0TGMjvrJVsYsAf LyDxVLskA7fdSeeZnqrH4ybvh9YYhG3Pu/qxNZqH8Nt5fhGcbElAoi3waAu1GyU5 ACvA9ge0iM5klYBstfFmCx3pJsx5+j/dRDgHKLnQdFZuHmz27O37PL8dtdbR7JvC jqvKLAiDdn3AHRDaSvrPVOkO19Cz5GUh -----END CERTIFICATE-----Generated at Sat May 31 16:27:46 2025 by rpki-client