$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft File: 0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json) Hash identifier: pSgkTSt6X9pQi+QHgrg1WEBraUn+mdCyWJbNVF3oVi8= Subject key identifier: 63:E8:31:1C:9E:2C:50:77:B6:7B:06:27:DE:6A:90:C6:52:84:3F:9E Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 0B0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft Manifest number: 0B01 Signing time: Fri 30 May 2025 19:31:25 +0000 Manifest this update: Fri 30 May 2025 19:31:24 +0000 Manifest next update: Fri 06 Jun 2025 19:31:24 +0000 Files and hashes: 1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: 8UsSu7SDCMQpXm85hXw4O4dETtBZ/RWKshokg/05GZI=) 2: A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa (hash: wBezilbHgFlLqA1qqUMQVDVzvkJDksyuC7XhtfdBEgk=) 3: 3FC1B85E431811EA84E68121C4F9AE02.roa (hash: kRXthgEAoGC/b23UrIEWTh9+gf3/yFfF1cVAtff2rTg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2830 (0xb0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: May 30 19:31:24 2025 GMT Not After : Jun 6 19:31:24 2025 GMT Subject: CN=683a078d-ccfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4a:cd:e7:98:97:d7:be:8c:c8:0c:95:87:d8: 8e:f7:05:2f:5f:52:6d:ca:a8:a9:d6:9c:8a:7b:50: 50:8d:1f:aa:53:dc:0d:85:c6:7d:b7:a3:e6:8d:53: 15:db:87:7b:4c:5a:61:52:04:7d:4d:71:21:a7:87: 76:07:9c:9a:f0:99:73:01:b4:11:bb:43:4f:ad:4e: 0c:e8:63:4e:40:3e:7a:09:5e:e8:6e:3b:27:91:90: 7b:8f:39:0b:56:06:48:4e:d3:c4:aa:34:da:3c:87: 9c:57:70:89:fe:f2:a8:6b:09:85:21:9e:22:d7:c3: 2a:34:db:c5:79:f5:d7:82:f8:60:e7:0a:bb:e1:ee: 9a:73:85:9a:b4:05:12:78:5f:53:2b:89:c9:38:99: 2e:4c:d9:02:b3:47:cb:84:a7:e2:d2:68:e9:be:b8: 97:b1:2d:97:91:4c:b1:a4:f8:97:59:dd:e2:da:59: ab:ff:66:f8:ca:df:c3:df:b3:26:ff:59:20:3d:b8: d6:1c:57:4e:f7:2d:47:c7:58:68:53:7f:2c:5b:8a: 1c:62:77:da:4a:fc:b0:2a:6b:37:44:7b:ee:4b:fd: d2:63:40:2a:57:0e:5e:13:c7:90:c6:8f:ff:b6:d1: 7f:34:7e:14:f8:93:4c:ba:fd:e2:3b:6a:bc:13:f0: fb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E8:31:1C:9E:2C:50:77:B6:7B:06:27:DE:6A:90:C6:52:84:3F:9E X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:87:47:f1:37:5f:82:0a:71:b7:3f:16:e0:3f:77:80:37:31: 51:96:51:81:a5:ec:69:4c:e1:5e:9f:f1:e5:06:ce:cb:9f:ab: 04:04:3a:25:b6:5b:15:e2:30:c5:4f:ee:55:60:10:84:cb:45: fd:07:79:4e:d9:ee:0f:a3:c8:a1:ec:93:b4:e4:4e:a9:5f:78: 49:eb:4a:0b:b5:49:f6:1d:e7:a2:91:72:61:25:d5:f1:ab:c0: ef:b8:be:da:f3:c7:73:14:e5:ce:3d:41:22:b2:f6:43:80:4a: e8:d5:40:ee:72:0c:d6:a0:d1:82:11:e1:78:72:07:2b:1b:5f: df:a5:b9:8f:f5:64:18:24:50:c9:9b:33:7a:8f:93:2f:71:61: 92:4c:d5:13:0b:40:21:20:de:ab:01:40:ca:67:54:b1:59:a6: ab:91:ab:76:f7:3e:cb:b5:c6:73:3f:28:24:72:69:c0:d5:68: 2f:cf:e2:9a:35:5a:37:01:71:6a:6a:3a:7c:69:50:62:12:6d: c4:5b:4f:f1:cb:cf:e9:4d:0e:fc:ef:51:2f:e9:1a:6d:d3:92: 29:dc:75:ff:11:70:03:52:dd:9d:c9:34:d9:18:51:9e:e3:a3: 77:ef:6d:c1:74:94:dd:16:26:fa:e4:2e:0d:7e:90:80:5d:9f: 4b:71:84:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjUwNTMwMTkzMTI0WhcNMjUwNjA2MTkzMTI0WjAYMRYwFAYD VQQDEw02ODNhMDc4ZC1jY2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqErN55iX176MyAyVh9iO9wUvX1Jtyqip1pyKe1BQjR+qU9wNhcZ9t6PmjVMV 24d7TFphUgR9TXEhp4d2B5ya8JlzAbQRu0NPrU4M6GNOQD56CV7objsnkZB7jzkL VgZITtPEqjTaPIecV3CJ/vKoawmFIZ4i18MqNNvFefXXgvhg5wq74e6ac4WatAUS eF9TK4nJOJkuTNkCs0fLhKfi0mjpvriXsS2XkUyxpPiXWd3i2lmr/2b4yt/D37Mm /1kgPbjWHFdO9y1Hx1hoU38sW4ocYnfaSvywKms3RHvuS/3SY0AqVw5eE8eQxo// ttF/NH4U+JNMuv3iO2q8E/D7DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPoMRye LFB3tnsGJ95qkMZShD+eMB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVEQy80NjEyRDUxRTQzMTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4 MjQxX1JNYnh6UlBuUEM4akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0h0fxN1+CCnG3PxbgP3eANzFRllGBpexpTOFen/HlBs7Ln6sEBDol tlsV4jDFT+5VYBCEy0X9B3lO2e4Po8ih7JO05E6pX3hJ60oLtUn2HeeikXJhJdXx q8DvuL7a88dzFOXOPUEisvZDgEro1UDucgzWoNGCEeF4cgcrG1/fpbmP9WQYJFDJ mzN6j5MvcWGSTNUTC0AhIN6rAUDKZ1SxWaarkat29z7LtcZzPygkcmnA1Wgvz+Ka NVo3AXFqajp8aVBiEm3EW0/xy8/pTQ7871Ev6Rpt05Ip3HX/EXADUt2dyTTZGFGe 46N3723BdJTdFib65C4NfpCAXZ9LcYQR -----END CERTIFICATE-----Generated at Sat May 31 17:46:28 2025 by rpki-client