$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft File: Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft (raw, json) Hash identifier: dJHy67o2t7Jz+Xc+P3D36ruVtAhLwbvVrbmFUitatN4= Subject key identifier: 93:29:86:1F:4C:A3:52:33:F1:84:5D:45:3B:98:11:BF:91:52:F6:B9 Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 0815 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft Manifest number: 133E Signing time: Fri 30 May 2025 19:20:40 +0000 Manifest this update: Fri 30 May 2025 19:20:39 +0000 Manifest next update: Fri 06 Jun 2025 19:20:39 +0000 Files and hashes: 1: Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl (hash: LCt3t/X5CaoWw7nm6/rMkfXrHxmqS7TLeXp7+VaSuEM=) 2: B65A4FACE18C11ECB1697F55C4F9AE02.roa (hash: 5zkE6RPNVvetKuzik8vsy3mHeLDd3Wj/ciaGchVH9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2069 (0x815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: May 30 19:20:39 2025 GMT Not After : Jun 6 19:20:39 2025 GMT Subject: CN=683a0507-96c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6c:07:a4:e3:8a:86:f2:f2:84:c1:5f:ba:68: fb:f8:e1:fe:5d:91:be:9c:08:c6:90:ab:41:36:28: c2:50:a1:69:b5:9b:6d:1d:4d:64:8b:1d:04:f2:22: 32:d8:92:76:b0:fd:bb:57:45:72:6c:3c:56:49:4f: 28:ef:e0:5e:6a:e5:51:be:dc:3f:a9:51:0c:86:bc: 2f:f1:28:ce:86:a8:86:39:25:cb:a3:23:a8:3c:0e: af:6d:1b:5a:bb:af:6d:99:a0:6a:53:51:47:bf:f8: 75:61:3f:0f:02:b4:fe:13:f2:0e:94:64:d0:34:1d: 1d:5a:7f:fb:b6:17:e4:3b:c7:ff:c5:5a:dd:b6:66: bb:bb:11:8b:b2:3b:7e:88:b3:60:b6:30:8d:0f:d0: ee:13:f5:7c:e0:ed:b9:e1:33:ae:9c:b0:72:8a:c9: 2b:cb:f3:9b:a8:4c:bb:04:7b:df:7f:42:c5:9e:0a: 42:03:bc:c5:ce:c4:85:db:4f:e0:7f:3e:8d:58:c0: 50:e4:c1:6f:aa:23:e9:1d:2a:d2:5f:ab:16:ae:06: 36:7e:79:e9:a5:c9:a3:e6:9a:9d:26:fe:38:dc:c2: 68:f2:0d:00:dc:c2:d9:97:46:b7:6f:b1:e4:5f:1e: 08:d7:b1:3a:17:ef:91:d2:fc:22:31:ea:8e:62:51: 67:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:29:86:1F:4C:A3:52:33:F1:84:5D:45:3B:98:11:BF:91:52:F6:B9 X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:82:88:7a:67:5a:45:66:cd:ed:65:de:b0:10:46:83:da:d0: f0:1a:af:7e:b9:9d:02:17:7a:aa:b0:a4:ed:50:8b:c4:ea:d7: d8:db:dc:48:a5:21:12:04:c6:5f:13:84:57:29:e9:2c:ab:07: 8b:43:0c:96:48:ae:98:fe:2d:6c:07:a2:f1:88:db:08:07:5f: bb:42:94:c4:a6:d4:41:23:69:f7:a2:10:26:4f:c1:f8:4a:34: d6:80:49:66:0f:bb:df:63:6e:15:6d:1a:c7:14:27:44:09:64: 9e:c9:7f:2e:82:bb:77:51:c5:bb:0b:0c:59:d8:96:e9:86:c2: 11:6a:51:1f:24:0e:9c:a7:00:df:8b:77:e0:5c:51:1d:14:4a: f4:bf:47:d4:a3:46:ba:35:af:7e:e4:96:d0:43:60:b7:68:5b: ac:47:e1:8d:7e:b9:99:1b:ee:1c:4e:c7:cb:da:4b:20:52:d6: 2f:55:07:31:2c:54:34:95:08:47:ed:31:a3:40:b5:6a:15:2f: 61:db:f2:b7:06:51:bd:19:42:70:14:af:db:1c:4a:c4:44:02: ad:5a:5b:15:b5:ae:22:c3:99:fd:41:48:56:e3:b9:db:98:af: 9e:2b:fd:97:83:4f:f8:1d:44:2d:ba:a7:71:a4:62:1b:4c:94: d3:b1:cc:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjUwNTMwMTkyMDM5WhcNMjUwNjA2MTkyMDM5WjAYMRYwFAYD VQQDEw02ODNhMDUwNy05NmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GwHpOOKhvLyhMFfumj7+OH+XZG+nAjGkKtBNijCUKFptZttHU1kix0E8iIy 2JJ2sP27V0VybDxWSU8o7+BeauVRvtw/qVEMhrwv8SjOhqiGOSXLoyOoPA6vbRta u69tmaBqU1FHv/h1YT8PArT+E/IOlGTQNB0dWn/7thfkO8f/xVrdtma7uxGLsjt+ iLNgtjCND9DuE/V84O254TOunLByiskry/ObqEy7BHvff0LFngpCA7zFzsSF20/g fz6NWMBQ5MFvqiPpHSrSX6sWrgY2fnnppcmj5pqdJv443MJo8g0A3MLZl0a3b7Hk Xx4I17E6F++R0vwiMeqOYlFnJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMphh9M o1Iz8YRdRTuYEb+RUva5MB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBBMS85MjU2MEE2QTM3NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNG REp5RWlHcXBUT2pQVU1KUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCgoh6Z1pFZs3tZd6wEEaD2tDwGq9+uZ0CF3qqsKTtUIvE6tfY29xI pSESBMZfE4RXKeksqweLQwyWSK6Y/i1sB6LxiNsIB1+7QpTEptRBI2n3ohAmT8H4 SjTWgElmD7vfY24VbRrHFCdECWSeyX8ugrt3UcW7CwxZ2JbphsIRalEfJA6cpwDf i3fgXFEdFEr0v0fUo0a6Na9+5JbQQ2C3aFusR+GNfrmZG+4cTsfL2ksgUtYvVQcx LFQ0lQhH7TGjQLVqFS9h2/K3BlG9GUJwFK/bHErERAKtWlsVta4iw5n9QUhW47nb mK+eK/2Xg0/4HUQtuqdxpGIbTJTTscxO -----END CERTIFICATE-----Generated at Sat May 31 17:44:11 2025 by rpki-client