$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: QePyXXDTGH5ajg2wCn8WxbrwEIdFRghn2ggCwA5xzLk= Subject key identifier: 2E:44:CB:CB:20:A2:0F:4A:F1:D6:95:57:12:96:A9:EA:62:69:B2:B7 Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 01D6 Signing time: Sat 31 May 2025 02:33:22 +0000 Manifest this update: Sat 31 May 2025 02:33:22 +0000 Manifest next update: Sat 07 Jun 2025 02:33:22 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: +8ycVJxHtL9leUMOcDPV1hbOPleCd+ge8FBp6IxbNno=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: aXVsQ3eTDOFY8R9G8hcsnCxP/cyR26ThIRn0dDawEqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F, serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: May 31 02:33:22 2025 GMT Not After : Jun 7 02:33:22 2025 GMT Subject: CN=683a6a72-7499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:41:b1:00:53:82:b9:df:09:ca:2f:c4:a6:ac: 22:be:44:54:4f:66:af:b6:3f:5a:54:23:f0:b1:e6: ed:7a:43:7f:df:5e:82:35:10:c5:e0:46:07:85:e1: b2:64:d7:d8:ad:fe:31:f5:55:42:1b:67:09:23:46: 10:47:c0:62:f1:f1:e5:d6:63:33:75:74:82:5d:5a: 50:ad:d2:39:86:87:17:9f:e7:e0:14:d3:c4:8a:be: 48:cc:d6:77:04:e2:24:02:6b:ea:55:f8:d3:c0:ed: a7:17:7b:7c:3b:4a:da:47:27:bb:63:43:4a:f5:56: 2a:5d:88:f4:99:d3:9c:51:03:81:e1:88:ec:91:de: 13:46:d5:4c:31:a3:72:92:53:93:5e:fd:f7:3c:3b: 2e:4b:03:78:93:9d:b7:94:6c:cf:a6:34:f0:64:20: 66:80:84:17:8e:a8:88:d4:18:88:3a:ec:d2:11:4c: dc:cb:52:aa:bd:55:40:53:2e:72:74:00:dd:05:bd: 7d:ba:0e:f6:8a:b9:51:d6:fd:b5:f0:be:d6:89:2d: c7:05:22:85:01:20:46:25:61:f6:64:8d:a0:ad:58: cf:8d:5a:01:2c:c9:58:bb:50:f9:c3:4b:e6:2c:7f: af:de:4e:4b:21:ed:8b:e5:ce:30:c0:ee:ab:b1:73: d9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:44:CB:CB:20:A2:0F:4A:F1:D6:95:57:12:96:A9:EA:62:69:B2:B7 X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:3d:3f:fc:ff:6a:00:40:6e:73:5f:ec:c5:8c:31:8f:46:1e: 04:c0:3f:a9:24:16:0e:25:31:cf:1a:40:db:ee:04:41:e6:13: 84:b0:43:63:42:04:99:22:4a:88:ca:97:ef:ff:fe:5f:3e:db: 40:16:de:97:21:04:ea:f4:94:f8:a1:5e:26:ec:30:63:bd:64: 5b:f0:e5:4a:1f:cc:cd:9f:fa:29:5b:03:cc:b7:9c:87:93:a2: a1:0f:72:4a:c1:f5:75:ef:75:d2:5c:6a:56:56:bc:94:9a:75: e1:59:8d:ae:86:41:e8:79:b5:37:f8:0f:7d:49:16:bf:87:9a: 4a:ed:82:fb:5f:6f:be:b9:77:f0:eb:1f:37:a3:8c:23:88:96: d2:b3:c3:04:36:41:ff:b5:b9:2c:e8:31:99:e1:5e:a6:5d:83: e1:c4:e8:07:a0:29:a8:91:f1:09:0e:09:4f:5a:71:7c:0d:c1: b8:6e:c6:56:2b:05:93:46:6b:3b:1b:83:fd:ce:6c:d7:92:13: dc:3e:55:95:e6:d9:a0:b8:7b:18:57:1f:7b:60:c0:a3:fc:ee: 1e:7b:cc:bf:55:98:ec:9c:3b:e9:bd:92:2f:23:10:7f:a1:4d: 77:2a:66:c0:e7:a6:53:29:89:a0:b9:bf:c5:b8:54:34:c8:e9: 34:f1:c2:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjUwNTMxMDIzMzIyWhcNMjUwNjA3MDIzMzIyWjAYMRYwFAYD VQQDEw02ODNhNmE3Mi03NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0GxAFOCud8Jyi/EpqwivkRUT2avtj9aVCPwsebtekN/316CNRDF4EYHheGy ZNfYrf4x9VVCG2cJI0YQR8Bi8fHl1mMzdXSCXVpQrdI5hocXn+fgFNPEir5IzNZ3 BOIkAmvqVfjTwO2nF3t8O0raRye7Y0NK9VYqXYj0mdOcUQOB4Yjskd4TRtVMMaNy klOTXv33PDsuSwN4k523lGzPpjTwZCBmgIQXjqiI1BiIOuzSEUzcy1KqvVVAUy5y dADdBb19ug72irlR1v218L7WiS3HBSKFASBGJWH2ZI2grVjPjVoBLMlYu1D5w0vm LH+v3k5LIe2L5c4wwO6rsXPZ6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5Ey8sg og9K8daVVxKWqepiabK3MB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLPT/8/2oAQG5zX+zFjDGPRh4EwD+pJBYOJTHPGkDb7gRB5hOEsENj QgSZIkqIypfv//5fPttAFt6XIQTq9JT4oV4m7DBjvWRb8OVKH8zNn/opWwPMt5yH k6KhD3JKwfV173XSXGpWVryUmnXhWY2uhkHoebU3+A99SRa/h5pK7YL7X2++uXfw 6x83o4wjiJbSs8MENkH/tbks6DGZ4V6mXYPhxOgHoCmokfEJDglPWnF8DcG4bsZW KwWTRms7G4P9zmzXkhPcPlWV5tmguHsYVx97YMCj/O4ee8y/VZjsnDvpvZIvIxB/ oU13KmbA56ZTKYmgub/FuFQ0yOk08cI1 -----END CERTIFICATE-----Generated at Sat May 31 17:37:51 2025 by rpki-client