$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: TCIBxQinnnMVuX6IEU7RXFPhIUNUrYDBzgLj4MCu38c= Subject key identifier: C1:73:9D:7B:C6:77:DA:ED:C5:10:04:37:2A:E4:E8:83:20:0D:D0:90 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: FE Signing time: Sat 31 May 2025 04:50:43 +0000 Manifest this update: Sat 31 May 2025 04:50:43 +0000 Manifest next update: Sat 07 Jun 2025 04:50:43 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: HhFnSBZppm6sUzGcIOcS4IlW2VjAxZ/hzWj6dZ+vnmA=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: 3GOqN8PMZ/cxFE5yg/l01rtznIl/3wsy8K8LEuE8lEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51, serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: May 31 04:50:43 2025 GMT Not After : Jun 7 04:50:43 2025 GMT Subject: CN=683a8aa3-1bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e6:98:47:a4:54:40:3a:6f:88:dd:df:1b:1b: 7c:87:58:42:c9:58:a8:1b:3b:f4:76:e2:ae:43:02: 33:a6:aa:64:05:1e:f3:ec:ac:f7:ee:34:89:27:ab: 32:7b:60:6c:76:b6:07:99:54:67:ef:f9:9c:2d:ca: 6d:98:b4:6c:d6:ae:e0:af:2f:05:ba:cd:b4:ac:e6: 35:20:ae:5c:83:fa:34:fa:94:4c:0f:0c:2a:d4:91: 5a:41:bf:bc:26:be:59:09:99:38:8b:64:32:32:1f: 50:1b:e0:16:d8:38:b8:81:ad:ad:ed:aa:76:d0:3e: 34:1a:fe:42:98:d0:c6:1c:3b:ab:3a:38:80:67:8a: 92:ec:b7:cf:c3:1c:89:66:34:2d:00:91:e8:e6:df: 5d:b3:d8:56:75:50:ed:dc:c1:97:0e:ee:75:31:90: 57:a9:8a:b3:c9:d5:1b:b7:58:4e:27:b0:b8:1f:62: 61:c1:6d:23:d6:70:c0:4f:32:d0:f4:d4:68:2b:c3: 19:83:43:f9:07:fb:c3:82:b8:42:44:e6:8c:90:86: e9:68:e6:f7:cc:90:51:00:2b:5d:9d:13:8c:d0:f5: 80:e3:0a:84:37:43:43:60:c0:ce:fc:8b:4c:4d:e0: 37:be:3d:a8:14:92:d7:80:0c:94:42:ff:93:88:8d: e0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:73:9D:7B:C6:77:DA:ED:C5:10:04:37:2A:E4:E8:83:20:0D:D0:90 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ad:da:38:fe:49:0b:8c:b1:c2:64:b3:a5:45:53:40:77:8e: 5b:73:f7:a9:89:89:45:41:aa:de:80:a5:57:e1:d5:c1:8d:e3: f5:ed:c9:40:7b:45:eb:40:c7:4d:56:9f:b6:86:7f:e8:61:bc: 36:c4:f4:7c:1e:5e:85:f5:a0:ef:fb:bc:9a:5d:73:54:e5:3c: 52:61:94:fa:1e:5f:05:ed:90:c2:d7:c3:5d:55:7a:df:7a:a3: 7d:0e:c2:40:7f:4c:f2:8e:a0:85:f9:e9:11:15:82:6e:b9:11: 7c:a6:80:2f:e0:8e:02:72:d2:2b:56:ef:4e:9f:0b:d2:04:a5: 4e:16:23:fc:9f:fc:f4:99:4d:3d:ec:05:28:d4:f8:be:41:43: bd:f7:96:4b:b4:d2:0a:06:4b:6e:4f:da:8d:66:48:d3:05:87: ee:b9:4d:39:94:05:d4:78:f0:85:2f:18:8c:e7:a1:17:e9:bd: 91:62:4a:ec:8c:bd:2b:49:45:31:7e:31:33:60:63:71:22:d2: 76:3f:79:5d:38:15:26:f7:03:90:a1:67:a3:6d:a7:63:b8:ef: 04:0f:c5:4c:ba:b4:04:6f:74:72:41:c7:b6:6b:7f:66:93:d7: cf:b4:80:5d:7c:bb:32:49:54:a4:87:d9:ba:ae:b0:48:40:6c: 3a:e1:96:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwNTMxMDQ1MDQzWhcNMjUwNjA3MDQ1MDQzWjAYMRYwFAYD VQQDEw02ODNhOGFhMy0xYmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9eaYR6RUQDpviN3fGxt8h1hCyVioGzv0duKuQwIzpqpkBR7z7Kz37jSJJ6sy e2BsdrYHmVRn7/mcLcptmLRs1q7gry8Fus20rOY1IK5cg/o0+pRMDwwq1JFaQb+8 Jr5ZCZk4i2QyMh9QG+AW2Di4ga2t7ap20D40Gv5CmNDGHDurOjiAZ4qS7LfPwxyJ ZjQtAJHo5t9ds9hWdVDt3MGXDu51MZBXqYqzydUbt1hOJ7C4H2JhwW0j1nDATzLQ 9NRoK8MZg0P5B/vDgrhCROaMkIbpaOb3zJBRACtdnROM0PWA4wqEN0NDYMDO/ItM TeA3vj2oFJLXgAyUQv+TiI3gsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFznXvG d9rtxRAENyrk6IMgDdCQMB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChrdo4/kkLjLHCZLOlRVNAd45bc/epiYlFQaregKVX4dXBjeP17clA e0XrQMdNVp+2hn/oYbw2xPR8Hl6F9aDv+7yaXXNU5TxSYZT6Hl8F7ZDC18NdVXrf eqN9DsJAf0zyjqCF+ekRFYJuuRF8poAv4I4CctIrVu9OnwvSBKVOFiP8n/z0mU09 7AUo1Pi+QUO995ZLtNIKBktuT9qNZkjTBYfuuU05lAXUePCFLxiM56EX6b2RYkrs jL0rSUUxfjEzYGNxItJ2P3ldOBUm9wOQoWejbadjuO8ED8VMurQEb3RyQce2a39m k9fPtIBdfLsySVSkh9m6rrBIQGw64Za/ -----END CERTIFICATE-----Generated at Sat May 31 17:36:06 2025 by rpki-client