$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: r+uNC6LYH8vL8afa2ScZ7JayQHxTopS8QCj7HYq2QXE= Subject key identifier: EF:B2:52:51:82:5F:66:63:CE:6C:36:82:86:19:F8:CF:5C:45:0E:24 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 349B Signing time: Mon 30 Jun 2025 15:21:34 +0000 Manifest this update: Mon 30 Jun 2025 15:21:33 +0000 Manifest next update: Mon 07 Jul 2025 15:21:33 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: hRtkX3iuUINw2EmUMUjx+d2tB47DKBfiGwjOGZx88zc=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13474 (0x34a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Jun 30 15:21:33 2025 GMT Not After : Jul 7 15:21:33 2025 GMT Subject: CN=6862ab7e-b6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b4:2a:91:71:e2:bc:92:2a:cf:29:20:03:be: 74:bf:13:82:65:ec:74:a2:09:2e:a5:3a:bb:9a:54: 54:2e:d5:34:7d:40:4f:bb:31:3f:ef:01:52:18:31: 0e:64:d2:f7:d5:f1:6c:b2:d7:85:b7:6a:71:26:f1: 66:9b:a0:18:39:6b:8e:4d:11:75:50:ca:b6:d4:60: af:63:98:23:5c:e6:f7:a0:93:16:62:04:51:be:dc: 48:48:b5:c4:87:7c:4a:f6:53:25:76:3e:66:1d:8a: ac:41:8e:93:e0:10:53:fb:13:fb:5c:f2:9d:05:fe: 6d:a1:c5:17:b6:d0:83:df:03:f3:19:3b:c5:e4:f8: 52:fc:9c:3f:7f:38:e3:92:3e:d6:25:7d:62:2f:be: d6:2b:0b:5d:d9:6f:7e:27:38:6b:c0:ab:03:75:b6: ab:3c:b0:a5:5b:db:79:33:80:16:0b:28:93:1f:1f: a1:31:0d:28:1e:65:af:08:6c:64:e3:e4:41:cd:5c: be:9f:f7:47:87:37:c5:c6:63:37:86:ce:bd:44:b3: 12:46:39:1e:7f:56:4d:10:3e:7a:45:2d:32:99:11: 75:00:77:a3:5d:c7:d4:ca:7a:12:7a:9c:e0:c7:17: 8f:a8:cd:2b:94:92:03:04:b7:fc:72:01:01:73:12: 25:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B2:52:51:82:5F:66:63:CE:6C:36:82:86:19:F8:CF:5C:45:0E:24 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:f3:10:f6:d0:bc:06:f7:77:aa:48:4f:a2:19:c7:95:f0:51: 1a:44:27:c9:e2:ea:f6:2c:00:f0:52:4c:81:8e:85:db:9a:59: 6e:a0:c9:d9:a6:ff:26:46:26:68:1b:2e:94:cc:41:2c:10:1e: 3f:bf:f1:57:0a:ad:83:d0:d2:34:5f:a1:c9:15:fd:60:bc:46: 6c:11:73:aa:fe:1f:35:57:db:4c:34:53:e0:05:a4:22:99:78: 3d:06:c5:56:21:ab:44:9b:01:bb:fa:a9:7d:e4:e7:ad:6b:3c: 2c:99:c8:93:3d:70:94:e6:91:2d:80:34:53:37:d5:88:45:66: 35:30:b6:4d:7b:af:0a:f8:59:7f:36:4e:a9:87:39:5a:38:0c: c6:84:92:54:34:ae:59:5b:24:7a:c6:9e:39:14:b6:06:87:2f: cc:fc:72:2c:cb:29:0f:ff:58:fa:43:30:ea:1e:b0:eb:03:5d: 83:a2:07:37:55:de:45:5c:46:cf:92:25:ad:e9:73:0a:e5:1a: b0:2d:57:c8:eb:d6:af:f1:0a:aa:5d:15:8c:d6:0e:81:ee:38: 4b:4f:45:07:f5:86:f4:13:4f:48:34:5b:0f:92:f6:34:79:b9: 8c:02:4f:be:f7:fb:01:7b:02:37:44:42:b2:ff:e0:6c:1c:e8: 43:2c:cd:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUwNjMwMTUyMTMzWhcNMjUwNzA3MTUyMTMzWjAYMRYwFAYD VQQDEw02ODYyYWI3ZS1iNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bQqkXHivJIqzykgA750vxOCZex0ogkupTq7mlRULtU0fUBPuzE/7wFSGDEO ZNL31fFssteFt2pxJvFmm6AYOWuOTRF1UMq21GCvY5gjXOb3oJMWYgRRvtxISLXE h3xK9lMldj5mHYqsQY6T4BBT+xP7XPKdBf5tocUXttCD3wPzGTvF5PhS/Jw/fzjj kj7WJX1iL77WKwtd2W9+JzhrwKsDdbarPLClW9t5M4AWCyiTHx+hMQ0oHmWvCGxk 4+RBzVy+n/dHhzfFxmM3hs69RLMSRjkef1ZNED56RS0ymRF1AHejXcfUynoSepzg xxePqM0rlJIDBLf8cgEBcxIl4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+yUlGC X2Zjzmw2goYZ+M9cRQ4kMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh8xD20LwG93eqSE+iGceV8FEaRCfJ4ur2LADwUkyBjoXbmlluoMnZ pv8mRiZoGy6UzEEsEB4/v/FXCq2D0NI0X6HJFf1gvEZsEXOq/h81V9tMNFPgBaQi mXg9BsVWIatEmwG7+ql95OetazwsmciTPXCU5pEtgDRTN9WIRWY1MLZNe68K+Fl/ Nk6phzlaOAzGhJJUNK5ZWyR6xp45FLYGhy/M/HIsyykP/1j6QzDqHrDrA12Dogc3 Vd5FXEbPkiWt6XMK5RqwLVfI69av8QqqXRWM1g6B7jhLT0UH9Yb0E09INFsPkvY0 ebmMAk++9/sBewI3REKy/+BsHOhDLM0P -----END CERTIFICATE-----Generated at Wed Jul 2 05:06:27 2025 by rpki-client