$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json) Hash identifier: w2fo+WIYGk9TnKjkNU/n5qamJyPjNJWh7VljAV5PZ+c= Subject key identifier: 35:17:66:9D:FF:5F:76:11:20:37:F5:BB:F7:B4:FF:FE:FE:C2:DA:5F Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft Manifest number: 5B Signing time: Sun 01 Jun 2025 06:52:49 +0000 Manifest this update: Sun 01 Jun 2025 06:52:48 +0000 Manifest next update: Sun 08 Jun 2025 06:52:48 +0000 Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: LM7w/f1tA8AjZ1gzTuRdDUkAE01LjUBEaxaQWIlyHWI=) 2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: 3X4IEvNoArraBKAuq5CyT+VKjti9XVZccQ9OUFJ9p8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Validity Not Before: Jun 1 06:52:48 2025 GMT Not After : Jun 8 06:52:48 2025 GMT Subject: CN=683bf8c1-de38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:22:08:d9:39:98:df:51:18:4a:f0:6f:04:68: f8:fc:00:fa:fd:71:86:e0:43:87:0d:f1:f6:64:2a: d2:02:ee:ca:03:fb:15:85:e9:95:31:8d:f7:79:4f: 93:f8:ec:80:72:bf:82:02:ec:7c:f8:bb:de:3b:2b: a8:84:22:f5:d4:d4:e5:f9:52:47:d4:82:79:44:ab: 5a:8d:6b:9b:67:3b:ea:34:ef:ec:00:b3:e3:c3:dd: 6c:1e:a0:54:02:cb:47:7c:fc:9b:c4:e0:da:d9:4c: f4:f4:d9:f6:ab:40:1e:4e:e0:b1:e4:84:b0:2e:e4: 08:fc:f9:7c:f4:f8:40:80:ce:27:bc:3e:50:3d:79: 4e:69:7b:5a:c7:92:22:52:46:3d:d9:ea:c6:d0:c1: d2:9a:a6:32:96:19:65:b8:0d:60:18:2a:0f:8f:7e: bc:fd:ea:6c:28:80:59:1f:57:1f:f2:66:1f:69:5a: cd:3b:d4:04:b9:4e:ba:b9:4c:b8:9f:bd:75:51:5d: 82:28:f6:13:09:45:d9:0e:f6:6b:f6:9f:55:86:a0: bd:6a:74:00:05:3a:35:d7:0b:7d:4d:20:6d:13:54: a5:41:89:de:3d:f3:b6:c9:13:5d:78:ad:c9:4d:57: f5:6d:b6:aa:6c:eb:dd:46:0d:4b:9c:91:e4:cc:92: 4b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:17:66:9D:FF:5F:76:11:20:37:F5:BB:F7:B4:FF:FE:FE:C2:DA:5F X509v3 Authority Key Identifier: keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:da:79:2b:a6:fe:22:d9:30:10:6b:0b:eb:c5:62:ff:ae:8d: af:31:ee:39:a5:14:9b:67:21:a8:20:90:91:ca:5c:da:07:c2: 4d:a8:4e:1d:97:8c:d3:1a:9f:c7:29:f8:c1:e3:94:2b:24:df: 21:31:0b:f6:63:e5:12:e7:bc:d7:70:83:d7:ab:98:62:40:35: 1e:2b:78:c4:5d:71:20:52:cb:bc:6f:e0:c4:e7:2e:b2:0f:39: 65:5d:d0:39:52:bb:74:8b:f5:a0:45:47:b1:77:3c:ae:92:c9: fd:41:23:4c:fe:3f:94:e3:50:2c:02:94:eb:10:18:92:29:24: 6e:2b:df:1d:46:c9:3a:af:eb:f6:6a:95:ee:0d:04:75:93:77: 6d:fc:1e:ea:ad:0b:59:74:8d:dd:8a:11:93:75:4e:55:7f:37: e4:c0:ca:dd:2e:66:b6:10:03:80:ef:7c:66:da:61:c4:76:4c: 9d:c8:37:c7:b1:a6:e4:dc:47:62:1c:25:02:26:f0:75:04:66: c2:68:2f:97:51:6c:01:03:d7:82:e3:fa:81:51:93:93:f7:c8: 86:3c:45:d9:51:80:d8:97:3a:5a:39:4b:0d:f3:bb:ad:d4:5c: 49:bf:aa:d2:29:30:82:cf:1e:12:ab:84:93:9f:72:80:28:67: fb:93:1d:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoNDAyRDFEMEJEOTFGNDM4MDJDN0EwRDcwNzM2MTg4QkVC QTBBMDgxMjAeFw0yNTA2MDEwNjUyNDhaFw0yNTA2MDgwNjUyNDhaMBgxFjAUBgNV BAMTDTY4M2JmOGMxLWRlMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWIgjZOZjfURhK8G8EaPj8APr9cYbgQ4cN8fZkKtIC7soD+xWF6ZUxjfd5T5P4 7IByv4IC7Hz4u947K6iEIvXU1OX5UkfUgnlEq1qNa5tnO+o07+wAs+PD3WweoFQC y0d8/JvE4NrZTPT02farQB5O4LHkhLAu5Aj8+Xz0+ECAzie8PlA9eU5pe1rHkiJS Rj3Z6sbQwdKapjKWGWW4DWAYKg+Pfrz96mwogFkfVx/yZh9pWs071AS5Trq5TLif vXVRXYIo9hMJRdkO9mv2n1WGoL1qdAAFOjXXC31NIG0TVKVBid4987bJE114rclN V/Vttqps691GDUuckeTMkktRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNRdmnf9f dhEgN/W797T//v7C2l8wHwYDVR0jBBgwFoAUQC0dC9kfQ4Aseg1wc2GIvroKCBIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzFDOTQ2QUYyQjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL1FDMGRDOWtmUTRBc2VnMXdjMkdJdnJvS0NC SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUMwZEM5a2ZRNEFzZWcxd2MyR0l2cm9LQ0JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzFDOTQ2QUYyQjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL1FDMGRDOWtmUTRB c2VnMXdjMkdJdnJvS0NCSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADraeSum/iLZMBBrC+vFYv+uja8x7jmlFJtnIaggkJHKXNoHwk2oTh2X jNMan8cp+MHjlCsk3yExC/Zj5RLnvNdwg9ermGJANR4reMRdcSBSy7xv4MTnLrIP OWVd0DlSu3SL9aBFR7F3PK6Syf1BI0z+P5TjUCwClOsQGJIpJG4r3x1GyTqv6/Zq le4NBHWTd238HuqtC1l0jd2KEZN1TlV/N+TAyt0uZrYQA4DvfGbaYcR2TJ3IN8ex puTcR2IcJQIm8HUEZsJoL5dRbAED14Lj+oFRk5P3yIY8RdlRgNiXOlo5Sw3zu63U XEm/qtIpMILPHhKrhJOfcoAoZ/uTHRs= -----END CERTIFICATE-----Generated at Mon Jun 2 19:24:50 2025 by rpki-client