$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft File: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft (raw, json) Hash identifier: 1milvmsk//alRTmN8tbTgPb4pRyRYCu+Nbkh2DHiYqM= Subject key identifier: C9:EB:F3:94:DD:0E:2C:46:82:64:98:5C:28:FF:3B:DB:84:A9:95:19 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft Manifest number: 06A7 Signing time: Mon 02 Jun 2025 22:24:33 +0000 Manifest this update: Mon 02 Jun 2025 22:24:32 +0000 Manifest next update: Mon 09 Jun 2025 22:24:32 +0000 Files and hashes: 1: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl (hash: 3mO0rvEHe27Fk7Aa2/AozUvommfhh5MT873rzBXYda8=) 2: DAE15A7248F911EC9F04C439C4F9AE02.roa (hash: CcS2RgyDh/Mt65cyyvz7PDgLBgmPqkXqjVn09wN+d7I=) 3: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (hash: sB2xN+NI3UCkCts4i5bUwtcZvKVfZaogReZtF2ClOtM=) 4: DCC969B048F911EC9F04C439C4F9AE02.roa (hash: Ey7sXMoZK5X/9B/g0P4vb+TT1dBxjAAcErSKVPBVZ8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE, serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Jun 2 22:24:32 2025 GMT Not After : Jun 9 22:24:32 2025 GMT Subject: CN=683e24a1-2c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f4:9f:38:48:27:7a:f3:55:37:a0:22:fa:6f: c9:3c:62:6e:73:76:f9:27:51:8c:a5:b5:ab:a7:ab: c8:7a:79:40:93:b1:ce:23:1a:97:3c:bb:00:78:32: 1c:3e:02:24:65:bf:bb:56:1f:93:82:fd:2e:a1:c0: 25:70:87:96:3f:cd:79:85:8a:b6:32:0c:9b:8d:4d: 1d:bc:1e:22:22:f9:c6:7a:b0:9a:7a:d2:58:92:2b: 24:d0:f3:f3:36:3b:fa:74:d6:b1:39:cf:12:4c:17: 7d:bc:21:b7:3d:cc:d3:56:21:ea:39:6e:f7:cb:65: 8f:21:43:9c:0d:01:b5:85:68:37:f3:6d:b1:11:49: 0a:fe:9e:98:2e:5d:4d:75:ce:c7:f0:a6:1d:85:8c: 81:29:26:89:52:38:24:f2:f5:4a:60:da:2d:44:fe: d9:9d:57:eb:74:cc:54:6e:e4:8c:7e:f9:e0:8b:cf: c6:fa:08:c0:d2:e6:2b:1b:40:aa:9d:67:12:fd:0d: c7:c5:50:f6:ab:d2:20:bd:0b:08:71:07:60:ac:d5: 60:88:4f:88:75:77:77:37:17:16:37:1a:09:09:fe: 3e:72:27:b4:b0:93:63:52:48:20:f0:d7:87:cd:b1: 77:07:61:05:1e:b0:27:62:a7:ec:0f:26:fe:10:46: 0a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EB:F3:94:DD:0E:2C:46:82:64:98:5C:28:FF:3B:DB:84:A9:95:19 X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:66:46:cc:48:80:be:ac:28:38:13:0e:46:d9:5e:b4:22:b8: 44:e4:21:a5:e1:b5:d6:0a:5f:d2:59:80:98:33:a9:42:f0:f0: d8:3e:c7:30:4b:e3:9b:31:f7:6d:35:8c:6a:b0:f4:cd:ed:32: 55:48:31:08:c9:1a:ce:bb:91:00:98:25:0e:31:05:0f:31:90: 5e:08:6c:5e:b0:aa:1a:ba:c2:35:99:5e:ba:73:6e:9b:24:7e: 8c:91:aa:57:77:91:04:d8:a2:db:89:b3:54:e6:7c:86:ab:5d: 50:12:e6:79:4a:8d:98:d0:22:2e:49:72:7a:c6:74:b8:72:92: d0:a6:14:7a:ef:47:df:e8:21:77:a5:32:9e:2e:3a:05:64:d1: 76:e0:d7:d7:d3:77:1a:21:b2:38:b3:bf:9c:4a:9d:49:d6:be: 18:dc:6c:ba:d5:d3:da:3d:64:61:52:b5:a0:84:cb:f6:35:34: 6f:ba:8a:17:05:95:cf:91:e0:e0:2f:8e:4b:70:15:35:d5:26: 6a:af:c8:ce:ad:dc:bc:c3:71:eb:e3:e1:e5:b9:12:e2:25:ad: 47:14:4f:ac:69:5f:b7:03:03:d8:6d:c3:a3:e5:15:88:6f:23: ad:89:2a:c8:59:66:06:ab:35:29:9d:18:4a:08:03:e5:58:bd: a8:cc:df:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjUwNjAyMjIyNDMyWhcNMjUwNjA5MjIyNDMyWjAYMRYwFAYD VQQDEw02ODNlMjRhMS0yYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvSfOEgnevNVN6Ai+m/JPGJuc3b5J1GMpbWrp6vIenlAk7HOIxqXPLsAeDIc PgIkZb+7Vh+Tgv0uocAlcIeWP815hYq2MgybjU0dvB4iIvnGerCaetJYkisk0PPz Njv6dNaxOc8STBd9vCG3PczTViHqOW73y2WPIUOcDQG1hWg3822xEUkK/p6YLl1N dc7H8KYdhYyBKSaJUjgk8vVKYNotRP7ZnVfrdMxUbuSMfvngi8/G+gjA0uYrG0Cq nWcS/Q3HxVD2q9IgvQsIcQdgrNVgiE+IdXd3NxcWNxoJCf4+cie0sJNjUkgg8NeH zbF3B2EFHrAnYqfsDyb+EEYK3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnr85Td DixGgmSYXCj/O9uEqZUZMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjVGRS8zMkMzMDAyODZBOUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZS Vko5bTctZ1JldUZRQUtYZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIZkbMSIC+rCg4Ew5G2V60IrhE5CGl4bXWCl/SWYCYM6lC8PDYPscw S+ObMfdtNYxqsPTN7TJVSDEIyRrOu5EAmCUOMQUPMZBeCGxesKoausI1mV66c26b JH6MkapXd5EE2KLbibNU5nyGq11QEuZ5So2Y0CIuSXJ6xnS4cpLQphR670ff6CF3 pTKeLjoFZNF24NfX03caIbI4s7+cSp1J1r4Y3Gy61dPaPWRhUrWghMv2NTRvuooX BZXPkeDgL45LcBU11SZqr8jOrdy8w3Hr4+HluRLiJa1HFE+saV+3AwPYbcOj5RWI byOtiSrIWWYGqzUpnRhKCAPlWL2ozN9h -----END CERTIFICATE-----Generated at Wed Jun 4 12:30:59 2025 by rpki-client