$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft File: dQWoa19PqlBUPSSMbwhUxQWu3A8.mft (raw, json) Hash identifier: 1oWnqbzPpAOi5j2KtzO/w31PsuFIOPH/ltQFjGO/Xvc= Subject key identifier: A2:03:41:2F:14:3F:A8:1D:19:90:0D:55:C4:63:6F:5F:90:E5:2D:E1 Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft Manifest number: 0B27 Signing time: Fri 30 May 2025 19:26:09 +0000 Manifest this update: Fri 30 May 2025 19:26:08 +0000 Manifest next update: Fri 06 Jun 2025 19:26:08 +0000 Files and hashes: 1: dQWoa19PqlBUPSSMbwhUxQWu3A8.crl (hash: r+zpl6y0S5QYDe/+de5bgNI0sdzIA1o4a8w+JKFCW6I=) 2: 4B1D295E9EA211EB901A9532C4F9AE02.roa (hash: 6+05b8G0TEW8X4nNCgb84dRnZnbGJzRjWgQsJpxv0jY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6, serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: May 30 19:26:08 2025 GMT Not After : Jun 6 19:26:08 2025 GMT Subject: CN=683a0650-65ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:90:c4:e6:f2:68:4e:95:6d:48:67:d2:60:b8: 58:e0:9e:ba:ed:ba:72:56:8c:82:d2:52:23:3d:5e: 03:92:ec:e9:38:c0:e0:e4:7e:4e:d4:6f:85:10:31: 12:47:28:7f:9d:a5:88:de:83:ea:c8:46:f6:b6:ea: d2:70:05:96:20:78:1d:1f:79:65:af:1f:c6:ce:4d: 12:6e:7f:80:a3:dc:50:65:60:d4:77:df:7d:92:7d: 4b:b5:92:3a:78:6f:0e:cf:43:eb:c3:6d:47:0a:c2: 1d:7f:80:61:03:ce:62:62:12:06:65:2d:fa:fc:ac: 36:ae:6b:aa:b3:a8:b5:cb:1d:1a:a2:0b:42:c5:19: 33:f2:bc:98:83:09:b9:c6:47:1f:8b:a7:cb:f5:f1: 3f:f4:a3:86:a0:0a:f8:30:87:b4:e8:38:61:21:3d: cb:b8:b4:ad:d2:54:8b:5f:74:9e:6d:fc:aa:29:72: e4:e2:8e:db:a4:9c:93:46:1d:4e:26:dd:65:67:6d: 2d:16:ed:38:9e:af:bd:36:2b:30:7e:15:83:3b:b0: 56:dc:1a:f1:b8:60:3d:09:85:7e:7b:64:02:66:22: 04:99:26:8e:52:6b:62:1a:cc:da:4a:df:b4:ae:4c: b7:e5:66:5b:84:86:f6:e1:9f:3f:38:9a:b1:c1:0f: 4c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:03:41:2F:14:3F:A8:1D:19:90:0D:55:C4:63:6F:5F:90:E5:2D:E1 X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:59:8d:ce:4e:3c:18:3c:e1:46:d9:18:64:7f:d7:17:68:8f: 18:6c:e4:5d:15:bf:ba:f4:5e:86:f4:2d:f3:cd:ee:57:90:91: 41:96:f6:ce:8a:65:4c:21:ac:25:f2:4b:e6:14:c0:15:d4:30: 28:50:37:fa:6d:72:94:b2:05:63:fe:ce:cd:19:d7:db:2e:8a: 4b:b6:59:10:7c:4d:a7:43:0a:cb:ab:41:bc:47:9c:9a:df:68: 18:93:7c:14:7d:85:30:a4:1a:64:d1:39:91:14:17:8d:58:d0: 0e:66:7f:6e:6e:2f:76:2b:ee:23:56:fa:f5:0c:65:9a:e4:a3: e6:0b:23:03:bb:2f:71:5b:0b:56:c6:52:2f:e5:33:75:a6:ce: 73:8c:52:06:93:9b:d0:c2:9d:c5:24:30:b7:09:78:74:f0:63: cd:1f:23:83:ad:3b:8e:01:de:12:ee:db:19:d6:dd:55:d3:d5: ad:3b:5d:56:d6:a5:cb:e1:aa:e2:15:85:6a:17:57:01:33:ab: 75:53:43:2a:9d:63:5f:e4:69:b5:19:63:ca:d8:76:b5:8b:e0: 4e:f2:ec:91:ef:d9:0d:50:59:f0:e0:1f:a1:3e:27:c9:01:f0: 07:1e:44:88:34:51:9c:b8:48:3d:92:47:66:21:00:52:43:fc: 97:67:5b:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjUwNTMwMTkyNjA4WhcNMjUwNjA2MTkyNjA4WjAYMRYwFAYD VQQDEw02ODNhMDY1MC02NWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JDE5vJoTpVtSGfSYLhY4J667bpyVoyC0lIjPV4DkuzpOMDg5H5O1G+FEDES Ryh/naWI3oPqyEb2turScAWWIHgdH3llrx/Gzk0Sbn+Ao9xQZWDUd999kn1LtZI6 eG8Oz0Prw21HCsIdf4BhA85iYhIGZS36/Kw2rmuqs6i1yx0aogtCxRkz8ryYgwm5 xkcfi6fL9fE/9KOGoAr4MIe06DhhIT3LuLSt0lSLX3SebfyqKXLk4o7bpJyTRh1O Jt1lZ20tFu04nq+9NiswfhWDO7BW3BrxuGA9CYV+e2QCZiIEmSaOUmtiGszaSt+0 rky35WZbhIb24Z8/OJqxwQ9MbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIDQS8U P6gdGZANVcRjb1+Q5S3hMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBFNi9EOEFERDk0MjNGMzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFs QlVQU1NNYndoVXhRV3UzQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdWY3OTjwYPOFG2Rhkf9cXaI8YbORdFb+69F6G9C3zze5XkJFBlvbO imVMIawl8kvmFMAV1DAoUDf6bXKUsgVj/s7NGdfbLopLtlkQfE2nQwrLq0G8R5ya 32gYk3wUfYUwpBpk0TmRFBeNWNAOZn9ubi92K+4jVvr1DGWa5KPmCyMDuy9xWwtW xlIv5TN1ps5zjFIGk5vQwp3FJDC3CXh08GPNHyODrTuOAd4S7tsZ1t1V09WtO11W 1qXL4ariFYVqF1cBM6t1U0MqnWNf5Gm1GWPK2Ha1i+BO8uyR79kNUFnw4B+hPifJ AfAHHkSINFGcuEg9kkdmIQBSQ/yXZ1u+ -----END CERTIFICATE-----Generated at Sat May 31 15:06:09 2025 by rpki-client