$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft File: 7qiugNcT5rItsOxgkVfwxZpS_X8.mft (raw, json) Hash identifier: 6eFKTgw4Ld5ed64kG3tDAJrsEI1dQA1xbV8iSXNHKUI= Subject key identifier: 9C:0C:C1:BC:37:98:27:7F:65:7D:77:D5:65:59:DA:CB:5D:58:8F:07 Authority key identifier: EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F Certificate issuer: /CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Certificate serial: 34F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft Manifest number: 34B6 Signing time: Sat 31 May 2025 14:50:00 +0000 Manifest this update: Sat 31 May 2025 14:50:00 +0000 Manifest next update: Sat 07 Jun 2025 14:50:00 +0000 Files and hashes: 1: 7qiugNcT5rItsOxgkVfwxZpS_X8.crl (hash: 0hAx1iDXvinNs/8SnyEVLpOAoBTnD8Fl8SZgQRMRkO4=) 2: F026CE74927411EDB020A481C4F9AE02.roa (hash: D3nZr89FC3B/hYB2ABfVDlFpa9Kx2bcJix0bhxq7u3Y=) 3: 6C0C85D0A43011ECA230771BC4F9AE02.roa (hash: 7ZkKrwIf5dxU1AyQHdEtx/cZNmt12RU0pVuLQbnEwD8=) 4: 2A73A3403A0711F081048A4EC4F9AE02.roa (hash: Sb9dKZUra617yJWr0DgG7F51M0rwa4KtVZlgSlPgYpw=) 5: 2ACF9E0C855C11EB8C076013C4F9AE02.roa (hash: /XOWg1DL5Ca4WTABh7nowkgqWfXA9qIHVM17A2ry+Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13554 (0x34f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6B7, serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Validity Not Before: May 31 14:50:00 2025 GMT Not After : Jun 7 14:50:00 2025 GMT Subject: CN=683b1718-67db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6d:fd:f3:ca:cd:46:3a:0d:bc:92:6f:89:a9: 98:63:d2:2e:88:5c:13:6d:7c:e0:b4:ed:e2:90:2f: 9f:fc:91:b9:7b:69:0f:63:09:3b:04:4f:30:22:71: 03:c2:fc:b0:cf:88:e9:89:62:c5:c0:67:a2:45:0b: a4:53:2a:e3:dc:79:7f:46:91:94:72:65:cc:4e:78: 97:5d:32:7e:46:69:a8:d4:a5:d0:0b:13:04:27:05: bc:b1:dd:e6:54:57:32:e4:97:c4:81:0b:92:b0:ec: 47:ad:46:7c:bb:eb:f6:72:73:a3:b4:e6:81:37:97: d3:9d:cf:ea:c7:59:60:86:3c:5c:15:53:fe:14:1e: af:51:06:7b:09:9a:c3:63:cf:e5:12:f0:3e:5f:f6: 6b:61:e1:95:f7:4e:24:b2:ad:cd:d6:cb:a0:df:d2: ac:b4:a6:7e:54:b5:89:b1:e4:2d:70:e7:79:cb:fa: ce:63:77:95:79:5c:e0:b2:f3:57:02:a9:2b:23:a3: eb:78:c9:88:0e:fa:04:6a:68:49:ea:4a:15:0e:a6: 73:9c:6c:44:66:fe:f0:18:06:5b:5e:c4:86:d5:e3: 6a:1e:90:cb:16:6a:da:22:4b:d4:f5:9e:01:67:67: 37:1e:be:c9:8d:4b:73:16:e9:d8:2a:40:70:03:b3: fa:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:0C:C1:BC:37:98:27:7F:65:7D:77:D5:65:59:DA:CB:5D:58:8F:07 X509v3 Authority Key Identifier: keyid:EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:3c:d1:a9:b8:69:99:b4:d2:53:ba:24:ac:62:c8:e2:4c:c2: 8b:32:a9:63:1c:ed:ed:12:bc:11:10:89:f3:a8:ef:e7:e6:8f: ef:99:09:e5:8f:9e:27:09:25:89:c5:74:a9:df:75:40:eb:e2: 75:45:ad:e3:9d:0a:75:4c:11:87:11:e0:30:4b:70:45:80:b5: 34:f9:cc:69:e3:c7:22:71:60:f5:81:04:5b:a1:58:e4:4a:ed: 0a:69:5f:9c:8c:91:7d:87:d4:6b:70:ad:66:88:5d:14:5a:49: 58:19:32:bf:73:02:d1:c1:46:a4:04:77:2f:61:01:9e:43:44: 40:33:89:01:6b:bc:7f:89:91:b9:41:e8:6f:aa:92:fb:ba:77: ec:99:19:97:ca:f1:20:9a:b7:c0:80:db:60:fc:c7:0b:6b:48: e3:aa:c3:1d:de:51:c1:f6:0a:d7:97:92:ba:29:fe:1d:2c:69: d3:12:3f:ee:43:f9:4d:69:df:70:b9:97:a0:bf:e1:7b:44:c4: 90:d1:54:ec:ee:3d:68:1b:c2:5d:08:d2:28:26:28:d4:88:30: f8:51:96:8f:e3:19:fa:52:ed:58:ba:19:1e:64:50:fe:c4:57: d7:ac:a9:d3:c4:60:a7:2f:a0:96:48:38:2d:58:13:2e:31:9f: a5:cc:71:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2QjcxMTAvBgNVBAUTKEVFQThBRTgwRDcxM0U2QjIyREIwRUM2MDkxNTdGMEM1 OUE1MkZEN0YwHhcNMjUwNTMxMTQ1MDAwWhcNMjUwNjA3MTQ1MDAwWjAYMRYwFAYD VQQDEw02ODNiMTcxOC02N2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkm3988rNRjoNvJJviamYY9IuiFwTbXzgtO3ikC+f/JG5e2kPYwk7BE8wInED wvywz4jpiWLFwGeiRQukUyrj3Hl/RpGUcmXMTniXXTJ+Rmmo1KXQCxMEJwW8sd3m VFcy5JfEgQuSsOxHrUZ8u+v2cnOjtOaBN5fTnc/qx1lghjxcFVP+FB6vUQZ7CZrD Y8/lEvA+X/ZrYeGV904ksq3N1sug39KstKZ+VLWJseQtcOd5y/rOY3eVeVzgsvNX AqkrI6PreMmIDvoEamhJ6koVDqZznGxEZv7wGAZbXsSG1eNqHpDLFmraIkvU9Z4B Z2c3Hr7JjUtzFunYKkBwA7P6NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwMwbw3 mCd/ZX131WVZ2stdWI8HMB8GA1UdIwQYMBaAFO6oroDXE+ayLbDsYJFX8MWaUv1/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDZCNy8xQzE2NjQxQzFE OTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVySXRzT3hna1Zmd3hacFNf WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdxaXVnTmNUNXJJdHNPeGdrVmZ3eFpwU19YOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDZCNy8xQzE2NjQxQzFEOTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVy SXRzT3hna1Zmd3hacFNfWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwPNGpuGmZtNJTuiSsYsjiTMKLMqljHO3tErwREInzqO/n5o/vmQnl j54nCSWJxXSp33VA6+J1Ra3jnQp1TBGHEeAwS3BFgLU0+cxp48cicWD1gQRboVjk Su0KaV+cjJF9h9RrcK1miF0UWklYGTK/cwLRwUakBHcvYQGeQ0RAM4kBa7x/iZG5 QehvqpL7unfsmRmXyvEgmrfAgNtg/McLa0jjqsMd3lHB9grXl5K6Kf4dLGnTEj/u Q/lNad9wuZegv+F7RMSQ0VTs7j1oG8JdCNIoJijUiDD4UZaP4xn6Uu1YuhkeZFD+ xFfXrKnTxGCnL6CWSDgtWBMuMZ+lzHEp -----END CERTIFICATE-----Generated at Sat May 31 17:50:44 2025 by rpki-client