$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft (raw, json) Hash identifier: wJw2mkq1jYiKjt2oa8l90cDGX8tKgP/yibmulCbb71c= Subject key identifier: A5:D0:E5:99:2E:81:F3:7F:47:D7:28:FF:D1:5E:3B:C0:C6:B7:26:7E Authority key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F Certificate issuer: /CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Certificate serial: 0B81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft Manifest number: 0B7A Signing time: Mon 02 Jun 2025 15:15:20 +0000 Manifest this update: Mon 02 Jun 2025 15:15:20 +0000 Manifest next update: Mon 09 Jun 2025 15:15:20 +0000 Files and hashes: 1: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl (hash: OOEpa4BAaAAi8cCty4VA6Q/lzmizF+rj3ex9wi1T53k=) 2: 99D18D463C0211EAA729693AC4F9AE02.roa (hash: /8fEEtPdMyUdjQ1z+LPnGcbnmSc1TogzrljlPk/+Zoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2945 (0xb81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Validity Not Before: Jun 2 15:15:20 2025 GMT Not After : Jun 9 15:15:20 2025 GMT Subject: CN=683dc008-8ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:12:a6:42:65:87:c3:4f:bc:82:60:b9:b7:6c: 6d:1d:55:1d:13:ad:7f:88:4b:78:34:47:bc:a6:8e: 39:88:b6:e3:f7:42:89:ce:cc:1e:09:d8:10:b1:b2: 3d:c1:8a:68:38:7f:36:b7:ea:9c:f7:aa:eb:74:3a: ca:4f:b8:79:59:65:b2:f2:8e:61:bf:22:9f:e0:6f: 8b:82:cd:c6:30:05:08:0a:40:9b:dd:02:8d:27:59: 58:6a:f9:cf:5b:94:7c:19:06:3b:fd:1e:1d:af:be: 4b:4a:db:dd:ac:77:7b:48:3a:fa:51:0c:19:9b:52: 00:ab:e1:de:aa:4a:d5:75:6e:b3:4e:c6:54:e4:da: 91:04:3f:01:31:a1:0b:19:bf:7f:1e:e9:d5:b7:50: ce:95:bc:b2:84:c0:48:98:6f:bb:81:0a:fe:ed:34: 25:72:9e:80:92:cd:07:04:99:32:ab:a2:05:ef:41: 1e:0e:2a:a7:0b:93:eb:1b:11:fb:78:2a:32:85:93: fd:74:f0:85:87:54:e6:45:98:58:5c:41:69:5c:87: 08:ac:91:31:87:ad:eb:e4:cd:94:3e:88:f8:7e:92: 0d:5d:7f:46:bf:da:4c:8e:65:37:70:27:3b:0f:d4: 39:e7:7d:2d:37:5b:e4:cc:41:f8:65:dc:d1:6d:32: 92:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D0:E5:99:2E:81:F3:7F:47:D7:28:FF:D1:5E:3B:C0:C6:B7:26:7E X509v3 Authority Key Identifier: keyid:7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:73:bb:84:12:21:f7:c8:d9:1c:f5:e4:79:cc:2f:0e:bf:5b: 5d:90:b9:05:fe:bb:99:83:10:63:a4:9f:f4:8e:85:b8:73:e2: 07:fe:ca:bc:e9:26:32:8a:34:23:84:23:ff:ec:21:1f:ae:a1: 7e:44:09:53:00:fe:ae:d9:9d:8b:5f:f3:2d:f5:84:1f:bb:78: c3:73:68:e3:60:4e:6f:bd:5e:12:5a:4f:7d:47:c3:bf:55:f7: 29:0a:59:fa:82:1b:45:09:d2:14:f2:af:0d:71:67:ef:4c:fe: c4:79:7f:e4:31:9b:6d:7e:f0:10:d1:ef:8d:00:65:1d:8b:e3: 19:fe:b8:c9:e5:22:44:95:60:fb:7b:ca:47:ab:70:ab:cd:1b: 4d:16:fe:2c:b7:e6:3e:86:51:aa:50:60:bc:a5:68:5b:ab:34: 85:af:ae:ae:23:10:f7:65:10:8f:19:83:a6:77:37:ec:21:58: 1b:74:55:09:8e:8f:63:d6:3d:64:eb:1e:c2:9d:ce:ec:15:32: e2:04:41:a9:00:fc:41:f9:f6:dd:e3:a3:f3:25:99:e2:4c:ef: 26:e9:34:b1:5e:a2:82:58:9b:89:3d:0f:c8:9c:81:e5:98:37: 5f:9f:73:69:f1:48:1a:b0:dc:94:66:d1:28:42:b8:b8:2a:91: c2:f7:ad:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDdEMDQ1MTY1QjI5QTY4QUZDQjhCQTgxNTk5Q0UzMDY3 NDU0NEZEOEYwHhcNMjUwNjAyMTUxNTIwWhcNMjUwNjA5MTUxNTIwWjAYMRYwFAYD VQQDEw02ODNkYzAwOC04ZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhKmQmWHw0+8gmC5t2xtHVUdE61/iEt4NEe8po45iLbj90KJzsweCdgQsbI9 wYpoOH82t+qc96rrdDrKT7h5WWWy8o5hvyKf4G+Lgs3GMAUICkCb3QKNJ1lYavnP W5R8GQY7/R4dr75LStvdrHd7SDr6UQwZm1IAq+HeqkrVdW6zTsZU5NqRBD8BMaEL Gb9/HunVt1DOlbyyhMBImG+7gQr+7TQlcp6Aks0HBJkyq6IF70EeDiqnC5PrGxH7 eCoyhZP9dPCFh1TmRZhYXEFpXIcIrJExh63r5M2UPoj4fpINXX9Gv9pMjmU3cCc7 D9Q5530tN1vkzEH4ZdzRbTKSNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKXQ5Zku gfN/R9co/9FeO8DGtyZ+MB8GA1UdIwQYMBaAFH0EUWWymmivy4uoFZnOMGdFRP2P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi83QTc1MEEwQTJE RDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFLX0xpNmdWbWM0d1owVkVf WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZRUlJaYkthYUtfTGk2Z1ZtYzR3WjBWRV9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi83QTc1MEEwQTJERDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFL X0xpNmdWbWM0d1owVkVfWTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3c7uEEiH3yNkc9eR5zC8Ov1tdkLkF/ruZgxBjpJ/0joW4c+IH/sq8 6SYyijQjhCP/7CEfrqF+RAlTAP6u2Z2LX/Mt9YQfu3jDc2jjYE5vvV4SWk99R8O/ VfcpCln6ghtFCdIU8q8NcWfvTP7EeX/kMZttfvAQ0e+NAGUdi+MZ/rjJ5SJElWD7 e8pHq3CrzRtNFv4st+Y+hlGqUGC8pWhbqzSFr66uIxD3ZRCPGYOmdzfsIVgbdFUJ jo9j1j1k6x7Cnc7sFTLiBEGpAPxB+fbd46PzJZniTO8m6TSxXqKCWJuJPQ/InIHl mDdfn3Np8UgasNyUZtEoQri4KpHC961q -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:51 2025 by rpki-client