$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: gDgt8PNFqec0Dev2txl/li8enKy0eArzWWmwmxO5lJY= Subject key identifier: 26:76:8E:75:67:EB:5E:AA:21:A8:B0:C5:CC:DA:EA:EF:D9:47:92:DE Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0DD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0DB0 Signing time: Fri 30 May 2025 18:06:22 +0000 Manifest this update: Fri 30 May 2025 18:06:22 +0000 Manifest next update: Fri 06 Jun 2025 18:06:22 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: m5L8tkKssPhOiPghRNu02NayBgWDvIM8eNr9QcpLfhw=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: fGrUYT1O2dItK4fIwYgIfLvCsJmlCIF/jYJCGwsc26A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3537 (0xdd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9, serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: May 30 18:06:22 2025 GMT Not After : Jun 6 18:06:22 2025 GMT Subject: CN=6839f39e-dc56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bf:d3:b1:78:92:3e:d4:fa:fa:8a:8f:9b:45: e6:63:2e:6c:34:f4:4d:dd:3e:33:78:42:ba:0c:5d: 93:16:74:0d:f8:14:74:e0:c2:ad:94:68:3c:f2:d6: 5f:03:7b:c1:81:2c:34:e7:b6:14:3c:18:b2:3b:a6: 7d:f0:e1:b6:72:08:a6:81:96:39:cb:e5:da:4f:09: 83:49:f9:2d:08:9d:14:2f:9e:ac:f1:77:fc:0d:5f: 08:ba:9d:2b:f9:c2:0b:ba:fb:b1:c8:e3:4a:68:52: dd:4f:c1:ee:46:70:59:f9:2c:15:9c:09:84:b9:21: 23:eb:d7:47:a2:c3:a9:24:22:a5:8b:50:52:58:57: 76:f2:17:e4:22:48:cb:98:83:08:a3:b7:1f:fb:ba: 67:6c:48:ba:28:7a:37:18:04:ba:56:4b:2a:a3:64: 83:f7:a5:9b:09:1f:a3:76:76:d2:f7:e1:d2:84:2a: c3:57:9d:29:59:68:dd:df:8f:f9:fe:f3:1a:fa:55: 7d:c1:36:fc:be:07:21:41:5d:6f:42:c2:3e:0f:3f: 73:4c:b8:65:c8:95:2a:1d:e8:80:04:5f:81:a5:cd: 31:7f:4c:ef:1b:ad:81:6e:19:ce:52:dd:13:8e:d6: 4f:22:f6:15:b0:a0:e9:fb:f3:cd:0d:c8:e9:f7:2e: bc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:76:8E:75:67:EB:5E:AA:21:A8:B0:C5:CC:DA:EA:EF:D9:47:92:DE X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:52:13:ca:52:39:3f:0a:17:5f:ae:30:40:60:12:2e:1f:bb: d0:72:7d:21:d7:f8:1a:1c:37:1e:38:d2:9f:27:e5:19:f6:1d: b8:3c:4c:a3:d8:10:c0:0c:14:15:de:cf:3f:fe:29:c7:ed:da: 04:2f:f9:17:54:9c:57:b8:39:4b:f0:83:72:45:53:9d:57:a6: b7:20:1f:c4:3c:7a:55:c7:d5:8d:15:d8:7b:01:59:3b:87:b0: fe:6a:73:36:19:9c:ae:b6:b3:32:61:da:48:8b:7d:0a:1a:43: 9e:79:f0:78:fe:53:0b:3c:3c:52:d6:dd:d1:5f:2e:66:8f:e2: 23:b4:1f:b6:63:fc:09:63:68:ab:2a:43:7f:7f:60:1e:22:b9: 97:9a:c2:55:7c:b5:4f:1a:53:ab:f3:c5:d3:20:5f:30:fe:eb: 82:11:c5:31:f2:91:81:e2:4d:92:ca:90:af:c7:97:e6:9d:6e: a7:ca:c8:8f:53:d9:27:0d:c0:a4:45:77:e6:2e:1e:7b:17:82: 65:ad:4b:73:ff:5e:df:86:bc:1b:a5:ef:a9:87:25:d7:6d:f9: 11:77:79:56:e8:9e:93:0f:ea:28:da:97:53:b8:bf:cb:84:96: da:a5:a1:be:18:63:ee:0d:f9:17:46:e6:17:79:f7:81:0e:b3: a4:08:59:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjUwNTMwMTgwNjIyWhcNMjUwNjA2MTgwNjIyWjAYMRYwFAYD VQQDEw02ODM5ZjM5ZS1kYzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlL/TsXiSPtT6+oqPm0XmYy5sNPRN3T4zeEK6DF2TFnQN+BR04MKtlGg88tZf A3vBgSw057YUPBiyO6Z98OG2cgimgZY5y+XaTwmDSfktCJ0UL56s8Xf8DV8Iup0r +cILuvuxyONKaFLdT8HuRnBZ+SwVnAmEuSEj69dHosOpJCKli1BSWFd28hfkIkjL mIMIo7cf+7pnbEi6KHo3GAS6Vksqo2SD96WbCR+jdnbS9+HShCrDV50pWWjd34/5 /vMa+lV9wTb8vgchQV1vQsI+Dz9zTLhlyJUqHeiABF+Bpc0xf0zvG62BbhnOUt0T jtZPIvYVsKDp+/PNDcjp9y68IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZ2jnVn 616qIaiwxcza6u/ZR5LeMB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAUhPKUjk/ChdfrjBAYBIuH7vQcn0h1/gaHDceONKfJ+UZ9h24PEyj 2BDADBQV3s8//inH7doEL/kXVJxXuDlL8INyRVOdV6a3IB/EPHpVx9WNFdh7AVk7 h7D+anM2GZyutrMyYdpIi30KGkOeefB4/lMLPDxS1t3RXy5mj+IjtB+2Y/wJY2ir KkN/f2AeIrmXmsJVfLVPGlOr88XTIF8w/uuCEcUx8pGB4k2SypCvx5fmnW6nysiP U9knDcCkRXfmLh57F4JlrUtz/17fhrwbpe+phyXXbfkRd3lW6J6TD+oo2pdTuL/L hJbapaG+GGPuDfkXRuYXefeBDrOkCFl8 -----END CERTIFICATE-----Generated at Sat May 31 16:34:01 2025 by rpki-client