$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: w+Fw9UoeVsrUszuQ01tFA6buflC4iE03+R3U600d8xM= Subject key identifier: F1:2B:10:19:21:B9:29:BC:32:F9:AA:7D:62:1F:F1:0A:99:71:10:E2 Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0B10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0B0A Signing time: Fri 30 May 2025 19:28:47 +0000 Manifest this update: Fri 30 May 2025 19:28:46 +0000 Manifest next update: Fri 06 Jun 2025 19:28:46 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: 6dXHAG2G7cp2UJBIBxlsxkFcb7v0RtlB9sLuq+Zte8Y=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: c6hB6o27DTn4G9KshxwwCrACiildcNHuM9kyD7kWDTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2832 (0xb10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: May 30 19:28:46 2025 GMT Not After : Jun 6 19:28:46 2025 GMT Subject: CN=683a06ee-9bc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:df:c0:95:fa:b0:04:37:46:83:40:c6:eb:94: d6:30:ce:49:e8:ac:7d:d9:e4:34:9a:16:28:45:e7: 84:a3:58:8c:8b:89:d3:bd:f2:52:cd:11:0f:80:6b: 5b:1f:64:13:9a:2f:ae:e3:17:13:11:0e:0d:de:d3: 4d:5f:b4:d6:90:58:a3:cd:6d:4b:fe:b1:60:67:03: 70:39:52:ea:fb:8d:6a:f8:7c:c1:c9:8f:43:60:98: e3:fb:a1:35:94:7e:1b:1a:cf:26:2a:f2:89:ac:61: 40:c0:ec:3d:8a:98:55:9d:52:82:e8:a1:97:95:ab: c1:80:49:7d:5a:7d:dd:44:bd:17:e0:75:ea:91:e3: 71:aa:a2:ae:b3:79:ac:48:09:01:70:71:c7:53:75: 37:c6:0f:72:e6:14:9d:df:59:83:43:0a:53:ae:57: cd:ae:50:f5:3f:d6:b6:ae:f9:e5:74:72:5e:9e:f5: c4:58:7f:ac:05:58:b1:c9:7e:25:b8:f9:9b:df:f2: 8e:24:a3:b2:82:0d:57:e6:96:ba:23:0c:a4:bf:26: 70:b5:e5:50:b4:8b:fa:b5:bb:4d:2a:ac:92:0d:a0: 91:c2:bc:e0:c7:f4:64:31:14:d7:08:aa:df:ac:8c: 85:45:d8:5d:ad:53:51:51:55:87:67:b2:6e:95:e3: cd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:2B:10:19:21:B9:29:BC:32:F9:AA:7D:62:1F:F1:0A:99:71:10:E2 X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:97:40:74:49:bb:4d:75:bc:e5:3b:22:d4:8e:5a:ed:88:57: 2a:40:dc:ed:93:5a:03:f0:7a:46:1c:90:04:d4:f2:22:57:bb: 15:7a:00:29:27:63:32:f3:8b:cd:97:6c:21:5d:c4:37:37:cd: ff:b3:6f:37:55:23:72:33:f1:46:97:bf:e1:df:a8:38:2d:74: 66:9e:1d:9f:0b:64:6b:8e:f4:45:93:82:aa:5d:e2:44:fe:36: a4:b8:0f:35:9b:b9:61:ba:dc:00:40:10:3b:e1:9b:2a:5d:fb: 96:d8:99:a7:cc:7a:89:62:af:c5:98:6b:bc:76:4f:06:ec:0f: 88:4d:f3:c0:da:35:60:64:b0:51:be:79:7c:dd:4a:61:b4:4f: 22:c8:9b:2f:47:4d:0a:dc:07:97:7d:f3:8f:5d:42:3a:58:aa: af:32:9d:22:f1:12:94:4d:ab:e2:7f:f6:fe:aa:34:88:ae:a2: 38:86:4b:5e:be:01:b9:6c:46:e2:35:de:40:fc:9e:ce:cb:b8: 2a:83:b5:92:5c:49:63:79:54:4d:b5:25:f3:1d:7c:59:85:2a: d0:12:c8:9a:3e:81:b6:24:4d:fc:94:9e:91:c9:f5:80:4c:a7: bb:eb:af:2e:fd:1e:6b:df:57:9e:75:e0:7c:7c:6f:37:76:70: a6:e7:67:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjUwNTMwMTkyODQ2WhcNMjUwNjA2MTkyODQ2WjAYMRYwFAYD VQQDEw02ODNhMDZlZS05YmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N/AlfqwBDdGg0DG65TWMM5J6Kx92eQ0mhYoReeEo1iMi4nTvfJSzREPgGtb H2QTmi+u4xcTEQ4N3tNNX7TWkFijzW1L/rFgZwNwOVLq+41q+HzByY9DYJjj+6E1 lH4bGs8mKvKJrGFAwOw9iphVnVKC6KGXlavBgEl9Wn3dRL0X4HXqkeNxqqKus3ms SAkBcHHHU3U3xg9y5hSd31mDQwpTrlfNrlD1P9a2rvnldHJenvXEWH+sBVixyX4l uPmb3/KOJKOygg1X5pa6IwykvyZwteVQtIv6tbtNKqySDaCRwrzgx/RkMRTXCKrf rIyFRdhdrVNRUVWHZ7JulePN9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPErEBkh uSm8MvmqfWIf8QqZcRDiMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4l0B0SbtNdbzlOyLUjlrtiFcqQNztk1oD8HpGHJAE1PIiV7sVegAp J2My84vNl2whXcQ3N83/s283VSNyM/FGl7/h36g4LXRmnh2fC2RrjvRFk4KqXeJE /jakuA81m7lhutwAQBA74ZsqXfuW2JmnzHqJYq/FmGu8dk8G7A+ITfPA2jVgZLBR vnl83UphtE8iyJsvR00K3AeXffOPXUI6WKqvMp0i8RKUTavif/b+qjSIrqI4hkte vgG5bEbiNd5A/J7Oy7gqg7WSXEljeVRNtSXzHXxZhSrQEsiaPoG2JE38lJ6RyfWA TKe7668u/R5r31eedeB8fG83dnCm52cu -----END CERTIFICATE-----Generated at Sat May 31 17:08:53 2025 by rpki-client