$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft File: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft (raw, json) Hash identifier: 7+3uiri4XZLpGXd5VBWsD3wTsAyFD5UdAfhmkee53fk= Subject key identifier: A3:97:A7:5C:86:5E:B1:73:32:7E:D3:A1:63:19:17:21:AE:F9:3F:E7 Authority key identifier: D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 Certificate issuer: /CN=A91A5ED2/serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft Manifest number: 0E Signing time: Mon 09 Jun 2025 07:00:39 +0000 Manifest this update: Mon 09 Jun 2025 07:00:39 +0000 Manifest next update: Mon 16 Jun 2025 07:00:39 +0000 Files and hashes: 1: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl (hash: PRonPiHJLVLjeqyydounrXwBx8+f2w+k3U/ftCvaAIQ=) 2: D474730E311C11F08B197B65C4F9AE02.roa (hash: Pu/QPbX6etZqKvOsEtAWX426lG3kK44YjXzpJvX5ecs=) 3: 5A9C0D58311C11F0B91A2E64C4F9AE02.roa (hash: OuYK59uWIga3ZAzcT5ocu0lcjNK1alPA7Ti+SUQJrh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 05:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5ED2, serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Validity Not Before: Jun 9 07:00:39 2025 GMT Not After : Jun 16 07:00:39 2025 GMT Subject: CN=68468697-109e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e0:f9:1b:f9:04:0b:80:ba:29:75:e3:31:64: 6d:2d:72:9f:01:c2:3f:b9:2f:36:6f:08:6b:42:9e: a8:8f:2d:19:0d:ea:02:16:0e:4a:3b:46:23:8c:c6: 3f:04:46:ac:2d:dc:7f:cb:91:91:df:db:d2:b0:86: ad:25:6b:4b:00:e6:21:99:68:74:74:b1:4b:6e:47: 49:08:34:12:2e:98:d7:f8:e0:52:90:b0:c8:57:b4: 50:71:87:e2:69:b2:bd:ea:e4:bf:43:26:ae:b7:25: e2:da:6a:6f:06:0e:a0:4e:26:de:57:52:78:a1:c9: 2f:d8:d6:d7:95:77:f1:23:03:77:89:88:b0:fd:13: f4:df:06:9c:9f:ee:06:db:cf:28:72:13:ee:e8:80: 6d:a1:b9:74:26:b6:17:2c:94:c9:09:ae:bc:e6:aa: 40:cc:00:9f:b2:36:69:3c:ae:bf:44:18:75:be:ab: 18:aa:fb:4c:82:26:92:58:d1:96:0e:d7:2d:80:89: 54:02:42:db:dd:02:dd:9b:f0:71:7c:26:52:bf:d5: c0:46:bf:cb:b2:99:97:9f:fa:83:00:db:ea:db:d8: 66:c1:b9:58:d0:e5:0e:24:35:e2:5e:af:d2:3b:75: f2:5a:c8:f4:3d:7a:cb:b8:a8:37:94:64:f8:bd:2e: ee:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:97:A7:5C:86:5E:B1:73:32:7E:D3:A1:63:19:17:21:AE:F9:3F:E7 X509v3 Authority Key Identifier: keyid:D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:78:ad:92:15:8d:79:0d:7b:05:14:a3:a6:75:8a:44:ce:5c: 16:ca:f8:f6:92:fe:ba:02:06:ec:91:19:26:ab:75:6d:df:59: 01:73:b4:f5:69:9c:24:92:24:ef:44:fe:71:ec:95:9c:39:61: 32:05:18:19:57:4e:1a:81:88:d0:8a:13:a4:49:e5:55:9d:b2: ee:f8:aa:b7:b7:5b:f8:64:64:eb:7e:d0:3c:9a:58:68:a4:a8: c2:ca:d9:65:93:fb:c6:a2:c6:23:ca:0b:1e:3a:ac:02:33:0f: e7:3f:5a:b9:57:84:7c:69:e9:86:49:8a:3b:b2:3d:0d:5c:2f: 76:55:1b:f9:d9:37:c6:b6:f3:3b:8d:39:0f:5e:2f:44:0a:0f: 25:71:db:52:77:1c:0e:13:ec:78:bb:6a:ea:f1:92:3e:c9:f8: 07:9f:22:f1:d3:68:ad:f2:44:1f:af:6f:98:18:e3:48:55:b8: 13:4a:7a:5f:63:1b:d5:05:ad:f0:75:30:30:3d:86:d3:0e:21: 11:52:0d:eb:36:07:6c:e5:db:d0:b1:1e:95:6e:a3:f4:dc:59: 0e:0b:be:64:90:bb:82:9b:f5:dc:48:03:9f:1d:7f:ba:a5:70: db:31:55:0c:87:46:b2:b9:69:0b:9d:5f:a5:e2:f7:f1:af:6c: 54:db:c0:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUVEMjExMC8GA1UEBRMoRDkwNEQ1NTJDMEVGMzJGMjQ5QUJBNDU5N0JEODRBMTVF RTU1NTVDMTAeFw0yNTA2MDkwNzAwMzlaFw0yNTA2MTYwNzAwMzlaMBgxFjAUBgNV BAMTDTY4NDY4Njk3LTEwOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC64Pkb+QQLgLopdeMxZG0tcp8Bwj+5LzZvCGtCnqiPLRkN6gIWDko7RiOMxj8E Rqwt3H/LkZHf29Kwhq0la0sA5iGZaHR0sUtuR0kINBIumNf44FKQsMhXtFBxh+Jp sr3q5L9DJq63JeLaam8GDqBOJt5XUnihyS/Y1teVd/EjA3eJiLD9E/TfBpyf7gbb zyhyE+7ogG2huXQmthcslMkJrrzmqkDMAJ+yNmk8rr9EGHW+qxiq+0yCJpJY0ZYO 1y2AiVQCQtvdAt2b8HF8JlK/1cBGv8uymZef+oMA2+rb2GbBuVjQ5Q4kNeJer9I7 dfJayPQ9esu4qDeUZPi9Lu4JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo5enXIZe sXMyftOhYxkXIa75P+cwHwYDVR0jBBgwFoAU2QTVUsDvMvJJq6RZe9hKFe5VVcEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RUQyL0YyNDVCMkQ2MzEx QjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZKSnE2UlplOWhLRmU1VlZj RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlFUVlVzRHZNdkpKcTZSWmU5aEtGZTVWVmNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 RUQyL0YyNDVCMkQ2MzExQjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZK SnE2UlplOWhLRmU1VlZjRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEl4rZIVjXkNewUUo6Z1ikTOXBbK+PaS/roCBuyRGSardW3fWQFztPVp nCSSJO9E/nHslZw5YTIFGBlXThqBiNCKE6RJ5VWdsu74qre3W/hkZOt+0DyaWGik qMLK2WWT+8aixiPKCx46rAIzD+c/WrlXhHxp6YZJijuyPQ1cL3ZVG/nZN8a28zuN OQ9eL0QKDyVx21J3HA4T7Hi7aurxkj7J+AefIvHTaK3yRB+vb5gY40hVuBNKel9j G9UFrfB1MDA9htMOIRFSDes2B2zl29CxHpVuo/TcWQ4LvmSQu4Kb9dxIA58df7ql cNsxVQyHRrK5aQudX6Xi9/GvbFTbwKo= -----END CERTIFICATE-----Generated at Mon Jun 9 08:37:12 2025 by rpki-client