$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: gmoP2M7BZ/Sn4/ycWdQ2UqH1KoHNT1nUHFRCWDRDxco= Subject key identifier: 3A:6C:29:0B:05:91:C6:DF:8B:3E:03:B9:54:E8:3B:E2:37:C8:C8:67 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0147 Signing time: Sat 31 May 2025 03:55:13 +0000 Manifest this update: Sat 31 May 2025 03:55:13 +0000 Manifest next update: Sat 07 Jun 2025 03:55:13 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: qQc+PJeqNCwfMATSOJMBzOd+RnkedZ7jTrq/xSUeYBY=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: May 31 03:55:13 2025 GMT Not After : Jun 7 03:55:13 2025 GMT Subject: CN=683a7da1-15e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6a:73:3e:f1:c3:c7:82:ff:ab:a2:15:0b:07: 81:70:c8:8a:b5:cf:7f:55:e0:c5:92:38:e9:e7:62: 75:61:d5:2c:50:44:c9:9c:a9:b2:c4:9b:2f:50:e6: 08:81:10:ff:a9:3c:4a:af:39:ad:9c:65:84:10:2a: 90:e2:aa:e7:cd:84:d2:3f:88:75:3c:00:d5:f3:2d: 8a:d5:22:94:10:ae:68:2b:0d:ae:27:05:ea:e3:6a: 08:d0:40:f9:b2:1b:c6:2b:71:61:58:4c:4d:ed:84: 4c:3c:a8:ed:e5:02:0f:35:2d:43:25:5e:60:b6:f4: 0a:3f:71:f1:2e:95:d5:21:8c:f2:61:50:5d:62:78: 2d:51:4c:b1:bf:3f:c6:d8:ad:90:93:a6:a4:4f:c3: 9a:0a:7f:66:a6:09:60:54:7c:5c:80:65:9e:8c:a1: 2c:5b:b5:eb:a6:c5:e3:a3:ff:89:15:94:f3:ab:c3: c4:68:29:9b:5c:84:4d:d5:ad:82:76:1c:f5:78:a2: 48:65:e6:c1:d9:5d:89:17:a6:90:5f:93:3e:e3:fa: ac:ee:f9:57:05:b4:31:1b:5b:70:12:5b:74:72:bb: 9c:8d:6f:c5:ae:d3:17:c4:bb:e3:da:51:b8:f0:35: c9:c7:83:47:7a:8b:bc:a4:1f:55:d6:c0:2a:90:e7: 2a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6C:29:0B:05:91:C6:DF:8B:3E:03:B9:54:E8:3B:E2:37:C8:C8:67 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:c8:37:85:c4:2d:25:42:82:4a:cf:08:b1:16:6f:5e:57:e1: 39:5f:bd:c5:d4:e3:65:99:12:64:d6:8f:61:a2:71:fa:ac:df: c1:20:ee:6d:74:5b:e0:c3:95:38:e0:18:f3:c9:fd:6c:84:12: 10:18:ac:e9:59:36:bc:d5:8a:95:1c:da:71:e5:b3:61:e2:c9: d9:86:0d:be:c5:29:e9:06:dc:c4:77:52:9c:0f:e7:35:48:ba: b0:38:b0:80:27:ce:ad:86:23:47:65:60:b0:1b:27:9d:fe:29: da:02:b5:aa:14:3e:7f:81:73:52:85:d0:ef:fb:75:f5:96:cd: 9f:a7:ad:80:33:01:4a:a0:4e:b7:25:0b:4c:43:d9:57:57:3b: 16:1c:a5:1c:6d:9f:83:c3:70:c6:72:fe:c8:8c:df:89:8d:a9: 71:01:1d:af:3e:33:90:25:06:ee:a3:27:94:7c:42:59:ff:71: a2:c3:6e:b0:ba:15:43:f0:c9:86:b1:cf:bf:b5:31:d4:cd:94: d8:20:3a:11:37:e7:11:34:97:0a:63:00:28:71:97:e3:22:ba: 55:de:41:51:88:e4:e4:28:05:cf:3a:06:3e:aa:04:45:88:da: f6:14:03:52:81:3d:36:e4:51:a2:bc:08:62:45:a6:16:87:6c: 3c:17:99:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwNTMxMDM1NTEzWhcNMjUwNjA3MDM1NTEzWjAYMRYwFAYD VQQDEw02ODNhN2RhMS0xNWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGpzPvHDx4L/q6IVCweBcMiKtc9/VeDFkjjp52J1YdUsUETJnKmyxJsvUOYI gRD/qTxKrzmtnGWEECqQ4qrnzYTSP4h1PADV8y2K1SKUEK5oKw2uJwXq42oI0ED5 shvGK3FhWExN7YRMPKjt5QIPNS1DJV5gtvQKP3HxLpXVIYzyYVBdYngtUUyxvz/G 2K2Qk6akT8OaCn9mpglgVHxcgGWejKEsW7XrpsXjo/+JFZTzq8PEaCmbXIRN1a2C dhz1eKJIZebB2V2JF6aQX5M+4/qs7vlXBbQxG1twElt0crucjW/FrtMXxLvj2lG4 8DXJx4NHeou8pB9V1sAqkOcqCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpsKQsF kcbfiz4DuVToO+I3yMhnMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJyDeFxC0lQoJKzwixFm9eV+E5X73F1ONlmRJk1o9honH6rN/BIO5t dFvgw5U44Bjzyf1shBIQGKzpWTa81YqVHNpx5bNh4snZhg2+xSnpBtzEd1KcD+c1 SLqwOLCAJ86thiNHZWCwGyed/inaArWqFD5/gXNShdDv+3X1ls2fp62AMwFKoE63 JQtMQ9lXVzsWHKUcbZ+Dw3DGcv7IjN+JjalxAR2vPjOQJQbuoyeUfEJZ/3Giw26w uhVD8MmGsc+/tTHUzZTYIDoRN+cRNJcKYwAocZfjIrpV3kFRiOTkKAXPOgY+qgRF iNr2FANSgT025FGivAhiRaYWh2w8F5nt -----END CERTIFICATE-----Generated at Sat May 31 17:50:41 2025 by rpki-client