$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: TI5GmFk6XrMVQIrtxi5lEM+vyBS1uBpQw5v5IgcYktU= Subject key identifier: 4E:BF:8D:5D:2D:8B:EF:6B:2E:D8:01:3D:E5:1C:B9:3E:AE:96:8F:46 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01C0 Signing time: Sat 31 May 2025 02:48:29 +0000 Manifest this update: Sat 31 May 2025 02:48:29 +0000 Manifest next update: Sat 07 Jun 2025 02:48:29 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: EAyR14U/UMorbxLk3vkDt60YsuWHMb7WtWKHvbXU3Xg=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: May 31 02:48:29 2025 GMT Not After : Jun 7 02:48:29 2025 GMT Subject: CN=683a6dfd-feb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c4:3a:e3:09:9b:7d:fc:b3:73:f0:89:6d:f1: 0b:84:aa:89:9a:f3:a6:8b:df:87:98:16:be:29:93: d7:f4:0f:1d:d5:6f:74:12:0f:70:f3:d6:3d:13:5d: 32:51:c3:35:e5:1e:ee:ae:40:1d:42:26:58:a5:28: c9:7b:10:28:df:f9:da:64:95:77:bc:5a:26:67:04: a4:8f:31:4a:0e:33:4f:e5:f9:37:9f:85:93:99:73: a8:91:36:49:1d:4b:d0:07:bc:c6:dc:e8:b4:4e:6d: f3:74:1c:f7:eb:c9:28:19:12:96:f2:76:2f:59:1d: a6:43:90:79:23:62:ed:d0:b0:be:ed:28:c9:c2:80: 88:22:3d:6a:78:c3:b5:19:fa:e2:87:f1:29:8b:43: 57:55:52:f9:61:0c:62:72:20:df:c0:20:10:cd:b8: 8f:5c:e3:cb:54:75:c7:48:ea:b7:a2:f2:fa:87:13: 85:74:79:16:7b:34:c7:eb:0a:05:fb:13:74:ed:f2: 1a:a8:72:be:21:2f:72:7f:72:01:7b:5b:ad:8a:b8: 88:21:a8:35:c1:b4:98:91:d2:ab:95:d1:55:0b:11: 94:aa:85:4d:fa:89:8c:be:c5:e2:76:9e:3c:c6:76: b5:ac:eb:e6:4b:0f:d9:e7:25:9e:11:a0:a4:7f:b5: 24:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:BF:8D:5D:2D:8B:EF:6B:2E:D8:01:3D:E5:1C:B9:3E:AE:96:8F:46 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d5:0b:70:a1:ec:e7:58:bd:e4:f6:6a:d7:f3:45:4a:bf:2e: e0:bf:0c:d2:96:59:b7:0b:7a:d6:8e:b2:40:e6:7f:43:b5:1c: 07:37:93:22:97:32:51:a0:f7:fc:7d:4a:f0:a4:d9:30:4f:fc: 16:02:e9:ef:fa:5f:63:b4:b4:51:1c:c3:9c:53:2f:89:e9:17: a6:fa:f5:6a:ce:12:2f:c0:c7:7f:c7:c8:25:28:f3:cc:f6:14: c9:23:60:19:eb:75:1a:c9:ae:c9:06:04:6f:07:6a:f2:8e:de: ac:18:f9:0a:cf:0b:16:56:e5:c6:48:aa:e3:53:d9:f6:e5:7d: ea:5f:1a:7e:58:89:bc:80:92:ca:3a:a9:1f:11:cc:1d:34:df: dd:37:38:a0:d0:2c:e9:ed:dc:3d:c9:52:49:1e:2e:ae:14:47: 47:e4:63:56:fa:ae:bf:c3:6b:8f:e6:16:6c:1f:ba:69:9b:10: 27:3e:32:e9:3a:e4:02:3a:08:60:04:c6:0f:e2:96:89:f3:76: 70:d4:f9:5d:c8:35:18:18:c0:69:99:db:64:18:58:4b:73:20: c7:53:45:ad:91:77:a2:fa:27:84:fd:41:68:cb:c7:dd:1a:8d: 69:37:5f:c8:01:04:51:85:6c:33:b2:0d:5e:a7:46:2d:25:24: 10:2c:95:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwNTMxMDI0ODI5WhcNMjUwNjA3MDI0ODI5WjAYMRYwFAYD VQQDEw02ODNhNmRmZC1mZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cQ64wmbffyzc/CJbfELhKqJmvOmi9+HmBa+KZPX9A8d1W90Eg9w89Y9E10y UcM15R7urkAdQiZYpSjJexAo3/naZJV3vFomZwSkjzFKDjNP5fk3n4WTmXOokTZJ HUvQB7zG3Oi0Tm3zdBz368koGRKW8nYvWR2mQ5B5I2Lt0LC+7SjJwoCIIj1qeMO1 Gfrih/Epi0NXVVL5YQxiciDfwCAQzbiPXOPLVHXHSOq3ovL6hxOFdHkWezTH6woF +xN07fIaqHK+IS9yf3IBe1utiriIIag1wbSYkdKrldFVCxGUqoVN+omMvsXidp48 xna1rOvmSw/Z5yWeEaCkf7UknQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6/jV0t i+9rLtgBPeUcuT6ulo9GMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs1QtwoeznWL3k9mrX80VKvy7gvwzSllm3C3rWjrJA5n9DtRwHN5Mi lzJRoPf8fUrwpNkwT/wWAunv+l9jtLRRHMOcUy+J6Rem+vVqzhIvwMd/x8glKPPM 9hTJI2AZ63Uaya7JBgRvB2ryjt6sGPkKzwsWVuXGSKrjU9n25X3qXxp+WIm8gJLK OqkfEcwdNN/dNzig0Czp7dw9yVJJHi6uFEdH5GNW+q6/w2uP5hZsH7ppmxAnPjLp OuQCOghgBMYP4paJ83Zw1PldyDUYGMBpmdtkGFhLcyDHU0WtkXei+ieE/UFoy8fd Go1pN1/IAQRRhWwzsg1ep0YtJSQQLJWQ -----END CERTIFICATE-----Generated at Sat May 31 17:06:26 2025 by rpki-client