$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: Ldt8fgX7lgXPXiqTqCiZ0VXC3h3VD31KVtwNApMVJ/w= Subject key identifier: D3:7F:2C:EF:9B:BD:EB:23:35:5C:4B:96:C4:18:FF:1C:5B:E0:3C:23 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: 8B Signing time: Sun 01 Jun 2025 06:13:59 +0000 Manifest this update: Sun 01 Jun 2025 06:13:59 +0000 Manifest next update: Sun 08 Jun 2025 06:13:59 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: PgfRqdD/nO7TwJdiMjlFQyI6WJF8KNaZr9Iyb84e2Ps=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: n3pzdI1R6OnpGAR7FmeF9nZ8iLEx5lsOyhq7ASsGK90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Jun 1 06:13:59 2025 GMT Not After : Jun 8 06:13:59 2025 GMT Subject: CN=683befa7-c916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:27:cd:0b:b1:a9:75:e8:89:20:ba:1f:0a: 8e:34:fb:c1:7b:23:3d:e5:e3:dd:2e:7f:eb:0f:dc: 2b:cf:08:e3:cc:a4:e3:91:77:e7:2e:a9:e7:89:70: 75:59:b1:d1:00:d0:aa:30:e6:82:11:ac:ed:f4:76: 5a:eb:22:88:ec:94:9d:6f:e8:06:05:a6:67:df:ff: 81:62:b2:ac:9b:d9:39:cb:63:b0:c2:de:d4:01:a5: eb:9e:65:b7:c5:8c:5f:44:65:30:78:c3:62:23:4c: ef:80:9d:db:a2:68:0e:75:47:48:2e:c4:ec:78:1e: 50:fa:3c:3a:bb:dc:bb:14:46:fc:05:c9:68:cf:8c: 7b:58:32:e6:49:3b:c0:bb:56:6a:86:ac:e2:d2:b5: e7:1f:d8:9d:36:ce:49:6a:8f:49:49:10:1d:af:13: 29:58:b9:64:1a:1f:e3:7d:1e:30:82:5d:45:1c:27: 3c:16:92:1e:9b:3d:21:f8:a8:22:69:ec:ea:49:4f: 1d:82:37:f8:28:53:fa:db:62:9d:d8:02:02:05:bd: 0c:64:8a:45:a7:da:1f:2d:d9:02:18:c2:db:48:49: 38:74:58:ad:28:23:c5:e0:ae:fe:bd:42:3b:82:71: 66:60:a7:03:23:1f:0d:1c:d6:25:46:9b:f7:9b:1c: 22:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7F:2C:EF:9B:BD:EB:23:35:5C:4B:96:C4:18:FF:1C:5B:E0:3C:23 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:50:9c:88:ef:76:08:7f:85:c8:66:de:46:cf:e1:31:63:3a: 31:5c:54:ed:22:ac:0b:00:17:90:53:10:3d:7e:67:f9:d2:74: c4:d8:3b:1a:4f:b1:57:ed:a7:7d:96:d4:b1:d5:23:17:e7:73: f4:be:9a:c0:7a:26:98:bb:6b:97:3c:15:12:10:29:0e:12:19: c6:3d:7c:b9:06:04:21:34:2c:89:30:81:2f:c8:93:ee:1d:e7: a6:6f:87:1c:f3:88:9d:d5:0c:cd:33:23:ed:af:f6:d2:a3:0f: df:b6:cd:a0:8a:26:62:2d:77:4e:05:39:b1:05:20:d4:fd:5e: fe:4b:20:38:d8:04:f4:3d:55:6d:6c:31:35:66:07:20:8f:23: 64:e0:1d:a4:3e:7c:1e:5b:8f:c7:4c:7d:f9:60:53:20:4a:c7: 22:ef:b8:a4:00:a0:58:8f:60:ab:f8:1e:ba:36:53:8a:98:24: c5:07:7b:cb:03:a4:37:d3:a0:b0:eb:47:8c:b2:6a:83:80:b2: a6:ac:ad:87:ba:b8:21:95:a0:c1:71:aa:2b:53:29:87:3e:fa: 80:7e:65:ac:de:8b:b0:79:06:9a:e6:63:62:eb:6a:1a:b9:a5: 24:8f:53:e0:1b:4b:bc:0e:52:4b:32:25:ab:4f:55:11:98:28: 0e:46:5d:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw NzU0MjQ0M0IwHhcNMjUwNjAxMDYxMzU5WhcNMjUwNjA4MDYxMzU5WjAYMRYwFAYD VQQDEw02ODNiZWZhNy1jOTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRYnzQuxqXXoiSC6HwqONPvBeyM95ePdLn/rD9wrzwjjzKTjkXfnLqnniXB1 WbHRANCqMOaCEazt9HZa6yKI7JSdb+gGBaZn3/+BYrKsm9k5y2Owwt7UAaXrnmW3 xYxfRGUweMNiI0zvgJ3bomgOdUdILsTseB5Q+jw6u9y7FEb8Bcloz4x7WDLmSTvA u1Zqhqzi0rXnH9idNs5Jao9JSRAdrxMpWLlkGh/jfR4wgl1FHCc8FpIemz0h+Kgi aezqSU8dgjf4KFP622Kd2AICBb0MZIpFp9ofLdkCGMLbSEk4dFitKCPF4K7+vUI7 gnFmYKcDIx8NHNYlRpv3mxwiwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNN/LO+b vesjNVxLlsQY/xxb4DwjMB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1 V05RNHZCZTZnaVVIVkNSRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeUJyI73YIf4XIZt5Gz+ExYzoxXFTtIqwLABeQUxA9fmf50nTE2Dsa T7FX7ad9ltSx1SMX53P0vprAeiaYu2uXPBUSECkOEhnGPXy5BgQhNCyJMIEvyJPu Heemb4cc84id1QzNMyPtr/bSow/fts2giiZiLXdOBTmxBSDU/V7+SyA42AT0PVVt bDE1ZgcgjyNk4B2kPnweW4/HTH35YFMgSsci77ikAKBYj2Cr+B66NlOKmCTFB3vL A6Q306Cw60eMsmqDgLKmrK2HurghlaDBcaorUymHPvqAfmWs3ouweQaa5mNi62oa uaUkj1PgG0u8DlJLMiWrT1URmCgORl3n -----END CERTIFICATE-----Generated at Mon Jun 2 20:07:30 2025 by rpki-client