$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft File: sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft (raw, json) Hash identifier: IiS6Rt3PKO2BDSGUEmrO0/zU5XHO0PrAsjF2THJvBGY= Subject key identifier: A3:B1:00:37:37:8B:0C:93:B1:B9:59:86:3E:40:93:2D:B9:6F:70:89 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0C17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft Manifest number: 0BEF Signing time: Fri 30 May 2025 19:03:29 +0000 Manifest this update: Fri 30 May 2025 19:03:29 +0000 Manifest next update: Fri 06 Jun 2025 19:03:29 +0000 Files and hashes: 1: sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl (hash: 3M2RVl5tolXLF54RrBksV0Cr6gHHQcPMu2TsfXJ195k=) 2: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (hash: HeeBDJcwhy8+V+2Cg9KYbQ3U6GO/s9+NiHEgSW8cWgU=) 3: 5DA849821C1211EA819EA46EC4F9AE02.roa (hash: uC/ySBud8URGaJBRTy6y4ruA2gtaltNx8FUR5phArUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3095 (0xc17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: May 30 19:03:29 2025 GMT Not After : Jun 6 19:03:29 2025 GMT Subject: CN=683a0101-0899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e9:d8:24:04:be:f4:51:40:24:0d:9b:79:94: 58:8f:d0:fd:4d:26:68:4d:0c:9f:f3:00:d9:05:3b: 42:30:c2:c5:44:4f:8b:67:f9:73:0f:b5:06:f6:b4: 48:48:89:42:bb:f3:c7:c0:3d:2c:e5:98:d0:ea:cd: 8e:f8:e9:07:d5:84:dc:64:84:dd:92:dc:62:43:e4: bd:aa:4a:37:72:4a:db:52:64:75:a3:94:0a:06:2b: ad:b4:6a:30:f4:21:41:c9:bf:76:25:93:fe:76:f2: ba:b1:70:dd:a5:87:68:cd:7b:63:02:a0:b3:f8:99: 03:f4:b8:1a:a3:7f:88:f5:ae:07:14:53:be:e6:1f: 51:6a:bc:3e:11:7b:7a:4f:f6:db:4f:c7:b6:16:f3: a4:df:bc:ff:e4:70:ad:be:63:13:09:9d:45:e7:33: 82:9f:f0:1a:73:ff:85:6c:a3:62:df:9b:e5:12:7d: f7:8b:4c:42:60:50:c1:29:d0:eb:02:95:c5:3d:12: 26:e8:86:9a:2a:13:0b:81:ec:99:04:47:05:17:eb: 7e:aa:79:a7:cf:99:d2:4e:45:b1:3c:6b:a4:2d:6d: 23:88:9e:e0:cb:15:60:62:f2:57:06:1a:62:7c:9f: 70:e3:d0:a4:c0:7f:db:a5:b8:c1:89:5c:3b:33:aa: 5e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B1:00:37:37:8B:0C:93:B1:B9:59:86:3E:40:93:2D:B9:6F:70:89 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:ce:d6:32:e3:c5:55:99:09:b3:c4:33:6e:fc:2a:5d:b5:57: 02:d5:33:2e:64:90:86:82:53:84:cd:3d:14:4a:b5:7e:6f:4c: 3e:2e:be:31:9d:31:a3:3e:62:f1:10:7e:8e:ec:08:13:89:ee: cf:4d:16:bd:d1:3f:f9:67:11:4f:91:b0:87:b3:c2:08:9e:63: f3:05:b7:dc:4e:a7:62:9d:a6:96:e8:2c:5d:06:68:f9:f6:ac: 69:24:e3:fd:46:b0:fd:96:c2:b5:2f:50:81:28:30:4d:af:c1: b2:de:04:af:15:a0:14:69:9d:3a:5b:7a:4d:bf:e6:53:77:5e: 58:9c:4e:c2:20:33:fd:8e:a3:73:27:4c:fa:4d:1d:b7:88:dc: 4f:4e:9e:65:c6:59:9e:65:62:c6:d9:0d:aa:73:4f:21:e7:a4: 78:4b:e1:eb:1c:b6:31:06:45:8f:d5:12:75:a3:8a:f3:4f:4f: 74:a3:0c:db:96:e4:eb:0e:41:ab:d8:b6:2e:56:7c:71:dd:fd: b9:e9:ff:c3:6b:fa:27:5f:f7:3f:f8:d1:2b:8e:42:4d:63:30: ac:48:2b:ab:c4:74:75:91:7a:e9:5e:0c:41:ef:c7:57:b6:a7: 1d:1c:1c:62:67:a5:cc:9e:4f:9f:3b:bc:aa:a9:ab:a4:39:01: b4:09:1e:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjUwNTMwMTkwMzI5WhcNMjUwNjA2MTkwMzI5WjAYMRYwFAYD VQQDEw02ODNhMDEwMS0wODk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOnYJAS+9FFAJA2beZRYj9D9TSZoTQyf8wDZBTtCMMLFRE+LZ/lzD7UG9rRI SIlCu/PHwD0s5ZjQ6s2O+OkH1YTcZITdktxiQ+S9qko3ckrbUmR1o5QKBiuttGow 9CFByb92JZP+dvK6sXDdpYdozXtjAqCz+JkD9Lgao3+I9a4HFFO+5h9Rarw+EXt6 T/bbT8e2FvOk37z/5HCtvmMTCZ1F5zOCn/Aac/+FbKNi35vlEn33i0xCYFDBKdDr ApXFPRIm6IaaKhMLgeyZBEcFF+t+qnmnz5nSTkWxPGukLW0jiJ7gyxVgYvJXBhpi fJ9w49CkwH/bpbjBiVw7M6peCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOxADc3 iwyTsblZhj5Aky25b3CJMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Qzk2Ni9BMTk1MkJBMjFDMTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlS dFptR3BUTDNpRFZEWVlNa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFztYy48VVmQmzxDNu/CpdtVcC1TMuZJCGglOEzT0USrV+b0w+Lr4x nTGjPmLxEH6O7AgTie7PTRa90T/5ZxFPkbCHs8IInmPzBbfcTqdinaaW6CxdBmj5 9qxpJOP9RrD9lsK1L1CBKDBNr8Gy3gSvFaAUaZ06W3pNv+ZTd15YnE7CIDP9jqNz J0z6TR23iNxPTp5lxlmeZWLG2Q2qc08h56R4S+HrHLYxBkWP1RJ1o4rzT090owzb luTrDkGr2LYuVnxx3f256f/Da/onX/c/+NErjkJNYzCsSCurxHR1kXrpXgxB78dX tqcdHBxiZ6XMnk+fO7yqqaukOQG0CR5k -----END CERTIFICATE-----Generated at Sat May 31 17:07:36 2025 by rpki-client