$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: ztAWJT3X8WkdaY2CW2Syz4M0KGeo6kNFtIk7ain/Vm4= Subject key identifier: C0:74:37:5D:E0:D4:6A:C9:BE:07:27:F7:4C:B5:AF:3D:54:BA:13:33 Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: 78 Signing time: Sat 31 May 2025 06:17:47 +0000 Manifest this update: Sat 31 May 2025 06:17:47 +0000 Manifest next update: Sat 07 Jun 2025 06:17:47 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: Q0UdlJRqS0+AKTqir3zAgn3kxbdWWUGetCz0ZRgrt04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: May 31 06:17:47 2025 GMT Not After : Jun 7 06:17:47 2025 GMT Subject: CN=683a9f0b-5ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:0e:8d:c3:bd:6e:a5:23:67:8c:4b:1e:52: f2:2f:59:92:31:d9:34:d3:0c:48:25:60:0f:7e:72: 2e:26:09:9a:ee:2d:63:5d:ae:e9:03:22:2c:af:4d: 7d:62:4c:cc:6c:2e:4a:e6:90:5f:87:c9:a4:eb:85: 49:74:c7:f2:32:26:24:77:28:ce:f4:17:30:04:6c: 2c:ab:bf:56:7b:3d:d4:bc:2e:68:75:c8:da:b3:f4: b9:78:af:c6:13:d7:86:54:3b:3f:24:ce:7b:22:75: e1:ca:13:07:f7:4d:92:0c:9a:27:bf:17:c9:1a:18: a0:ac:c1:dc:6f:20:fb:8a:d0:20:86:c2:f0:90:95: 2a:83:91:62:f1:fa:05:43:41:ec:ee:c4:7d:34:8c: 60:e1:6e:89:9e:1a:ed:5f:83:2a:5c:26:fc:f5:27: c2:84:b6:4e:a0:de:64:b6:74:53:fb:9b:a0:b3:63: 75:11:e2:52:33:81:22:05:bc:80:dc:a2:ba:3d:29: db:3e:46:e4:05:25:dd:56:66:cf:03:fb:93:88:ff: 01:8f:95:f6:23:c7:0a:4d:a8:5c:cf:66:9a:5b:04: ea:07:b2:9e:c9:2a:9c:e3:81:5b:1e:69:bc:fb:4f: 9a:72:68:2a:15:73:19:6f:5e:b5:71:7b:af:87:23: e1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:74:37:5D:E0:D4:6A:C9:BE:07:27:F7:4C:B5:AF:3D:54:BA:13:33 X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:e4:76:e0:ce:37:02:e4:49:24:23:70:cb:c4:58:9e:7c:5e: 48:b3:69:22:cb:58:33:ed:79:6d:03:9c:3f:af:ee:38:52:d2: 4e:4f:19:6f:4f:36:2a:d7:65:b9:ec:e2:60:d1:99:0a:c5:8f: 40:4d:27:70:50:6c:d8:a0:b7:d2:36:01:f8:a2:a2:0f:c5:d1: e7:f6:d1:fe:7c:4c:fb:ca:5d:17:e5:37:bd:e7:e5:da:46:bf: 53:71:21:90:b9:e0:47:3d:fa:9c:1d:12:bb:34:17:1e:ce:54: a0:c5:0b:fb:39:ca:64:9e:e9:0e:3d:73:fe:fc:7e:91:75:0f: 54:a0:b6:51:59:15:4a:7e:e1:4d:61:bc:18:17:dd:d3:af:62: d7:83:c4:28:9f:25:7f:fb:7b:9b:56:eb:5e:12:d5:a6:84:0c: 8e:21:6a:6d:c9:f3:9c:d9:58:e5:a3:04:19:85:3e:a1:b4:f1: 32:51:5a:9e:aa:f7:1b:b2:7d:df:5e:37:fe:f9:43:22:b0:08: a9:11:6b:b1:44:cb:cb:c5:f6:01:d5:c4:e5:05:35:44:cf:b2: d7:e2:10:35:35:03:fe:fa:e3:7b:29:06:e2:d0:3c:87:fb:53: 5a:c3:fb:c5:44:98:6f:33:f2:3a:2c:8d:41:ac:b0:75:bb:17: 8a:ff:72:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjhBRDExMC8GA1UEBRMoRDEwQzIwOTZGQjVEQjMwNEFCRDJGOTlGNDVBMjk0ODgy OTJEMzcyMTAeFw0yNTA1MzEwNjE3NDdaFw0yNTA2MDcwNjE3NDdaMBgxFjAUBgNV BAMTDTY4M2E5ZjBiLTVlYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKkw6Nw71upSNnjEseUvIvWZIx2TTTDEglYA9+ci4mCZruLWNdrukDIiyvTX1i TMxsLkrmkF+HyaTrhUl0x/IyJiR3KM70FzAEbCyrv1Z7PdS8Lmh1yNqz9Ll4r8YT 14ZUOz8kznsideHKEwf3TZIMmie/F8kaGKCswdxvIPuK0CCGwvCQlSqDkWLx+gVD QezuxH00jGDhbomeGu1fgypcJvz1J8KEtk6g3mS2dFP7m6CzY3UR4lIzgSIFvIDc oro9Kds+RuQFJd1WZs8D+5OI/wGPlfYjxwpNqFzPZppbBOoHsp7JKpzjgVseabz7 T5pyaCoVcxlvXrVxe6+HI+FDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwHQ3XeDU asm+Byf3TLWvPVS6EzMwHwYDVR0jBBgwFoAU0QwglvtdswSr0vmfRaKUiCktNyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2OEFEL0RFQkEyMzgwODZB MDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFF3Z2x2dGRzd1NyMHZtZlJhS1VpQ2t0TnlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 OEFEL0RFQkEyMzgwODZBMDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dT cjB2bWZSYUtVaUNrdE55RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABvkduDONwLkSSQjcMvEWJ58XkizaSLLWDPteW0DnD+v7jhS0k5PGW9P NirXZbns4mDRmQrFj0BNJ3BQbNigt9I2Afiiog/F0ef20f58TPvKXRflN73n5dpG v1NxIZC54Ec9+pwdErs0Fx7OVKDFC/s5ymSe6Q49c/78fpF1D1SgtlFZFUp+4U1h vBgX3dOvYteDxCifJX/7e5tW614S1aaEDI4ham3J85zZWOWjBBmFPqG08TJRWp6q 9xuyfd9eN/75QyKwCKkRa7FEy8vF9gHVxOUFNUTPstfiEDU1A/7643spBuLQPIf7 U1rD+8VEmG8z8josjUGssHW7F4r/cns= -----END CERTIFICATE-----Generated at Sat May 31 17:42:45 2025 by rpki-client