$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft File: qK6pspMKYU1coxq59-hDeTYaL0M.mft (raw, json) Hash identifier: 0gFC76Ju3eYNZLlxS8AqIRPYoTE6K3l0YJnCImsgjEI= Subject key identifier: 8A:99:A9:4C:23:1D:AD:71:76:13:92:03:DD:DB:D9:C9:B2:BE:C0:1C Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft Manifest number: 099D Signing time: Fri 30 May 2025 20:17:25 +0000 Manifest this update: Fri 30 May 2025 20:17:25 +0000 Manifest next update: Fri 06 Jun 2025 20:17:25 +0000 Files and hashes: 1: qK6pspMKYU1coxq59-hDeTYaL0M.crl (hash: AVSlYW9aBXVFaj4Vymrtloyquc1NW+cAhMja6+rq6r8=) 2: A292E3529E9711EEB6899B1CC4F9AE02.roa (hash: tLBsV4g2bMzhVFiX/6V4C27n2kArFIEOkUcBuZutWVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D, serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: May 30 20:17:25 2025 GMT Not After : Jun 6 20:17:25 2025 GMT Subject: CN=683a1255-c1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b9:5d:1d:64:45:12:4c:79:c1:af:23:92:28: 0b:80:03:51:b7:e4:50:22:8f:c9:6d:25:56:23:b5: 6c:fd:06:bf:84:60:35:df:3d:d6:d2:07:f8:c8:33: 93:1e:43:1f:58:a7:15:f8:fe:78:8a:5c:e7:d9:cc: df:a9:64:38:db:30:d1:08:8a:84:ab:16:24:91:7a: 5a:2b:d0:4f:d2:70:c1:ee:04:68:b1:f3:97:64:89: 5e:d7:0a:82:71:2d:01:a0:71:fd:75:cf:48:06:80: a0:91:63:03:89:15:1c:bd:fa:d1:21:84:48:c9:5f: 34:f0:52:3f:ed:f6:5f:a8:d7:cf:35:57:75:11:78: 93:b1:9e:78:91:f0:f6:ad:ad:32:36:f6:77:e7:dc: f3:4e:25:ee:4b:b5:f1:4f:22:8d:7c:0d:80:e7:b9: 87:2e:6f:67:a0:90:ee:77:8a:37:23:68:b1:dc:e6: 58:e8:64:69:05:2a:f4:31:b5:d4:a5:fd:ae:ec:30: 08:01:f9:30:93:44:1e:f4:f9:f2:5d:05:10:68:5d: 09:58:1a:ca:aa:8c:f4:5e:36:47:a9:57:ba:39:35: 6b:a6:bc:35:1d:ef:7b:8d:5b:7f:ae:2a:72:51:45: 56:f2:19:b8:20:0c:2a:13:eb:f9:2e:3a:ef:52:8f: 6e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:99:A9:4C:23:1D:AD:71:76:13:92:03:DD:DB:D9:C9:B2:BE:C0:1C X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:ea:70:6e:bd:a5:5d:b4:da:10:2a:c2:75:4d:71:7b:0f:b0: 23:c0:59:66:c2:73:17:c6:d2:f3:46:f4:56:17:30:ec:9e:40: 9f:d8:8e:c3:ef:f2:56:ec:60:c1:8f:4d:09:e8:e1:b9:5a:eb: 4c:92:96:da:42:7d:5f:cf:8e:49:1e:5a:4d:a1:c8:0d:15:5c: b3:4f:a5:1e:9b:cb:da:ec:65:c0:77:1b:b3:a8:c0:7d:57:33: bb:53:b9:43:32:5d:81:a0:94:a9:86:c4:18:e4:fd:51:12:e9: 72:94:7c:82:66:49:9a:79:89:a9:8f:29:94:9f:cb:3f:47:6b: d4:0f:11:bd:cf:14:b8:6b:f9:ea:ed:ed:26:2a:de:26:f7:93: 34:7b:99:e9:ad:e9:18:31:13:a2:31:92:e5:98:92:70:13:68: 29:e2:8e:67:8f:8e:11:93:df:40:5f:d4:d0:5f:c1:84:bd:89: 25:95:ae:90:91:4d:fb:f1:bb:c8:fe:05:db:de:55:04:60:59: 1d:71:9c:26:af:aa:37:ba:6f:2b:2f:37:5a:c1:57:92:46:d5: f1:2b:86:18:94:41:bb:3c:60:99:9b:a5:bf:3d:49:6a:82:50: 50:e3:4c:7b:05:dd:b7:e5:e5:4d:19:ef:37:14:c4:74:18:45: 23:0e:f4:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjUwNTMwMjAxNzI1WhcNMjUwNjA2MjAxNzI1WjAYMRYwFAYD VQQDEw02ODNhMTI1NS1jMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7ldHWRFEkx5wa8jkigLgANRt+RQIo/JbSVWI7Vs/Qa/hGA13z3W0gf4yDOT HkMfWKcV+P54ilzn2czfqWQ42zDRCIqEqxYkkXpaK9BP0nDB7gRosfOXZIle1wqC cS0BoHH9dc9IBoCgkWMDiRUcvfrRIYRIyV808FI/7fZfqNfPNVd1EXiTsZ54kfD2 ra0yNvZ359zzTiXuS7XxTyKNfA2A57mHLm9noJDud4o3I2ix3OZY6GRpBSr0MbXU pf2u7DAIAfkwk0Qe9PnyXQUQaF0JWBrKqoz0XjZHqVe6OTVrprw1He97jVt/ripy UUVW8hm4IAwqE+v5LjrvUo9u+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqZqUwj Ha1xdhOSA93b2cmyvsAcMB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0MxRC9BODA3MEFGMjhBRjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lV MWNveHE1OS1oRGVUWWFMME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO6nBuvaVdtNoQKsJ1TXF7D7AjwFlmwnMXxtLzRvRWFzDsnkCf2I7D 7/JW7GDBj00J6OG5WutMkpbaQn1fz45JHlpNocgNFVyzT6Uem8va7GXAdxuzqMB9 VzO7U7lDMl2BoJSphsQY5P1REulylHyCZkmaeYmpjymUn8s/R2vUDxG9zxS4a/nq 7e0mKt4m95M0e5nprekYMROiMZLlmJJwE2gp4o5nj44Rk99AX9TQX8GEvYklla6Q kU378bvI/gXb3lUEYFkdcZwmr6o3um8rLzdawVeSRtXxK4YYlEG7PGCZm6W/PUlq glBQ40x7Bd235eVNGe83FMR0GEUjDvSo -----END CERTIFICATE-----Generated at Sat May 31 17:49:39 2025 by rpki-client