$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: ciEqwZW4B8M370tBLvfLB+Ic4XbRXlY8TAGUfmaVFNc= Subject key identifier: FA:7E:CD:FF:5E:B8:15:A8:99:C1:EA:39:08:CF:6C:98:A9:EB:50:D9 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: 01CB Signing time: Sat 31 May 2025 02:45:55 +0000 Manifest this update: Sat 31 May 2025 02:45:54 +0000 Manifest next update: Sat 07 Jun 2025 02:45:54 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: RtqBfzhzd6L1oGjtLpA1RBIX4dimK8+J7E63yZ40OfM=) 2: C0C268B8441C11EF9E110F1EC4F9AE02.roa (hash: m6rZeuVTK1YDhuaaIVhiTv3yauwN9+tcZ5dIfBdhpRQ=) 3: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (hash: mAZNBvYiKFXdkzpTN4tNBsnyhqKr4h/2Tyrx/kSmdy8=) 4: 08A1C0B8DC5011EF9C212C5CC4F9AE02.roa (hash: Vaf4WstL1N3DSV5lZGZocpmDqTwW1A3D3RH6q2VNIFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: May 31 02:45:54 2025 GMT Not After : Jun 7 02:45:54 2025 GMT Subject: CN=683a6d63-2369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3f:35:39:c0:92:ee:e7:3b:c9:12:08:a8:ba: eb:cf:c7:49:61:4f:69:4b:cf:86:2a:af:25:fc:55: e8:ab:71:bd:42:b5:99:40:02:a6:a1:5a:d3:15:8f: 3a:e6:26:85:cd:82:b1:a6:21:3c:2f:a2:64:b2:2d: 5c:99:08:4d:1b:90:8f:50:b9:d1:23:0e:8a:4e:1d: 5b:be:d4:00:75:1f:e3:58:26:b5:ce:43:fc:ff:d1: ee:5b:42:71:72:0a:f4:f7:48:4a:64:d6:1f:f8:e9: 9d:80:a3:e4:26:2e:ce:a3:68:de:ee:af:52:f2:3c: 59:df:bb:20:8a:4e:08:dd:5e:40:d2:b4:ac:3e:1c: e5:06:66:2c:e6:b9:24:ab:b9:a6:ba:c1:36:74:44: 0e:ac:8d:08:08:e7:f9:7f:ee:3e:bc:47:3c:41:d9: c4:9e:64:a2:cd:ba:a4:2f:bb:1f:1e:ec:ae:1b:4c: 5c:b4:72:e5:d2:b5:be:45:89:25:3e:ef:16:04:c8: f1:f5:93:93:19:80:3d:cd:1d:43:b6:e3:c5:18:3f: 3d:a5:fa:b3:db:90:e0:cc:4b:89:9b:38:b6:e4:66: 9b:41:46:00:ad:49:75:4b:bc:18:e9:93:db:e8:be: 77:dd:de:70:8a:fe:ac:ae:0f:9a:b6:04:03:28:ad: b9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:7E:CD:FF:5E:B8:15:A8:99:C1:EA:39:08:CF:6C:98:A9:EB:50:D9 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:fe:ce:fe:f6:23:4d:67:f1:44:ec:44:38:a2:9c:f3:2b:ca: dc:2f:f1:4c:5e:21:b2:6e:49:f0:c8:3e:b2:e0:3d:83:16:39: 15:f2:f4:cf:8c:83:be:24:43:d4:a1:d3:9f:2c:98:d5:69:93: 12:9e:2c:93:0a:bc:18:e6:5b:32:82:86:f2:ec:64:ed:64:2f: 81:f6:38:ac:35:d5:59:39:71:84:3a:00:c6:85:67:a8:06:4c: ad:bd:2e:ce:b5:45:85:1f:94:3b:ba:dd:d6:38:c3:f5:15:17: d0:cb:62:ed:a1:8e:08:e3:d4:ff:17:12:68:56:bc:d4:c3:17: 50:47:52:5b:79:65:c2:83:60:40:90:05:9d:76:6b:2d:0e:04: 98:50:7b:8f:76:3b:ec:73:6d:e7:f9:89:d8:68:36:c1:b5:b0: ea:03:d5:fb:1d:d0:7e:5e:0e:18:70:f4:5e:c7:80:93:91:7f: 15:42:e6:16:ec:37:e0:96:2c:57:8f:2d:1a:70:60:3c:e8:2c: 43:e6:c0:c6:f7:44:2e:f5:2c:87:c2:ba:40:b9:3f:cc:4b:f2: 76:d4:e3:f8:78:dd:83:6d:2a:10:83:a9:55:e4:03:fc:54:f8: ee:19:a5:0e:e1:a4:ee:74:c9:8f:6d:6f:c1:e1:da:b0:b6:e5: e8:f8:13:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjUwNTMxMDI0NTU0WhcNMjUwNjA3MDI0NTU0WjAYMRYwFAYD VQQDEw02ODNhNmQ2My0yMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwD81OcCS7uc7yRIIqLrrz8dJYU9pS8+GKq8l/FXoq3G9QrWZQAKmoVrTFY86 5iaFzYKxpiE8L6Jksi1cmQhNG5CPULnRIw6KTh1bvtQAdR/jWCa1zkP8/9HuW0Jx cgr090hKZNYf+OmdgKPkJi7Oo2je7q9S8jxZ37sgik4I3V5A0rSsPhzlBmYs5rkk q7mmusE2dEQOrI0ICOf5f+4+vEc8QdnEnmSizbqkL7sfHuyuG0xctHLl0rW+RYkl Pu8WBMjx9ZOTGYA9zR1DtuPFGD89pfqz25DgzEuJmzi25GabQUYArUl1S7wY6ZPb 6L533d5wiv6srg+atgQDKK25HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPp+zf9e uBWomcHqOQjPbJip61DZMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDh/s7+9iNNZ/FE7EQ4opzzK8rcL/FMXiGybknwyD6y4D2DFjkV8vTP jIO+JEPUodOfLJjVaZMSniyTCrwY5lsygoby7GTtZC+B9jisNdVZOXGEOgDGhWeo BkytvS7OtUWFH5Q7ut3WOMP1FRfQy2LtoY4I49T/FxJoVrzUwxdQR1JbeWXCg2BA kAWddmstDgSYUHuPdjvsc23n+YnYaDbBtbDqA9X7HdB+Xg4YcPRex4CTkX8VQuYW 7DfglixXjy0acGA86CxD5sDG90Qu9SyHwrpAuT/MS/J21OP4eN2DbSoQg6lV5AP8 VPjuGaUO4aTudMmPbW/B4dqwtuXo+BMb -----END CERTIFICATE-----Generated at Sat May 31 16:35:50 2025 by rpki-client