$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: WuRDHtLhT7PDxKdwZ+6dENYWCRBdmDniYagCvPpzfRo= Subject key identifier: B5:61:6C:F4:29:F0:F4:38:31:69:CF:0C:C8:82:9C:06:B0:7F:F9:D3 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 35F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 352E Signing time: Sat 31 May 2025 14:28:57 +0000 Manifest this update: Sat 31 May 2025 14:28:56 +0000 Manifest next update: Sat 07 Jun 2025 14:28:56 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: lgqJRl4L8VzqX6PEe5PDwihUDZ+yVEhuEeShUqOp7RU=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13817 (0x35f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: May 31 14:28:56 2025 GMT Not After : Jun 7 14:28:56 2025 GMT Subject: CN=683b1228-5ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2b:1c:28:8c:8d:4a:b1:1d:0b:b7:28:8f:0d: 93:24:08:3c:40:26:cc:76:54:6e:4e:84:5c:64:c6: 86:39:e5:93:25:25:e4:9c:23:7e:7a:63:47:c0:92: 25:16:2f:e2:e4:b7:02:6e:f1:3e:58:c3:89:63:28: 9a:62:5d:8c:cd:b5:67:49:8f:ba:eb:8e:c9:20:05: b1:6e:3e:96:8c:88:ae:c0:1e:3e:fa:f2:28:03:dc: a3:e4:3d:a1:64:84:40:4e:94:e0:fa:5a:23:ad:d2: 3e:3d:0f:f2:f4:17:15:18:01:af:83:09:35:a4:d3: 11:ef:1b:0d:15:77:7a:2a:fa:80:d5:8c:4a:80:3a: 0e:74:af:11:59:52:43:4f:e8:81:85:96:79:ea:fd: c4:52:3b:11:f2:ea:6e:1c:75:48:ec:ef:de:e9:a3: ad:01:3e:c6:0e:56:7a:d2:75:95:c1:e6:fd:13:09: b0:a6:c3:d6:7d:31:20:14:62:ec:96:b6:82:05:be: 94:f7:82:3b:a6:a5:52:af:b3:05:25:61:af:55:38: b7:92:4a:53:8f:1b:e3:87:53:0a:c4:2e:a8:8b:c3: 38:90:17:75:a0:b0:7f:f0:59:53:cd:85:9a:ca:fd: 32:1e:7f:f8:59:f7:a7:3d:0f:22:e8:cb:ed:f1:0a: f2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:61:6C:F4:29:F0:F4:38:31:69:CF:0C:C8:82:9C:06:B0:7F:F9:D3 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:7c:c6:e1:10:42:6b:f2:17:e5:c8:2a:52:9f:47:e5:e6:ed: b6:3b:36:eb:57:b9:6d:69:c1:6e:85:d6:2f:c0:20:05:49:27: a6:11:66:e6:c7:7c:2d:80:dd:5e:81:57:b9:ae:e3:4b:c4:f1: fd:10:63:c8:27:69:44:ba:8d:54:55:bc:9c:f8:80:58:dd:57: 5d:db:fe:87:9a:41:19:56:da:51:bb:95:5d:70:63:0c:62:cf: 41:92:a9:e0:84:3b:55:9e:f8:35:16:55:dc:55:cb:85:46:ac: f6:b9:32:3f:95:2b:9b:0a:a9:5e:79:a1:0c:d7:26:d9:8f:f5: 83:2f:5f:36:58:e7:3d:b7:0a:c8:af:fd:b9:a7:7a:7a:69:4d: b3:05:5e:71:61:22:e8:df:17:53:71:bf:29:a2:08:8b:f2:de: 7f:b4:9d:f8:02:e1:32:33:b3:6b:32:85:56:6c:86:3a:a4:77: 3d:ab:7e:10:e3:c9:16:3a:db:82:50:3a:b6:aa:6b:9a:73:d6: cd:b2:f4:a4:ca:ed:ec:5e:18:a5:18:ad:d1:75:52:2d:43:c1: c0:a0:99:16:14:2c:ca:5a:e6:0b:a6:b3:72:a6:9c:a5:71:f6: c0:38:96:36:fa:0b:e8:c4:97:65:e4:d9:a5:2f:13:cb:2e:a7: 46:3c:e2:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwNTMxMTQyODU2WhcNMjUwNjA3MTQyODU2WjAYMRYwFAYD VQQDEw02ODNiMTIyOC01Y2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yscKIyNSrEdC7cojw2TJAg8QCbMdlRuToRcZMaGOeWTJSXknCN+emNHwJIl Fi/i5LcCbvE+WMOJYyiaYl2MzbVnSY+6647JIAWxbj6WjIiuwB4++vIoA9yj5D2h ZIRATpTg+lojrdI+PQ/y9BcVGAGvgwk1pNMR7xsNFXd6KvqA1YxKgDoOdK8RWVJD T+iBhZZ56v3EUjsR8upuHHVI7O/e6aOtAT7GDlZ60nWVweb9EwmwpsPWfTEgFGLs lraCBb6U94I7pqVSr7MFJWGvVTi3kkpTjxvjh1MKxC6oi8M4kBd1oLB/8FlTzYWa yv0yHn/4WfenPQ8i6Mvt8QryRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVhbPQp 8PQ4MWnPDMiCnAawf/nTMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBfMbhEEJr8hflyCpSn0fl5u22OzbrV7ltacFuhdYvwCAFSSemEWbm x3wtgN1egVe5ruNLxPH9EGPIJ2lEuo1UVbyc+IBY3Vdd2/6HmkEZVtpRu5VdcGMM Ys9BkqnghDtVnvg1FlXcVcuFRqz2uTI/lSubCqleeaEM1ybZj/WDL182WOc9twrI r/25p3p6aU2zBV5xYSLo3xdTcb8pogiL8t5/tJ34AuEyM7NrMoVWbIY6pHc9q34Q 48kWOtuCUDq2qmuac9bNsvSkyu3sXhilGK3RdVItQ8HAoJkWFCzKWuYLprNyppyl cfbAOJY2+gvoxJdl5NmlLxPLLqdGPOJW -----END CERTIFICATE-----Generated at Sat May 31 17:14:38 2025 by rpki-client