$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft File: qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json) Hash identifier: ysF6aiKq0OEb2hMQOvNUUPG3GXA+w5onejd/A4GW9Jo= Subject key identifier: 9B:98:B0:07:68:6F:B4:9D:09:5C:BA:EF:F4:15:59:78:6E:49:CF:CB Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft Manifest number: 24 Signing time: Sat 07 Jun 2025 07:18:45 +0000 Manifest this update: Sat 07 Jun 2025 07:18:45 +0000 Manifest next update: Sat 14 Jun 2025 07:18:45 +0000 Files and hashes: 1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: attLSjhs7vpix0FNnw2j0P3uXB5F+KHBkyVelx/BzFU=) 2: A94836600F7111F08BC42022C4F9AE02.roa (hash: 0N1RJZ+KUU/6KCa2mJ/8SF+qnin999m3l+lV+2/P0R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 07:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Jun 7 07:18:45 2025 GMT Not After : Jun 14 07:18:45 2025 GMT Subject: CN=6843e7d5-db7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d9:19:26:a5:f8:4c:93:2f:76:76:f1:55:41: b0:86:01:bb:cf:9b:86:11:34:07:1c:e6:b5:20:f8: da:76:83:84:90:de:8d:a7:1b:69:b5:fd:43:eb:df: ec:d3:19:e0:7f:60:2a:5c:ea:99:5f:62:8c:5d:55: 72:48:05:8a:15:8a:2d:6a:ba:c2:89:74:89:a6:2e: be:80:fa:cb:30:f4:01:28:46:62:74:bd:03:01:0d: 77:67:65:5b:17:1f:16:19:9f:86:f6:da:b4:74:9c: 76:db:01:00:ab:9e:be:e0:24:61:cd:9f:28:43:b3: 1b:55:38:17:30:d8:24:37:d2:fd:df:fc:91:c9:5a: 23:25:0b:f6:c2:39:be:2f:c6:2c:2b:5b:2e:4d:e1: 27:6f:90:61:a1:97:e9:02:d4:7f:76:8e:c1:68:71: 3f:8c:60:10:c5:f7:55:ab:88:38:8a:1b:90:dc:d6: 5d:26:e0:4c:61:d6:c8:cf:43:78:3f:61:42:a0:32: a8:e3:7c:58:a8:93:d3:7a:52:24:b1:9b:ed:57:43: 09:05:0f:fc:0c:8e:7d:37:07:56:db:08:d8:d7:bc: 96:0b:a4:f9:93:df:ed:9f:74:d4:44:7a:2c:e5:83: d4:c2:30:b0:a2:9b:4f:25:36:0a:56:51:71:3c:5d: 3f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:98:B0:07:68:6F:B4:9D:09:5C:BA:EF:F4:15:59:78:6E:49:CF:CB X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cf:7a:f2:88:75:6d:3b:9c:00:f0:95:68:bd:6a:1d:dd:9a: fa:2d:14:1b:8b:3a:9c:e7:e2:7d:63:78:61:16:2c:01:3f:9f: 68:7a:e2:21:34:f0:c0:e4:ac:82:e6:e8:f5:48:1f:74:f0:32: 34:5c:1d:70:09:ae:10:b7:d0:f9:71:3e:68:08:84:a4:c7:75: c7:38:90:e0:28:ee:3a:20:fd:75:3a:29:76:8f:7f:f2:77:34: 99:4e:d9:6e:37:ae:e4:5b:23:48:d3:8f:2a:69:32:ec:a5:47: 7a:7c:78:1a:ef:26:ca:2e:01:7c:bc:bc:04:36:e5:48:60:3f: 4c:1d:7a:1d:07:bf:89:a8:f7:3d:7f:58:a1:52:57:e4:97:a3: aa:5f:4b:f9:8b:43:46:db:cb:31:ac:d9:51:80:63:c8:a1:b7: 91:20:bb:42:4f:3f:6c:25:84:77:f4:57:0b:b2:3f:a3:60:ed: 35:17:93:0d:6f:72:cf:13:27:27:9d:23:91:39:b3:4a:88:6c: fc:5f:53:93:5b:17:b9:a5:cd:9a:57:d3:9f:7d:2e:51:b9:3b: 6c:21:1d:3b:b9:bb:a4:39:8f:71:3e:b4:27:9d:d1:5e:b3:b6: 0c:3f:72:bd:ca:0c:aa:b5:b7:4d:78:47:5d:e9:01:99:95:20: e3:87:b4:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoQTg5RDBGRDRGNDhBQkY2OTRGRDlERjc3MDRFNTk2NDY0 REVEMjE3OTAeFw0yNTA2MDcwNzE4NDVaFw0yNTA2MTQwNzE4NDVaMBgxFjAUBgNV BAMTDTY4NDNlN2Q1LWRiN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDp2RkmpfhMky92dvFVQbCGAbvPm4YRNAcc5rUg+Np2g4SQ3o2nG2m1/UPr3+zT GeB/YCpc6plfYoxdVXJIBYoVii1qusKJdImmLr6A+ssw9AEoRmJ0vQMBDXdnZVsX HxYZn4b22rR0nHbbAQCrnr7gJGHNnyhDsxtVOBcw2CQ30v3f/JHJWiMlC/bCOb4v xiwrWy5N4SdvkGGhl+kC1H92jsFocT+MYBDF91WriDiKG5Dc1l0m4Exh1sjPQ3g/ YUKgMqjjfFiok9N6UiSxm+1XQwkFD/wMjn03B1bbCNjXvJYLpPmT3+2fdNREeizl g9TCMLCim08lNgpWUXE8XT9hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm5iwB2hv tJ0JXLrv9BVZeG5Jz8swHwYDVR0jBBgwFoAUqJ0P1PSKv2lP2d93BOWWRk3tIXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzFBN0FERUNBMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUowUDFQU0t2MmxQMmQ5M0JPV1dSazN0SVhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzFBN0FERUNBMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJs UDJkOTNCT1dXUmszdElYay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJvPevKIdW07nADwlWi9ah3dmvotFBuLOpzn4n1jeGEWLAE/n2h64iE0 8MDkrILm6PVIH3TwMjRcHXAJrhC30PlxPmgIhKTHdcc4kOAo7jog/XU6KXaPf/J3 NJlO2W43ruRbI0jTjyppMuylR3p8eBrvJsouAXy8vAQ25UhgP0wdeh0Hv4mo9z1/ WKFSV+SXo6pfS/mLQ0bbyzGs2VGAY8iht5Egu0JPP2wlhHf0VwuyP6Ng7TUXkw1v cs8TJyedI5E5s0qIbPxfU5NbF7mlzZpX0599LlG5O2whHTu5u6Q5j3E+tCed0V6z tgw/cr3KDKq1t014R13pAZmVIOOHtJM= -----END CERTIFICATE-----Generated at Sat Jun 7 17:25:30 2025 by rpki-client