$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: TIu/tUu7IPEi5cmrk4/yvu0XFRlu8isin/HxPfVHHW4= Subject key identifier: 44:64:6C:8C:56:3A:F9:9C:46:15:0A:1C:C9:3A:B9:4A:81:69:D8:C9 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 33E9 Signing time: Fri 30 May 2025 15:26:19 +0000 Manifest this update: Fri 30 May 2025 15:26:19 +0000 Manifest next update: Fri 06 Jun 2025 15:26:19 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: jfXgQATZHZ1v7wi30L30SLnh3TyM2yLwFMafpYzkyGc=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13318 (0x3406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: May 30 15:26:19 2025 GMT Not After : Jun 6 15:26:19 2025 GMT Subject: CN=6839ce1b-78b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:b5:9b:dd:28:52:68:7e:b7:ae:41:f3:aa: 0f:18:f6:d2:bb:ef:55:ee:bc:b5:57:84:95:8f:d1: 14:7c:2a:21:a2:07:e6:ea:2f:b8:2d:e2:2b:4e:81: 83:5f:40:a3:a1:f7:13:6c:7c:54:04:aa:c6:a3:a5: 92:19:fc:72:04:e4:11:5a:82:11:45:cf:60:8a:2f: 79:80:b0:76:0e:b8:5c:f2:52:78:a4:7b:31:a1:5d: 4c:52:b9:e2:4d:c5:b4:40:96:4c:a6:a3:2a:3a:bf: d1:53:77:44:dd:61:81:17:9d:4d:4f:ca:a5:44:f6: 6d:64:a8:22:49:fe:f6:86:4a:12:e8:67:e0:07:75: c0:b7:63:04:7b:34:ab:6e:7d:7b:10:6b:74:5a:b5: b3:fd:ce:11:f3:ba:f4:23:15:45:6a:04:9c:61:e6: f5:8c:fa:85:83:9b:7f:29:9e:23:d4:43:62:48:41: 4d:0b:e7:aa:9e:67:81:41:8e:22:22:51:d2:79:85: 7f:6e:72:be:c5:9c:a3:26:ea:4f:ee:1e:89:2b:18: fe:46:78:0e:9c:ba:d0:b5:6c:bd:90:57:3f:61:5f: 20:df:56:96:4e:df:10:9c:87:98:77:13:7e:64:5d: 43:3a:21:86:06:71:c3:7c:c7:ac:ee:f8:a1:d7:1d: ff:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:64:6C:8C:56:3A:F9:9C:46:15:0A:1C:C9:3A:B9:4A:81:69:D8:C9 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:af:bb:65:fa:32:9a:16:a7:02:93:f8:5e:51:79:f0:c0:c7: 56:7f:91:9e:51:04:05:6f:59:31:5c:0f:53:22:22:cf:e8:5b: ca:80:0c:18:91:7f:e6:64:20:07:db:50:77:90:23:8f:9c:6f: be:9f:b6:1c:4e:65:f5:e2:6b:bc:d8:f9:23:a7:5e:5f:6b:03: 0e:76:e9:a7:32:6a:56:07:b0:15:1c:ef:08:8b:4f:3d:69:de: 7c:86:0b:b6:16:02:17:83:f1:57:dd:f2:bc:76:bb:5f:ac:99: 9d:e1:dc:98:c7:53:ff:7a:f1:eb:4b:e4:d1:e3:10:76:58:a0: 06:92:96:63:3b:c0:f9:ba:9c:6e:e2:01:10:8d:2d:51:6b:fb: 26:36:ab:a5:6f:4a:01:e3:cf:d4:23:2e:38:2d:2b:dd:4e:8f: a2:e3:a7:b4:ae:cc:e5:0b:36:5f:5a:ee:a9:8d:d0:65:81:ee: 43:7d:39:1c:19:80:d4:b9:a5:e0:b6:92:96:25:3f:e7:27:d0: 50:12:55:13:24:f9:d7:eb:ea:8b:0e:df:1a:c6:00:2e:75:a6: 24:e5:71:5e:b3:98:bb:5b:8c:e6:18:e5:47:65:0b:5e:39:18: f8:27:8a:8d:30:bb:7c:84:45:47:3e:e4:15:72:93:79:df:bf: 72:04:58:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwNTMwMTUyNjE5WhcNMjUwNjA2MTUyNjE5WjAYMRYwFAYD VQQDEw02ODM5Y2UxYi03OGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfK1m90oUmh+t65B86oPGPbSu+9V7ry1V4SVj9EUfCohogfm6i+4LeIrToGD X0CjofcTbHxUBKrGo6WSGfxyBOQRWoIRRc9gii95gLB2Drhc8lJ4pHsxoV1MUrni TcW0QJZMpqMqOr/RU3dE3WGBF51NT8qlRPZtZKgiSf72hkoS6GfgB3XAt2MEezSr bn17EGt0WrWz/c4R87r0IxVFagScYeb1jPqFg5t/KZ4j1ENiSEFNC+eqnmeBQY4i IlHSeYV/bnK+xZyjJupP7h6JKxj+RngOnLrQtWy9kFc/YV8g31aWTt8QnIeYdxN+ ZF1DOiGGBnHDfMes7vih1x3/2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERkbIxW OvmcRhUKHMk6uUqBadjJMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlr7tl+jKaFqcCk/heUXnwwMdWf5GeUQQFb1kxXA9TIiLP6FvKgAwY kX/mZCAH21B3kCOPnG++n7YcTmX14mu82Pkjp15fawMOdumnMmpWB7AVHO8Ii089 ad58hgu2FgIXg/FX3fK8drtfrJmd4dyYx1P/evHrS+TR4xB2WKAGkpZjO8D5upxu 4gEQjS1Ra/smNqulb0oB48/UIy44LSvdTo+i46e0rszlCzZfWu6pjdBlge5DfTkc GYDUuaXgtpKWJT/nJ9BQElUTJPnX6+qLDt8axgAudaYk5XFes5i7W4zmGOVHZQte ORj4J4qNMLt8hEVHPuQVcpN5379yBFjn -----END CERTIFICATE-----Generated at Sat May 31 16:35:54 2025 by rpki-client