$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft File: qX6qTW8VW40nxAro4yfZulLDS0I.mft (raw, json) Hash identifier: XdetSxP+eATGpfEOSYzUYFPurZLQKzrH13elbTi4ydc= Subject key identifier: 19:3E:6C:39:98:82:A1:DD:05:07:52:CD:F1:24:A3:74:87:88:AE:35 Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 0313 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft Manifest number: 0304 Signing time: Sat 31 May 2025 01:28:53 +0000 Manifest this update: Sat 31 May 2025 01:28:52 +0000 Manifest next update: Sat 07 Jun 2025 01:28:52 +0000 Files and hashes: 1: qX6qTW8VW40nxAro4yfZulLDS0I.crl (hash: zdUE79dM8pPdR5RT7YRPkdrYaDIs6o7mKLrT4M8QGWg=) 2: 595774341B6211F0B9733473C4F9AE02.roa (hash: +tz3y5WKplkKwmkAAAjt/2fkFlX3E3AyLeSQygFyWM8=) 3: DCE70C6EF9B911ED8314C10EC4F9AE02.roa (hash: Tn8STgUoF8I50uE/0Z1qBgI407z6TwGOKBDeoEbq/9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF, serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: May 31 01:28:52 2025 GMT Not After : Jun 7 01:28:52 2025 GMT Subject: CN=683a5b55-2a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:07:7b:24:05:ac:d5:29:44:67:f4:d5:1b: 19:64:44:a1:29:df:4f:dc:81:6c:68:1c:7a:59:40: 26:83:19:39:29:d8:29:ef:51:f2:50:e9:02:8e:27: 85:01:b0:e9:22:56:8a:11:dd:91:37:4a:1d:ca:74: 9c:96:92:12:d7:ee:68:d9:f7:c2:55:f2:81:61:16: f2:9f:a3:a1:9a:65:c7:b2:5f:fb:7a:aa:40:e6:92: 4e:97:e5:22:e1:6a:ec:b0:6e:23:c7:5b:46:12:cf: d6:ab:b4:28:b9:5c:90:0b:13:56:8f:e9:21:53:94: ad:71:24:da:4b:75:6f:9c:99:a1:f5:d7:17:56:4d: 3b:46:47:b8:29:6c:80:78:6e:bb:ce:2c:55:4a:c5: d7:fe:96:ab:3e:9a:74:85:d2:e4:d0:aa:85:f3:62: 1b:4b:ae:00:3c:93:c2:fa:8a:24:c3:96:47:1e:dc: 19:3a:74:11:28:f4:83:0e:cb:09:2f:3e:6f:7d:97: e7:5a:02:24:82:fe:c9:55:ca:6f:0f:b4:58:47:e2: 2b:40:03:45:3c:28:3e:a8:bc:1b:21:e2:36:c7:02: 2f:24:f6:4d:da:78:55:fe:44:c9:96:04:eb:f8:32: 11:95:52:c0:7d:67:f9:19:82:85:78:93:04:59:ef: 34:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3E:6C:39:98:82:A1:DD:05:07:52:CD:F1:24:A3:74:87:88:AE:35 X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:cd:ea:d5:42:53:a1:ed:2e:7d:4e:1d:b3:7b:24:3f:e4:c9: fd:8a:8b:9d:38:05:12:00:e7:23:b8:d1:2c:1f:25:3e:72:40: e8:63:76:94:96:b9:26:d9:b7:84:a4:56:17:9a:a5:1c:22:7c: f6:62:e8:5e:26:d9:77:3a:c2:7d:35:5e:fb:75:24:f2:6d:43: 7a:3f:ad:bc:a2:c4:51:3d:0e:50:c4:99:b6:cd:ed:12:2c:35: 17:21:1b:e4:95:66:b5:b2:23:70:d4:a2:0c:d3:6f:fa:87:d8: 07:41:5d:5b:f2:6d:0e:57:09:8a:5c:4f:0b:1e:55:dc:df:36: f1:8f:42:ac:7b:5f:07:e0:90:df:df:f0:8a:00:d9:5d:ae:b6: 03:14:d3:07:72:f1:5b:a3:91:c9:d0:03:0c:64:2b:ed:66:3f: 27:37:b3:d0:fb:7d:85:ef:ed:52:59:47:f2:64:9b:f2:7b:b3: 34:7c:8c:b2:61:5a:f4:e6:65:46:c0:46:4b:54:8e:cb:3a:b6: 95:d2:00:51:07:b7:ab:30:37:cc:38:67:32:3f:cd:03:d5:0a: d7:25:56:ee:23:0e:44:a3:3c:9a:06:2d:de:aa:c4:3a:7d:7c: 97:e0:6f:81:79:3d:86:22:95:67:8f:c8:e6:56:d6:8f:d0:ba: 42:d1:e7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjUwNTMxMDEyODUyWhcNMjUwNjA3MDEyODUyWjAYMRYwFAYD VQQDEw02ODNhNWI1NS0yYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCsHeyQFrNUpRGf01RsZZEShKd9P3IFsaBx6WUAmgxk5Kdgp71HyUOkCjieF AbDpIlaKEd2RN0odynSclpIS1+5o2ffCVfKBYRbyn6OhmmXHsl/7eqpA5pJOl+Ui 4WrssG4jx1tGEs/Wq7QouVyQCxNWj+khU5StcSTaS3VvnJmh9dcXVk07Rke4KWyA eG67zixVSsXX/parPpp0hdLk0KqF82IbS64APJPC+ookw5ZHHtwZOnQRKPSDDssJ Lz5vfZfnWgIkgv7JVcpvD7RYR+IrQANFPCg+qLwbIeI2xwIvJPZN2nhV/kTJlgTr +DIRlVLAfWf5GYKFeJMEWe808wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBk+bDmY gqHdBQdSzfEko3SHiK41MB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjRBRi9DQzdCMjU1QURDQTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0 MG54QXJvNHlmWnVsTERTMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMzerVQlOh7S59Th2zeyQ/5Mn9ioudOAUSAOcjuNEsHyU+ckDoY3aU lrkm2beEpFYXmqUcInz2YuheJtl3OsJ9NV77dSTybUN6P628osRRPQ5QxJm2ze0S LDUXIRvklWa1siNw1KIM02/6h9gHQV1b8m0OVwmKXE8LHlXc3zbxj0Kse18H4JDf 3/CKANldrrYDFNMHcvFbo5HJ0AMMZCvtZj8nN7PQ+32F7+1SWUfyZJvye7M0fIyy YVr05mVGwEZLVI7LOraV0gBRB7erMDfMOGcyP80D1QrXJVbuIw5EozyaBi3eqsQ6 fXyX4G+BeT2GIpVnj8jmVtaP0LpC0ecl -----END CERTIFICATE-----Generated at Sat May 31 16:26:50 2025 by rpki-client