$ rpki-client -vvf rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft File: mqwVb6kYtDBXQdrp1duikzdGzoc.mft (raw, json) Hash identifier: bkIeHs1j99idwbXol4B6WlPp8rneOBcvfLGlxHX2b68= Subject key identifier: B1:95:C7:68:2F:49:93:E1:73:9F:A2:82:9A:0D:95:44:B5:80:6D:9A Authority key identifier: 9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 Certificate issuer: /CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft Manifest number: 01C1 Signing time: Sun 15 Jun 2025 02:21:15 +0000 Manifest this update: Sun 15 Jun 2025 02:21:15 +0000 Manifest next update: Sun 22 Jun 2025 02:21:15 +0000 Files and hashes: 1: mqwVb6kYtDBXQdrp1duikzdGzoc.crl (hash: LutAW6oNK4q9x34swglgIpLm6oIvZiD3xIEj3G0dwp0=) 2: A46B24207D3811EF8EE86E6BC4F9AE02.roa (hash: q4NWMO7W6lRpux2uN6ng9OrQyUZmWgx1UYeF7qqy2kQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133CD2, serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Validity Not Before: Jun 15 02:21:15 2025 GMT Not After : Jun 22 02:21:15 2025 GMT Subject: CN=684e2e1b-3fc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ae:33:1f:92:13:f8:55:ac:e7:a6:0e:cf:3b: c6:ee:a8:fc:80:a7:6d:41:3a:67:1d:ab:8e:da:0d: 52:1c:7a:ee:f1:41:43:4b:29:32:16:53:7d:5b:b3: 9f:d9:77:f3:e3:d9:97:ca:87:8a:c1:fc:df:be:9c: 5d:4d:08:9f:df:91:50:c2:94:42:2d:9d:06:b1:4d: 5a:61:39:23:ea:22:7b:49:3f:7b:f6:84:41:49:b5: e3:0a:f2:dc:aa:d1:5e:df:64:19:2c:ee:37:96:50: 86:f4:08:ec:d3:06:4a:da:0b:b0:f2:55:87:76:c2: a0:91:34:49:be:09:ca:5b:70:1f:3e:01:e8:c2:1c: bf:57:ba:15:9b:fe:dd:ed:d4:16:41:ed:05:19:4a: f4:ac:78:60:90:9d:d6:cb:f6:f9:25:76:ef:58:0e: 9b:46:f7:5e:42:75:c0:2c:93:61:83:06:d3:95:12: 73:fa:30:51:7a:05:b5:6e:11:e1:1e:75:17:f3:e3: dc:9d:f3:f0:48:66:d0:18:26:b9:23:1b:5f:7f:3d: fb:34:23:9d:26:44:23:26:6e:48:3f:4f:7a:0e:72: 30:9c:53:77:ca:52:c7:53:bf:f5:5e:7b:e5:f7:bf: 1a:8c:40:03:16:13:f6:c7:3a:68:55:b8:82:5b:c0: 82:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:95:C7:68:2F:49:93:E1:73:9F:A2:82:9A:0D:95:44:B5:80:6D:9A X509v3 Authority Key Identifier: keyid:9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:24:ed:70:e2:74:dd:c0:f7:b0:06:a9:11:42:40:27:7f:0c: 9a:f0:91:8e:b0:1e:73:e8:fc:4c:16:e0:36:c5:b0:2e:7c:44: fd:e8:7d:41:64:a4:e0:ab:fc:db:85:1a:19:c4:62:52:6a:8e: ea:25:c3:1b:bf:c9:d1:cb:1a:a0:55:df:d8:c7:e6:0d:2a:d4: 92:e6:30:a2:01:77:fd:41:a5:16:72:9d:3f:61:46:f2:50:20: 8c:8d:4d:6e:b1:e1:3c:12:78:7f:e7:e0:91:28:e5:b4:d3:2e: 1d:a5:bf:dd:82:0a:7b:38:51:09:23:2f:c5:ec:d7:43:1a:7c: aa:f9:8f:26:9f:6b:12:4a:1f:dc:19:ec:21:1a:72:a1:d2:b4: 5b:0a:37:1a:86:92:68:77:fc:db:c2:de:ad:a5:cb:a2:1a:0f: 34:77:64:5a:18:2f:6e:17:fc:4a:c6:83:ef:57:c4:d2:b0:90: 96:74:2f:66:ba:18:e9:06:08:8b:8a:34:dc:75:6d:b5:93:40: a9:4c:59:ec:7c:15:a6:4c:2c:91:72:4d:1b:69:0a:d9:5a:be: 8c:6e:d5:35:2e:2f:75:50:3a:22:60:c0:ba:99:51:e0:b4:de: cb:9f:4f:cc:85:0d:f8:e7:d2:d4:24:94:1f:93:08:a8:21:1b: 78:f2:82:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNDRDIxMTAvBgNVBAUTKDlBQUMxNTZGQTkxOEI0MzA1NzQxREFFOUQ1REJBMjkz Mzc0NkNFODcwHhcNMjUwNjE1MDIyMTE1WhcNMjUwNjIyMDIyMTE1WjAYMRYwFAYD VQQDEw02ODRlMmUxYi0zZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2a4zH5IT+FWs56YOzzvG7qj8gKdtQTpnHauO2g1SHHru8UFDSykyFlN9W7Of 2Xfz49mXyoeKwfzfvpxdTQif35FQwpRCLZ0GsU1aYTkj6iJ7ST979oRBSbXjCvLc qtFe32QZLO43llCG9Ajs0wZK2guw8lWHdsKgkTRJvgnKW3AfPgHowhy/V7oVm/7d 7dQWQe0FGUr0rHhgkJ3Wy/b5JXbvWA6bRvdeQnXALJNhgwbTlRJz+jBRegW1bhHh HnUX8+PcnfPwSGbQGCa5Ixtffz37NCOdJkQjJm5IP096DnIwnFN3ylLHU7/1Xnvl 978ajEADFhP2xzpoVbiCW8CCWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGVx2gv SZPhc5+igpoNlUS1gG2aMB8GA1UdIwQYMBaAFJqsFW+pGLQwV0Ha6dXbopM3Rs6H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0NEMi80NUYzQUE3RUFD MTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXREQlhRZHJwMWR1aWt6ZEd6 b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xd1ZiNmtZdERCWFFkcnAxZHVpa3pkR3pvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0NEMi80NUYzQUE3RUFDMTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXRE QlhRZHJwMWR1aWt6ZEd6b2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCJO1w4nTdwPewBqkRQkAnfwya8JGOsB5z6PxMFuA2xbAufET96H1B ZKTgq/zbhRoZxGJSao7qJcMbv8nRyxqgVd/Yx+YNKtSS5jCiAXf9QaUWcp0/YUby UCCMjU1useE8Enh/5+CRKOW00y4dpb/dggp7OFEJIy/F7NdDGnyq+Y8mn2sSSh/c GewhGnKh0rRbCjcahpJod/zbwt6tpcuiGg80d2RaGC9uF/xKxoPvV8TSsJCWdC9m uhjpBgiLijTcdW21k0CpTFnsfBWmTCyRck0baQrZWr6MbtU1Li91UDoiYMC6mVHg tN7Ln0/MhQ3459LUJJQfkwioIRt48oJY -----END CERTIFICATE-----Generated at Sun Jun 15 05:02:17 2025 by rpki-client