$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft File: qJaxcL8NiHI_NsesIIeFSqKEvXE.mft (raw, json) Hash identifier: YmDBTEZOIw7OYROf6AB8oSPSMPN4CsYZ5H174wTJxnI= Subject key identifier: 66:C9:6A:8B:6D:38:0C:8A:D6:FF:B6:CA:1B:83:FA:91:7B:7F:58:BB Authority key identifier: A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 Certificate issuer: /CN=A913DF3B/serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Certificate serial: 0554 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft Manifest number: 054F Signing time: Mon 16 Jun 2025 23:02:34 +0000 Manifest this update: Mon 16 Jun 2025 23:02:34 +0000 Manifest next update: Mon 23 Jun 2025 23:02:34 +0000 Files and hashes: 1: qJaxcL8NiHI_NsesIIeFSqKEvXE.crl (hash: +jaiLpSc4OVH/uiWe0lzygfVjezfQ3LAU19wc31EJ6k=) 2: 8D7E9B7EF03D11EB804DF61FC4F9AE02.roa (hash: K0g8xWII4g0z2vzjoBYClHiJj2EJk6kk9zBp36ie6T4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1364 (0x554) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF3B, serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Validity Not Before: Jun 16 23:02:34 2025 GMT Not After : Jun 23 23:02:34 2025 GMT Subject: CN=6850a28a-c902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c4:8b:3f:af:43:f5:3c:17:7d:2d:d2:96:bc: 28:48:98:8d:b3:78:d2:7d:c7:5b:b8:4d:1d:32:1a: df:7c:ac:6e:a0:f8:ad:1e:96:36:26:73:a5:a7:ed: e5:a7:b2:d1:54:b4:d6:f8:23:1a:95:a8:57:69:95: 94:d5:13:58:20:b2:6d:19:7a:ff:69:4e:6b:08:da: 7c:9b:18:33:98:4d:a3:3d:35:fe:30:ac:97:b0:a8: 1e:56:04:2e:62:2e:1d:ee:4c:e4:66:84:4b:4c:33: 1c:fb:6e:22:42:ce:74:08:21:2f:f8:31:1d:16:fd: a8:92:a8:00:a5:be:33:d0:fa:62:a6:ca:23:47:2f: 13:8f:f1:81:35:75:f3:7d:82:ab:17:da:4c:a5:83: ab:70:05:d2:78:58:ca:ee:f6:67:db:d1:7d:a4:a1: 9b:74:b4:55:dd:ba:d4:7a:92:e5:18:7f:a4:98:e3: 82:6e:2a:d2:89:6d:ea:1e:f4:6a:3e:67:c2:09:59: 5a:4b:41:ed:8f:f4:d3:40:4f:7d:d7:26:46:6c:ed: 7f:5f:44:d7:42:ef:a9:a0:f1:c8:8f:ca:5d:5d:4f: b8:fe:d9:2a:22:97:68:2c:c6:6b:07:c1:a0:56:65: fe:16:2d:b9:ff:d7:71:e4:3b:c2:68:75:c9:01:b0: e7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C9:6A:8B:6D:38:0C:8A:D6:FF:B6:CA:1B:83:FA:91:7B:7F:58:BB X509v3 Authority Key Identifier: keyid:A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:39:00:34:03:82:cc:3a:05:35:c5:59:9a:96:b6:e0:cd:00: 51:a3:57:74:55:a7:7e:ac:23:7e:94:72:f3:f9:ed:ea:b1:c3: d9:0e:96:c0:b7:62:a4:bd:ea:fc:2b:b5:7a:cd:57:82:c8:4c: 05:25:0e:dd:f9:f4:01:1f:25:ca:34:38:5b:69:bc:f8:fd:ab: ce:d6:8e:fb:30:aa:b4:e5:87:7e:50:d7:31:68:27:c1:b1:5e: b6:59:96:b1:82:fc:dc:ba:fc:0d:b2:fe:8d:13:71:87:92:89: 6f:f0:ef:5a:59:ce:ac:16:bc:77:96:19:12:1b:86:1d:dc:c8: 12:8c:a1:8b:ba:de:8e:b7:fb:3e:75:9f:70:71:51:c6:4c:b7: 37:66:d7:c7:e1:14:c3:97:dd:51:32:4b:32:64:38:50:58:48: ba:10:ff:c0:44:15:2b:a3:be:b7:3b:9d:8e:da:64:0e:61:1d: ff:e4:59:bc:83:95:e4:54:ce:2b:5e:6f:13:5f:11:0e:23:e1: f4:24:f9:68:ef:a3:cf:6d:35:43:74:d6:79:0f:8e:b9:a4:0c: a4:16:fb:51:55:76:1a:7f:a9:21:3a:04:38:49:31:cb:e0:03: b2:3a:0b:70:ae:7d:13:ed:d8:aa:51:68:60:05:04:79:9e:fc: a6:eb:f5:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGM0IxMTAvBgNVBAUTKEE4OTZCMTcwQkYwRDg4NzIzRjM2QzdBQzIwODc4NTRB QTI4NEJENzEwHhcNMjUwNjE2MjMwMjM0WhcNMjUwNjIzMjMwMjM0WjAYMRYwFAYD VQQDEw02ODUwYTI4YS1jOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMSLP69D9TwXfS3SlrwoSJiNs3jSfcdbuE0dMhrffKxuoPitHpY2JnOlp+3l p7LRVLTW+CMalahXaZWU1RNYILJtGXr/aU5rCNp8mxgzmE2jPTX+MKyXsKgeVgQu Yi4d7kzkZoRLTDMc+24iQs50CCEv+DEdFv2okqgApb4z0PpipsojRy8Tj/GBNXXz fYKrF9pMpYOrcAXSeFjK7vZn29F9pKGbdLRV3brUepLlGH+kmOOCbirSiW3qHvRq PmfCCVlaS0Htj/TTQE991yZGbO1/X0TXQu+poPHIj8pdXU+4/tkqIpdoLMZrB8Gg VmX+Fi25/9dx5DvCaHXJAbDnhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbJaott OAyK1v+2yhuD+pF7f1i7MB8GA1UdIwQYMBaAFKiWsXC/DYhyPzbHrCCHhUqihL1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYzQi9DREJBODEyRUYw M0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlISV9Oc2VzSUllRlNxS0V2 WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKYXhjTDhOaUhJX05zZXNJSWVGU3FLRXZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REYzQi9DREJBODEyRUYwM0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlI SV9Oc2VzSUllRlNxS0V2WEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGOQA0A4LMOgU1xVmalrbgzQBRo1d0Vad+rCN+lHLz+e3qscPZDpbA t2Kkver8K7V6zVeCyEwFJQ7d+fQBHyXKNDhbabz4/avO1o77MKq05Yd+UNcxaCfB sV62WZaxgvzcuvwNsv6NE3GHkolv8O9aWc6sFrx3lhkSG4Yd3MgSjKGLut6Ot/s+ dZ9wcVHGTLc3ZtfH4RTDl91RMksyZDhQWEi6EP/ARBUro763O52O2mQOYR3/5Fm8 g5XkVM4rXm8TXxEOI+H0JPlo76PPbTVDdNZ5D465pAykFvtRVXYaf6khOgQ4STHL 4AOyOgtwrn0T7diqUWhgBQR5nvym6/X1 -----END CERTIFICATE-----Generated at Tue Jun 17 18:39:44 2025 by rpki-client