$ rpki-client -vvf rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft File: q0w-Na78VbW6NYykBu2WJqQiD9A.mft (raw, json) Hash identifier: x5q+T5GLfnjBB6ZC0U/3o515eKGgGzbzDeGMVqAljao= Subject key identifier: F9:76:EE:66:D7:2F:6C:0C:A9:3E:A1:FC:47:C4:86:B8:BB:AF:84:68 Authority key identifier: AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 Certificate issuer: /CN=A914A553/serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Certificate serial: 0ABD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft Manifest number: 0AAF Signing time: Thu 12 Jun 2025 19:20:48 +0000 Manifest this update: Thu 12 Jun 2025 19:20:48 +0000 Manifest next update: Thu 19 Jun 2025 19:20:48 +0000 Files and hashes: 1: q0w-Na78VbW6NYykBu2WJqQiD9A.crl (hash: sNjfeovzeB2Xfl2a2fwLVhfYmAGhPjoxWXPi6iCUvFI=) 2: 7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa (hash: kRz4OHfhPxe5EPvefvMi3Xao6izuUxMq6U5mJJMpf2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2749 (0xabd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A553, serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Validity Not Before: Jun 12 19:20:48 2025 GMT Not After : Jun 19 19:20:48 2025 GMT Subject: CN=684b2890-b284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b8:c4:90:53:ee:27:94:18:3c:41:8e:e0:9d: f8:7b:f2:13:10:78:cb:67:2e:8d:3e:fc:9c:84:41: 4c:94:57:0c:ad:44:40:f5:8f:a4:e8:be:1f:76:d6: f1:be:6b:d6:15:55:8d:ac:ce:9b:9f:18:e5:75:1b: 2c:10:83:6d:01:f7:86:58:30:5e:e1:b1:85:ca:39: 19:59:af:05:bc:84:c5:70:71:6d:00:d8:67:f4:6c: 1e:6d:3a:07:73:1d:fe:3d:a6:c7:ab:0b:e9:34:47: 88:63:5e:44:85:a7:60:5b:a1:f9:61:1b:00:d8:ed: 14:ae:34:dc:20:22:00:ed:63:67:b2:f8:a5:5a:83: ef:16:55:b0:75:46:97:4e:55:f8:17:64:f9:26:68: 8b:9c:c3:83:52:58:c3:a5:fb:94:76:9c:f9:bf:31: 9f:3a:4b:0a:e1:66:dc:32:e4:30:5f:6a:07:7a:d7: 88:f9:4a:1a:3e:3d:ed:a9:cf:e2:cd:a4:29:82:c2: e4:2f:df:27:07:78:f3:e7:49:36:6e:5f:7f:80:26: 0e:d7:b4:e1:3a:6a:74:e2:36:9e:b3:7b:fa:da:72: 76:01:96:e8:99:f9:76:12:c6:75:b2:74:5b:21:01: 78:97:d7:81:3a:5a:ce:a4:8a:3e:fe:a3:90:cf:6a: 30:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:76:EE:66:D7:2F:6C:0C:A9:3E:A1:FC:47:C4:86:B8:BB:AF:84:68 X509v3 Authority Key Identifier: keyid:AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:0a:b5:ec:01:60:d5:2a:e5:f3:e1:a5:62:20:bf:c2:2c:c3: 88:f5:71:da:8a:4f:66:78:dd:00:f0:30:e0:2c:e5:a6:41:63: 9e:e6:7e:95:58:4f:ac:38:c2:a1:a7:c0:1f:d6:ad:46:69:17: 58:c0:e3:3c:03:41:81:b2:14:04:13:d3:eb:a5:2d:49:d0:96: f4:a7:c5:a8:ab:db:a7:d2:db:a6:98:c5:65:7f:36:2b:68:3c: e4:eb:65:50:c8:17:80:21:a3:0b:61:ed:85:d6:54:4e:61:bc: 1a:c1:fd:9f:d1:13:fa:16:61:12:a6:10:d1:b1:98:c9:83:46: d8:bb:bc:01:b8:1e:c1:8f:77:0f:2f:d1:6b:ac:47:6e:fe:05: 55:f9:4c:df:06:e8:ae:5b:4d:58:3f:89:1e:13:c8:59:27:c2: 15:d5:53:56:24:55:ae:51:c6:f9:d2:f4:f0:bb:17:f4:e1:3b: a4:69:1d:7d:64:3e:37:0a:7b:f6:01:70:6e:c3:40:b0:10:69: a1:0d:a4:1b:17:6b:51:b1:4a:7f:68:91:e6:05:41:8f:1c:fe: fa:7f:45:a8:ab:16:e3:da:45:2a:fa:33:d4:8f:00:44:f3:67: 4a:92:10:f4:f6:7a:e9:4c:ba:be:13:e8:5d:88:e9:32:4d:89: e9:93:8e:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1NTMxMTAvBgNVBAUTKEFCNEMzRTM1QUVGQzU1QjVCQTM1OENBNDA2RUQ5NjI2 QTQyMjBGRDAwHhcNMjUwNjEyMTkyMDQ4WhcNMjUwNjE5MTkyMDQ4WjAYMRYwFAYD VQQDEw02ODRiMjg5MC1iMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrjEkFPuJ5QYPEGO4J34e/ITEHjLZy6NPvychEFMlFcMrURA9Y+k6L4fdtbx vmvWFVWNrM6bnxjldRssEINtAfeGWDBe4bGFyjkZWa8FvITFcHFtANhn9GwebToH cx3+PabHqwvpNEeIY15EhadgW6H5YRsA2O0UrjTcICIA7WNnsvilWoPvFlWwdUaX TlX4F2T5JmiLnMODUljDpfuUdpz5vzGfOksK4WbcMuQwX2oHeteI+UoaPj3tqc/i zaQpgsLkL98nB3jz50k2bl9/gCYO17ThOmp04jaes3v62nJ2AZbomfl2EsZ1snRb IQF4l9eBOlrOpIo+/qOQz2owdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPl27mbX L2wMqT6h/EfEhri7r4RoMB8GA1UdIwQYMBaAFKtMPjWu/FW1ujWMpAbtliakIg/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU1My85NUM4QTNFNDU3 QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZiVzZOWXlrQnUyV0pxUWlE OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Ewdy1OYTc4VmJXNk5ZeWtCdTJXSnFRaUQ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTU1My85NUM4QTNFNDU3QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZi VzZOWXlrQnUyV0pxUWlEOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZCrXsAWDVKuXz4aViIL/CLMOI9XHaik9meN0A8DDgLOWmQWOe5n6V WE+sOMKhp8Af1q1GaRdYwOM8A0GBshQEE9PrpS1J0Jb0p8Woq9un0tummMVlfzYr aDzk62VQyBeAIaMLYe2F1lROYbwawf2f0RP6FmESphDRsZjJg0bYu7wBuB7Bj3cP L9FrrEdu/gVV+UzfBuiuW01YP4keE8hZJ8IV1VNWJFWuUcb50vTwuxf04TukaR19 ZD43Cnv2AXBuw0CwEGmhDaQbF2tRsUp/aJHmBUGPHP76f0Woqxbj2kUq+jPUjwBE 82dKkhD09nrpTLq+E+hdiOkyTYnpk47s -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:22 2025 by rpki-client