$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: L60l2tEgVB/OH+P0kqib4HGELL3eD3bay+fizmyv52s= Subject key identifier: 66:A3:36:69:93:96:A3:6C:39:36:75:47:00:97:B6:78:CD:86:E7:98 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: 0105 Signing time: Fri 13 Jun 2025 04:05:59 +0000 Manifest this update: Fri 13 Jun 2025 04:05:59 +0000 Manifest next update: Fri 20 Jun 2025 04:05:59 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: 1lv09Lb9qL6zvov9HKBTilGqX98uofdxzjsLrbGTFnA=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: 3GOqN8PMZ/cxFE5yg/l01rtznIl/3wsy8K8LEuE8lEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51, serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Jun 13 04:05:59 2025 GMT Not After : Jun 20 04:05:59 2025 GMT Subject: CN=684ba3a7-5e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:61:c1:be:3a:d8:46:58:ba:4a:09:da:e8:76: 74:58:33:ea:05:3a:81:3a:7a:2d:ed:52:b5:af:25: 1d:cf:f8:81:97:cc:f0:f4:e2:c8:2a:fa:e2:a3:df: d2:77:9c:a9:4e:68:3e:07:71:04:fe:14:4e:76:28: 09:9a:0f:41:0d:9f:98:21:21:98:6c:9a:e8:29:64: 63:01:b5:49:aa:01:49:70:0a:b9:03:42:04:68:d5: 7d:f9:78:38:8f:1a:f8:db:bd:93:b0:f9:67:9b:b6: 97:ab:16:14:be:c1:b8:05:84:76:01:36:6a:49:6d: 90:38:10:2b:20:28:0a:a0:a5:05:fb:96:fd:2a:36: df:4d:29:f9:e8:3d:b8:64:d5:6f:3b:38:9c:96:ec: 60:e1:3d:4b:2c:8b:b7:73:00:50:f2:8e:d2:c9:5a: d2:43:d6:88:3a:2f:db:92:f5:70:d8:fc:4e:b2:54: 47:6b:6c:4e:82:16:50:a7:4c:5b:27:5a:a8:f9:90: dd:ec:ba:1e:f6:0e:8c:c1:69:b1:4f:bd:eb:a6:73: 6e:bf:09:f3:15:11:45:71:1c:0f:0a:8c:58:40:18: 7b:2a:a5:dd:2e:b9:dc:47:77:2a:d1:eb:c5:10:3f: 88:52:29:61:95:2c:bb:a5:3d:b8:a5:42:e9:05:2f: 19:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A3:36:69:93:96:A3:6C:39:36:75:47:00:97:B6:78:CD:86:E7:98 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d8:e3:ed:a6:28:cd:09:af:99:2f:ff:33:d2:dd:f6:ae:12: 20:a7:bc:2b:3d:ec:47:12:21:72:ef:dc:bd:af:30:7c:be:6e: f8:16:1d:2f:e4:70:6a:0d:7e:2f:f6:4f:4b:f5:dd:d0:04:98: 86:1f:ed:19:39:70:8a:33:bb:0b:20:a2:f5:43:0d:1d:14:2f: 07:a8:97:96:cb:d5:7d:8c:70:6a:05:0c:c0:c9:c8:21:f5:30: 98:ed:ff:6e:90:0d:9a:af:3d:28:b0:c1:bd:55:b0:65:f6:b7: 01:d7:ca:94:9c:7c:4f:74:7b:1f:15:39:5f:ae:c4:21:5a:fd: fb:c4:be:0f:d1:e3:e6:1e:4d:17:6f:f1:4c:67:b3:88:6b:e8: a5:9a:f6:ec:1b:9c:51:62:da:19:2a:37:40:42:0a:1a:97:5d: 85:4b:69:d8:c4:7f:82:7a:35:ca:b9:39:b1:c5:6d:e6:68:88: 9f:d8:8b:42:a5:37:b4:97:e4:c9:cc:a8:e5:e7:49:32:e7:97: 2f:6b:4e:9b:e8:28:2b:2a:86:4f:96:6b:ee:93:aa:61:5d:dc: a2:8d:cf:ac:df:93:cb:1b:4b:81:fa:72:2b:db:e1:3c:84:87: dd:aa:ce:2b:36:15:ec:ae:bc:74:23:d2:62:72:59:a9:c1:eb: 64:fc:63:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwNjEzMDQwNTU5WhcNMjUwNjIwMDQwNTU5WjAYMRYwFAYD VQQDEw02ODRiYTNhNy01ZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WHBvjrYRli6Sgna6HZ0WDPqBTqBOnot7VK1ryUdz/iBl8zw9OLIKvrio9/S d5ypTmg+B3EE/hROdigJmg9BDZ+YISGYbJroKWRjAbVJqgFJcAq5A0IEaNV9+Xg4 jxr4272TsPlnm7aXqxYUvsG4BYR2ATZqSW2QOBArICgKoKUF+5b9KjbfTSn56D24 ZNVvOzicluxg4T1LLIu3cwBQ8o7SyVrSQ9aIOi/bkvVw2PxOslRHa2xOghZQp0xb J1qo+ZDd7Loe9g6MwWmxT73rpnNuvwnzFRFFcRwPCoxYQBh7KqXdLrncR3cq0evF ED+IUilhlSy7pT24pULpBS8ZVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGajNmmT lqNsOTZ1RwCXtnjNhueYMB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy2OPtpijNCa+ZL/8z0t32rhIgp7wrPexHEiFy79y9rzB8vm74Fh0v 5HBqDX4v9k9L9d3QBJiGH+0ZOXCKM7sLIKL1Qw0dFC8HqJeWy9V9jHBqBQzAycgh 9TCY7f9ukA2arz0osMG9VbBl9rcB18qUnHxPdHsfFTlfrsQhWv37xL4P0ePmHk0X b/FMZ7OIa+ilmvbsG5xRYtoZKjdAQgoal12FS2nYxH+CejXKuTmxxW3maIif2ItC pTe0l+TJzKjl50ky55cva06b6CgrKoZPlmvuk6phXdyijc+s35PLG0uB+nIr2+E8 hIfdqs4rNhXsrrx0I9Jiclmpwetk/GOs -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:14 2025 by rpki-client