$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: aN6dpD79uOL3gYIDyaatFwI2NpHOgbaskQKJ3vMcVQI= Subject key identifier: 22:0B:48:36:B4:D4:83:9E:20:60:69:52:B2:CC:B1:5A:6B:2D:E3:DD Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 349A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 3493 Signing time: Sat 14 Jun 2025 15:18:14 +0000 Manifest this update: Sat 14 Jun 2025 15:18:14 +0000 Manifest next update: Sat 21 Jun 2025 15:18:14 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: SqJDV9tVe9BWgnh6tfGvhh4G0W1z0y8kTLnjfFlwU3Q=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13466 (0x349a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Jun 14 15:18:14 2025 GMT Not After : Jun 21 15:18:14 2025 GMT Subject: CN=684d92b6-88ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:30:e0:96:cd:c0:5c:c4:b9:97:d0:ca:de:ac: 42:d5:97:6b:79:01:87:be:44:ab:0f:4d:b8:42:70: 2a:b6:b7:a0:3c:9f:a1:e8:1d:65:7f:53:80:d0:dc: 14:87:26:1e:ac:5b:d9:80:c7:36:dd:78:b8:e3:3e: 18:d4:10:5f:52:1b:0d:44:7b:cf:a0:8d:8a:2b:65: a6:57:5e:d6:99:d0:59:a5:91:1b:2f:9c:3c:fc:27: 81:d5:85:15:a5:9b:8c:63:95:b5:79:7b:59:fb:32: 90:f7:ef:eb:78:fc:8a:c9:2e:2a:c5:dc:9e:5d:03: e8:d2:87:b7:65:50:ca:15:a6:8f:66:c1:ca:59:6d: 89:e8:95:9d:e0:e1:66:3c:ba:dd:a6:70:a1:a1:47: e4:2e:15:85:5b:07:43:02:7d:05:13:d5:39:76:79: ad:10:82:3f:d3:5b:60:49:4a:f6:84:76:d1:e0:bf: ee:8f:c7:34:f7:07:9e:4c:50:62:eb:7a:25:11:79: 3b:b4:46:16:ab:44:c4:51:cf:38:02:e5:5b:78:59: df:3a:1e:4f:a9:66:95:56:13:3a:ce:57:be:38:1f: 17:95:b4:ab:d5:60:53:f9:f9:be:f6:f6:f5:c3:52: 71:26:88:d8:0d:6b:1f:94:3d:fc:6b:e5:88:b4:67: e8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0B:48:36:B4:D4:83:9E:20:60:69:52:B2:CC:B1:5A:6B:2D:E3:DD X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ac:e9:56:b3:29:ec:f7:ff:7c:d6:c4:e9:2d:7d:24:74:5b: 26:ac:c8:e7:c1:cb:d9:0a:30:b0:42:a3:2b:a3:7e:09:b2:b8: b1:1c:9f:f8:2c:41:bb:b8:9b:62:5d:10:6a:fa:ec:54:32:b9: 8a:ba:eb:9b:2e:ac:f3:99:31:cf:6a:81:34:43:3e:e9:df:3c: 38:d6:d4:9c:9d:e2:ee:0c:ff:9c:00:42:c9:c4:fa:dc:8e:d2: e7:e2:a5:76:15:17:ab:2c:56:c1:f1:e2:25:ae:49:e6:30:11: ff:9e:16:d2:0c:a3:9b:7c:07:bd:fa:83:0c:75:35:31:45:38: f8:ad:75:71:22:fa:3b:90:9f:8b:ca:0b:da:0e:9e:1a:84:29: bd:e5:b8:5f:a9:8e:f3:34:5c:bb:ab:14:e3:b5:c9:5c:89:63: ee:84:05:1c:e0:47:c1:d4:43:00:5c:3f:d1:d6:ad:cd:73:72: 3e:e3:91:fe:f6:63:f1:1a:7e:65:c9:43:d0:fe:a1:8e:e3:c6: 92:e3:6d:53:8d:e7:cf:e0:e0:19:db:cf:19:10:5c:b9:93:c6: 0c:1b:58:52:ac:28:da:58:b9:42:4f:29:6b:ea:de:57:29:cf: 3f:4a:54:b8:94:25:ae:0d:92:d3:4a:d1:0a:13:68:cf:bf:a1: 9f:35:07:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUwNjE0MTUxODE0WhcNMjUwNjIxMTUxODE0WjAYMRYwFAYD VQQDEw02ODRkOTJiNi04OGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zDgls3AXMS5l9DK3qxC1ZdreQGHvkSrD024QnAqtregPJ+h6B1lf1OA0NwU hyYerFvZgMc23Xi44z4Y1BBfUhsNRHvPoI2KK2WmV17WmdBZpZEbL5w8/CeB1YUV pZuMY5W1eXtZ+zKQ9+/rePyKyS4qxdyeXQPo0oe3ZVDKFaaPZsHKWW2J6JWd4OFm PLrdpnChoUfkLhWFWwdDAn0FE9U5dnmtEII/01tgSUr2hHbR4L/uj8c09weeTFBi 63olEXk7tEYWq0TEUc84AuVbeFnfOh5PqWaVVhM6zle+OB8XlbSr1WBT+fm+9vb1 w1JxJojYDWsflD38a+WItGfoQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCILSDa0 1IOeIGBpUrLMsVprLePdMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnrOlWsyns9/981sTpLX0kdFsmrMjnwcvZCjCwQqMro34JsrixHJ/4 LEG7uJtiXRBq+uxUMrmKuuubLqzzmTHPaoE0Qz7p3zw41tScneLuDP+cAELJxPrc jtLn4qV2FRerLFbB8eIlrknmMBH/nhbSDKObfAe9+oMMdTUxRTj4rXVxIvo7kJ+L ygvaDp4ahCm95bhfqY7zNFy7qxTjtclciWPuhAUc4EfB1EMAXD/R1q3Nc3I+45H+ 9mPxGn5lyUPQ/qGO48aS421TjefP4OAZ288ZEFy5k8YMG1hSrCjaWLlCTylr6t5X Kc8/SlS4lCWuDZLTStEKE2jPv6GfNQch -----END CERTIFICATE-----Generated at Sat Jun 14 19:07:25 2025 by rpki-client