$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: o8IJHacWD1RouPusey0FUI1WLejP59OtArZtal1uOrE= Subject key identifier: 95:9C:17:EF:A0:DF:42:D0:12:66:75:37:B5:62:74:20:61:86:59:21 Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0DD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0DB7 Signing time: Thu 12 Jun 2025 17:48:16 +0000 Manifest this update: Thu 12 Jun 2025 17:48:15 +0000 Manifest next update: Thu 19 Jun 2025 17:48:15 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: HIBXZ1kc1zZAnBBtREegs6DYz8E5Vf1g/hV2NDOrme4=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: fGrUYT1O2dItK4fIwYgIfLvCsJmlCIF/jYJCGwsc26A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3544 (0xdd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9, serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Jun 12 17:48:15 2025 GMT Not After : Jun 19 17:48:15 2025 GMT Subject: CN=684b12df-b9ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:93:b7:37:b4:2c:9b:3c:cf:6b:a6:76:3d:ae: 99:97:11:06:b8:35:c4:d8:b5:0a:74:de:18:d2:d9: 58:c9:84:39:50:e9:1f:65:76:61:e2:28:b8:41:75: 25:48:c5:c4:cd:a0:47:ab:25:7a:6a:77:86:cf:41: 69:42:d1:73:b3:27:ec:9c:26:0d:68:a4:4a:bd:23: 8d:77:64:77:c5:ec:00:bd:46:8f:59:ec:6f:2f:08: f0:40:21:e6:87:0c:65:f7:5e:b0:83:12:44:eb:22: e4:a7:f1:98:24:44:3f:87:d7:18:c7:8a:df:13:fa: da:12:d7:c3:0d:61:b4:a3:61:a9:92:d9:8b:04:74: da:14:ec:22:e7:4b:88:65:69:80:96:8d:3c:60:6f: 60:8d:44:b8:be:69:d2:21:c7:5e:d2:c5:86:65:af: 52:14:f0:06:46:65:58:a0:3c:7a:c1:67:39:dc:38: 65:31:e4:3d:ab:f5:d2:19:5b:5f:97:6a:1a:51:6a: fe:11:19:ce:aa:23:6e:8d:e2:f0:2e:8a:3a:66:0c: 80:d7:66:cd:21:39:40:bc:76:4f:74:8f:3f:56:cb: da:00:14:00:db:68:5c:64:93:ad:5d:48:c1:a0:65: 0c:e2:b3:4d:79:e9:37:24:c2:96:7b:39:16:09:e0: 28:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9C:17:EF:A0:DF:42:D0:12:66:75:37:B5:62:74:20:61:86:59:21 X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:a1:0d:49:07:ff:89:61:5f:6e:7b:2d:fd:7e:c3:a2:46:12: 18:26:c8:40:23:ce:29:31:80:66:d2:c2:ae:85:28:fe:6d:c4: 6f:0b:20:f3:ae:00:94:56:2d:78:24:af:23:f6:ba:b3:b4:55: 73:3a:19:85:ee:ed:09:67:f4:2f:fd:4f:ca:48:5f:2b:42:ef: ba:1b:9f:c0:4f:20:a9:6e:ae:2b:ca:cd:31:cb:8e:0d:42:58: 79:08:cf:9e:86:d8:93:39:6c:2e:4d:18:5d:5c:fa:2c:90:b3: cb:80:c9:e6:ea:f5:a1:94:bc:a0:d4:11:c1:38:d5:bd:d3:ef: a3:62:03:c3:02:1c:d3:c9:49:20:d5:24:4c:09:57:d3:74:f4: 3a:c4:0d:57:95:f9:4f:29:05:6d:91:5a:f3:ca:c4:8c:94:c8: 06:db:e9:5e:57:1a:24:93:6c:26:cc:62:36:15:2c:02:5d:16: 66:71:3e:62:4e:35:ef:2a:2c:a3:bb:ac:37:e4:58:73:dd:d1: 98:ef:c1:f0:66:a8:b5:4d:c6:a4:ce:dd:c1:5a:f2:bf:5f:53: e9:ae:f8:56:84:6a:07:6b:6a:94:9a:9d:b3:5a:92:ef:cb:a7: 68:77:48:82:1b:e8:11:ef:b5:6e:14:d0:f5:b0:42:0f:6c:d0: d1:29:91:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjUwNjEyMTc0ODE1WhcNMjUwNjE5MTc0ODE1WjAYMRYwFAYD VQQDEw02ODRiMTJkZi1iOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5O3N7QsmzzPa6Z2Pa6ZlxEGuDXE2LUKdN4Y0tlYyYQ5UOkfZXZh4ii4QXUl SMXEzaBHqyV6aneGz0FpQtFzsyfsnCYNaKRKvSONd2R3xewAvUaPWexvLwjwQCHm hwxl916wgxJE6yLkp/GYJEQ/h9cYx4rfE/raEtfDDWG0o2GpktmLBHTaFOwi50uI ZWmAlo08YG9gjUS4vmnSIcde0sWGZa9SFPAGRmVYoDx6wWc53DhlMeQ9q/XSGVtf l2oaUWr+ERnOqiNujeLwLoo6ZgyA12bNITlAvHZPdI8/VsvaABQA22hcZJOtXUjB oGUM4rNNeek3JMKWezkWCeAoEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWcF++g 30LQEmZ1N7VidCBhhlkhMB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7oQ1JB/+JYV9uey39fsOiRhIYJshAI84pMYBm0sKuhSj+bcRvCyDz rgCUVi14JK8j9rqztFVzOhmF7u0JZ/Qv/U/KSF8rQu+6G5/ATyCpbq4rys0xy44N Qlh5CM+ehtiTOWwuTRhdXPoskLPLgMnm6vWhlLyg1BHBONW90++jYgPDAhzTyUkg 1SRMCVfTdPQ6xA1XlflPKQVtkVrzysSMlMgG2+leVxokk2wmzGI2FSwCXRZmcT5i TjXvKiyju6w35Fhz3dGY78HwZqi1Tcakzt3BWvK/X1PprvhWhGoHa2qUmp2zWpLv y6dod0iCG+gR77VuFND1sEIPbNDRKZFG -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:42 2025 by rpki-client