$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft File: rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft (raw, json) Hash identifier: gC+vjmuPiGDoHo8ixyQHoG65HNrYaYsNKIFPhEhW8wE= Subject key identifier: 1A:4C:F2:AE:E6:57:FF:79:8F:43:D7:3A:A2:9A:90:06:EA:A8:9E:6C Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft Manifest number: 0229 Signing time: Fri 13 Jun 2025 01:25:46 +0000 Manifest this update: Fri 13 Jun 2025 01:25:46 +0000 Manifest next update: Fri 20 Jun 2025 01:25:46 +0000 Files and hashes: 1: rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl (hash: +84ulycZh+EAbowoeStqT6Va7QMdxBDmQ5Zs22ffdv4=) 2: 28BD1EFC3B4311EDAB5E6382C4F9AE02.roa (hash: iDeeY7cczGJlVpoNqxYKwzcP0iNYTGCgB6+Xi39HWPg=) 3: C31A6BFA717D11EE90B95137C4F9AE02.roa (hash: MlSWr+baoX0iIeudBnt/7RnQIgEalzKtR7VxANOwdB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97D0, serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Validity Not Before: Jun 13 01:25:46 2025 GMT Not After : Jun 20 01:25:46 2025 GMT Subject: CN=684b7e1a-02bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:90:89:fa:15:5b:23:62:a4:fb:f1:9e:c8:1b: c1:bc:5c:9a:81:3b:78:6f:d0:00:a0:9b:f5:d2:0f: 43:0d:5e:91:a8:27:cc:e6:65:98:71:b1:f6:a6:4b: 99:aa:fb:2c:a4:d0:4c:90:96:c0:59:bc:ee:1c:ee: d5:1c:cb:db:1b:cd:99:87:14:07:d3:db:28:56:6d: 16:98:b4:fd:a9:67:30:24:b2:8e:59:a4:4d:4a:0e: 38:3d:d8:f0:a0:0b:69:93:9b:7f:b0:e1:60:08:c2: 20:85:cd:26:5b:2e:e6:63:25:eb:d9:90:b1:1c:8d: bc:3e:14:57:99:cf:2e:7b:87:12:66:e5:da:6d:1c: 46:d1:15:73:d1:fc:63:1c:51:46:1a:02:84:b4:56: d9:5a:5d:55:0d:7f:15:2a:7e:16:6d:1c:a0:87:54: 61:a4:00:9e:38:a4:57:f7:df:b8:67:80:b8:c3:e5: dd:93:32:80:ff:8a:e4:53:c5:56:71:6d:bd:cd:c9: 6d:34:2a:33:1c:be:0b:76:7a:f5:73:89:58:cd:42: 74:f7:da:15:68:73:13:6e:24:4b:4f:57:21:0e:0a: 04:27:6d:f2:8d:c7:43:ae:67:90:61:5a:bc:cd:47: da:4c:ec:76:fd:64:7d:f0:a0:bd:99:30:28:b3:32: a7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4C:F2:AE:E6:57:FF:79:8F:43:D7:3A:A2:9A:90:06:EA:A8:9E:6C X509v3 Authority Key Identifier: keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:91:35:79:c3:6b:d8:93:4f:4a:d5:89:12:b3:a0:89:c1:1b: b7:f8:7e:81:ee:64:8d:5a:57:09:72:75:57:cb:d6:fd:bf:ea: 9b:cb:ad:52:fb:8f:6d:a5:91:24:b6:ec:74:06:92:39:40:fc: 3c:96:7f:4c:40:d6:ab:ae:b1:6e:44:0a:ce:66:3c:9c:7a:31: 6d:03:e6:f9:25:9f:dd:c5:56:1d:ad:24:c5:6e:fd:98:5e:e2: 08:e2:64:eb:e3:d0:f2:b4:3a:c1:04:43:8a:33:40:3d:ea:56: da:66:4d:c7:0b:fb:15:48:bc:83:00:43:05:28:dc:f5:60:13: 38:c2:93:e2:00:70:01:bb:1a:38:96:05:2d:f2:40:62:f4:1b: 18:34:1a:15:e3:ec:b4:cb:55:b5:3a:6e:00:e5:78:66:7a:d2: 42:82:61:f8:1b:1d:27:42:2b:a4:74:b6:b4:88:d7:db:16:2d: 5b:98:f7:d7:53:9f:7b:75:22:9b:ce:a1:ce:84:4b:01:9a:35: e2:40:11:8f:d5:d8:35:0a:a4:70:78:27:c3:fe:58:ca:53:80: 02:66:e4:1b:36:98:c8:5c:5f:1e:07:26:b4:ca:51:a5:17:15: 8a:a3:48:cb:a4:4e:ee:0b:2c:de:fd:4b:91:4d:b1:5a:e3:43: 2e:e1:48:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RDAxMTAvBgNVBAUTKEFFQTZERkIzNjRBMkIzQjU5MjdGMDA3QTRFODI0RjMy QzQwOEU1QzgwHhcNMjUwNjEzMDEyNTQ2WhcNMjUwNjIwMDEyNTQ2WjAYMRYwFAYD VQQDEw02ODRiN2UxYS0wMmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpCJ+hVbI2Kk+/GeyBvBvFyagTt4b9AAoJv10g9DDV6RqCfM5mWYcbH2pkuZ qvsspNBMkJbAWbzuHO7VHMvbG82ZhxQH09soVm0WmLT9qWcwJLKOWaRNSg44Pdjw oAtpk5t/sOFgCMIghc0mWy7mYyXr2ZCxHI28PhRXmc8ue4cSZuXabRxG0RVz0fxj HFFGGgKEtFbZWl1VDX8VKn4WbRygh1RhpACeOKRX99+4Z4C4w+XdkzKA/4rkU8VW cW29zcltNCozHL4Ldnr1c4lYzUJ099oVaHMTbiRLT1chDgoEJ23yjcdDrmeQYVq8 zUfaTOx2/WR98KC9mTAoszKnxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpM8q7m V/95j0PXOqKakAbqqJ5sMB8GA1UdIwQYMBaAFK6m37NkorO1kn8Aek6CTzLECOXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdEMC9CODlGQTNDNjMw MzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3V1Nmd0I2VG9KUE1zUUk1 Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JxYmZzMlNpczdXU2Z3QjZUb0pQTXNRSTVjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdEMC9CODlGQTNDNjMwMzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3 V1Nmd0I2VG9KUE1zUUk1Y2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1kTV5w2vYk09K1YkSs6CJwRu3+H6B7mSNWlcJcnVXy9b9v+qby61S +49tpZEktux0BpI5QPw8ln9MQNarrrFuRArOZjycejFtA+b5JZ/dxVYdrSTFbv2Y XuII4mTr49DytDrBBEOKM0A96lbaZk3HC/sVSLyDAEMFKNz1YBM4wpPiAHABuxo4 lgUt8kBi9BsYNBoV4+y0y1W1Om4A5XhmetJCgmH4Gx0nQiukdLa0iNfbFi1bmPfX U597dSKbzqHOhEsBmjXiQBGP1dg1CqRweCfD/ljKU4ACZuQbNpjIXF8eBya0ylGl FxWKo0jLpE7uCyze/UuRTbFa40Mu4Uij -----END CERTIFICATE-----Generated at Sat Jun 14 18:41:19 2025 by rpki-client