$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: GGpIm4ObsNUrArm40BZ9FptUTaD7x1o+sjX2evqoPcU= Subject key identifier: DA:A6:4D:A8:CD:AA:36:08:85:60:41:1D:85:3F:59:34:B9:74:07:4E Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 34A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 3496 Signing time: Sat 14 Jun 2025 15:06:46 +0000 Manifest this update: Sat 14 Jun 2025 15:06:45 +0000 Manifest next update: Sat 21 Jun 2025 15:06:45 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: 0pNnAmHVvLpV9fnLF8LiAjkeimW0VPISk8zhKtIOEFw=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13473 (0x34a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Jun 14 15:06:45 2025 GMT Not After : Jun 21 15:06:45 2025 GMT Subject: CN=684d9005-4e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e9:c1:97:07:83:e2:f6:9f:32:bb:55:29:a5: 34:4e:50:ba:b2:90:8e:f2:0a:b0:40:48:3d:df:e7: 12:9d:ae:99:a0:49:ca:61:9c:da:4d:0e:60:db:72: 50:4e:70:ca:30:a2:c7:3f:ec:45:ea:23:ab:a6:06: f2:6c:73:54:7e:05:b7:56:65:ee:67:b0:65:52:b5: 28:11:c7:2b:f6:19:cf:56:97:f3:20:e9:7b:5c:5c: 80:7e:4e:28:14:82:c3:a4:27:e6:84:ad:46:17:c5: 04:36:ae:01:aa:d1:de:5e:a9:27:00:74:79:11:82: 18:6d:a6:9a:85:aa:d1:64:8f:92:6a:05:3d:01:b6: 3f:06:7d:fe:3b:64:80:ba:92:f0:db:56:01:a6:e5: 91:05:7f:d6:fe:34:d4:3e:6e:8c:cb:d7:8d:87:c9: f7:26:cb:58:30:17:0d:d5:1c:9d:73:f7:1b:64:ae: a1:96:ba:d6:8e:f3:e6:ab:76:5d:fb:a1:17:7b:a7: 18:21:f5:fa:83:cc:df:ce:00:33:6d:5a:cb:51:91: e0:79:a1:a9:34:b0:1d:a2:7a:3f:d0:d1:ac:38:f9: 26:0b:5d:e7:28:ef:1f:40:f4:c4:44:2d:c5:d7:c3: ce:fc:b3:3f:b8:50:29:6a:3e:c6:8c:9b:49:f9:0f: 2c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A6:4D:A8:CD:AA:36:08:85:60:41:1D:85:3F:59:34:B9:74:07:4E X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:4f:c6:f6:b2:84:cd:5d:24:58:92:9c:e3:c6:97:b1:53:ea: d6:67:1b:ee:a4:24:f2:8c:dc:c1:49:2b:0e:f0:41:61:17:db: d6:18:a2:96:ca:df:62:fc:e7:75:b4:ed:3d:24:6b:3c:4d:d3: d0:8d:cc:02:69:4a:55:81:05:2f:0b:66:7b:b5:3f:a3:2a:d9: 28:c4:31:48:50:94:c6:0a:04:d8:92:5b:86:81:fe:48:9c:fa: f5:11:a2:ce:29:28:20:87:25:e8:74:45:5c:13:33:69:31:5c: 55:e3:f9:a3:f7:3c:70:4c:e4:2c:b1:74:0e:0a:82:0e:fb:bf: 8a:fd:e0:62:0c:dc:28:88:92:cc:b3:bb:2f:8d:a4:41:8f:74: 90:40:95:ff:ac:4d:18:99:31:1e:56:9a:e3:ff:5b:1c:30:35: 8a:3a:82:82:70:73:5f:f4:a6:4e:db:6f:b4:47:65:8f:12:a1: 66:0c:53:83:83:ed:f8:e2:99:c3:75:71:86:ff:47:a0:d9:01: 63:f1:3f:71:26:05:16:ef:a0:1c:1d:37:88:20:14:1a:22:3e: 83:0a:12:99:64:ad:bd:32:db:17:5e:4a:8d:27:e0:99:f0:0b: 33:c3:fe:d9:16:11:78:89:c1:26:13:72:56:72:4e:ed:a7:0a: 0a:3c:28:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUwNjE0MTUwNjQ1WhcNMjUwNjIxMTUwNjQ1WjAYMRYwFAYD VQQDEw02ODRkOTAwNS00ZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+nBlweD4vafMrtVKaU0TlC6spCO8gqwQEg93+cSna6ZoEnKYZzaTQ5g23JQ TnDKMKLHP+xF6iOrpgbybHNUfgW3VmXuZ7BlUrUoEccr9hnPVpfzIOl7XFyAfk4o FILDpCfmhK1GF8UENq4BqtHeXqknAHR5EYIYbaaaharRZI+SagU9AbY/Bn3+O2SA upLw21YBpuWRBX/W/jTUPm6My9eNh8n3JstYMBcN1Rydc/cbZK6hlrrWjvPmq3Zd +6EXe6cYIfX6g8zfzgAzbVrLUZHgeaGpNLAdono/0NGsOPkmC13nKO8fQPTERC3F 18PO/LM/uFApaj7GjJtJ+Q8suQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqmTajN qjYIhWBBHYU/WTS5dAdOMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoT8b2soTNXSRYkpzjxpexU+rWZxvupCTyjNzBSSsO8EFhF9vWGKKW yt9i/Od1tO09JGs8TdPQjcwCaUpVgQUvC2Z7tT+jKtkoxDFIUJTGCgTYkluGgf5I nPr1EaLOKSgghyXodEVcEzNpMVxV4/mj9zxwTOQssXQOCoIO+7+K/eBiDNwoiJLM s7svjaRBj3SQQJX/rE0YmTEeVprj/1scMDWKOoKCcHNf9KZO22+0R2WPEqFmDFOD g+344pnDdXGG/0eg2QFj8T9xJgUW76AcHTeIIBQaIj6DChKZZK29MtsXXkqNJ+CZ 8Aszw/7ZFhF4icEmE3JWck7tpwoKPCim -----END CERTIFICATE-----Generated at Sat Jun 14 19:01:56 2025 by rpki-client