$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft File: rQWVkiI-gWrFPEM7llhG950wUjQ.mft (raw, json) Hash identifier: HOqKVlQF7aB0qFUkU9OBPg0RFDsB+aCsZfPFY7HA3oA= Subject key identifier: E9:92:4F:41:27:20:FC:25:93:20:F1:99:CA:9D:EF:34:52:06:39:07 Authority key identifier: AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 Certificate issuer: /CN=A91BAEDC/serialNumber=AD059592223E816AC53C433B965846F79D305234 Certificate serial: 1B9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft Manifest number: 1B85 Signing time: Thu 12 Jun 2025 16:13:15 +0000 Manifest this update: Thu 12 Jun 2025 16:13:15 +0000 Manifest next update: Thu 19 Jun 2025 16:13:15 +0000 Files and hashes: 1: rQWVkiI-gWrFPEM7llhG950wUjQ.crl (hash: tmQnAhdYYxwz3jOxJ+eR8WxuZcQjQ78ZnMMtqqfbL34=) 2: C85D0F7E477711EBB4044E31C4F9AE02.roa (hash: d9C+rmMNQQZELmuy5aIPVlKeATtzTC5JJ8WoYiMXlHI=) 3: C98708BE477711EBB4044E31C4F9AE02.roa (hash: V0J+K3DJnN+osBZ9dwTDUPh/HvfjgBzZSWLUoCMaCuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7068 (0x1b9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAEDC, serialNumber=AD059592223E816AC53C433B965846F79D305234 Validity Not Before: Jun 12 16:13:15 2025 GMT Not After : Jun 19 16:13:15 2025 GMT Subject: CN=684afc9b-a7b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:39:c3:d8:22:fc:75:4b:e7:3c:f4:6e:f7:cd: b2:d5:64:2e:41:b4:e2:47:d6:f9:67:84:6a:1c:33: c6:71:8e:99:3d:7a:90:7e:d1:84:e0:ab:1c:61:fa: 35:3b:19:04:ee:59:94:8d:df:a3:88:71:27:ee:b0: a6:9f:8f:de:09:df:5d:42:b9:34:3c:4c:41:22:d7: bd:38:03:0b:c5:1c:46:9b:0c:9d:26:2f:72:91:57: a8:80:e3:e1:ef:cc:78:0f:c6:38:71:7b:25:d0:62: 28:e2:c4:1d:cb:d6:4c:54:85:9b:db:7d:de:45:6d: 58:89:aa:35:7c:ae:7a:ae:09:ed:3e:df:4b:fe:49: a5:69:a9:e6:32:75:b4:a1:de:15:aa:16:c9:1c:76: dc:ae:3d:c0:65:0d:52:bc:19:ca:1a:b3:7e:78:aa: 44:c3:16:17:30:6d:e2:ce:c0:f8:e5:2b:cb:8d:52: 64:be:ee:34:44:d4:80:40:44:58:06:1d:7f:0e:f6: 27:c7:bc:e9:7d:dd:40:36:45:61:a4:09:50:ed:8b: 7c:6b:e3:10:f3:87:e3:02:82:66:c2:45:c7:29:3a: 91:1c:31:e8:cd:e7:1e:74:02:67:c9:82:54:f4:77: 31:ac:24:ac:55:36:df:dd:af:a4:b5:70:34:db:18: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:92:4F:41:27:20:FC:25:93:20:F1:99:CA:9D:EF:34:52:06:39:07 X509v3 Authority Key Identifier: keyid:AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:b2:f9:4f:2b:8a:ae:30:83:2c:5a:f6:61:29:be:3b:32:f8: 31:4c:11:bc:71:de:8f:4d:a3:c0:4f:3b:a9:a2:ba:b1:fa:3c: 81:d8:65:c8:a5:f7:97:0d:da:cd:f2:47:f3:8d:29:b6:1a:19: 61:59:81:e5:29:68:9c:25:93:12:49:28:bb:37:96:7c:d3:1f: 38:7e:72:e4:dd:d9:e2:8e:a7:e2:a3:f4:ce:bf:f8:96:b0:a2: 37:fc:c3:5f:21:ae:57:3e:c8:f1:71:d0:f7:e0:3b:46:9a:83: 9b:9a:42:b7:d3:15:6f:ce:af:1e:61:83:f4:52:0d:a6:91:8d: e5:68:ae:02:27:93:11:2f:ce:d0:96:a9:78:13:41:12:a3:36: 93:66:51:56:c4:54:b6:bf:21:a7:8c:80:26:c4:0d:a5:fb:2b: 7c:b2:f9:c7:aa:fd:d7:c0:df:0a:33:14:27:4a:7b:54:c7:ac: 50:ec:46:20:ed:c1:14:0e:6b:31:d2:62:ea:76:0b:68:4a:26: 99:3c:d3:4a:4c:d9:f4:e5:d1:ad:d9:4f:b5:21:09:fd:6d:f7: 82:eb:28:b3:96:4e:63:1d:60:03:de:8b:c7:7f:e0:70:40:a3: 5e:d8:65:8a:12:08:db:4f:25:fe:af:5a:a6:e4:c0:5e:6a:72: 29:79:41:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFREMxMTAvBgNVBAUTKEFEMDU5NTkyMjIzRTgxNkFDNTNDNDMzQjk2NTg0NkY3 OUQzMDUyMzQwHhcNMjUwNjEyMTYxMzE1WhcNMjUwNjE5MTYxMzE1WjAYMRYwFAYD VQQDEw02ODRhZmM5Yi1hN2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TnD2CL8dUvnPPRu982y1WQuQbTiR9b5Z4RqHDPGcY6ZPXqQftGE4KscYfo1 OxkE7lmUjd+jiHEn7rCmn4/eCd9dQrk0PExBIte9OAMLxRxGmwydJi9ykVeogOPh 78x4D8Y4cXsl0GIo4sQdy9ZMVIWb233eRW1Yiao1fK56rgntPt9L/kmlaanmMnW0 od4VqhbJHHbcrj3AZQ1SvBnKGrN+eKpEwxYXMG3izsD45SvLjVJkvu40RNSAQERY Bh1/DvYnx7zpfd1ANkVhpAlQ7Yt8a+MQ84fjAoJmwkXHKTqRHDHozecedAJnyYJU 9HcxrCSsVTbf3a+ktXA02xi2vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmST0En IPwlkyDxmcqd7zRSBjkHMB8GA1UdIwQYMBaAFK0FlZIiPoFqxTxDO5ZYRvedMFI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUVEQy8yREMxQkFGMjA5 ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdXckZQRU03bGxoRzk1MHdV alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRV1ZraUktZ1dyRlBFTTdsbGhHOTUwd1VqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUVEQy8yREMxQkFGMjA5ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdX ckZQRU03bGxoRzk1MHdValEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYsvlPK4quMIMsWvZhKb47MvgxTBG8cd6PTaPATzuporqx+jyB2GXI pfeXDdrN8kfzjSm2GhlhWYHlKWicJZMSSSi7N5Z80x84fnLk3dnijqfio/TOv/iW sKI3/MNfIa5XPsjxcdD34DtGmoObmkK30xVvzq8eYYP0Ug2mkY3laK4CJ5MRL87Q lql4E0ESozaTZlFWxFS2vyGnjIAmxA2l+yt8svnHqv3XwN8KMxQnSntUx6xQ7EYg 7cEUDmsx0mLqdgtoSiaZPNNKTNn05dGt2U+1IQn9bfeC6yizlk5jHWAD3ovHf+Bw QKNe2GWKEgjbTyX+r1qm5MBeanIpeUEN -----END CERTIFICATE-----Generated at Sat Jun 14 17:31:47 2025 by rpki-client