$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: nem2qD+GPprLfC0cAw40RnEAoIF6s3ydvadsdDBoBmU= Subject key identifier: 97:DE:E9:56:C8:47:5C:D0:F8:49:AF:6E:C0:E7:68:9D:26:61:00:93 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0E69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0E50 Signing time: Sat 14 Jun 2025 17:41:15 +0000 Manifest this update: Sat 14 Jun 2025 17:41:14 +0000 Manifest next update: Sat 21 Jun 2025 17:41:14 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: zpraHjB+CeVH+UUWVoMJ/3k8u6RXaqFGYKP+3tJ9ILc=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: xJh5HRbn741snUCbMX+RHgdNum29ocH1QT8bD3kB9Uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3689 (0xe69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Jun 14 17:41:14 2025 GMT Not After : Jun 21 17:41:14 2025 GMT Subject: CN=684db43b-ba32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:28:04:45:b6:5c:79:fd:72:8b:96:94:91:39: 59:e5:44:82:dd:0e:84:23:31:6b:ad:fb:f5:e2:13: c9:78:fa:f1:41:00:a2:fa:7d:ab:cc:cc:ed:27:79: 42:20:e6:ce:47:15:03:aa:0d:2f:af:70:f6:61:1a: 9f:86:15:89:e7:2c:c9:8f:75:db:8d:23:53:73:5d: 66:3b:39:fd:4c:fc:a4:aa:f5:2e:37:42:3c:7b:9d: 6e:ec:70:1f:f1:0e:de:7a:51:37:a5:4c:74:55:ed: aa:ca:55:22:5a:e8:f2:26:38:e6:e8:57:25:e9:9b: 9d:bd:bd:cc:80:a8:e8:84:3d:28:ac:1f:cf:57:3b: ac:10:5b:1d:f5:f4:83:9e:63:d9:3c:38:a1:52:9f: 27:27:15:52:9d:8c:77:cf:51:46:68:2f:74:39:49: 9b:83:05:85:7b:90:5c:04:d5:7e:07:1b:b2:9c:86: bb:c2:83:96:66:4a:9d:0e:c5:73:44:65:63:59:06: 10:07:d5:35:a9:55:18:47:c9:b0:1b:5c:d4:cb:66: be:3b:f5:c8:44:4e:b1:71:eb:a8:a9:52:3b:96:84: 7d:d7:48:f1:36:c6:f4:26:bc:43:75:38:55:f2:80: fe:02:ab:2b:ab:0d:b6:1c:84:9c:4d:97:c9:81:0d: 3b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:DE:E9:56:C8:47:5C:D0:F8:49:AF:6E:C0:E7:68:9D:26:61:00:93 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:d8:03:c0:ff:4c:2b:d7:6e:15:6c:57:bd:65:46:9e:5d:9b: 70:f3:e6:c9:11:94:29:1f:17:7f:22:ab:ae:3a:be:6e:9a:44: a1:d4:ed:fe:85:eb:fb:16:ae:f4:af:89:c1:0d:d5:17:ed:c7: f2:2b:51:8f:67:4e:8f:ca:06:e1:de:1e:78:31:86:04:37:95: b0:ea:46:90:ac:03:9e:2a:5a:5f:a3:18:61:fe:43:62:76:b8: db:6c:54:5a:f8:f9:54:7b:fb:af:34:14:94:fb:5a:2a:44:0b: 7f:71:c5:bb:b3:8e:f8:5b:d6:e8:19:96:ea:8a:67:a2:1a:f0: 73:fe:c9:23:4b:37:d7:de:52:8f:3b:9d:03:33:d6:f3:2c:ff: 7c:85:14:f6:5c:b8:71:8a:bf:f4:1b:4f:fc:0a:f7:34:14:61: 14:7f:e6:6d:4b:73:e6:a3:51:5a:1f:2c:b7:02:37:4e:dc:1c: 55:1a:3c:c1:d1:a4:7c:d0:84:ac:2b:80:a8:54:cc:ec:76:35: 8f:e4:04:d4:b9:0f:21:95:d5:4a:95:07:88:d7:0c:61:b9:09: b7:b4:48:2f:08:1e:9d:6f:c7:6f:2f:3c:7d:db:7f:df:47:fd: 61:48:a0:d1:8d:88:fa:6d:88:3b:b0:9f:6c:82:4b:28:f4:78: b2:48:84:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjUwNjE0MTc0MTE0WhcNMjUwNjIxMTc0MTE0WjAYMRYwFAYD VQQDEw02ODRkYjQzYi1iYTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqigERbZcef1yi5aUkTlZ5USC3Q6EIzFrrfv14hPJePrxQQCi+n2rzMztJ3lC IObORxUDqg0vr3D2YRqfhhWJ5yzJj3XbjSNTc11mOzn9TPykqvUuN0I8e51u7HAf 8Q7eelE3pUx0Ve2qylUiWujyJjjm6Fcl6Zudvb3MgKjohD0orB/PVzusEFsd9fSD nmPZPDihUp8nJxVSnYx3z1FGaC90OUmbgwWFe5BcBNV+BxuynIa7woOWZkqdDsVz RGVjWQYQB9U1qVUYR8mwG1zUy2a+O/XIRE6xceuoqVI7loR910jxNsb0JrxDdThV 8oD+Aqsrqw22HIScTZfJgQ07MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfe6VbI R1zQ+EmvbsDnaJ0mYQCTMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB02APA/0wr124VbFe9ZUaeXZtw8+bJEZQpHxd/IquuOr5umkSh1O3+ hev7Fq70r4nBDdUX7cfyK1GPZ06Pygbh3h54MYYEN5Ww6kaQrAOeKlpfoxhh/kNi drjbbFRa+PlUe/uvNBSU+1oqRAt/ccW7s474W9boGZbqimeiGvBz/skjSzfX3lKP O50DM9bzLP98hRT2XLhxir/0G0/8Cvc0FGEUf+ZtS3Pmo1FaHyy3AjdO3BxVGjzB 0aR80ISsK4CoVMzsdjWP5ATUuQ8hldVKlQeI1wxhuQm3tEgvCB6db8dvLzx923/f R/1hSKDRjYj6bYg7sJ9sgkso9HiySISD -----END CERTIFICATE-----Generated at Sun Jun 15 09:36:02 2025 by rpki-client