$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: +LH6+RREg4w3EhhFb35FDjBxStwYZ2R9vQpK+gNT1p8= Subject key identifier: 79:CF:50:D7:3F:DB:A1:66:83:DB:9B:65:82:53:09:3D:A0:A4:9C:F7 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: 0C Signing time: Tue 17 Jun 2025 06:58:29 +0000 Manifest this update: Tue 17 Jun 2025 06:58:29 +0000 Manifest next update: Tue 24 Jun 2025 06:58:29 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: R9vbbrcteQ0HH5nn4JSk3+0rHDd0avGuDI/kUI6r7pg=) 2: 765A9AEC3C6F11F0A83E954EC4F9AE02.roa (hash: 1LK4ltfDfUObnmcEpgqLd5X9zDYVgPh3Q6BVcaMlN3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Jun 17 06:58:29 2025 GMT Not After : Jun 24 06:58:29 2025 GMT Subject: CN=68511215-0ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8f:81:c1:35:d7:57:cc:89:38:b5:0a:87:43: 7b:e8:1e:c5:63:fe:81:78:a5:69:e3:21:fc:72:1b: 7b:26:5e:52:93:07:f5:ec:6b:c4:55:49:fb:18:ac: 80:e9:67:e9:27:e0:81:d4:e8:4b:9a:3e:11:1a:07: fa:a7:e8:2a:d0:59:18:0c:87:7b:7f:fa:64:00:a0: 66:36:e6:a1:a7:ef:95:de:22:cb:0e:43:4a:63:88: ec:1d:85:9c:6f:d2:e9:b2:03:ca:2a:82:fa:b5:fe: 25:4c:46:ff:2e:ad:6e:3b:15:2a:2f:3b:d8:f7:fa: 69:35:08:20:53:a8:8c:51:c5:f9:72:79:2f:a4:5a: 8c:c1:ac:b8:47:54:18:75:d3:53:70:92:5c:ea:70: 68:93:e1:39:8a:8b:49:8a:cf:00:01:b8:73:27:35: 38:98:ba:e0:70:c6:ff:e1:79:be:13:37:a4:5b:67: d7:94:65:9f:ec:7b:ff:74:6a:52:a3:0e:80:09:a5: f9:de:51:0a:44:03:52:e6:23:71:3d:51:67:c6:59: 2b:47:f7:54:83:47:f5:b7:12:66:e1:cb:08:e8:4a: 3d:40:9b:c1:bc:32:fc:f4:5a:16:2d:b9:3b:23:0f: 32:f0:2b:99:2f:79:a4:e0:30:92:ab:84:ca:bb:ac: 0b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CF:50:D7:3F:DB:A1:66:83:DB:9B:65:82:53:09:3D:A0:A4:9C:F7 X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:05:cb:88:7f:44:85:14:bf:42:0d:d3:e5:ad:2a:72:3d:83: 1e:44:67:0f:1e:41:e9:49:3e:06:98:d7:27:ce:18:cf:ff:70: 2c:d8:9f:2c:34:49:fe:f1:6e:58:e4:18:47:1d:4d:6f:b0:55: 8e:55:48:ce:ae:a4:95:04:c7:78:88:d2:0e:90:4b:cf:e4:3f: 05:ee:6c:33:4a:58:4c:5f:b0:01:a0:76:01:39:64:33:2a:77: ca:78:62:fb:e0:36:87:ca:4e:08:66:c9:33:ba:ef:2c:ba:60: 28:bd:16:8c:99:2b:fd:bd:28:27:89:24:80:b7:70:e0:f4:16: bf:18:1e:48:1b:c1:b8:db:84:55:e2:5e:17:7a:9e:83:0e:a1: 44:f7:48:0a:37:49:ba:1b:85:35:9c:d3:0c:37:87:06:de:e9: a1:24:9c:32:e9:0a:4d:38:2a:86:39:29:18:f6:ec:6b:a3:0a: 88:33:8e:e7:dc:3d:36:65:53:9e:10:f3:bb:e2:e9:3f:b1:52: 15:31:00:c7:a1:16:56:86:4e:e5:3a:2c:d9:07:37:31:2d:7d: e3:60:f1:16:0f:ae:5f:af:13:c0:78:fa:d7:41:28:0d:57:0b: 36:b5:57:ae:5a:9e:90:24:51:36:1c:2c:94:94:03:08:1a:06: 35:f3:2d:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0U1QjExMC8GA1UEBRMoQUI1M0Q5OTI4MTAyQjkxOURCN0M1NDY1QzhERDVGRjI2 Njc0NDNCMzAeFw0yNTA2MTcwNjU4MjlaFw0yNTA2MjQwNjU4MjlaMBgxFjAUBgNV BAMTDTY4NTExMjE1LTBjZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdj4HBNddXzIk4tQqHQ3voHsVj/oF4pWnjIfxyG3smXlKTB/Xsa8RVSfsYrIDp Z+kn4IHU6EuaPhEaB/qn6CrQWRgMh3t/+mQAoGY25qGn75XeIssOQ0pjiOwdhZxv 0umyA8oqgvq1/iVMRv8urW47FSovO9j3+mk1CCBTqIxRxflyeS+kWozBrLhHVBh1 01NwklzqcGiT4TmKi0mKzwABuHMnNTiYuuBwxv/heb4TN6RbZ9eUZZ/se/90alKj DoAJpfneUQpEA1LmI3E9UWfGWStH91SDR/W3EmbhywjoSj1Am8G8Mvz0WhYtuTsj DzLwK5kveaTgMJKrhMq7rAvlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUec9Q1z/b oWaD25tlglMJPaCknPcwHwYDVR0jBBgwFoAUq1PZkoECuRnbfFRlyN1f8mZ0Q7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3RTVCL0Q4NEU3QkYyM0M2 RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcTFQWmtvRUN1Um5iZkZSbHlOMWY4bVowUTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 RTVCL0Q4NEU3QkYyM0M2RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJu YmZGUmx5TjFmOG1aMFE3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALwFy4h/RIUUv0IN0+WtKnI9gx5EZw8eQelJPgaY1yfOGM//cCzYnyw0 Sf7xbljkGEcdTW+wVY5VSM6upJUEx3iI0g6QS8/kPwXubDNKWExfsAGgdgE5ZDMq d8p4YvvgNofKTghmyTO67yy6YCi9FoyZK/29KCeJJIC3cOD0Fr8YHkgbwbjbhFXi Xhd6noMOoUT3SAo3SbobhTWc0ww3hwbe6aEknDLpCk04KoY5KRj27GujCogzjufc PTZlU54Q87vi6T+xUhUxAMehFlaGTuU6LNkHNzEtfeNg8RYPrl+vE8B4+tdBKA1X Cza1V65anpAkUTYcLJSUAwgaBjXzLfg= -----END CERTIFICATE-----Generated at Tue Jun 17 14:33:59 2025 by rpki-client