$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft File: q-I6igEe0yhhVdpR9a14wbb8yT0.mft (raw, json) Hash identifier: lLOU1lvgn/iYKxMpG4rttbwPnKbepO5yFy63Uph6Z14= Subject key identifier: 2F:08:35:97:6E:8A:B5:CC:4F:06:A6:1B:29:F3:2D:E3:95:76:A3:3A Authority key identifier: AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D Certificate issuer: /CN=A91DAAAF/serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft Manifest number: 0184 Signing time: Fri 13 Jun 2025 02:37:22 +0000 Manifest this update: Fri 13 Jun 2025 02:37:21 +0000 Manifest next update: Fri 20 Jun 2025 02:37:21 +0000 Files and hashes: 1: q-I6igEe0yhhVdpR9a14wbb8yT0.crl (hash: t2z2DPnu+elLGx0fy1qNooRwS7DBi2Xe75aWgK381Tg=) 2: 34EEA87C040511EEA466E336C4F9AE02.roa (hash: obDYb1FFvr0mB7iBHTgY83tEv9YylCIEzp5d/KneH78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAAAF, serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Validity Not Before: Jun 13 02:37:21 2025 GMT Not After : Jun 20 02:37:21 2025 GMT Subject: CN=684b8ee1-1d9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fd:8c:97:29:33:6d:d4:a1:57:e3:bb:87:be: 5d:99:e1:30:fc:a9:f7:f3:6b:76:a3:e6:35:53:8c: 55:26:7a:10:79:00:76:15:84:85:4e:b6:6a:2b:db: 90:70:40:0f:b1:b8:62:d3:d9:db:25:74:e4:c8:f9: 1d:e0:e9:26:17:82:d6:5a:21:34:af:31:52:37:66: 1b:04:14:1f:f0:13:93:66:1d:3e:e2:4d:d9:c0:62: 3d:64:58:ad:f1:2b:bf:76:c7:56:d1:7f:6f:69:6e: 00:0a:00:41:6a:f4:92:a4:ea:af:32:c1:0c:b5:41: 03:4a:fc:81:59:23:23:b8:b6:d8:63:79:17:2f:62: f6:4d:8e:89:49:09:e0:56:8e:9a:48:b9:85:7f:8b: a3:dd:92:b5:80:a7:43:1a:fe:7f:00:c2:b1:77:ee: 24:14:fe:d7:cf:8e:46:3d:a8:3b:a6:fa:f1:58:37: c8:ab:4a:7f:07:d6:c0:c2:b3:fc:af:1e:7c:b2:75: 07:64:ff:35:ca:48:45:37:0d:d7:c7:7f:26:46:6e: 2a:a2:00:b2:16:ec:bc:61:4c:29:f0:70:b5:45:4a: 8d:5b:40:f6:f5:9c:63:02:8e:82:e2:ae:81:7b:9b: 06:c9:c6:23:90:1e:37:78:ef:f5:e7:a3:6a:fd:91: d0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:08:35:97:6E:8A:B5:CC:4F:06:A6:1B:29:F3:2D:E3:95:76:A3:3A X509v3 Authority Key Identifier: keyid:AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:bd:da:3c:71:ef:01:3a:b0:c7:c9:17:6d:d6:2f:c9:8f:aa: c8:f2:d1:36:68:d0:8d:3b:62:ce:12:88:24:95:86:ca:2e:a2: 53:7c:fe:bf:75:e5:c3:f8:12:e8:54:a2:a8:01:51:30:e4:34: 50:72:9d:d1:bf:ac:1d:24:9d:53:72:75:1e:d9:c5:89:20:5c: 76:c0:ba:01:7a:e9:fb:88:ba:76:33:61:66:c7:1c:97:51:54: 2b:f7:97:03:b0:a2:0c:6a:e4:6c:db:05:ee:d6:c6:ef:81:be: de:fd:0e:cd:bf:0f:29:3a:1a:11:cb:3a:ee:f5:b9:70:25:e7: 5d:d3:2e:b2:2c:fa:9b:e8:09:55:ff:55:bf:30:bd:a2:76:88: 6e:ad:97:9d:58:32:da:21:8e:cf:6d:9f:e8:2a:ab:da:29:0e: b6:69:50:43:9e:83:67:16:a6:91:5b:b6:08:f2:20:d8:b7:dd: d1:47:f9:5a:de:a8:49:3f:30:c7:f5:b3:e4:6c:eb:77:21:87: 4d:56:5c:db:27:60:57:29:2a:5f:ab:7c:64:bd:d8:9b:6b:76: 0b:ea:9e:6e:a3:a7:4c:a7:4c:6f:a3:2c:e0:77:aa:1c:cb:38: 82:f9:e8:1c:e1:1b:58:3a:fb:6b:32:58:38:87:a2:44:ba:df: 6e:bd:b9:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFBQUYxMTAvBgNVBAUTKEFCRTIzQThBMDExRUQzMjg2MTU1REE1MUY1QUQ3OEMx QjZGQ0M5M0QwHhcNMjUwNjEzMDIzNzIxWhcNMjUwNjIwMDIzNzIxWjAYMRYwFAYD VQQDEw02ODRiOGVlMS0xZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxv2MlykzbdShV+O7h75dmeEw/Kn382t2o+Y1U4xVJnoQeQB2FYSFTrZqK9uQ cEAPsbhi09nbJXTkyPkd4OkmF4LWWiE0rzFSN2YbBBQf8BOTZh0+4k3ZwGI9ZFit 8Su/dsdW0X9vaW4ACgBBavSSpOqvMsEMtUEDSvyBWSMjuLbYY3kXL2L2TY6JSQng Vo6aSLmFf4uj3ZK1gKdDGv5/AMKxd+4kFP7Xz45GPag7pvrxWDfIq0p/B9bAwrP8 rx58snUHZP81ykhFNw3Xx38mRm4qogCyFuy8YUwp8HC1RUqNW0D29ZxjAo6C4q6B e5sGycYjkB43eO/156Nq/ZHQFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8INZdu irXMTwamGynzLeOVdqM6MB8GA1UdIwQYMBaAFKviOooBHtMoYVXaUfWteMG2/Mk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUFBRi81NkIwMURDMEY4 NTExMUVEQTg2RkM4MjBDNEY5QUUwMi9xLUk2aWdFZTB5aGhWZHBSOWExNHdiYjh5 VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EtSTZpZ0VlMHloaFZkcFI5YTE0d2JiOHlUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUFBRi81NkIwMURDMEY4NTExMUVEQTg2RkM4MjBDNEY5QUUwMi9xLUk2aWdFZTB5 aGhWZHBSOWExNHdiYjh5VDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdvdo8ce8BOrDHyRdt1i/Jj6rI8tE2aNCNO2LOEogklYbKLqJTfP6/ deXD+BLoVKKoAVEw5DRQcp3Rv6wdJJ1TcnUe2cWJIFx2wLoBeun7iLp2M2FmxxyX UVQr95cDsKIMauRs2wXu1sbvgb7e/Q7Nvw8pOhoRyzru9blwJedd0y6yLPqb6AlV /1W/ML2idohurZedWDLaIY7PbZ/oKqvaKQ62aVBDnoNnFqaRW7YI8iDYt93RR/la 3qhJPzDH9bPkbOt3IYdNVlzbJ2BXKSpfq3xkvdiba3YL6p5uo6dMp0xvoyzgd6oc yziC+egc4RtYOvtrMlg4h6JEut9uvblO -----END CERTIFICATE-----Generated at Sat Jun 14 18:56:20 2025 by rpki-client