$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: N6EP6KdTt+pYNOImizFawQR8FoCpY/jB8CbXLAAeLm0= Subject key identifier: 74:7C:D6:E6:D7:25:2B:65:46:66:B3:C9:EA:95:17:7F:A6:BC:C9:01 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 340F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 33F2 Signing time: Mon 16 Jun 2025 15:23:00 +0000 Manifest this update: Mon 16 Jun 2025 15:23:00 +0000 Manifest next update: Mon 23 Jun 2025 15:23:00 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: GfnRl7FF7caBF6PsBnfhWkJP2T8Zh7TNDhLTavFrZM0=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13327 (0x340f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Jun 16 15:23:00 2025 GMT Not After : Jun 23 15:23:00 2025 GMT Subject: CN=685036d4-cde0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:36:e5:68:20:9f:91:a1:fc:10:b1:da:27:68: 85:3c:93:a3:80:aa:2a:50:9f:db:f9:d5:fa:3e:6f: e4:c9:09:6c:4b:de:fc:8a:7c:49:20:c0:7e:bb:3b: 93:34:78:0e:d4:b6:32:82:00:8c:2e:ac:8f:28:80: 7e:ad:c8:78:a0:e4:b5:24:29:ec:8c:0d:e3:ea:cb: 4d:f9:4e:fc:eb:e7:0d:3f:59:e0:f0:e9:08:49:13: 6f:d6:de:d3:9b:05:ce:53:e2:38:63:e8:fc:50:59: ae:89:d6:b0:e0:d0:a8:ca:13:5e:bc:c2:b7:0b:5f: 6b:15:48:5f:0e:cd:a3:9d:c5:4f:e1:e6:10:65:db: 6f:bd:92:2a:36:40:39:45:b8:d8:61:9c:0c:36:2a: 24:5e:7d:7a:51:55:ee:b6:12:5c:f8:89:94:fd:bd: ad:19:24:29:57:06:7a:42:0e:54:f9:3e:1c:70:22: b9:8e:f2:04:c2:03:3c:72:44:db:55:43:70:05:81: e5:42:76:d6:09:b2:3f:19:37:00:e5:3d:13:40:5f: e2:32:d9:60:c0:ed:30:0e:a9:14:4f:6b:fb:d0:88: 29:54:c2:5d:f8:4d:dc:c9:f6:97:eb:34:ff:6e:5a: 90:5a:7b:ca:b0:40:92:cb:d3:ba:3b:38:e8:6b:0d: fd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:7C:D6:E6:D7:25:2B:65:46:66:B3:C9:EA:95:17:7F:A6:BC:C9:01 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:87:13:a3:b6:00:cc:17:84:dc:28:f9:e3:c7:de:2c:fc:99: 1b:17:44:a0:a1:0f:65:23:ca:5b:29:2e:80:de:82:2c:26:34: 05:93:31:98:ee:00:92:f5:27:d3:0d:ae:6a:46:4c:41:a4:20: 6b:45:45:9a:3e:60:be:9c:eb:01:eb:ea:eb:29:54:9a:bf:8e: 2e:01:8a:f8:3d:2c:b1:0e:27:06:31:b3:2f:0d:89:d0:28:a5: 23:d1:b4:b9:7a:f1:2b:72:5d:ca:fc:aa:ee:04:1a:b2:45:91: fe:5a:f1:83:d1:1b:d0:f5:1c:bc:7a:05:bb:38:66:6a:70:ed: 9e:07:7e:b1:c8:89:3f:e4:e0:32:f2:3c:84:b9:f4:3e:8f:29: ac:d5:cd:62:ad:63:57:f6:22:8f:ac:ad:38:05:50:30:7a:58: cf:03:a9:f0:93:69:cc:c6:54:6c:ba:f3:6f:1c:27:59:41:9c: 68:6a:98:d2:4d:fe:87:63:4e:d5:af:99:ea:84:c1:d2:16:3a: 24:a0:1f:c0:58:1e:64:8c:87:b7:c2:1f:fc:55:9c:37:6e:1a: 99:91:5b:b2:bb:f0:0e:cf:0b:27:0a:25:9d:8d:8a:ad:75:7a: a6:a3:01:9c:b4:35:c8:1c:e4:40:e9:4d:64:ae:8b:22:89:9a: ff:58:13:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwNjE2MTUyMzAwWhcNMjUwNjIzMTUyMzAwWjAYMRYwFAYD VQQDEw02ODUwMzZkNC1jZGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DblaCCfkaH8ELHaJ2iFPJOjgKoqUJ/b+dX6Pm/kyQlsS978inxJIMB+uzuT NHgO1LYyggCMLqyPKIB+rch4oOS1JCnsjA3j6stN+U786+cNP1ng8OkISRNv1t7T mwXOU+I4Y+j8UFmuidaw4NCoyhNevMK3C19rFUhfDs2jncVP4eYQZdtvvZIqNkA5 RbjYYZwMNiokXn16UVXuthJc+ImU/b2tGSQpVwZ6Qg5U+T4ccCK5jvIEwgM8ckTb VUNwBYHlQnbWCbI/GTcA5T0TQF/iMtlgwO0wDqkUT2v70IgpVMJd+E3cyfaX6zT/ blqQWnvKsECSy9O6Ozjoaw395QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHR81ubX JStlRmazyeqVF3+mvMkBMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBihxOjtgDMF4TcKPnjx94s/JkbF0SgoQ9lI8pbKS6A3oIsJjQFkzGY 7gCS9SfTDa5qRkxBpCBrRUWaPmC+nOsB6+rrKVSav44uAYr4PSyxDicGMbMvDYnQ KKUj0bS5evErcl3K/KruBBqyRZH+WvGD0RvQ9Ry8egW7OGZqcO2eB36xyIk/5OAy 8jyEufQ+jyms1c1irWNX9iKPrK04BVAweljPA6nwk2nMxlRsuvNvHCdZQZxoapjS Tf6HY07Vr5nqhMHSFjokoB/AWB5kjIe3wh/8VZw3bhqZkVuyu/AOzwsnCiWdjYqt dXqmowGctDXIHORA6U1krosiiZr/WBM6 -----END CERTIFICATE-----Generated at Tue Jun 17 04:03:38 2025 by rpki-client