$ rpki-client -vvf rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft File: q8dSj86PeUX0YPdSdIJB2tVnilo.mft (raw, json) Hash identifier: wKglBpkOb8zCmPPCPvJo7CHbFYEv5YGLqCcQlhwl3vQ= Subject key identifier: 35:32:12:22:EF:31:DE:FB:55:EA:1B:E3:FA:88:09:9B:50:F0:09:5E Authority key identifier: AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A Certificate issuer: /CN=A91F367D/serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Certificate serial: 07B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft Manifest number: 07AB Signing time: Thu 12 Jun 2025 20:56:31 +0000 Manifest this update: Thu 12 Jun 2025 20:56:31 +0000 Manifest next update: Thu 19 Jun 2025 20:56:31 +0000 Files and hashes: 1: q8dSj86PeUX0YPdSdIJB2tVnilo.crl (hash: OaZVeFEtca2tDkaJIFoe9Mx3qbIwoBIZ0j4640MnFzs=) 2: AC1CD860039511EBBE8C7F47C4F9AE02.roa (hash: cujX/yOvlRxdf5P8eSmQLnHVmBWJtY4Bh7R/a7D9SZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1969 (0x7b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F367D, serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Validity Not Before: Jun 12 20:56:31 2025 GMT Not After : Jun 19 20:56:31 2025 GMT Subject: CN=684b3eff-7a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e2:1c:f7:2e:2a:2f:0d:2b:7f:80:2a:6a:0b: 9c:5d:f2:0b:79:3d:05:5d:b7:08:24:b1:91:84:f5: 73:75:96:30:57:fc:6c:e5:2e:55:fe:7f:36:a1:f0: 54:fb:7b:66:ac:63:b8:fa:3a:c2:21:bd:6b:d4:aa: 0a:97:1e:03:cc:ff:0f:6d:80:8d:64:12:ab:d3:de: 5f:59:c0:40:61:7c:82:31:7b:ee:03:54:bd:18:e4: bb:cc:a4:49:ff:b7:f9:4e:9f:ec:8f:46:8c:31:b1: 48:41:b8:73:47:34:54:7e:ef:e7:57:bb:1f:20:70: f2:e4:24:81:bc:50:98:dd:26:82:7d:2a:fd:cd:8c: 18:41:43:b4:b8:d2:32:71:26:66:58:ba:54:92:0c: 05:ce:28:9c:70:68:49:a3:db:eb:dd:e8:22:39:b9: 30:26:91:18:13:99:fe:38:77:3b:27:5f:02:ed:65: 7e:48:ce:35:a9:a0:cc:56:21:ef:dc:65:be:eb:07: 19:fe:70:fe:b8:f2:dd:14:23:1e:1c:34:b0:c8:8f: 6b:50:63:08:10:ba:aa:f8:08:4a:9c:f9:91:96:f1: e6:3b:c6:ad:15:c7:d8:73:3e:62:14:1d:c6:94:64: 42:df:a3:5a:08:37:7a:12:96:67:35:b4:c3:15:31: 1f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:32:12:22:EF:31:DE:FB:55:EA:1B:E3:FA:88:09:9B:50:F0:09:5E X509v3 Authority Key Identifier: keyid:AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:42:f1:0d:e0:ba:27:ce:f6:09:7e:4f:8f:04:d0:13:33:7f: 10:af:d7:a9:40:82:2d:5c:8d:f6:23:52:d7:a2:74:6b:0e:95: c7:08:a0:3d:7e:6f:bc:1c:43:4b:6d:8d:11:5a:84:f5:fd:0c: fc:b8:3e:04:da:78:52:7b:38:28:a2:57:f1:c4:a6:25:e9:a9: 61:b5:8f:b3:31:ea:9c:a6:1c:02:e4:df:ed:70:17:60:94:48: 84:26:82:5b:81:e0:f3:75:b6:cd:64:b6:c9:1b:fd:48:dc:9b: 7c:0a:36:eb:3c:20:75:c8:4b:2e:26:94:9f:0b:e2:43:2a:89: ec:a6:3f:34:9c:65:c1:bf:61:d8:99:7c:05:29:14:31:82:b5: d5:9f:f4:be:72:21:3b:c1:1f:04:47:35:14:d5:3c:df:e2:9d: f3:86:d2:50:a3:e1:9b:b4:a1:d2:80:eb:36:ff:8d:dd:2c:8a: 54:c6:67:a4:30:55:bc:38:5e:d1:b9:d6:36:57:75:fb:4b:aa: 6d:3d:bf:eb:3a:b7:9f:6e:47:a0:0e:e4:77:cf:85:4b:f2:5c: a9:55:13:80:fa:19:33:52:e6:cf:86:60:12:01:ab:9a:58:fb: 5d:3c:f4:1b:ae:e7:57:bf:42:2b:28:45:81:ca:a3:8c:c5:bc: 82:c7:85:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM2N0QxMTAvBgNVBAUTKEFCQzc1MjhGQ0U4Rjc5NDVGNDYwRjc1Mjc0ODI0MURB RDU2NzhBNUEwHhcNMjUwNjEyMjA1NjMxWhcNMjUwNjE5MjA1NjMxWjAYMRYwFAYD VQQDEw02ODRiM2VmZi03YTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteIc9y4qLw0rf4AqagucXfILeT0FXbcIJLGRhPVzdZYwV/xs5S5V/n82ofBU +3tmrGO4+jrCIb1r1KoKlx4DzP8PbYCNZBKr095fWcBAYXyCMXvuA1S9GOS7zKRJ /7f5Tp/sj0aMMbFIQbhzRzRUfu/nV7sfIHDy5CSBvFCY3SaCfSr9zYwYQUO0uNIy cSZmWLpUkgwFziiccGhJo9vr3egiObkwJpEYE5n+OHc7J18C7WV+SM41qaDMViHv 3GW+6wcZ/nD+uPLdFCMeHDSwyI9rUGMIELqq+AhKnPmRlvHmO8atFcfYcz5iFB3G lGRC36NaCDd6EpZnNbTDFTEfdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUyEiLv Md77Veob4/qICZtQ8AleMB8GA1UdIwQYMBaAFKvHUo/Oj3lF9GD3UnSCQdrVZ4pa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzY3RC85OURBN0FCRTAz OTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVVWDBZUGRTZElKQjJ0Vm5p bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E4ZFNqODZQZVVYMFlQZFNkSUpCMnRWbmlsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzY3RC85OURBN0FCRTAzOTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVV WDBZUGRTZElKQjJ0Vm5pbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMQvEN4LonzvYJfk+PBNATM38Qr9epQIItXI32I1LXonRrDpXHCKA9 fm+8HENLbY0RWoT1/Qz8uD4E2nhSezgoolfxxKYl6alhtY+zMeqcphwC5N/tcBdg lEiEJoJbgeDzdbbNZLbJG/1I3Jt8CjbrPCB1yEsuJpSfC+JDKonspj80nGXBv2HY mXwFKRQxgrXVn/S+ciE7wR8ERzUU1Tzf4p3zhtJQo+GbtKHSgOs2/43dLIpUxmek MFW8OF7RudY2V3X7S6ptPb/rOrefbkegDuR3z4VL8lypVROA+hkzUubPhmASAaua WPtdPPQbrudXv0IrKEWByqOMxbyCx4Xt -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:04 2025 by rpki-client