$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: JZQkcMTlsW+Ss+lZyhttBMAyvjJT/eMeDvJYhtiNR4k= Subject key identifier: 56:46:3A:BE:CB:B4:1E:8C:17:E1:0D:2D:B1:99:B6:54:1A:ED:98:F8 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 0618 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 0600 Signing time: Fri 16 May 2025 23:20:10 +0000 Manifest this update: Fri 16 May 2025 23:20:10 +0000 Manifest next update: Fri 23 May 2025 23:20:10 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: j2nlCU/TgZvm7xUsuDVthmEunUyssPd/sneIj5l2fZQ=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: 6YYJp70ovWJbV5hwBiIeegk/fbVe4hEWR6AUPM6tWHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1560 (0x618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: May 16 23:20:10 2025 GMT Not After : May 23 23:20:10 2025 GMT Subject: CN=6827c82a-d4ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:00:7c:c3:4f:c1:8d:86:0c:81:25:d8:f4: b9:1b:41:2f:27:4a:d3:7a:dd:69:24:f2:7d:e0:b3: 21:9f:fb:a7:c6:d5:f4:4c:d7:f6:6a:3e:85:d2:dc: 4f:a2:27:ae:2d:76:f0:f1:e6:83:c5:63:11:72:c2: 02:98:ba:50:06:2d:9e:7e:77:ea:2f:fc:42:5b:09: c7:a8:0f:d1:f0:6e:71:2f:d3:75:8b:26:60:e5:99: 0e:6d:be:e3:74:30:ad:47:2c:aa:6d:ad:58:f2:9c: 89:a5:99:a0:ee:ce:18:82:23:64:09:b3:15:82:5e: 9d:c5:a0:cb:7a:e1:d2:48:68:54:38:d2:2c:1d:8e: d0:cc:d8:b5:04:5e:b9:e3:42:4d:e7:fa:8d:b9:14: 9b:c4:22:2b:9c:0b:20:70:50:df:6a:56:12:a9:85: a1:eb:10:48:ad:be:c5:f8:83:ea:d8:a5:b3:d9:28: b9:a3:c3:75:05:c5:af:04:a1:16:7d:7a:57:ef:07: e7:46:96:cc:83:ef:ae:2a:7f:6f:9f:7b:90:1b:a6: 70:37:e3:df:48:ff:21:b5:88:9c:c2:4c:44:aa:53: 83:7d:36:d4:e8:ed:e2:63:dc:91:2f:0b:3b:cd:c7: cd:48:3f:8d:72:c8:4e:7b:24:9c:74:82:a7:72:d4: 95:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:46:3A:BE:CB:B4:1E:8C:17:E1:0D:2D:B1:99:B6:54:1A:ED:98:F8 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:31:43:06:ec:5c:29:75:d9:81:f0:08:7d:57:c8:04:a0:04: 2f:5a:27:76:66:8e:73:e9:13:bf:de:15:81:60:db:42:9d:1d: 32:20:19:99:a1:50:7d:9e:dd:df:ef:32:dd:ff:ea:2b:2b:90: 3b:5f:62:b9:f5:8b:ce:41:ea:ac:5f:52:4b:87:d6:ae:69:03: 60:6b:6c:9f:97:2b:f7:34:6f:cf:52:4c:4a:6d:ec:03:05:27: 4f:a5:df:4a:f3:ff:5c:e9:7b:d1:bb:a0:cb:ff:8f:82:7e:0f: fa:3b:27:76:54:bd:7b:82:47:80:a6:06:a1:0c:71:39:53:9a: e6:d4:cf:16:a2:27:3c:8f:47:c0:59:68:5b:e8:75:b3:00:2d: 41:d5:7a:fb:e6:53:be:fa:03:dd:bb:7c:cf:3b:db:52:a0:25: de:62:d6:57:2a:82:fb:58:60:39:82:68:86:7a:ab:ec:3d:85: cf:20:bf:fc:54:83:f6:ab:43:e7:bf:72:e8:fa:74:6c:cb:62: 89:e7:b2:58:15:7b:c7:78:bc:00:28:f6:5f:d8:a6:81:d0:1b: dd:52:fb:d0:9d:eb:54:d4:fb:7a:a8:f4:3f:80:e9:dc:4a:8a: 73:56:44:fc:fb:d5:84:c9:3e:10:ad:9a:ee:46:df:e6:3c:82: b2:de:fd:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwNTE2MjMyMDEwWhcNMjUwNTIzMjMyMDEwWjAYMRYwFAYD VQQDEw02ODI3YzgyYS1kNGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbQAfMNPwY2GDIEl2PS5G0EvJ0rTet1pJPJ94LMhn/unxtX0TNf2aj6F0txP oieuLXbw8eaDxWMRcsICmLpQBi2efnfqL/xCWwnHqA/R8G5xL9N1iyZg5ZkObb7j dDCtRyyqba1Y8pyJpZmg7s4YgiNkCbMVgl6dxaDLeuHSSGhUONIsHY7QzNi1BF65 40JN5/qNuRSbxCIrnAsgcFDfalYSqYWh6xBIrb7F+IPq2KWz2Si5o8N1BcWvBKEW fXpX7wfnRpbMg++uKn9vn3uQG6ZwN+PfSP8htYicwkxEqlODfTbU6O3iY9yRLws7 zcfNSD+NcshOeyScdIKnctSVMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZGOr7L tB6MF+ENLbGZtlQa7Zj4MB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOMUMG7FwpddmB8Ah9V8gEoAQvWid2Zo5z6RO/3hWBYNtCnR0yIBmZ oVB9nt3f7zLd/+orK5A7X2K59YvOQeqsX1JLh9auaQNga2yflyv3NG/PUkxKbewD BSdPpd9K8/9c6XvRu6DL/4+Cfg/6Oyd2VL17gkeApgahDHE5U5rm1M8Woic8j0fA WWhb6HWzAC1B1Xr75lO++gPdu3zPO9tSoCXeYtZXKoL7WGA5gmiGeqvsPYXPIL/8 VIP2q0Pnv3Lo+nRsy2KJ57JYFXvHeLwAKPZf2KaB0BvdUvvQnetU1Pt6qPQ/gOnc SopzVkT8+9WEyT4QrZruRt/mPIKy3v3t -----END CERTIFICATE-----Generated at Sat May 17 05:45:36 2025 by rpki-client