$ rpki-client -vvf rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft File: qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft (raw, json) Hash identifier: pUS9+fSUs/xjdvX/j5ruRfpRj0IjaJUfJ0tN25PtMFA= Subject key identifier: FD:D1:85:6A:D4:C7:75:56:8C:C0:94:9D:B7:39:44:A9:F6:82:D9:C6 Authority key identifier: AB:16:27:B7:A8:51:43:92:E1:C6:78:B7:B0:78:85:5A:44:55:66:E4 Certificate issuer: /CN=A912A13F/serialNumber=AB1627B7A8514392E1C678B7B078855A445566E4 Certificate serial: 0885 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft Manifest number: 087E Signing time: Mon 12 May 2025 20:27:18 +0000 Manifest this update: Mon 12 May 2025 20:27:17 +0000 Manifest next update: Mon 19 May 2025 20:27:17 +0000 Files and hashes: 1: qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl (hash: DT3dWHhlPzcjajTZc0fSob5GrC369XXUbucpTl3ahpw=) 2: 34E1DFE8BF7011EAB745BE31C4F9AE02.roa (hash: Ikd/LHIFGkrNvlawlhSa/JEAr9UmpAWA/8H+UH2uQws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A13F, serialNumber=AB1627B7A8514392E1C678B7B078855A445566E4 Validity Not Before: May 12 20:27:17 2025 GMT Not After : May 19 20:27:17 2025 GMT Subject: CN=682259a6-27e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3f:10:ca:88:48:86:3f:71:09:2d:07:80:ef: c7:63:c6:98:67:86:41:2b:ec:f3:31:9a:bf:a2:6e: 1f:0d:78:48:5b:e3:e0:87:09:85:17:1a:a9:bc:be: 39:4c:3b:c4:8b:aa:7d:09:af:72:5f:02:5e:d7:cb: 47:9e:ca:59:f9:cb:2b:15:61:78:94:59:28:ef:e4: 3c:36:73:f6:d1:90:0b:1a:49:c2:e9:fd:df:7f:39: 9e:e8:14:16:be:a7:08:ee:42:ed:d1:74:d2:1d:cf: 17:09:a5:e5:b0:09:42:f7:88:01:8b:b4:a4:bd:29: 9e:e5:fe:e8:c2:8e:9f:11:fd:87:f5:5c:2d:0a:a9: a1:16:2b:f4:88:d5:19:a9:64:8f:10:76:aa:ad:6e: 7a:31:9b:fe:39:d2:6e:6c:2b:46:5f:04:d4:b4:94: f9:56:19:ec:92:21:32:fc:26:16:94:a5:d5:e6:04: f2:8d:cc:2e:8a:88:40:a0:6f:8e:79:44:5e:3c:7e: 0b:fa:dd:18:b0:7f:20:9d:8a:c2:7e:3d:d7:f0:20: c8:9b:b2:05:5f:69:dd:22:0f:95:ca:c4:12:f0:2d: 61:af:7b:80:73:56:0c:2e:31:17:62:45:54:7c:b4: e5:36:00:3b:3c:c0:92:9e:20:d1:93:8a:d7:61:4c: fa:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D1:85:6A:D4:C7:75:56:8C:C0:94:9D:B7:39:44:A9:F6:82:D9:C6 X509v3 Authority Key Identifier: keyid:AB:16:27:B7:A8:51:43:92:E1:C6:78:B7:B0:78:85:5A:44:55:66:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:6e:c3:6a:ff:96:98:fb:5b:2f:83:e5:85:6e:e0:8c:2f:66: 44:52:4f:2e:ca:56:d9:df:22:fa:16:3a:e3:4a:b0:c0:0c:90: a1:d0:72:ff:4b:90:a2:c7:b7:9e:f6:4e:70:58:99:38:f0:6f: 1b:b9:9d:8b:f7:aa:30:b1:d2:9f:de:f1:66:26:4a:81:9c:39: e4:8d:47:16:84:7d:3c:9b:fc:8a:19:ef:f2:4d:66:37:a2:43: 14:00:7d:f8:d8:0b:b4:7d:46:9f:d7:af:27:3b:32:e6:76:8a: a9:13:2e:3c:b0:74:3c:6c:5f:01:b7:4c:14:f0:be:1f:6e:26: 60:7a:49:16:f5:12:56:51:0f:49:2b:20:85:41:19:d3:af:8c: 6b:c8:fb:3d:9b:52:87:fc:56:12:db:45:0c:af:35:3a:bc:39: 0a:d9:e4:e9:85:92:99:1a:a6:be:14:71:81:73:2c:69:bf:cf: a2:68:ef:57:a5:fd:73:85:34:9a:6c:d8:83:44:11:49:a0:19: a0:9c:92:c9:99:58:0d:8b:9f:d1:53:d9:b3:ab:68:b1:a2:bf: de:2d:b3:fb:3b:6e:0d:c6:1f:c8:cf:95:cb:47:0a:8b:84:1c: 9a:b7:a2:dd:bf:5b:5c:f4:12:5e:34:50:8e:2b:45:d7:1a:af: b2:e1:39:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExM0YxMTAvBgNVBAUTKEFCMTYyN0I3QTg1MTQzOTJFMUM2NzhCN0IwNzg4NTVB NDQ1NTY2RTQwHhcNMjUwNTEyMjAyNzE3WhcNMjUwNTE5MjAyNzE3WjAYMRYwFAYD VQQDEw02ODIyNTlhNi0yN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwz8QyohIhj9xCS0HgO/HY8aYZ4ZBK+zzMZq/om4fDXhIW+PghwmFFxqpvL45 TDvEi6p9Ca9yXwJe18tHnspZ+csrFWF4lFko7+Q8NnP20ZALGknC6f3ffzme6BQW vqcI7kLt0XTSHc8XCaXlsAlC94gBi7SkvSme5f7owo6fEf2H9VwtCqmhFiv0iNUZ qWSPEHaqrW56MZv+OdJubCtGXwTUtJT5VhnskiEy/CYWlKXV5gTyjcwuiohAoG+O eURePH4L+t0YsH8gnYrCfj3X8CDIm7IFX2ndIg+VysQS8C1hr3uAc1YMLjEXYkVU fLTlNgA7PMCSniDRk4rXYUz6OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3RhWrU x3VWjMCUnbc5RKn2gtnGMB8GA1UdIwQYMBaAFKsWJ7eoUUOS4cZ4t7B4hVpEVWbk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTEzRi9BNjcyRTNCNkJG NkUxMUVBQjY1NkJGMkZDNEY5QUUwMi9xeFludDZoUlE1TGh4bmkzc0hpRldrUlZa dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F4WW50NmhSUTVMaHhuaTNzSGlGV2tSVlp1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTEzRi9BNjcyRTNCNkJGNkUxMUVBQjY1NkJGMkZDNEY5QUUwMi9xeFludDZoUlE1 TGh4bmkzc0hpRldrUlZadVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAibsNq/5aY+1svg+WFbuCML2ZEUk8uylbZ3yL6FjrjSrDADJCh0HL/ S5Cix7ee9k5wWJk48G8buZ2L96owsdKf3vFmJkqBnDnkjUcWhH08m/yKGe/yTWY3 okMUAH342Au0fUaf168nOzLmdoqpEy48sHQ8bF8Bt0wU8L4fbiZgekkW9RJWUQ9J KyCFQRnTr4xryPs9m1KH/FYS20UMrzU6vDkK2eTphZKZGqa+FHGBcyxpv8+iaO9X pf1zhTSabNiDRBFJoBmgnJLJmVgNi5/RU9mzq2ixor/eLbP7O24Nxh/Iz5XLRwqL hByat6Ldv1tc9BJeNFCOK0XXGq+y4TnH -----END CERTIFICATE-----Generated at Wed May 14 20:42:30 2025 by rpki-client