$ rpki-client -vvf rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft File: 6qSDu71coOErPsD25wxbqq40VSs.mft (raw, json) Hash identifier: RTKVy5+8z1GFEON9rNL7rfh0ZItwx0txRcd9cf0JuCs= Subject key identifier: 27:87:D0:CE:24:30:71:19:00:AB:D3:E2:5B:39:E9:0C:E2:35:31:45 Authority key identifier: EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B Certificate issuer: /CN=A914BAA2/serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft Manifest number: 4A Signing time: Sat 05 Jul 2025 07:51:59 +0000 Manifest this update: Sat 05 Jul 2025 07:51:59 +0000 Manifest next update: Sat 12 Jul 2025 07:51:58 +0000 Files and hashes: 1: 6qSDu71coOErPsD25wxbqq40VSs.crl (hash: RII2AXCVauXjxo4ldhz2uJeEaRarVb75r0CDBDTKMqM=) 2: 535D1F52069511F090414823C4F9AE02.roa (hash: Z1otMQWN0CbTaPhw5EvbwRe+YB3GZZkedSXo8XkS78Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BAA2, serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Validity Not Before: Jul 5 07:51:59 2025 GMT Not After : Jul 12 07:51:58 2025 GMT Subject: CN=6868d99f-3d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6b:be:40:25:20:c7:8d:7f:d0:87:32:63:a1: 5c:fc:cf:68:81:a8:14:90:0b:36:85:31:99:7b:31: 19:9e:05:41:ec:2e:0e:79:bf:fd:f6:14:69:55:9c: 10:8f:4a:bd:69:91:71:ba:1a:8a:51:e5:24:b6:5b: cd:ec:16:b0:83:ee:0e:00:49:ae:e5:54:52:22:14: 97:96:e5:51:d3:60:1d:f4:04:9b:31:83:f6:ce:b6: 01:cc:c1:08:e7:bd:57:d7:df:9f:6a:e3:62:ba:65: f0:6f:8d:d5:ab:aa:71:c5:3a:24:c7:61:ac:ce:c6: 38:3f:82:2d:03:77:d8:fd:62:67:eb:5e:b1:08:59: 86:1d:ba:e0:56:cc:1d:a4:5f:a9:54:43:d1:8e:e4: ae:6d:58:59:51:7e:85:16:2b:db:ee:3f:41:f3:e3: 2b:55:00:39:47:cc:c9:69:89:be:d5:c0:1c:0b:57: d5:0c:20:91:90:3f:df:50:35:58:b2:3a:4a:e9:bb: 98:95:37:aa:03:b8:3c:82:1c:5d:46:59:47:44:52: f2:03:80:45:80:3c:c1:fb:a7:3d:a4:c5:f5:db:59: 21:72:e9:1c:de:34:91:1b:f6:9a:3c:1e:fe:77:a1: 6f:52:77:7c:d6:ac:67:a8:ff:a7:ef:f1:e9:73:47: a5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:87:D0:CE:24:30:71:19:00:AB:D3:E2:5B:39:E9:0C:E2:35:31:45 X509v3 Authority Key Identifier: keyid:EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:c8:ab:6d:5d:dc:33:e7:8b:48:a2:49:61:d1:00:df:72:ba: 16:f2:00:03:b0:22:f3:ed:2a:39:8f:27:9e:28:ae:8e:9d:35: 31:f4:7c:50:10:34:ce:d6:83:8b:e9:be:2b:d8:09:ec:57:aa: 61:0c:8a:2e:68:2b:25:cd:a8:fb:b9:ce:33:85:10:91:3c:8c: a2:29:ca:0b:1e:53:88:34:22:d0:a4:a2:af:44:3e:90:2d:a1: 2e:40:4d:e1:61:58:0e:a7:7f:1c:b7:26:ef:98:1d:0d:8b:07: 32:10:eb:54:18:41:1d:18:5a:2f:32:80:15:06:9b:c2:b8:ac: 09:3e:e5:d6:b3:5a:3c:0f:10:e4:bc:ab:6c:a7:11:96:24:4b: f7:dd:08:c9:4f:39:95:09:a6:58:76:23:e5:86:2e:ab:40:7a: 7f:46:25:67:a0:04:9d:90:5e:97:34:f1:c4:da:c3:86:60:30: 0b:d6:84:e3:3d:82:7e:7c:e5:aa:76:88:1d:56:a6:0f:e4:28: d4:fa:36:79:d3:96:90:de:ad:69:25:44:1d:5a:b4:2f:b3:f2: 44:98:ff:37:42:66:d0:f2:bd:2a:70:3a:94:7e:86:7b:58:e4: e4:52:82:7d:7d:e5:0b:f7:f2:96:62:9b:a7:9a:15:17:87:a5: 18:61:0b:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QkFBMjExMC8GA1UEBRMoRUFBNDgzQkJCRDVDQTBFMTJCM0VDMEY2RTcwQzVCQUFB RTM0NTUyQjAeFw0yNTA3MDUwNzUxNTlaFw0yNTA3MTIwNzUxNThaMBgxFjAUBgNV BAMTDTY4NjhkOTlmLTNkMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGa75AJSDHjX/QhzJjoVz8z2iBqBSQCzaFMZl7MRmeBUHsLg55v/32FGlVnBCP Sr1pkXG6GopR5SS2W83sFrCD7g4ASa7lVFIiFJeW5VHTYB30BJsxg/bOtgHMwQjn vVfX359q42K6ZfBvjdWrqnHFOiTHYazOxjg/gi0Dd9j9YmfrXrEIWYYduuBWzB2k X6lUQ9GO5K5tWFlRfoUWK9vuP0Hz4ytVADlHzMlpib7VwBwLV9UMIJGQP99QNViy Okrpu5iVN6oDuDyCHF1GWUdEUvIDgEWAPMH7pz2kxfXbWSFy6RzeNJEb9po8Hv53 oW9Sd3zWrGeo/6fv8elzR6VvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ4fQziQw cRkAq9PiWznpDOI1MUUwHwYDVR0jBBgwFoAU6qSDu71coOErPsD25wxbqq40VSsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCQUEyLzRERUNEMDgwRkU2 NjExRUY4OTJFNTIxNEM0RjlBRTAyLzZxU0R1NzFjb09FclBzRDI1d3hicXE0MFZT cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNnFTRHU3MWNvT0VyUHNEMjV3eGJxcTQwVlNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRC QUEyLzRERUNEMDgwRkU2NjExRUY4OTJFNTIxNEM0RjlBRTAyLzZxU0R1NzFjb09F clBzRDI1d3hicXE0MFZTcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABTIq21d3DPni0iiSWHRAN9yuhbyAAOwIvPtKjmPJ54oro6dNTH0fFAQ NM7Wg4vpvivYCexXqmEMii5oKyXNqPu5zjOFEJE8jKIpygseU4g0ItCkoq9EPpAt oS5ATeFhWA6nfxy3Ju+YHQ2LBzIQ61QYQR0YWi8ygBUGm8K4rAk+5dazWjwPEOS8 q2ynEZYkS/fdCMlPOZUJplh2I+WGLqtAen9GJWegBJ2QXpc08cTaw4ZgMAvWhOM9 gn585ap2iB1Wpg/kKNT6NnnTlpDerWklRB1atC+z8kSY/zdCZtDyvSpwOpR+hntY 5ORSgn195Qv38pZim6eaFReHpRhhC1A= -----END CERTIFICATE-----Generated at Sat Jul 5 18:20:57 2025 by rpki-client