$ rpki-client -vvf rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft File: 6qSDu71coOErPsD25wxbqq40VSs.mft (raw, json) Hash identifier: ULbcp51/vx1kAoEnDzz+t6us6k4In1eofKMiM8ThdzU= Subject key identifier: 66:16:C3:87:E6:8F:CC:57:41:CC:89:35:1E:81:F2:02:B6:29:3C:8F Authority key identifier: EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B Certificate issuer: /CN=A914BAA2/serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft Manifest number: 2F Signing time: Sun 11 May 2025 06:35:52 +0000 Manifest this update: Sun 11 May 2025 06:35:51 +0000 Manifest next update: Sun 18 May 2025 06:35:51 +0000 Files and hashes: 1: 6qSDu71coOErPsD25wxbqq40VSs.crl (hash: WZ5V6dfCpkfa/9oWFPWMvzVpB9I03pjSE3eYJ1Po2wE=) 2: 535D1F52069511F090414823C4F9AE02.roa (hash: Z1otMQWN0CbTaPhw5EvbwRe+YB3GZZkedSXo8XkS78Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BAA2, serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Validity Not Before: May 11 06:35:51 2025 GMT Not After : May 18 06:35:51 2025 GMT Subject: CN=68204548-43b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:13:e1:b2:bb:92:c1:b7:46:8d:fe:f2:d1: c5:8a:ff:aa:13:00:9f:8a:0f:43:b1:9b:b6:e0:29: 6d:d7:80:89:a7:8e:eb:70:87:7f:aa:69:4c:50:25: d9:b0:e0:59:b5:f4:36:b8:e0:69:23:0a:22:12:b7: 41:d4:c2:79:1d:29:66:a0:38:5e:f1:5c:93:40:30: 41:a0:89:f5:86:5c:9f:8f:11:5d:db:20:86:49:b4: 97:fb:63:66:bb:95:e7:a9:be:49:e4:42:88:69:8c: a3:72:eb:85:ae:9b:89:60:35:fa:9f:e9:ea:04:c2: a7:6d:bd:15:0d:c0:0e:1e:5e:94:c3:03:34:2f:b4: f2:99:ea:15:79:2d:5f:cb:f0:d5:f3:83:1f:50:fc: 37:74:80:40:fb:bc:35:23:47:09:58:86:ab:c7:b7: 4b:f8:db:14:5a:f1:d6:3f:66:b2:1d:0e:b7:90:8c: 74:9c:3f:c7:fa:00:fc:73:57:ce:f1:69:a9:3d:47: 76:b5:32:0f:b1:04:33:9f:26:10:cd:5a:82:ad:e1: cc:82:87:72:53:99:e7:90:48:89:ce:3b:54:12:b1: 37:69:d0:ae:9e:67:72:64:73:81:51:ca:d2:1f:fd: 7c:b1:28:28:94:65:91:23:d7:40:26:0c:80:3d:ed: ce:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:16:C3:87:E6:8F:CC:57:41:CC:89:35:1E:81:F2:02:B6:29:3C:8F X509v3 Authority Key Identifier: keyid:EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:23:0b:4f:d5:3c:09:36:c0:93:42:24:35:21:a4:26:cc:94: 76:cf:de:19:5f:cd:03:f6:6a:e8:e2:ce:4c:27:5f:e0:83:8b: ef:f3:f8:f7:00:f3:d8:59:08:b0:36:4c:b9:4c:06:e2:14:45: 30:55:9a:4d:de:08:83:b9:45:7d:cb:fd:77:b8:52:4f:8c:32: 0d:fa:63:84:95:ea:f0:c6:39:e8:59:ec:ba:ce:45:68:27:af: 7a:60:6f:f0:04:8f:94:d0:c1:d9:27:13:7a:79:25:a9:98:b1: e8:f2:f8:3d:f9:58:3c:11:06:de:18:9d:25:c4:24:dc:ff:d9: 31:8e:d1:fb:d0:c5:ad:c9:9b:a4:07:f6:3c:bf:75:ee:59:06: 41:82:16:67:23:6e:a0:cf:e6:4b:ed:fc:4d:38:f6:a3:73:48: 78:b6:bf:44:c3:15:2f:54:a8:d4:a7:a0:a7:35:76:c0:77:33: cc:db:aa:c2:de:0b:88:fe:a8:bc:36:7b:44:75:9c:dc:33:75: 25:86:0f:ab:7d:86:61:c8:69:e1:8b:5b:f5:d5:fc:82:d1:34: 91:70:11:e9:44:3b:68:a2:fd:39:3f:fe:9d:18:52:ab:00:ab: 7e:85:55:11:6b:5f:87:e4:b0:b4:fa:c3:76:38:80:b2:dd:c9: 56:64:d0:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QkFBMjExMC8GA1UEBRMoRUFBNDgzQkJCRDVDQTBFMTJCM0VDMEY2RTcwQzVCQUFB RTM0NTUyQjAeFw0yNTA1MTEwNjM1NTFaFw0yNTA1MTgwNjM1NTFaMBgxFjAUBgNV BAMTDTY4MjA0NTQ4LTQzYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6DBPhsruSwbdGjf7y0cWK/6oTAJ+KD0Oxm7bgKW3XgImnjutwh3+qaUxQJdmw 4Fm19Da44GkjCiISt0HUwnkdKWagOF7xXJNAMEGgifWGXJ+PEV3bIIZJtJf7Y2a7 leepvknkQohpjKNy64Wum4lgNfqf6eoEwqdtvRUNwA4eXpTDAzQvtPKZ6hV5LV/L 8NXzgx9Q/Dd0gED7vDUjRwlYhqvHt0v42xRa8dY/ZrIdDreQjHScP8f6APxzV87x aak9R3a1Mg+xBDOfJhDNWoKt4cyCh3JTmeeQSInOO1QSsTdp0K6eZ3Jkc4FRytIf /XyxKCiUZZEj10AmDIA97c4TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZhbDh+aP zFdBzIk1HoHyArYpPI8wHwYDVR0jBBgwFoAU6qSDu71coOErPsD25wxbqq40VSsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCQUEyLzRERUNEMDgwRkU2 NjExRUY4OTJFNTIxNEM0RjlBRTAyLzZxU0R1NzFjb09FclBzRDI1d3hicXE0MFZT cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNnFTRHU3MWNvT0VyUHNEMjV3eGJxcTQwVlNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRC QUEyLzRERUNEMDgwRkU2NjExRUY4OTJFNTIxNEM0RjlBRTAyLzZxU0R1NzFjb09F clBzRDI1d3hicXE0MFZTcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACgjC0/VPAk2wJNCJDUhpCbMlHbP3hlfzQP2aujizkwnX+CDi+/z+PcA 89hZCLA2TLlMBuIURTBVmk3eCIO5RX3L/Xe4Uk+MMg36Y4SV6vDGOehZ7LrORWgn r3pgb/AEj5TQwdknE3p5JamYsejy+D35WDwRBt4YnSXEJNz/2TGO0fvQxa3Jm6QH 9jy/de5ZBkGCFmcjbqDP5kvt/E049qNzSHi2v0TDFS9UqNSnoKc1dsB3M8zbqsLe C4j+qLw2e0R1nNwzdSWGD6t9hmHIaeGLW/XV/ILRNJFwEelEO2ii/Tk//p0YUqsA q36FVRFrX4fksLT6w3Y4gLLdyVZk0NQ= -----END CERTIFICATE-----Generated at Mon May 12 23:06:05 2025 by rpki-client