$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: lgJHGu/wFzaL+IffFEKDmouIkIt7pVbzsQNkwWmvXdo= Subject key identifier: 92:7D:5B:0D:F1:D3:63:88:6B:11:90:FA:20:5D:93:FA:D0:A5:30:95 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 349C Signing time: Wed 02 Jul 2025 15:24:23 +0000 Manifest this update: Wed 02 Jul 2025 15:24:22 +0000 Manifest next update: Wed 09 Jul 2025 15:24:22 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: 3kAJODpgZJMvF8/A4ys8jXFsaUGZ0HNjhEEcGeLRi0M=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13475 (0x34a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Jul 2 15:24:22 2025 GMT Not After : Jul 9 15:24:22 2025 GMT Subject: CN=68654f27-bc92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:c6:bf:68:c3:1f:d1:eb:22:ed:76:44:88: 5e:15:ed:26:46:01:5d:54:2b:ef:59:70:c8:1d:0a: d2:a7:71:3e:c2:58:66:81:88:0e:f4:fa:30:78:e0: aa:91:b2:20:71:b6:4b:7b:fb:e2:3b:06:12:86:50: 29:51:66:5f:b4:0d:52:36:68:f7:71:5a:2b:90:ed: 85:8c:3b:7a:4c:20:c4:e0:be:84:de:88:0a:fc:8b: 05:47:4e:6e:07:04:c8:94:23:13:52:59:9d:77:53: 55:a4:f4:aa:08:98:8e:ed:5d:16:90:04:a8:74:3a: db:9f:9f:65:36:a0:f4:15:f4:d4:fb:7b:b4:38:26: b5:50:e1:a0:50:06:ac:63:9a:17:11:ad:f4:2d:05: b6:f8:9c:79:db:cb:9e:89:6e:60:c2:6e:1b:01:a1: 6e:08:7b:48:2a:7a:b6:5c:f6:af:d3:c9:4f:aa:8d: 7e:e6:c1:7b:57:a4:f5:d8:e8:31:90:d7:2a:d7:37: d3:a2:b1:ed:04:5f:e5:51:c7:b6:cb:2e:30:5b:18: e3:da:db:c4:38:00:9f:3d:83:87:5d:bb:b8:32:33: 1e:3f:d2:d6:89:8c:a7:b1:82:c2:ed:a3:48:35:5b: a1:9b:25:57:26:12:fb:b8:76:0e:bd:09:aa:3c:33: 4e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7D:5B:0D:F1:D3:63:88:6B:11:90:FA:20:5D:93:FA:D0:A5:30:95 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ec:af:9f:d5:58:82:a4:14:0b:d4:f8:fa:3f:e3:ae:07:eb: b9:57:1e:c3:77:3e:5c:d7:9f:fa:15:6b:d2:cb:26:44:e6:03: 55:fe:f1:6c:8c:3d:79:86:62:52:03:19:45:4b:26:57:16:f8: d3:69:6f:1a:7c:79:d8:9a:75:03:d5:c8:d4:1a:44:0f:96:24: 0e:94:33:f9:78:ac:13:29:37:87:8d:42:9a:51:c0:c4:9f:aa: ba:8d:7e:8b:c4:3e:f0:d9:9e:9a:8a:26:01:f6:78:00:60:0a: c9:b9:2f:2e:b4:f1:06:07:99:32:3b:ec:9b:95:94:59:df:e2: e1:98:28:27:34:47:61:6b:35:77:a5:5f:e1:fa:51:0a:dc:23: 26:76:47:60:75:0b:91:e4:15:35:53:f7:4b:9b:f4:2d:9c:34: 52:5e:73:f6:bf:7c:91:d9:55:c9:a9:43:50:23:9e:71:61:cb: 90:0a:8a:38:84:04:1f:09:69:23:35:b4:f8:75:36:14:83:16: df:5e:f5:74:16:d9:cd:5e:95:ce:68:cb:cc:c4:c9:2b:9d:03: 04:27:d2:a4:6e:76:93:d0:69:d5:13:cc:fa:be:2f:f7:02:52: 0a:9c:00:7a:12:7f:0c:c3:92:45:91:74:02:1c:91:0a:11:e8: 6d:21:45:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUwNzAyMTUyNDIyWhcNMjUwNzA5MTUyNDIyWjAYMRYwFAYD VQQDEw02ODY1NGYyNy1iYzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ3Gv2jDH9HrIu12RIheFe0mRgFdVCvvWXDIHQrSp3E+wlhmgYgO9PoweOCq kbIgcbZLe/viOwYShlApUWZftA1SNmj3cVorkO2FjDt6TCDE4L6E3ogK/IsFR05u BwTIlCMTUlmdd1NVpPSqCJiO7V0WkASodDrbn59lNqD0FfTU+3u0OCa1UOGgUAas Y5oXEa30LQW2+Jx528ueiW5gwm4bAaFuCHtIKnq2XPav08lPqo1+5sF7V6T12Ogx kNcq1zfTorHtBF/lUce2yy4wWxjj2tvEOACfPYOHXbu4MjMeP9LWiYynsYLC7aNI NVuhmyVXJhL7uHYOvQmqPDNOnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJ9Ww3x 02OIaxGQ+iBdk/rQpTCVMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB97K+f1ViCpBQL1Pj6P+OuB+u5Vx7Ddz5c15/6FWvSyyZE5gNV/vFs jD15hmJSAxlFSyZXFvjTaW8afHnYmnUD1cjUGkQPliQOlDP5eKwTKTeHjUKaUcDE n6q6jX6LxD7w2Z6aiiYB9ngAYArJuS8utPEGB5kyO+yblZRZ3+LhmCgnNEdhazV3 pV/h+lEK3CMmdkdgdQuR5BU1U/dLm/QtnDRSXnP2v3yR2VXJqUNQI55xYcuQCoo4 hAQfCWkjNbT4dTYUgxbfXvV0FtnNXpXOaMvMxMkrnQMEJ9KkbnaT0GnVE8z6vi/3 AlIKnAB6En8Mw5JFkXQCHJEKEehtIUW2 -----END CERTIFICATE-----Generated at Thu Jul 3 10:05:28 2025 by rpki-client