$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: YYE6fKdTKqxsJq5JJDVpT/ifB+a13GykCLiqkZXoIQE= Subject key identifier: 85:2E:E3:EA:B9:F5:EA:6C:0E:02:ED:61:FA:BB:54:19:00:48:7A:5D Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 3489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 3482 Signing time: Mon 12 May 2025 15:17:32 +0000 Manifest this update: Mon 12 May 2025 15:17:31 +0000 Manifest next update: Mon 19 May 2025 15:17:31 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: OuOMV4QSOk4HpJFgxDm8b2XfkgH4JHe70+Uux5KFLvI=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13449 (0x3489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: May 12 15:17:31 2025 GMT Not After : May 19 15:17:31 2025 GMT Subject: CN=6822110b-7964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d8:ee:b8:02:e2:69:74:d2:cc:d6:c6:4f:77: c8:4c:19:97:58:2c:a2:68:96:8e:84:d6:a1:ec:67: 07:4a:52:01:bd:4f:0c:d4:39:48:70:85:d9:76:05: 2c:d7:c6:31:a1:00:cb:73:4e:dd:6b:92:96:83:81: 8e:79:56:de:45:a1:ff:60:7e:78:5b:24:d0:86:0c: 01:46:9a:0b:63:d5:02:05:cd:9b:11:54:e3:e7:ee: b5:68:63:71:e3:e2:8a:b0:fb:6a:ce:24:49:e3:06: a9:f1:f5:00:14:c3:3a:6c:f9:33:f2:07:88:c2:6f: d9:5c:e3:d4:c1:48:ed:d5:aa:38:35:5b:e1:f0:f7: 54:8c:a0:2a:02:f5:5b:eb:3d:69:02:54:cf:ac:5a: 3e:ad:40:de:a9:bc:f0:7f:75:a3:8d:5d:70:d6:d9: 98:51:e0:54:fc:a0:7a:b6:8f:40:15:50:3e:70:a7: 58:16:5d:98:c4:40:74:f1:d1:3b:6a:02:96:5c:e6: 4b:98:0c:5b:a7:21:eb:70:ff:c2:98:47:2c:ea:3f: af:ea:43:7e:50:0c:6f:48:22:35:75:5f:be:fd:ab: 91:44:42:17:53:9d:5d:a5:4a:f4:3f:f0:75:7e:e1: 5d:21:11:e7:e1:b3:51:c9:a6:d3:be:c2:a3:89:ce: 5e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:2E:E3:EA:B9:F5:EA:6C:0E:02:ED:61:FA:BB:54:19:00:48:7A:5D X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:3a:6d:36:42:ab:3e:df:a5:2b:fd:cf:82:7b:cb:32:0f:dd: e4:61:0f:31:f2:82:80:f0:9f:11:da:51:c3:14:a0:42:4d:91: c7:de:ec:54:dc:06:d2:b8:b8:02:0a:8c:12:31:20:af:2d:91: dd:e5:c9:22:9b:b1:ab:80:fc:0c:ef:df:29:00:a9:cc:d1:24: 78:94:a7:0d:c9:d7:48:d0:f0:a2:9b:54:51:f9:34:1d:64:49: 1c:b7:cf:14:3a:c2:1d:6d:f2:db:45:91:bc:22:4b:55:05:4a: 58:e2:4d:f6:ad:8e:1f:09:5c:7f:7e:f2:b2:17:c6:15:ac:f8: 11:2a:b7:e2:91:f2:09:8e:0d:31:b7:41:4f:b0:04:de:e3:6d: f8:c3:6a:7b:27:20:98:db:9f:5c:62:e2:80:e7:4e:d2:50:4a: 9b:2a:85:ef:3c:9e:bd:eb:c8:a2:53:3a:e7:44:e4:cf:65:18: 3b:ac:93:47:43:cf:46:57:55:9a:e2:fc:f3:20:48:b0:6b:b5: df:83:ed:76:3a:41:7d:de:f9:8c:98:51:c9:81:44:ea:05:9f: 71:31:6b:e6:f5:14:2c:c8:8e:5d:b0:e8:19:11:08:48:2e:aa: 53:d8:16:c9:a2:dd:a3:14:68:ea:63:ab:1a:fd:66:99:37:17: 36:ec:05:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUwNTEyMTUxNzMxWhcNMjUwNTE5MTUxNzMxWjAYMRYwFAYD VQQDEw02ODIyMTEwYi03OTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tjuuALiaXTSzNbGT3fITBmXWCyiaJaOhNah7GcHSlIBvU8M1DlIcIXZdgUs 18YxoQDLc07da5KWg4GOeVbeRaH/YH54WyTQhgwBRpoLY9UCBc2bEVTj5+61aGNx 4+KKsPtqziRJ4wap8fUAFMM6bPkz8geIwm/ZXOPUwUjt1ao4NVvh8PdUjKAqAvVb 6z1pAlTPrFo+rUDeqbzwf3WjjV1w1tmYUeBU/KB6to9AFVA+cKdYFl2YxEB08dE7 agKWXOZLmAxbpyHrcP/CmEcs6j+v6kN+UAxvSCI1dV++/auRREIXU51dpUr0P/B1 fuFdIRHn4bNRyabTvsKjic5eTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUu4+q5 9epsDgLtYfq7VBkASHpdMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrOm02Qqs+36Ur/c+Ce8syD93kYQ8x8oKA8J8R2lHDFKBCTZHH3uxU 3AbSuLgCCowSMSCvLZHd5ckim7GrgPwM798pAKnM0SR4lKcNyddI0PCim1RR+TQd ZEkct88UOsIdbfLbRZG8IktVBUpY4k32rY4fCVx/fvKyF8YVrPgRKrfikfIJjg0x t0FPsATe4234w2p7JyCY259cYuKA507SUEqbKoXvPJ6968iiUzrnROTPZRg7rJNH Q89GV1Wa4vzzIEiwa7Xfg+12OkF93vmMmFHJgUTqBZ9xMWvm9RQsyI5dsOgZEQhI LqpT2BbJot2jFGjqY6sa/WaZNxc27AXE -----END CERTIFICATE-----Generated at Tue May 13 04:42:27 2025 by rpki-client