$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: 8RkNb+qvJVQ/dj8JnPTt+xf/dRYejUq9GkDAJUXoCsU= Subject key identifier: 71:ED:9D:FD:B8:60:78:CA:BB:66:DE:88:23:B8:80:40:98:F8:F9:DB Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0158 Signing time: Thu 03 Jul 2025 04:10:08 +0000 Manifest this update: Thu 03 Jul 2025 04:10:07 +0000 Manifest next update: Thu 10 Jul 2025 04:10:07 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: 0YCPQX+PkR/CZ0apurs9EtliHKmz+qxEdvSdZSxPFbw=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Jul 3 04:10:07 2025 GMT Not After : Jul 10 04:10:07 2025 GMT Subject: CN=686602a0-68d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:67:fd:04:93:b7:c3:57:56:5e:8e:13:ca:1b: d0:4e:59:f5:ec:74:aa:1a:ad:ba:3c:4f:15:26:9d: cf:b2:c4:f4:a3:3d:c9:2e:22:dc:cb:64:b2:6d:e3: 23:b6:e7:f2:d1:4f:a6:84:26:70:ac:70:1f:7f:97: 5a:c9:62:96:9d:7e:49:79:9d:95:36:d5:57:5a:e5: 49:1c:4c:3c:c5:93:d7:02:9a:bf:65:fa:65:53:08: b1:fa:a2:09:b0:a0:29:ee:32:90:16:1c:c3:c5:15: e2:4b:28:21:18:b1:ef:71:78:e9:b3:ff:84:f1:1e: 71:cc:fb:d9:b9:74:75:0e:3a:a2:49:f8:cf:5f:99: de:45:75:47:d6:26:c0:2d:4a:62:42:93:34:b6:93: 50:36:53:93:21:04:35:8f:5b:8a:24:ac:ba:dd:8c: 11:c1:c1:1f:fc:8c:48:fe:fb:33:ce:87:96:cd:ea: 1f:1f:66:f2:44:a0:95:e4:17:00:8b:2c:ca:ca:19: 59:75:b6:5b:be:28:e1:47:f8:1d:50:e0:92:44:78: 89:b9:b9:98:33:3d:60:b2:57:91:8b:ce:a5:5d:f6: ab:89:75:c7:f5:58:58:45:f2:23:56:ba:88:44:f0: 4c:a9:57:1c:41:0c:4e:c9:3b:3b:ce:9f:92:4e:4a: 36:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:ED:9D:FD:B8:60:78:CA:BB:66:DE:88:23:B8:80:40:98:F8:F9:DB X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:82:c8:9d:c3:53:0f:bf:de:85:43:ed:e9:04:a8:23:aa:9c: 9c:58:6a:5a:80:f2:1a:c8:23:fc:18:2d:ad:60:50:60:bf:c1: c2:0f:78:e4:9d:aa:cd:76:b5:10:51:46:b3:98:2c:8e:a7:b5: 12:06:2a:98:bf:b6:f7:f6:90:0a:43:77:3f:f1:a5:01:d3:f4: f6:66:1d:4b:45:e4:27:cf:dd:0e:8e:4b:4c:f4:40:68:06:96: 8b:b8:fd:4b:e3:82:d2:44:de:0a:cb:d4:06:0f:6a:9b:2e:b6: cb:ab:2c:a8:fb:bf:cd:57:55:50:c0:49:83:dd:c9:10:45:1b: 24:8b:e2:2b:4b:91:99:53:7d:27:cb:ed:64:91:c2:66:16:69: 1a:ee:a6:67:fe:8d:f7:2a:cf:ae:62:5d:d0:ba:44:59:3c:19: a2:7c:77:13:68:3d:7a:eb:6a:97:fa:db:fd:cb:e1:a4:e5:78: 49:b1:3e:52:5d:24:4a:89:95:0c:23:c8:96:8e:f9:59:2e:a5: 43:78:cd:76:31:58:08:a1:dc:0a:e1:48:66:8f:60:ef:c0:37: 01:47:7b:b1:45:75:8a:77:e3:5d:30:33:04:f1:5d:a5:db:4e: 94:be:b2:05:36:cc:f4:b8:00:da:94:2b:04:1f:85:0f:9b:ab: 36:fc:0e:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwNzAzMDQxMDA3WhcNMjUwNzEwMDQxMDA3WjAYMRYwFAYD VQQDEw02ODY2MDJhMC02OGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmf9BJO3w1dWXo4TyhvQTln17HSqGq26PE8VJp3PssT0oz3JLiLcy2SybeMj tufy0U+mhCZwrHAff5dayWKWnX5JeZ2VNtVXWuVJHEw8xZPXApq/ZfplUwix+qIJ sKAp7jKQFhzDxRXiSyghGLHvcXjps/+E8R5xzPvZuXR1DjqiSfjPX5neRXVH1ibA LUpiQpM0tpNQNlOTIQQ1j1uKJKy63YwRwcEf/IxI/vszzoeWzeofH2byRKCV5BcA iyzKyhlZdbZbvijhR/gdUOCSRHiJubmYMz1gsleRi86lXfariXXH9VhYRfIjVrqI RPBMqVccQQxOyTs7zp+STko2+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHtnf24 YHjKu2beiCO4gECY+PnbMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+gsidw1MPv96FQ+3pBKgjqpycWGpagPIayCP8GC2tYFBgv8HCD3jk narNdrUQUUazmCyOp7USBiqYv7b39pAKQ3c/8aUB0/T2Zh1LReQnz90OjktM9EBo BpaLuP1L44LSRN4Ky9QGD2qbLrbLqyyo+7/NV1VQwEmD3ckQRRski+IrS5GZU30n y+1kkcJmFmka7qZn/o33Ks+uYl3QukRZPBmifHcTaD1662qX+tv9y+Gk5XhJsT5S XSRKiZUMI8iWjvlZLqVDeM12MVgIodwK4Uhmj2DvwDcBR3uxRXWKd+NdMDME8V2l 206UvrIFNsz0uADalCsEH4UPm6s2/A5I -----END CERTIFICATE-----Generated at Thu Jul 3 11:22:48 2025 by rpki-client