$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft File: 024QQmH4GdaND3C7Ka3-jvRjsu0.mft (raw, json) Hash identifier: pbkJC6BK6rAYyOoJIUDa4sFjbgVcHqesukgEh1nVV6Q= Subject key identifier: FA:8D:46:50:06:C3:14:A5:50:6B:23:20:88:03:9D:E1:DB:49:13:D6 Authority key identifier: D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED Certificate issuer: /CN=A91B15DC/serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft Manifest number: 5A Signing time: Thu 03 Jul 2025 07:22:17 +0000 Manifest this update: Thu 03 Jul 2025 07:22:16 +0000 Manifest next update: Thu 10 Jul 2025 07:22:16 +0000 Files and hashes: 1: 024QQmH4GdaND3C7Ka3-jvRjsu0.crl (hash: hiTH+AlaACo3+7AN/Tvr3WjHU6i0FkyIcKcxa1lGjJU=) 2: 0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa (hash: BnzgVRQY1lWGd2cFrP1xnxB6cOmKQA86fc66ckx28mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Validity Not Before: Jul 3 07:22:16 2025 GMT Not After : Jul 10 07:22:16 2025 GMT Subject: CN=68662fa8-5b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b9:c3:84:4d:c0:f1:c8:ca:b5:7b:ad:38:8b: 35:39:1b:f2:77:f5:d4:f0:ad:44:86:7f:55:9b:e1: 3b:b9:7f:d8:a7:cb:85:7c:e3:26:59:ff:23:d4:44: 3c:c8:ac:62:39:e6:da:ed:f9:c2:65:53:33:4d:72: 00:31:2f:a0:c0:31:c8:5d:e9:a6:7f:79:b5:0d:2b: e0:4a:59:06:7b:a2:86:4f:99:e0:36:61:e0:88:27: d8:36:9e:07:44:05:83:2a:a9:2b:2a:e8:98:69:f7: 43:ef:ac:39:63:25:d1:dc:6b:27:11:68:5b:2e:ba: 73:36:9b:fa:ca:ad:54:11:19:b8:47:c8:7a:d9:e1: 0c:25:e0:7c:4d:89:40:31:59:5d:f9:cf:d9:6b:63: 93:88:b5:8d:74:9b:e9:1b:c8:3b:d0:b9:d9:b8:08: 2b:89:7a:ce:7b:84:5c:23:6e:ef:4f:6c:ff:54:e1: 19:19:b0:db:09:5e:07:11:63:82:98:d9:af:d6:8e: be:93:8f:79:96:af:e8:33:6f:27:31:3a:b6:31:86: ce:9b:77:85:e5:7f:17:e0:df:15:4e:9b:4c:1d:b5: 31:80:47:23:0f:97:52:30:39:3f:4f:10:2f:63:72: c3:ac:67:fa:31:ea:d9:83:92:49:d6:82:1b:61:4b: 37:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8D:46:50:06:C3:14:A5:50:6B:23:20:88:03:9D:E1:DB:49:13:D6 X509v3 Authority Key Identifier: keyid:D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:42:dc:26:22:04:e1:43:95:73:e9:18:0b:1b:a2:0d:a0:3f: 3b:9e:4b:29:4c:39:16:3d:db:52:ab:05:f2:82:c2:47:a7:3e: 93:9a:c0:fa:8a:5a:d3:e5:19:dc:fa:a4:3f:bd:e4:08:45:8f: 56:b7:97:c3:b8:c8:a6:95:1f:24:6d:ef:0c:b2:2e:26:ea:c9: ab:0d:c4:e3:b0:4f:a8:50:e3:15:d4:fc:58:c1:2c:63:6d:d0: 0b:5c:53:82:ac:24:c3:34:46:63:22:e9:bb:6b:52:ea:78:6d: a2:87:b2:76:1f:6a:ea:aa:ef:cd:cf:bf:83:92:4f:58:26:d5: 56:cd:f0:57:f2:34:ff:d1:60:f4:17:97:4c:94:d5:7e:38:6f: 1f:74:fa:4c:b0:48:8f:f5:8f:cc:dd:7a:e2:62:01:58:35:e6: f5:52:47:43:1b:38:8f:45:82:00:24:fb:da:7d:0c:ea:4f:c0: a2:9d:33:ab:09:54:c9:c1:84:40:9e:5d:0b:50:62:35:7c:7f: 8d:c6:16:c7:d6:5a:77:36:7f:cd:90:f8:11:dd:6e:dc:c6:23: 8b:0e:1c:16:cb:68:05:71:9b:6d:08:1e:b5:fc:62:b3:7d:0a: 48:26:95:e7:da:f3:fd:97:2f:5a:16:25:70:58:63:e4:9f:75: b2:9f:65:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoRDM2RTEwNDI2MUY4MTlENjhEMEY3MEJCMjlBREZFOEVG NDYzQjJFRDAeFw0yNTA3MDMwNzIyMTZaFw0yNTA3MTAwNzIyMTZaMBgxFjAUBgNV BAMTDTY4NjYyZmE4LTViMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1ucOETcDxyMq1e604izU5G/J39dTwrUSGf1Wb4Tu5f9iny4V84yZZ/yPURDzI rGI55trt+cJlUzNNcgAxL6DAMchd6aZ/ebUNK+BKWQZ7ooZPmeA2YeCIJ9g2ngdE BYMqqSsq6Jhp90PvrDljJdHcaycRaFsuunM2m/rKrVQRGbhHyHrZ4Qwl4HxNiUAx WV35z9lrY5OItY10m+kbyDvQudm4CCuJes57hFwjbu9PbP9U4RkZsNsJXgcRY4KY 2a/Wjr6Tj3mWr+gzbycxOrYxhs6bd4Xlfxfg3xVOm0wdtTGARyMPl1IwOT9PEC9j csOsZ/ox6tmDkknWghthSzdtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+o1GUAbD FKVQayMgiAOd4dtJE9YwHwYDVR0jBBgwFoAU024QQmH4GdaND3C7Ka3+jvRjsu0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzRGRUMxQzA0Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyLzAyNFFRbUg0R2RhTkQzQzdLYTMtanZSanN1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDI0UVFtSDRHZGFORDNDN0thMy1qdlJqc3UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzRGRUMxQzA0Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyLzAyNFFRbUg0R2Rh TkQzQzdLYTMtanZSanN1MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFBC3CYiBOFDlXPpGAsbog2gPzueSylMORY921KrBfKCwkenPpOawPqK WtPlGdz6pD+95AhFj1a3l8O4yKaVHyRt7wyyLibqyasNxOOwT6hQ4xXU/FjBLGNt 0AtcU4KsJMM0RmMi6btrUup4baKHsnYfauqq783Pv4OST1gm1VbN8FfyNP/RYPQX l0yU1X44bx90+kywSI/1j8zdeuJiAVg15vVSR0MbOI9FggAk+9p9DOpPwKKdM6sJ VMnBhECeXQtQYjV8f43GFsfWWnc2f82Q+BHdbtzGI4sOHBbLaAVxm20IHrX8YrN9 Ckgmlefa8/2XL1oWJXBYY+SfdbKfZes= -----END CERTIFICATE-----Generated at Thu Jul 3 22:54:47 2025 by rpki-client