$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: 3cOAGCe0C6yKgJR79UiFKE/BYhrwhPC6KHTKtOI9otU= Subject key identifier: A3:CD:63:98:CC:CC:1F:E9:79:95:C7:50:D3:B6:98:FF:C0:BF:49:D1 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: B4 Signing time: Thu 03 Jul 2025 06:10:57 +0000 Manifest this update: Thu 03 Jul 2025 06:10:57 +0000 Manifest next update: Thu 10 Jul 2025 06:10:57 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: XiPBHRdDW+mpiCTLIyPjt9I8RB6i91pMKXtXs4q/wa8=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Jul 3 06:10:57 2025 GMT Not After : Jul 10 06:10:57 2025 GMT Subject: CN=68661ef1-03b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:8e:98:9c:04:d1:7d:4c:4f:8f:bf:47:c5:1c: 13:77:e1:7e:e6:c9:a1:f4:51:be:b8:7d:2c:25:de: c5:b1:46:a7:e6:95:44:91:c1:a1:cb:cf:dd:02:60: b2:99:c3:c6:8b:e9:57:c0:fa:74:5a:de:8d:9a:aa: 98:dd:34:a0:48:82:35:99:b8:c2:b8:8b:7c:cc:6f: c7:cc:2e:b8:ff:6f:3f:08:dc:a6:13:e5:66:7e:98: ab:c0:c6:8a:18:de:4b:a2:62:66:43:5c:52:0f:c3: 86:a4:a0:02:9f:87:83:f8:70:ce:d9:89:d4:9d:ea: af:a2:55:bb:b4:50:4c:94:52:96:8f:ae:bb:b3:2f: 84:f6:7a:4a:fe:ff:bc:ec:84:cb:2d:d1:be:3b:5d: 9c:6a:e0:65:bd:ab:ec:21:99:84:d6:cc:a2:46:b9: f2:b9:95:e2:1d:e8:3c:0d:9c:f4:d7:d0:4a:af:0a: bf:2c:60:8e:f6:76:89:dd:96:fc:23:bf:e4:fd:cd: 11:75:1f:c3:7c:5b:a6:89:6c:83:32:27:f2:0e:d7: 21:d2:17:2c:e1:8f:ff:a1:90:47:c8:5a:50:32:60: 30:94:8a:c9:26:92:30:30:ae:f1:f2:6a:42:78:47: 04:8e:50:70:27:b0:ff:c4:50:80:11:a9:af:5a:30: ff:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CD:63:98:CC:CC:1F:E9:79:95:C7:50:D3:B6:98:FF:C0:BF:49:D1 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:29:5e:aa:3f:34:60:e1:90:a7:2f:f8:1b:28:4b:bd:63:17: bf:41:e2:d5:a5:86:d6:fe:28:55:42:6f:76:4b:d1:b6:84:78: 6c:5f:bd:a3:3b:63:9f:53:fd:d4:fb:df:80:f3:52:47:db:a3: be:44:8d:f7:6b:2a:c9:33:d2:f0:b7:b8:b4:57:6b:2d:9d:f1: 19:ec:3c:c1:29:d1:2c:cc:ef:cd:77:d5:4f:0b:93:c4:80:f1: 29:2e:c1:1a:1c:95:ab:88:0b:9b:ab:b3:f5:8a:52:3b:46:13: 4b:1c:c0:2e:a3:29:ab:20:3c:27:a9:01:fd:fa:2c:97:f6:ab: b5:d0:71:cd:71:c0:fe:df:82:69:5f:7c:c3:75:0c:7d:6f:0a: 29:00:54:8d:0c:54:8a:a1:c0:64:ad:be:31:d8:87:ab:f0:1f: 5a:d0:c8:ed:6f:f1:2d:ef:aa:50:84:2e:08:17:84:06:6d:ac: b5:21:a1:ec:a9:01:8e:bb:dd:08:b3:54:0e:30:9e:75:40:97: 3c:a8:48:60:bd:43:ec:1b:1b:8f:c7:71:6b:82:cb:81:a3:af: b7:88:8d:8a:70:27:fd:e1:db:91:cc:75:1f:f4:03:52:ef:6b: 92:73:4a:b5:9c:9f:fc:1e:04:db:54:11:79:b4:e2:19:1f:87: 3f:cf:2c:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUwNzAzMDYxMDU3WhcNMjUwNzEwMDYxMDU3WjAYMRYwFAYD VQQDEw02ODY2MWVmMS0wM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA946YnATRfUxPj79HxRwTd+F+5smh9FG+uH0sJd7FsUan5pVEkcGhy8/dAmCy mcPGi+lXwPp0Wt6NmqqY3TSgSII1mbjCuIt8zG/HzC64/28/CNymE+VmfpirwMaK GN5LomJmQ1xSD8OGpKACn4eD+HDO2YnUneqvolW7tFBMlFKWj667sy+E9npK/v+8 7ITLLdG+O12cauBlvavsIZmE1syiRrnyuZXiHeg8DZz019BKrwq/LGCO9naJ3Zb8 I7/k/c0RdR/DfFumiWyDMifyDtch0hcs4Y//oZBHyFpQMmAwlIrJJpIwMK7x8mpC eEcEjlBwJ7D/xFCAEamvWjD/NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPNY5jM zB/peZXHUNO2mP/Av0nRMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3KV6qPzRg4ZCnL/gbKEu9Yxe/QeLVpYbW/ihVQm92S9G2hHhsX72j O2OfU/3U+9+A81JH26O+RI33ayrJM9Lwt7i0V2stnfEZ7DzBKdEszO/Nd9VPC5PE gPEpLsEaHJWriAubq7P1ilI7RhNLHMAuoymrIDwnqQH9+iyX9qu10HHNccD+34Jp X3zDdQx9bwopAFSNDFSKocBkrb4x2Ier8B9a0Mjtb/Et76pQhC4IF4QGbay1IaHs qQGOu90Is1QOMJ51QJc8qEhgvUPsGxuPx3FrgsuBo6+3iI2KcCf94duRzHUf9ANS 72uSc0q1nJ/8HgTbVBF5tOIZH4c/zyxu -----END CERTIFICATE-----Generated at Fri Jul 4 15:20:17 2025 by rpki-client