$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: nSQZMJ1IGetI5hvbV2mkVzMk0lMnHz8P6D4AVfl7SrE= Subject key identifier: B6:CF:98:60:AE:78:53:9E:44:C5:C5:53:DB:56:D4:38:54:7A:4F:8D Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B24 Signing time: Mon 30 Jun 2025 19:24:23 +0000 Manifest this update: Mon 30 Jun 2025 19:24:23 +0000 Manifest next update: Mon 07 Jul 2025 19:24:23 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: aDma8OEP932bRmQvBTONd7siru1qOkVQe+6SpJ3RRrw=) 2: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: gD5Iq8akoAlTIS4ryMBL5JIYOH1ViK0S3xNtIRVVfYc=) 3: 74CA44AA049F11F087661234C4F9AE02.roa (hash: 2OIryrqTJwARaXm6rXTbRJKfK80d24FVCzeiupTYqAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2864 (0xb30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Jun 30 19:24:23 2025 GMT Not After : Jul 7 19:24:23 2025 GMT Subject: CN=6862e467-3fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:22:96:e2:8e:91:c2:e4:eb:d3:ee:2d:bf: e7:31:15:a2:ec:a2:ea:99:0b:16:47:4c:30:fc:3f: bd:46:e5:89:30:a7:8e:8f:26:c5:7f:09:1a:60:26: 10:f0:16:ae:6d:bf:d9:d5:d6:85:a7:55:2b:0d:59: c4:6d:cf:af:47:6a:12:e8:fe:2b:1b:3e:ca:8c:99: e2:9a:48:c1:ab:08:a5:96:5f:69:43:07:66:fa:75: e2:44:7e:4e:10:0a:c5:a1:ea:b3:b4:47:48:4e:2c: 8e:cb:40:f0:12:ab:31:50:0b:b6:09:09:a8:e8:e3: a7:fb:9e:34:52:a6:3a:8e:57:a0:d3:08:0a:71:a2: 20:f1:2e:8c:58:76:d6:87:48:6b:34:eb:cc:8a:e2: 6a:57:c0:af:24:55:67:62:e6:9e:c2:89:c7:99:2d: a3:7b:68:40:d7:08:08:6e:f7:bd:b0:3c:43:7b:8b: 0f:2a:80:fe:01:e9:02:e7:2d:1c:26:78:ec:09:42: 15:ea:3f:ea:74:f3:b1:b7:2c:31:ca:3a:7c:a8:0b: 46:c7:97:64:3c:47:02:66:c5:93:6b:29:72:6f:53: 3e:25:98:22:fe:b8:cc:66:4b:4c:f8:e7:a7:8b:3b: 00:e0:be:3a:6a:35:e4:61:e5:7f:9a:12:e2:82:7d: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:CF:98:60:AE:78:53:9E:44:C5:C5:53:DB:56:D4:38:54:7A:4F:8D X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:13:c9:07:18:38:ee:c2:d5:83:4a:38:46:34:bd:d8:43:47: 47:9e:7d:6b:c1:19:5a:a3:91:c7:52:65:6a:33:11:2b:d3:48: e8:be:20:38:61:7f:2b:ef:e0:7a:48:aa:e7:67:92:5f:ba:b6: f6:da:25:66:12:f1:70:75:a0:c5:d8:4d:da:51:f0:f1:05:81: 33:53:c4:24:04:3f:cd:c2:fa:1e:88:56:3b:f4:51:76:27:3e: 05:8e:18:7d:4f:c5:8d:3f:c5:4c:c8:d7:69:a9:6a:21:1a:f9: 38:4b:02:df:ae:ff:e7:90:b2:d2:8c:3a:ac:97:84:27:8a:28: f3:7f:8c:81:6d:63:3d:53:a3:16:23:78:ba:bd:40:0a:57:9c: c4:0f:b3:f2:3d:88:28:0a:6c:80:99:ff:80:c9:92:5d:8b:50: 64:92:24:87:be:39:fc:ce:82:e9:70:df:31:44:2e:15:f4:c9: b3:cd:e7:4f:31:fa:4d:11:51:4a:f1:85:3a:26:77:c7:44:da: ef:c2:ab:05:9f:97:58:a3:97:ea:ad:7e:51:58:19:80:bd:56: 21:1f:7d:72:7e:d3:27:c9:c4:91:51:e3:dd:5c:46:5d:c5:85: 06:f2:27:83:d8:4e:35:7f:0d:3a:bf:f8:66:83:8c:43:14:2d: 7d:fe:bf:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUwNjMwMTkyNDIzWhcNMjUwNzA3MTkyNDIzWjAYMRYwFAYD VQQDEw02ODYyZTQ2Ny0zZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVsiluKOkcLk69PuLb/nMRWi7KLqmQsWR0ww/D+9RuWJMKeOjybFfwkaYCYQ 8Baubb/Z1daFp1UrDVnEbc+vR2oS6P4rGz7KjJnimkjBqwilll9pQwdm+nXiRH5O EArFoeqztEdITiyOy0DwEqsxUAu2CQmo6OOn+540UqY6jleg0wgKcaIg8S6MWHbW h0hrNOvMiuJqV8CvJFVnYuaewonHmS2je2hA1wgIbve9sDxDe4sPKoD+AekC5y0c JnjsCUIV6j/qdPOxtywxyjp8qAtGx5dkPEcCZsWTaylyb1M+JZgi/rjMZktM+Oen izsA4L46ajXkYeV/mhLign0ZuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbPmGCu eFOeRMXFU9tW1DhUek+NMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSE8kHGDjuwtWDSjhGNL3YQ0dHnn1rwRlao5HHUmVqMxEr00joviA4 YX8r7+B6SKrnZ5Jfurb22iVmEvFwdaDF2E3aUfDxBYEzU8QkBD/NwvoeiFY79FF2 Jz4Fjhh9T8WNP8VMyNdpqWohGvk4SwLfrv/nkLLSjDqsl4Qniijzf4yBbWM9U6MW I3i6vUAKV5zED7PyPYgoCmyAmf+AyZJdi1BkkiSHvjn8zoLpcN8xRC4V9MmzzedP MfpNEVFK8YU6JnfHRNrvwqsFn5dYo5fqrX5RWBmAvVYhH31yftMnycSRUePdXEZd xYUG8ieD2E41fw06v/hmg4xDFC19/r/j -----END CERTIFICATE-----Generated at Tue Jul 1 09:38:56 2025 by rpki-client