$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: ZwN4SAJvBhR+AFjCzD51C89a+CwKyLTLk7oSb3WWPQA= Subject key identifier: 36:AB:9C:57:C0:8D:B2:F8:DC:BD:0D:B3:90:8C:2B:C0:8E:01:17:12 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3416 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 33F9 Signing time: Mon 30 Jun 2025 15:22:36 +0000 Manifest this update: Mon 30 Jun 2025 15:22:36 +0000 Manifest next update: Mon 07 Jul 2025 15:22:36 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: WxkyDqCy+y3hoElHw4XqeXAc3C+r3WN5OKCPxr05Jy0=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13334 (0x3416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Jun 30 15:22:36 2025 GMT Not After : Jul 7 15:22:36 2025 GMT Subject: CN=6862abbc-0d73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8a:1e:42:e5:bb:2e:84:97:75:97:51:07:06: e3:67:07:ae:ad:a2:f6:d2:7a:38:60:1b:5c:80:2a: 7f:5d:66:1f:bf:56:17:d4:bd:be:fc:9c:c0:92:c5: 43:92:f3:d7:cd:c2:69:30:08:a4:dc:bd:83:3f:ce: c2:6a:8a:8f:68:44:1d:d6:e8:1d:fa:d7:61:c6:cc: b0:78:6f:b5:52:8e:43:2d:85:ae:a5:11:98:8b:ee: 08:f6:1c:f9:77:c4:d6:23:99:f6:0a:5f:0b:5f:d3: ac:74:bc:19:f5:ab:06:f2:59:21:c2:db:ef:3b:88: 9e:02:b7:28:f9:40:2e:6c:7b:b8:7e:ab:75:58:74: 8c:7c:04:02:d5:99:5e:78:ac:32:08:38:68:39:1a: c3:d8:7e:76:37:27:37:68:c6:d7:81:49:7a:4e:b4: e8:e6:f2:b7:4b:4a:78:ae:0b:6f:53:95:e1:18:32: d4:b6:fb:85:35:f5:a2:8b:f8:42:5d:f0:13:90:c4: e4:f1:55:e4:dd:46:8e:10:90:d4:0d:fe:19:26:94: 79:3b:a5:21:e9:a0:1a:d8:39:d0:4e:ef:79:c1:66: b4:02:a2:a3:86:c9:9d:ae:2c:cc:d5:30:ec:fd:d0: bc:69:0d:4e:88:a8:3a:7d:dc:57:ee:40:63:40:0c: a6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:AB:9C:57:C0:8D:B2:F8:DC:BD:0D:B3:90:8C:2B:C0:8E:01:17:12 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ef:e1:46:53:10:41:97:20:55:ee:ac:a9:69:23:86:fe:21: 99:e8:88:cc:57:58:ae:5c:22:43:cd:9b:59:4e:0f:c4:9c:e6: c4:74:c5:3a:16:77:13:3d:63:55:0c:28:9e:b4:99:2f:4e:f5: 0a:f9:57:1c:15:25:6b:a3:cb:a2:ad:16:a2:cc:bd:a8:20:a1: 1b:db:d5:26:5e:2d:04:1f:1d:3b:b3:41:da:0b:2e:c4:6a:56: 31:bb:84:75:be:88:38:fb:8a:32:c1:8f:c0:2e:7b:fa:3b:98: ab:80:1c:5e:c0:c6:c7:79:bb:69:6c:11:9e:aa:1d:25:01:42: 09:05:ea:ab:7e:b5:e3:e6:6a:7c:01:c6:b9:1d:18:a1:08:5f: af:0d:c6:85:2f:80:fa:90:1a:3d:31:39:c0:16:3c:25:80:c1: 2a:99:4a:c1:14:99:92:c4:6b:3c:1c:26:77:c4:27:73:98:39: 5a:2a:50:06:b5:65:c3:61:d3:26:ec:b9:54:99:4b:b8:74:3c: a7:0b:cc:d8:83:5a:2e:a6:67:d8:0d:7c:79:12:16:e6:a5:63: ef:f2:1b:d9:d8:e3:01:8e:e7:a1:f2:dd:05:0f:c1:11:a1:91: db:59:99:40:70:12:15:78:77:10:27:19:68:78:97:37:0f:53: bb:fd:1d:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwNjMwMTUyMjM2WhcNMjUwNzA3MTUyMjM2WjAYMRYwFAYD VQQDEw02ODYyYWJiYy0wZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIoeQuW7LoSXdZdRBwbjZweuraL20no4YBtcgCp/XWYfv1YX1L2+/JzAksVD kvPXzcJpMAik3L2DP87CaoqPaEQd1ugd+tdhxsyweG+1Uo5DLYWupRGYi+4I9hz5 d8TWI5n2Cl8LX9OsdLwZ9asG8lkhwtvvO4ieArco+UAubHu4fqt1WHSMfAQC1Zle eKwyCDhoORrD2H52Nyc3aMbXgUl6TrTo5vK3S0p4rgtvU5XhGDLUtvuFNfWii/hC XfATkMTk8VXk3UaOEJDUDf4ZJpR5O6Uh6aAa2DnQTu95wWa0AqKjhsmdrizM1TDs /dC8aQ1OiKg6fdxX7kBjQAymGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDarnFfA jbL43L0Ns5CMK8COARcSMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB7+FGUxBBlyBV7qypaSOG/iGZ6IjMV1iuXCJDzZtZTg/EnObEdMU6 FncTPWNVDCietJkvTvUK+VccFSVro8uirRaizL2oIKEb29UmXi0EHx07s0HaCy7E alYxu4R1vog4+4oywY/ALnv6O5irgBxewMbHebtpbBGeqh0lAUIJBeqrfrXj5mp8 Aca5HRihCF+vDcaFL4D6kBo9MTnAFjwlgMEqmUrBFJmSxGs8HCZ3xCdzmDlaKlAG tWXDYdMm7LlUmUu4dDynC8zYg1oupmfYDXx5EhbmpWPv8hvZ2OMBjueh8t0FD8ER oZHbWZlAcBIVeHcQJxloeJc3D1O7/R0Y -----END CERTIFICATE-----Generated at Wed Jul 2 00:15:09 2025 by rpki-client