$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft File: qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft (raw, json) Hash identifier: o3K+IUmzvbG+zYGJR7cjZpwc3Xayg2nKHRr6uAD5PL8= Subject key identifier: C2:BD:DC:69:DB:1B:D5:4E:BA:B5:F7:66:26:7B:B9:2E:D8:08:FE:F5 Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 Certificate issuer: /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft Manifest number: 01EB Signing time: Thu 03 Jul 2025 02:41:51 +0000 Manifest this update: Thu 03 Jul 2025 02:41:50 +0000 Manifest next update: Thu 10 Jul 2025 02:41:50 +0000 Files and hashes: 1: qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl (hash: oU9Go70vOkAUjYiGlK6efFZu+0kQn3SztAe0p/yLu3Y=) 2: CDA9BB546E0C11ED8BF41547C4F9AE02.roa (hash: 5xUQVljU0BWWuc6LYolHHzG3Hqi8KmssX696YCKuce8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5216, serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Validity Not Before: Jul 3 02:41:50 2025 GMT Not After : Jul 10 02:41:50 2025 GMT Subject: CN=6865edef-794c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d6:21:24:e4:bd:4b:63:54:8e:22:23:b5:cc: d5:29:b0:76:66:c3:08:91:43:b7:c4:17:92:17:66: 34:8c:43:09:46:c9:8f:ea:e4:38:d1:0c:b4:60:9e: e2:fa:b5:76:c8:2d:b4:79:de:b1:c9:59:17:7f:5d: df:8d:4a:8d:ad:f7:9f:5c:c9:9b:24:9f:a3:92:6a: 13:8e:e2:7d:d6:f6:e9:91:5a:78:16:a7:42:ac:46: b9:3e:fa:d6:88:f8:df:4a:9d:65:a2:7f:b1:71:6b: a6:9d:f8:12:26:8c:e0:6d:6b:df:38:ed:e9:a2:14: 84:fb:47:20:cd:cd:d9:1d:b4:39:48:c1:9f:32:8d: 2a:59:1c:7a:92:bb:28:c6:91:30:80:4b:64:59:be: fa:00:83:0d:40:b2:e7:3d:ac:eb:2d:bd:3c:37:b4: 67:1c:0b:2e:51:c4:42:08:57:cc:2e:de:53:d1:16: 5b:53:74:46:d4:99:c4:81:3a:7f:75:d2:3d:c0:6b: c4:75:d1:5e:0f:c0:51:72:1f:14:8c:98:ad:76:e2: 28:59:55:4e:ed:34:04:63:58:5a:38:22:6c:9e:59: b6:49:27:a4:62:e9:aa:94:19:d0:e4:f7:54:e5:27: 12:5a:f7:e3:1b:d8:25:37:b7:51:dc:58:48:56:a1: 03:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:BD:DC:69:DB:1B:D5:4E:BA:B5:F7:66:26:7B:B9:2E:D8:08:FE:F5 X509v3 Authority Key Identifier: keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:75:e4:b2:ad:66:c0:64:39:3b:d4:d7:e0:ff:e2:4e:46:e8: b4:7a:b5:a6:1d:ba:37:dd:bc:d6:5d:6c:a8:ef:20:bc:8f:18: 0c:e2:2d:96:73:34:85:0b:0a:61:c1:d7:b3:0f:9a:4c:38:42: b0:2b:6b:2c:fa:e0:a1:8b:e3:7f:5c:61:8a:58:61:17:ee:1e: a5:4f:fe:ac:7b:2f:36:bc:e4:35:cd:4d:02:b2:71:51:03:a1: bf:a2:bc:e2:d4:2d:a8:78:25:ed:39:5d:2b:07:91:36:68:5d: de:d8:91:f4:34:a8:66:55:4a:d3:96:a9:27:2d:d9:94:0d:cd: 3c:37:0a:00:4b:12:95:63:35:2d:3a:4f:70:32:fd:ac:ac:3e: 02:09:6d:b1:91:2c:7a:f3:ca:1c:13:87:37:57:b7:83:d1:2e: c9:83:0a:27:b4:45:01:19:f7:85:06:97:db:9c:5e:57:31:0e: 30:02:33:f3:57:c2:08:a0:9d:95:36:a2:dc:4b:be:f4:6a:83: 67:2b:2f:bd:1e:2d:a3:c1:6f:76:bc:93:a6:40:de:32:af:da: a6:55:10:f5:1e:17:bf:59:a2:b3:ec:f9:2b:ab:f7:f7:82:19: 6b:d3:27:66:cd:55:d0:63:b6:04:4c:8e:6b:b0:3c:de:aa:9f: 14:08:2d:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyMTYxMTAvBgNVBAUTKEE4NDFCREM1QUZBOUU5QTBBOTVCODg1NDYxMTNDQTc0 NUVFOTYzQjUwHhcNMjUwNzAzMDI0MTUwWhcNMjUwNzEwMDI0MTUwWjAYMRYwFAYD VQQDEw02ODY1ZWRlZi03OTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tYhJOS9S2NUjiIjtczVKbB2ZsMIkUO3xBeSF2Y0jEMJRsmP6uQ40Qy0YJ7i +rV2yC20ed6xyVkXf13fjUqNrfefXMmbJJ+jkmoTjuJ91vbpkVp4FqdCrEa5PvrW iPjfSp1lon+xcWumnfgSJozgbWvfOO3pohSE+0cgzc3ZHbQ5SMGfMo0qWRx6krso xpEwgEtkWb76AIMNQLLnPazrLb08N7RnHAsuUcRCCFfMLt5T0RZbU3RG1JnEgTp/ ddI9wGvEddFeD8BRch8UjJitduIoWVVO7TQEY1haOCJsnlm2SSekYumqlBnQ5PdU 5ScSWvfjG9glN7dR3FhIVqEDZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMK93Gnb G9VOurX3ZiZ7uS7YCP71MB8GA1UdIwQYMBaAFKhBvcWvqemgqVuIVGETynRe6WO1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIxNi81Q0Q1RTczMDZF MDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZhQ3BXNGhVWVJQS2RGN3BZ N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FFRzl4YS1wNmFDcFc0aFVZUlBLZEY3cFk3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIxNi81Q0Q1RTczMDZFMDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZh Q3BXNGhVWVJQS2RGN3BZN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQdeSyrWbAZDk71Nfg/+JORui0erWmHbo33bzWXWyo7yC8jxgM4i2W czSFCwphwdezD5pMOEKwK2ss+uChi+N/XGGKWGEX7h6lT/6sey82vOQ1zU0CsnFR A6G/orzi1C2oeCXtOV0rB5E2aF3e2JH0NKhmVUrTlqknLdmUDc08NwoASxKVYzUt Ok9wMv2srD4CCW2xkSx688ocE4c3V7eD0S7JgwontEUBGfeFBpfbnF5XMQ4wAjPz V8IIoJ2VNqLcS770aoNnKy+9Hi2jwW92vJOmQN4yr9qmVRD1Hhe/WaKz7Pkrq/f3 ghlr0ydmzVXQY7YETI5rsDzeqp8UCC23 -----END CERTIFICATE-----Generated at Thu Jul 3 22:45:09 2025 by rpki-client