$ rpki-client -vvf rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft File: q47HWiojWU9vKtMnsOa7wLCrm-4.mft (raw, json) Hash identifier: cnbJ+ODAfE+/kPGQerMSKBdHxenQOstaCz/hBzp3UUM= Subject key identifier: E2:EB:81:5F:1D:94:D4:5B:D7:5C:53:FD:F7:CA:07:C4:BD:18:ED:60 Authority key identifier: AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE Certificate issuer: /CN=A91F783D/serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Certificate serial: 0DE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft Manifest number: 0DD7 Signing time: Mon 30 Jun 2025 18:06:46 +0000 Manifest this update: Mon 30 Jun 2025 18:06:45 +0000 Manifest next update: Mon 07 Jul 2025 18:06:45 +0000 Files and hashes: 1: q47HWiojWU9vKtMnsOa7wLCrm-4.crl (hash: 8Ea5AqHv/UynMMBobifClqlFwVvqX5KptTPwRWsl/k4=) 2: E3ACB710B9B211E9A9A37254C4F9AE02.roa (hash: Jg5gZD0YmKb91aw5MXsxMT3mckkXVt61eCbJBF82oak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3553 (0xde1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F783D, serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Validity Not Before: Jun 30 18:06:45 2025 GMT Not After : Jul 7 18:06:45 2025 GMT Subject: CN=6862d235-17b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:45:3c:d9:68:da:1e:94:3c:a3:30:02:ec:2c: 55:8d:65:c2:22:41:98:85:bf:f0:1f:29:60:b1:c8: fc:32:b7:5c:09:ba:ac:5a:25:02:2e:89:43:06:eb: 64:b3:c6:17:56:44:57:43:bc:8d:65:92:33:61:8d: 7b:f8:27:85:90:38:10:e6:4f:66:97:b7:85:60:2a: 02:9a:a8:a1:a2:c9:8c:ab:72:46:ee:f7:26:91:63: 09:ae:d3:c2:a5:fa:c9:b5:db:85:ca:c7:37:7c:e5: e1:ef:d2:7f:db:df:35:c9:ac:81:1b:aa:73:08:7f: 4e:64:09:8c:59:1c:9c:f3:31:0f:56:fd:eb:c4:be: 2e:53:2d:44:84:9f:28:a6:55:8b:3f:5b:03:43:aa: 70:82:8a:7a:66:3e:bd:8e:16:43:e1:1f:a3:7d:42: 85:43:ae:b1:41:62:03:5d:cf:8f:b9:f6:eb:10:74: ff:66:fd:81:7e:e5:7a:21:bd:85:78:e5:31:bf:a7: 49:00:24:da:ac:72:ef:fc:98:97:1e:9c:c0:a8:ff: 3f:54:4f:99:13:5d:32:cc:10:c1:6f:ca:39:ca:40: eb:55:a1:b7:7c:4d:46:32:5f:ea:3c:80:a7:fc:07: 05:00:89:a5:c9:e9:ac:ff:42:86:58:e3:74:d0:58: f9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:EB:81:5F:1D:94:D4:5B:D7:5C:53:FD:F7:CA:07:C4:BD:18:ED:60 X509v3 Authority Key Identifier: keyid:AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:57:f8:49:b3:44:db:46:9f:a4:e2:b4:68:8b:16:4c:2f:d5: 90:a5:c0:a7:de:f8:63:0d:a6:68:4e:3a:02:f5:94:a1:0c:f7: 59:c7:f4:34:1e:1b:9f:68:40:ff:52:38:be:ad:04:f5:3a:4f: 46:44:a6:a8:5e:67:8a:25:ab:09:79:70:b0:41:ad:ca:2d:1c: 6b:7e:b9:c1:c1:ed:8c:5f:a9:d0:fa:d4:ed:b6:8b:2b:9d:9a: d1:c2:9a:51:b8:93:ad:2b:28:86:20:7a:a9:cf:d2:99:69:b1: 39:75:13:f5:07:37:2b:36:80:c3:4d:6f:ac:c8:5d:1e:a2:b4: cf:c6:00:69:ae:fb:3f:9b:48:2a:6a:74:44:97:73:5e:50:7e: d9:04:ca:39:de:b8:be:70:b2:5d:15:c0:8d:28:fe:e4:45:94: 50:bc:51:e0:ad:c0:59:60:fa:e5:30:55:f4:ad:d7:2e:b8:ec: db:c1:65:dc:fd:14:c1:3e:23:ac:08:d7:55:96:ab:16:60:dd: e1:cd:2d:a7:b8:5f:87:d2:5d:59:c0:cf:cb:f8:b4:3d:0b:6b: 12:6b:1c:c2:23:2e:f7:02:03:a8:72:a5:cf:3a:2f:72:4d:00: ab:e6:99:d3:20:5e:90:12:b6:02:b3:2c:0b:14:82:a0:0d:8f: fa:f8:d6:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc4M0QxMTAvBgNVBAUTKEFCOEVDNzVBMkEyMzU5NEY2RjJBRDMyN0IwRTZCQkMw QjBBQjlCRUUwHhcNMjUwNjMwMTgwNjQ1WhcNMjUwNzA3MTgwNjQ1WjAYMRYwFAYD VQQDEw02ODYyZDIzNS0xN2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEU82WjaHpQ8ozAC7CxVjWXCIkGYhb/wHylgscj8MrdcCbqsWiUCLolDButk s8YXVkRXQ7yNZZIzYY17+CeFkDgQ5k9ml7eFYCoCmqihosmMq3JG7vcmkWMJrtPC pfrJtduFysc3fOXh79J/2981yayBG6pzCH9OZAmMWRyc8zEPVv3rxL4uUy1EhJ8o plWLP1sDQ6pwgop6Zj69jhZD4R+jfUKFQ66xQWIDXc+PufbrEHT/Zv2BfuV6Ib2F eOUxv6dJACTarHLv/JiXHpzAqP8/VE+ZE10yzBDBb8o5ykDrVaG3fE1GMl/qPICn /AcFAImlyems/0KGWON00Fj5CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLrgV8d lNRb11xT/ffKB8S9GO1gMB8GA1UdIwQYMBaAFKuOx1oqI1lPbyrTJ7Dmu8Cwq5vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzgzRC8zMURGMURFRUI5 QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldVOXZLdE1uc09hN3dMQ3Jt LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E0N0hXaW9qV1U5dkt0TW5zT2E3d0xDcm0tNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzgzRC8zMURGMURFRUI5QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldV OXZLdE1uc09hN3dMQ3JtLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrV/hJs0TbRp+k4rRoixZML9WQpcCn3vhjDaZoTjoC9ZShDPdZx/Q0 HhufaED/Uji+rQT1Ok9GRKaoXmeKJasJeXCwQa3KLRxrfrnBwe2MX6nQ+tTttosr nZrRwppRuJOtKyiGIHqpz9KZabE5dRP1BzcrNoDDTW+syF0eorTPxgBprvs/m0gq anREl3NeUH7ZBMo53ri+cLJdFcCNKP7kRZRQvFHgrcBZYPrlMFX0rdcuuOzbwWXc /RTBPiOsCNdVlqsWYN3hzS2nuF+H0l1ZwM/L+LQ9C2sSaxzCIy73AgOocqXPOi9y TQCr5pnTIF6QErYCsywLFIKgDY/6+NZU -----END CERTIFICATE-----Generated at Tue Jul 1 15:29:59 2025 by rpki-client