$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft File: spEQIVRHIYPPUNKub6MOG940K_Q.mft (raw, json) Hash identifier: 2u/jzZjCA/NiDwc3kR+FKVyyIgpgJNTSgqrRPtKHqmc= Subject key identifier: 35:3B:1B:ED:07:9B:D6:C4:A7:94:82:86:63:C7:5C:63:2D:DE:E9:BB Authority key identifier: B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 Certificate issuer: /CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft Manifest number: 017F Signing time: Thu 03 Jul 2025 03:49:30 +0000 Manifest this update: Thu 03 Jul 2025 03:49:29 +0000 Manifest next update: Thu 10 Jul 2025 03:49:29 +0000 Files and hashes: 1: spEQIVRHIYPPUNKub6MOG940K_Q.crl (hash: qToz+EP5dz5bczMj2glM+xyWXsYIhNIx5vbYGEKDBM4=) 2: 35A46D4E1A5611EE93742844C4F9AE02.roa (hash: d+JJ+I8S/10V6aRjr1ig3NwOOf5vZtvPjsJauOreVMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB095, serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Validity Not Before: Jul 3 03:49:29 2025 GMT Not After : Jul 10 03:49:29 2025 GMT Subject: CN=6865fdca-76fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:02:0b:16:a3:86:72:29:b2:a3:91:0f:54:73: cb:ac:0a:a3:61:a6:fd:fd:86:27:1f:d6:ff:67:fa: aa:b8:b6:48:4d:95:6c:85:5b:66:7a:8b:e8:70:fd: 70:7c:f8:a5:5f:e0:db:39:55:e6:12:f8:cb:8f:bb: f6:81:8d:66:8a:e2:69:c8:83:fc:9c:41:86:35:0f: e1:d9:b0:88:46:70:1a:f4:5f:ff:ac:51:79:63:ec: 86:20:59:92:f7:cb:ea:10:07:59:21:ce:86:06:b1: 15:fb:d9:17:ab:fe:5b:21:62:92:2f:cb:20:0b:b2: ea:6d:c8:8d:67:ec:8c:07:b1:8c:99:c1:a6:c2:14: a3:2e:dd:10:db:fa:12:49:11:2c:db:f9:5f:44:45: af:e7:47:b8:c1:60:20:13:39:71:df:ac:04:e1:87: 3d:e1:83:9b:41:bd:a6:36:29:a7:4e:c2:53:12:d3: bd:03:88:07:41:b2:a3:69:33:ea:9a:c5:e7:97:a2: 8a:1e:73:05:0d:6f:da:dd:d4:49:89:e6:59:7c:0d: e7:d9:fd:41:be:a3:24:20:5d:06:b8:bd:a9:10:b7: 4b:95:27:62:13:8d:b5:c0:56:59:fd:be:33:97:ae: 73:1c:f2:11:93:a6:db:ca:28:0e:fc:ac:9d:b5:ed: ca:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3B:1B:ED:07:9B:D6:C4:A7:94:82:86:63:C7:5C:63:2D:DE:E9:BB X509v3 Authority Key Identifier: keyid:B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e2:8a:2b:4e:cc:ff:3d:d2:92:f4:a8:8d:80:52:ae:54:48: a8:ff:8f:b5:82:b1:7c:49:30:ba:63:2b:eb:5f:de:a6:e0:90: cf:54:dc:5f:76:1f:0c:12:9d:6b:40:99:ab:ad:be:4a:91:df: 40:96:91:d9:54:0a:57:1f:fa:dc:99:da:2e:84:68:b6:d4:70: dc:46:05:20:ef:98:f6:16:b2:13:5b:34:a6:86:8f:c4:bf:16: 7d:7b:d4:45:0c:32:e2:4a:c8:e0:b5:6b:43:9e:ad:60:7d:4f: d5:67:e9:28:12:76:c2:fc:9d:4f:91:f6:3a:d6:ff:ea:ff:18: 41:79:3b:c6:c7:d8:01:3c:f0:44:2f:8c:b0:71:05:24:0e:d0: e8:95:2c:2a:5a:15:56:0d:4c:63:90:25:2c:4b:0d:58:0c:68: 45:4d:8b:d0:44:21:40:aa:99:91:01:cd:a0:97:12:1f:89:df: 39:da:e5:83:85:e9:c8:a5:a7:8d:bf:da:61:14:1f:82:27:53: 92:cc:7f:e2:18:af:b5:1d:c6:c4:82:a3:ea:42:65:66:08:f8: 3d:80:e3:f4:f3:37:0c:e7:37:de:ec:83:81:2a:f9:98:95:2d: 31:98:57:b0:77:10:f4:6a:3b:a7:42:b9:f8:60:e5:a1:9b:88: 6f:3a:bc:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwOTUxMTAvBgNVBAUTKEIyOTExMDIxNTQ0NzIxODNDRjUwRDJBRTZGQTMwRTFC REUzNDJCRjQwHhcNMjUwNzAzMDM0OTI5WhcNMjUwNzEwMDM0OTI5WjAYMRYwFAYD VQQDEw02ODY1ZmRjYS03NmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQILFqOGcimyo5EPVHPLrAqjYab9/YYnH9b/Z/qquLZITZVshVtmeovocP1w fPilX+DbOVXmEvjLj7v2gY1miuJpyIP8nEGGNQ/h2bCIRnAa9F//rFF5Y+yGIFmS 98vqEAdZIc6GBrEV+9kXq/5bIWKSL8sgC7LqbciNZ+yMB7GMmcGmwhSjLt0Q2/oS SREs2/lfREWv50e4wWAgEzlx36wE4Yc94YObQb2mNimnTsJTEtO9A4gHQbKjaTPq msXnl6KKHnMFDW/a3dRJieZZfA3n2f1BvqMkIF0GuL2pELdLlSdiE421wFZZ/b4z l65zHPIRk6bbyigO/Kydte3KnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDU7G+0H m9bEp5SChmPHXGMt3um7MB8GA1UdIwQYMBaAFLKRECFURyGDz1DSrm+jDhveNCv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjA5NS9BQUJFQjU2QTFB NTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZUFBVTkt1YjZNT0c5NDBL X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwRVFJVlJISVlQUFVOS3ViNk1PRzk0MEtfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjA5NS9BQUJFQjU2QTFBNTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZ UFBVTkt1YjZNT0c5NDBLX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp4oorTsz/PdKS9KiNgFKuVEio/4+1grF8STC6YyvrX96m4JDPVNxf dh8MEp1rQJmrrb5Kkd9AlpHZVApXH/rcmdouhGi21HDcRgUg75j2FrITWzSmho/E vxZ9e9RFDDLiSsjgtWtDnq1gfU/VZ+koEnbC/J1PkfY61v/q/xhBeTvGx9gBPPBE L4ywcQUkDtDolSwqWhVWDUxjkCUsSw1YDGhFTYvQRCFAqpmRAc2glxIfid852uWD henIpaeNv9phFB+CJ1OSzH/iGK+1HcbEgqPqQmVmCPg9gOP08zcM5zfe7IOBKvmY lS0xmFewdxD0ajunQrn4YOWhm4hvOrww -----END CERTIFICATE-----Generated at Thu Jul 3 07:12:29 2025 by rpki-client