$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft File: spEQIVRHIYPPUNKub6MOG940K_Q.mft (raw, json) Hash identifier: GPO2+/B5zLaU16hqHNSIflCn2h4VGToZ1xmUGbBF8Eo= Subject key identifier: 04:32:D0:A8:26:4D:27:C5:5B:19:16:FE:59:6A:49:9D:EE:A7:33:D4 Authority key identifier: B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 Certificate issuer: /CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft Manifest number: 0165 Signing time: Sun 11 May 2025 02:55:48 +0000 Manifest this update: Sun 11 May 2025 02:55:48 +0000 Manifest next update: Sun 18 May 2025 02:55:48 +0000 Files and hashes: 1: spEQIVRHIYPPUNKub6MOG940K_Q.crl (hash: o38kKb8z7b03EAMCHWXsbcyaBhy0kN5HRTUJGsT83eg=) 2: 35A46D4E1A5611EE93742844C4F9AE02.roa (hash: d+JJ+I8S/10V6aRjr1ig3NwOOf5vZtvPjsJauOreVMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB095, serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Validity Not Before: May 11 02:55:48 2025 GMT Not After : May 18 02:55:48 2025 GMT Subject: CN=682011b4-d8cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:4a:5c:d2:2b:16:a8:c9:6a:27:2c:27:29:be: 76:5e:61:f7:20:8a:6f:74:e7:7b:55:c4:08:a5:ce: 9d:4a:2a:bc:72:0b:29:f2:6b:13:ce:5b:34:c3:e3: f7:b4:d8:2c:79:ab:5c:3d:62:1f:0a:5d:c8:37:f0: ca:1e:7c:89:c5:9e:93:2a:58:3b:c7:ba:2d:be:a7: 36:bb:7f:d4:55:e4:c4:8f:52:32:55:4b:aa:ed:bf: 24:59:ba:a8:07:c3:af:1a:03:64:a0:56:47:19:6b: 51:cb:64:a3:3d:04:05:70:f0:9a:1f:28:54:db:51: 9a:8b:7d:ef:29:ad:dd:f0:93:01:6d:ee:9a:ed:7c: 16:62:64:15:04:85:55:f5:a1:e6:2d:a4:7d:c4:21: 9f:34:8f:e7:4b:ee:da:1f:f2:dd:40:ae:b0:93:da: 7c:16:44:f8:78:e4:da:62:8a:f5:e1:6b:28:6f:62: 8e:2c:01:e0:4e:5c:b6:81:7f:be:da:ff:4d:54:92: 05:1e:9d:5a:59:20:aa:bc:a4:5a:aa:c4:ba:3a:17: 18:e4:6c:0c:ff:dd:0c:b5:e7:73:b9:67:66:af:84: 60:75:24:9a:68:b3:41:74:25:0a:a8:c2:79:8a:ef: a7:9e:61:2a:a2:b8:a4:54:16:7e:0d:20:c1:2d:ef: 92:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:32:D0:A8:26:4D:27:C5:5B:19:16:FE:59:6A:49:9D:EE:A7:33:D4 X509v3 Authority Key Identifier: keyid:B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:df:36:84:fa:d9:73:09:df:d7:43:48:26:cf:bc:0e:20:1d: eb:06:a2:58:dd:ff:26:3c:1f:31:c3:f0:57:dd:54:5c:e2:4e: 0c:06:3c:28:e7:92:ab:7d:47:5e:f4:fb:89:fb:38:e1:96:04: de:74:34:b7:a4:a0:98:86:e3:af:e5:75:79:64:30:9d:61:4d: 96:aa:3a:11:2b:14:34:e5:2a:e9:89:35:2c:dd:c7:16:66:0e: 02:f7:3d:17:00:bd:95:55:88:fc:d2:66:7a:46:6b:63:19:4a: 8c:e5:c1:12:64:43:78:cf:bd:fc:86:6d:48:12:48:ef:e0:21: 2c:58:85:a5:1a:0f:fa:8b:94:ba:91:05:b9:45:d8:d6:e9:bd: e4:c5:90:c9:ae:a5:02:71:36:50:12:44:d9:aa:55:cd:d2:7c: 18:15:14:32:0a:a0:2e:e7:0c:f4:fc:9a:79:ab:f1:8b:3a:92: f6:3d:10:bb:ee:f0:b0:6a:a1:8a:3d:aa:94:54:21:4c:a3:f4: 9d:8b:94:94:2d:52:aa:1b:20:67:42:70:e7:b1:07:c7:bc:67: f0:7a:d7:ba:40:cc:34:5b:d5:d9:6c:88:21:9a:52:43:f1:4c: 3f:c2:04:f7:d0:c1:fa:64:75:37:e4:51:ca:1d:38:b2:b0:ae: 55:e6:0e:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwOTUxMTAvBgNVBAUTKEIyOTExMDIxNTQ0NzIxODNDRjUwRDJBRTZGQTMwRTFC REUzNDJCRjQwHhcNMjUwNTExMDI1NTQ4WhcNMjUwNTE4MDI1NTQ4WjAYMRYwFAYD VQQDEw02ODIwMTFiNC1kOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0pc0isWqMlqJywnKb52XmH3IIpvdOd7VcQIpc6dSiq8cgsp8msTzls0w+P3 tNgseatcPWIfCl3IN/DKHnyJxZ6TKlg7x7otvqc2u3/UVeTEj1IyVUuq7b8kWbqo B8OvGgNkoFZHGWtRy2SjPQQFcPCaHyhU21Gai33vKa3d8JMBbe6a7XwWYmQVBIVV 9aHmLaR9xCGfNI/nS+7aH/LdQK6wk9p8FkT4eOTaYor14Wsob2KOLAHgTly2gX++ 2v9NVJIFHp1aWSCqvKRaqsS6OhcY5GwM/90MtedzuWdmr4RgdSSaaLNBdCUKqMJ5 iu+nnmEqorikVBZ+DSDBLe+StQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQy0Kgm TSfFWxkW/llqSZ3upzPUMB8GA1UdIwQYMBaAFLKRECFURyGDz1DSrm+jDhveNCv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjA5NS9BQUJFQjU2QTFB NTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZUFBVTkt1YjZNT0c5NDBL X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwRVFJVlJISVlQUFVOS3ViNk1PRzk0MEtfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjA5NS9BQUJFQjU2QTFBNTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZ UFBVTkt1YjZNT0c5NDBLX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn3zaE+tlzCd/XQ0gmz7wOIB3rBqJY3f8mPB8xw/BX3VRc4k4MBjwo 55KrfUde9PuJ+zjhlgTedDS3pKCYhuOv5XV5ZDCdYU2WqjoRKxQ05SrpiTUs3ccW Zg4C9z0XAL2VVYj80mZ6RmtjGUqM5cESZEN4z738hm1IEkjv4CEsWIWlGg/6i5S6 kQW5RdjW6b3kxZDJrqUCcTZQEkTZqlXN0nwYFRQyCqAu5wz0/Jp5q/GLOpL2PRC7 7vCwaqGKPaqUVCFMo/Sdi5SULVKqGyBnQnDnsQfHvGfwete6QMw0W9XZbIghmlJD 8Uw/wgT30MH6ZHU35FHKHTiysK5V5g5s -----END CERTIFICATE-----Generated at Tue May 13 04:35:26 2025 by rpki-client