$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json) Hash identifier: 7+GzVzVAQuVZJ3wHL9IHkesZiopFJRMeOJ00nxlNw14= Subject key identifier: A9:0F:1C:AA:1F:73:3A:E3:08:87:1E:AD:AB:72:5F:41:0E:D8:9C:A8 Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft Manifest number: 78 Signing time: Tue 03 Jun 2025 06:32:00 +0000 Manifest this update: Tue 03 Jun 2025 06:31:59 +0000 Manifest next update: Tue 10 Jun 2025 06:31:59 +0000 Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: /j1d91ClAk+xPuxIWZMweFVAlGBvFbd/Q6KhLf0kju4=) 2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: eCOiciHVF02QIJ92sCGpWxzFiJ0IghOmtXmYmm4vkYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CB05, serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Validity Not Before: Jun 3 06:31:59 2025 GMT Not After : Jun 10 06:31:59 2025 GMT Subject: CN=683e96df-9b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fd:91:b2:2e:43:96:77:c3:a7:fb:c5:9d:1b: 81:01:36:32:00:6c:55:6e:40:a3:fe:ed:82:32:ed: f4:39:2b:7d:20:64:83:79:0e:e8:e2:cb:a0:b5:6e: dc:56:6d:f9:49:fd:b0:9e:9d:6a:c4:ae:67:c7:e6: 7b:68:77:4f:40:6e:95:2e:56:d1:1f:0a:c3:53:3a: 34:91:e3:23:3f:31:cd:7f:cd:7c:79:a6:5c:49:ce: ca:80:c1:91:bb:e6:c8:b4:49:fa:c6:a0:92:e6:9f: f2:bb:b0:c3:98:fb:73:45:e1:9e:a6:86:27:38:e3: 34:29:c8:ad:67:3b:cb:72:30:90:8b:8e:04:0a:bc: 6f:21:ae:d3:1e:ab:61:a4:8d:57:b6:de:7e:c5:14: 2b:b3:82:4e:96:f9:b7:c2:b7:c9:48:1f:de:a7:cc: 67:e6:9a:ab:2c:b3:42:34:e6:75:cd:3c:c7:12:d5: 3e:c8:21:34:80:5c:99:98:4c:60:32:07:b8:80:ee: c3:97:d5:f6:d9:72:e7:5d:66:81:ea:d6:ec:d4:00: c5:53:51:ee:4a:03:30:ed:84:6b:bf:e8:c5:bb:53: 9a:21:47:92:35:6f:d9:c8:27:9b:4f:6f:ca:ee:fc: bb:a5:2e:13:71:b8:9f:a6:5b:28:e0:27:9d:5b:fa: ee:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0F:1C:AA:1F:73:3A:E3:08:87:1E:AD:AB:72:5F:41:0E:D8:9C:A8 X509v3 Authority Key Identifier: keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:e3:bf:6e:7e:34:32:ce:5c:27:7d:de:e7:9d:cc:27:92:69: 8b:89:df:f9:ea:ce:7b:ee:8b:a8:1e:71:b1:06:7a:0f:12:b5: 25:76:4c:d7:92:ad:ce:13:c2:ad:e7:c6:93:81:80:7c:2b:d9: 0f:25:f8:57:21:c2:f8:39:26:c2:b4:30:f3:d0:60:99:0f:de: fd:78:64:df:0c:27:58:0b:73:c4:3d:5a:c3:14:6f:ce:1a:5e: 78:7f:e6:a4:b6:50:e7:09:92:a1:fe:21:ea:8e:e8:ea:7e:4a: 91:d0:bb:3c:85:19:e5:36:83:88:d4:a9:2d:c3:65:4f:4a:87: 23:f1:91:b6:59:07:0d:a4:5d:79:2c:c0:cb:c2:81:c3:5d:15: ef:da:16:06:6c:a4:a9:65:2f:fa:63:75:b7:41:99:3e:50:bc: 85:6e:25:a4:44:42:54:84:75:9c:46:82:de:d5:90:e3:0f:90: 27:56:e3:00:32:d8:72:7f:85:9c:e9:c4:d6:0e:9e:f3:a1:bd: 56:82:12:3b:4a:41:1e:c6:d5:00:85:d3:79:34:5c:f6:c7:f6: 18:e3:7d:b9:64:ad:e8:f4:be:46:f3:53:0c:58:bf:30:33:dc: 9d:7e:d1:ac:f4:54:dc:8e:50:eb:f2:c5:6e:78:89:6b:71:8a: aa:3c:3f:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0IwNTExMC8GA1UEBRMoNDBEREVFRjAxOEVBRENERTREMUJGNzhEMTU0ODUxRjhE OEJDMjZBNTAeFw0yNTA2MDMwNjMxNTlaFw0yNTA2MTAwNjMxNTlaMBgxFjAUBgNV BAMTDTY4M2U5NmRmLTliOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD/ZGyLkOWd8On+8WdG4EBNjIAbFVuQKP+7YIy7fQ5K30gZIN5Dujiy6C1btxW bflJ/bCenWrErmfH5ntod09AbpUuVtEfCsNTOjSR4yM/Mc1/zXx5plxJzsqAwZG7 5si0SfrGoJLmn/K7sMOY+3NF4Z6mhic44zQpyK1nO8tyMJCLjgQKvG8hrtMeq2Gk jVe23n7FFCuzgk6W+bfCt8lIH96nzGfmmqsss0I05nXNPMcS1T7IITSAXJmYTGAy B7iA7sOX1fbZcuddZoHq1uzUAMVTUe5KAzDthGu/6MW7U5ohR5I1b9nIJ5tPb8ru /LulLhNxuJ+mWyjgJ51b+u49AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqQ8cqh9z OuMIhx6tq3JfQQ7YnKgwHwYDVR0jBBgwFoAUQN3u8Bjq3N5NG/eNFUhR+Ni8JqUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQjA1L0YwQjY2Q0Y4OEE5 QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041TkdfZU5GVWhSLU5pOEpx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUU4zdThCanEzTjVOR19lTkZVaFItTmk4SnFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QjA1L0YwQjY2Q0Y4OEE5QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041 TkdfZU5GVWhSLU5pOEpxVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHzjv25+NDLOXCd93uedzCeSaYuJ3/nqznvui6gecbEGeg8StSV2TNeS rc4Twq3nxpOBgHwr2Q8l+Fchwvg5JsK0MPPQYJkP3v14ZN8MJ1gLc8Q9WsMUb84a Xnh/5qS2UOcJkqH+IeqO6Op+SpHQuzyFGeU2g4jUqS3DZU9KhyPxkbZZBw2kXXks wMvCgcNdFe/aFgZspKllL/pjdbdBmT5QvIVuJaREQlSEdZxGgt7VkOMPkCdW4wAy 2HJ/hZzpxNYOnvOhvVaCEjtKQR7G1QCF03k0XPbH9hjjfblkrej0vkbzUwxYvzAz 3J1+0az0VNyOUOvyxW54iWtxiqo8P24= -----END CERTIFICATE-----Generated at Wed Jun 4 00:11:30 2025 by rpki-client