$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: wqRIPdlgl2Cy2Isaw+Vc5YcPiUJkXHorUK44hD/uNrw= Subject key identifier: B2:04:12:8D:31:70:D0:17:3A:86:2B:4F:49:4D:0A:57:21:5F:83:A3 Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 064E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 0647 Signing time: Fri 30 May 2025 22:47:21 +0000 Manifest this update: Fri 30 May 2025 22:47:20 +0000 Manifest next update: Fri 06 Jun 2025 22:47:20 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: QucA1pFyfve8wIk4xQAZA8LtAzp89Z3NkbauT5KY7Zk=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: 9fks3NvnHOVB0kb3Kc99MGLGUTLgUhxpBqtGNsXU3KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:47:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1614 (0x64e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: May 30 22:47:20 2025 GMT Not After : Jun 6 22:47:20 2025 GMT Subject: CN=683a3578-a0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:92:a7:fb:f8:55:0b:a9:3e:34:af:ed:c5:fa: fd:2e:87:8c:60:98:e6:35:86:46:a2:1f:6b:58:76: 84:31:9b:10:27:47:fe:93:db:36:3c:77:31:88:00: 75:43:96:e3:a4:24:06:46:83:2b:f6:0c:fb:4c:00: 26:f5:7f:ad:c8:44:db:63:af:6b:0a:f0:50:50:9c: 28:f6:af:35:a9:49:91:54:5e:bd:6b:c5:e8:f7:01: e5:f0:5a:9f:fd:ed:d0:db:c5:15:22:97:72:e3:75: 12:06:2a:37:b4:d2:5c:3b:9e:b8:d7:97:b1:c5:3d: bd:16:12:89:d5:6b:0a:c8:21:76:ee:f8:90:46:b1: 1c:b4:9d:3c:f5:35:17:c7:7c:52:e7:22:ba:d1:bb: 4e:17:0c:39:b8:be:e9:48:04:f0:e8:b1:b5:ec:8b: de:7a:a8:5a:ea:6a:20:dd:73:45:d7:7d:a7:3e:f2: 33:4f:b9:d5:65:e3:8c:f8:28:6e:a4:67:81:d4:8c: ce:a0:73:ee:f0:53:71:69:db:a1:1f:b4:33:04:b6: a5:f3:ca:8a:22:f7:74:3a:68:a1:3b:38:21:44:ad: c3:5f:26:f2:87:37:40:ce:be:24:69:de:cc:25:7a: ef:29:98:b2:33:43:d3:b1:e9:fd:dd:59:64:09:8d: 79:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:04:12:8D:31:70:D0:17:3A:86:2B:4F:49:4D:0A:57:21:5F:83:A3 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:f9:35:10:92:9d:5b:2b:6a:f7:89:f2:0e:ed:4a:87:b8:4d: 32:f7:54:3e:a5:10:4f:b7:ed:cc:b9:d8:4a:34:a7:68:40:db: 0c:46:4c:c0:a5:33:55:7f:bb:33:e5:ae:19:dd:da:7e:36:16: 56:28:ed:bb:5f:f9:48:ab:26:fe:bf:0f:ee:3e:d4:02:97:4f: b4:b4:d2:1f:6e:ce:fa:1e:87:c4:40:fb:d8:80:0d:33:92:48: 13:e7:81:fc:82:2b:2e:61:dc:99:8c:ab:0e:d7:3e:17:07:93: 83:d4:7e:81:f3:a7:2f:d3:8d:7f:ec:e1:f4:08:c4:7e:5f:5a: 19:62:7e:04:9d:1a:e5:17:9d:ea:1a:78:31:60:a5:30:2d:cd: 75:1d:ec:9c:37:f9:ce:88:d9:1d:19:2d:fd:4e:da:00:95:64: e2:67:05:e7:72:a2:7b:e2:0f:db:d8:57:3d:17:3a:c9:76:73: 3e:b0:11:ae:4a:1c:5d:21:43:86:37:f9:15:e0:1f:90:4c:f2: 56:a5:c9:16:8d:ce:38:78:39:49:7f:f4:9d:88:d8:9b:2a:91: fc:bf:4e:be:4a:e0:a5:4d:48:fb:77:c7:96:d6:41:75:ad:5b: 4e:ec:be:cb:cf:e9:6e:9f:c0:8a:3f:8c:8f:1d:0e:21:c2:81: b8:1b:1a:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUwNTMwMjI0NzIwWhcNMjUwNjA2MjI0NzIwWjAYMRYwFAYD VQQDEw02ODNhMzU3OC1hMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JKn+/hVC6k+NK/txfr9LoeMYJjmNYZGoh9rWHaEMZsQJ0f+k9s2PHcxiAB1 Q5bjpCQGRoMr9gz7TAAm9X+tyETbY69rCvBQUJwo9q81qUmRVF69a8Xo9wHl8Fqf /e3Q28UVIpdy43USBio3tNJcO56415exxT29FhKJ1WsKyCF27viQRrEctJ089TUX x3xS5yK60btOFww5uL7pSATw6LG17Iveeqha6mog3XNF132nPvIzT7nVZeOM+Chu pGeB1IzOoHPu8FNxaduhH7QzBLal88qKIvd0OmihOzghRK3DXybyhzdAzr4kad7M JXrvKZiyM0PTsen93VlkCY15YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIEEo0x cNAXOoYrT0lNClchX4OjMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP+TUQkp1bK2r3ifIO7UqHuE0y91Q+pRBPt+3MudhKNKdoQNsMRkzA pTNVf7sz5a4Z3dp+NhZWKO27X/lIqyb+vw/uPtQCl0+0tNIfbs76HofEQPvYgA0z kkgT54H8gisuYdyZjKsO1z4XB5OD1H6B86cv041/7OH0CMR+X1oZYn4EnRrlF53q GngxYKUwLc11HeycN/nOiNkdGS39TtoAlWTiZwXncqJ74g/b2Fc9FzrJdnM+sBGu ShxdIUOGN/kV4B+QTPJWpckWjc44eDlJf/SdiNibKpH8v06+SuClTUj7d8eW1kF1 rVtO7L7Lz+lun8CKP4yPHQ4hwoG4Gxrx -----END CERTIFICATE-----Generated at Sat May 31 16:52:18 2025 by rpki-client