$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: 3lE+uyFJ2HwkECLzsvnjOP3d7eshutIF/HCkyua+y3U= Subject key identifier: 72:96:CA:E7:6A:88:52:EA:F2:A2:EB:43:3A:66:EE:13:AB:D5:76:16 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 4C Signing time: Thu 05 Jun 2025 06:41:43 +0000 Manifest this update: Thu 05 Jun 2025 06:41:42 +0000 Manifest next update: Thu 12 Jun 2025 06:41:42 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: rRICi6U5BCpu8LXyocb94TGCNcaNbe9CYWQDfFE51Ek=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Jun 5 06:41:42 2025 GMT Not After : Jun 12 06:41:42 2025 GMT Subject: CN=68413c27-d504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:23:da:d2:18:96:fe:ec:85:5b:29:6a:e6:fd: 0f:4d:85:89:a1:0e:79:a0:68:5c:3b:bd:2e:7d:05: 15:04:32:41:68:b4:88:54:8c:b5:ce:17:6f:6c:c2: 42:04:e1:f0:dd:fa:28:07:f6:5a:08:36:8f:7b:08: 60:23:21:96:4f:c6:d2:d9:40:bc:4b:19:30:2d:a7: 43:e4:04:c5:3a:90:d1:a1:06:45:67:19:49:50:89: 37:f5:b6:61:8d:40:93:67:40:a0:03:b3:06:ba:23: 55:e5:25:27:cc:02:b0:4b:0b:12:dd:ed:9f:8e:b1: 2e:3b:e9:a4:46:27:d2:2c:0f:0f:a0:0d:6f:50:d6: 27:a0:46:d2:09:5d:55:a2:c4:40:3d:c5:81:e6:37: a2:1f:7d:75:8d:2e:81:6b:ff:88:1c:df:ca:86:70: c6:2a:e3:ef:c6:a9:7d:9d:5b:9b:62:61:5a:e4:e6: 1c:8f:ff:1c:8e:c9:d8:7b:a1:a2:48:71:b8:c6:2c: 7b:9c:a1:ba:70:dd:a7:6e:10:3c:b9:c2:64:03:0b: 4d:58:5e:b7:93:f8:b6:cb:f0:e7:01:bc:c7:1d:2f: da:91:77:3d:da:39:70:3c:1b:f1:7c:db:a3:86:90: 47:21:05:1e:46:66:7e:31:56:9a:22:67:1f:d1:16: 45:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:96:CA:E7:6A:88:52:EA:F2:A2:EB:43:3A:66:EE:13:AB:D5:76:16 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:3b:19:99:35:89:57:0b:4d:0c:4d:45:1a:0f:c9:7b:60:d4: 11:5b:b4:ea:5f:89:a6:1a:cd:6d:e6:98:14:95:40:c5:87:7e: 32:80:53:56:03:35:3c:ee:b6:2f:92:d4:2a:c6:de:7d:72:b3: bd:5a:01:c5:66:de:45:a8:4c:f3:47:67:e9:78:1b:45:26:b7: f2:dc:d8:b9:7f:6b:de:38:6b:f2:c0:57:36:fe:5f:0b:25:48: c2:a5:3b:d8:ef:b6:1a:80:82:bf:dc:7a:a1:70:51:2b:84:7d: 63:bc:28:0e:54:20:0d:16:00:4c:46:fc:2b:8c:3e:37:95:4a: 85:6c:c0:b9:b6:94:ce:2f:de:d0:cf:59:95:12:55:43:e4:25: 84:ef:8a:21:f1:18:45:59:e4:8e:a0:ba:26:6f:80:54:1d:34: da:b9:fc:d1:fa:e8:ef:21:21:e5:41:b0:c5:e2:de:43:9c:52: 7f:eb:77:c6:af:e2:2b:04:fe:79:8b:a4:c9:47:19:bc:ef:93: 56:ca:42:97:a4:60:c8:af:55:48:61:c1:e7:c2:94:91:94:50: 16:b1:e0:74:a5:79:68:cb:3d:9b:7d:a2:3c:9a:ae:4c:47:cf: 50:ce:01:13:66:70:cb:1e:72:ad:fb:db:b5:05:8a:54:5e:ea: 02:4e:2c:bf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTA2MDUwNjQxNDJaFw0yNTA2MTIwNjQxNDJaMBgxFjAUBgNV BAMTDTY4NDEzYzI3LWQ1MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqI9rSGJb+7IVbKWrm/Q9NhYmhDnmgaFw7vS59BRUEMkFotIhUjLXOF29swkIE 4fDd+igH9loINo97CGAjIZZPxtLZQLxLGTAtp0PkBMU6kNGhBkVnGUlQiTf1tmGN QJNnQKADswa6I1XlJSfMArBLCxLd7Z+OsS476aRGJ9IsDw+gDW9Q1iegRtIJXVWi xEA9xYHmN6IffXWNLoFr/4gc38qGcMYq4+/GqX2dW5tiYVrk5hyP/xyOydh7oaJI cbjGLHucobpw3aduEDy5wmQDC01YXreT+LbL8OcBvMcdL9qRdz3aOXA8G/F826OG kEchBR5GZn4xVpoiZx/RFkWFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcpbK52qI UuryoutDOmbuE6vVdhYwHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADY7GZk1iVcLTQxNRRoPyXtg1BFbtOpfiaYazW3mmBSVQMWHfjKAU1YD NTzuti+S1CrG3n1ys71aAcVm3kWoTPNHZ+l4G0Umt/Lc2Ll/a944a/LAVzb+Xwsl SMKlO9jvthqAgr/ceqFwUSuEfWO8KA5UIA0WAExG/CuMPjeVSoVswLm2lM4v3tDP WZUSVUPkJYTviiHxGEVZ5I6guiZvgFQdNNq5/NH66O8hIeVBsMXi3kOcUn/rd8av 4isE/nmLpMlHGbzvk1bKQpekYMivVUhhwefClJGUUBax4HSleWjLPZt9ojyarkxH z1DOARNmcMsecq3727UFilRe6gJOLL8= -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:56 2025 by rpki-client