$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: kJ+2+9v4SXjPWeZ1ceXO55cQFUhqs5zNJ1BEuDfIRUw= Subject key identifier: 46:21:3A:A4:3A:8E:68:64:83:1B:F4:BA:77:41:33:6D:11:97:58:5F Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: B6 Signing time: Tue 03 Jun 2025 05:45:18 +0000 Manifest this update: Tue 03 Jun 2025 05:45:17 +0000 Manifest next update: Tue 10 Jun 2025 05:45:17 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: M7tTX1qK5ILJz5w3CaireOsoU5JKwPYAgiImshj6OKk=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Jun 3 05:45:17 2025 GMT Not After : Jun 10 05:45:17 2025 GMT Subject: CN=683e8bed-71a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a6:d5:d4:cf:ad:e0:e0:91:ba:b6:a0:bf:08: b2:b2:ce:e9:3a:e9:4a:f4:cd:cf:d5:1d:fc:87:2e: d2:6b:aa:56:07:bd:86:fb:e3:8c:04:c5:e1:85:3a: ac:c5:14:c4:51:5c:2d:da:ec:c8:fb:6b:e0:b2:3e: c6:ea:3b:b6:db:d7:8c:77:3d:31:a6:0c:40:ff:83: 3d:9c:70:41:91:16:d7:00:39:f8:8b:62:c8:81:9f: cb:bf:c1:22:44:e3:d6:0d:dc:eb:ed:ed:d1:a9:07: 14:59:17:f0:2f:c6:13:33:b5:a7:93:f7:cf:74:65: bd:8d:f4:f1:d2:4c:74:b6:13:4d:20:a3:29:14:37: cd:71:59:b7:73:d2:42:43:05:11:ec:43:06:d2:28: 77:ce:32:90:a8:84:e9:e6:9e:f0:89:de:c5:24:8d: 22:96:7f:27:38:df:40:78:81:82:4d:69:7b:c1:a8: a6:77:d9:a5:19:ac:4d:01:51:cc:7e:41:4d:43:d4: d9:f6:e2:3e:d4:59:fe:c4:21:2f:e5:3a:a2:43:e0: 51:7a:4c:46:dd:bc:ce:eb:2b:b4:bd:5e:7c:4f:60: af:53:b3:3c:98:5c:7d:aa:dd:8b:71:97:68:5b:a9: a2:27:96:8b:c9:e5:5f:6f:e3:a7:0f:42:5e:d4:af: dc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:21:3A:A4:3A:8E:68:64:83:1B:F4:BA:77:41:33:6D:11:97:58:5F X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:97:bb:74:b3:7b:71:c1:fc:0a:25:c4:2f:39:b9:3d:7e:1f: 3e:e0:0e:89:51:06:cf:91:f9:a2:26:0c:79:ad:3e:be:db:1a: a3:22:1a:bc:90:07:bd:56:a6:a7:97:80:88:75:e2:54:6f:03: 41:bd:b9:6d:d8:b8:c2:72:f7:12:b8:ce:eb:c7:f3:a3:77:55: f6:59:1a:17:09:a5:ee:ea:1f:57:2a:60:df:b0:98:2d:84:bb: 97:37:f5:d2:72:49:0e:17:3c:3a:96:b3:09:92:a2:17:3f:8c: 8f:f0:39:09:a1:66:5f:43:ac:39:77:ac:2e:2a:10:f1:a9:4e: c5:76:b0:ed:51:70:5b:bb:50:e5:a2:cb:20:11:51:f0:4f:4e: ea:fa:25:1f:5c:f6:5c:a5:cc:b8:92:5d:4c:20:3d:15:ec:27: eb:fc:45:54:c8:7e:1b:ea:52:9e:cd:6d:d8:5d:68:01:2a:e1: ee:4d:75:a9:80:b5:65:90:19:5e:db:ef:3c:ab:c2:e1:0f:59: a3:58:e6:ad:3f:11:67:2f:9b:ca:fc:31:8e:e7:25:59:b4:61: 5d:97:83:3d:0e:75:83:5f:67:09:69:1c:9d:39:c5:c8:c2:17: 36:3c:1f:68:56:95:95:5c:7b:41:3e:34:53:8f:43:da:87:ca: 64:aa:06:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwNjAzMDU0NTE3WhcNMjUwNjEwMDU0NTE3WjAYMRYwFAYD VQQDEw02ODNlOGJlZC03MWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqbV1M+t4OCRuragvwiyss7pOulK9M3P1R38hy7Sa6pWB72G++OMBMXhhTqs xRTEUVwt2uzI+2vgsj7G6ju229eMdz0xpgxA/4M9nHBBkRbXADn4i2LIgZ/Lv8Ei ROPWDdzr7e3RqQcUWRfwL8YTM7Wnk/fPdGW9jfTx0kx0thNNIKMpFDfNcVm3c9JC QwUR7EMG0ih3zjKQqITp5p7wid7FJI0iln8nON9AeIGCTWl7waimd9mlGaxNAVHM fkFNQ9TZ9uI+1Fn+xCEv5TqiQ+BRekxG3bzO6yu0vV58T2CvU7M8mFx9qt2LcZdo W6miJ5aLyeVfb+OnD0Je1K/cNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYhOqQ6 jmhkgxv0undBM20Rl1hfMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9l7t0s3txwfwKJcQvObk9fh8+4A6JUQbPkfmiJgx5rT6+2xqjIhq8 kAe9Vqanl4CIdeJUbwNBvblt2LjCcvcSuM7rx/Ojd1X2WRoXCaXu6h9XKmDfsJgt hLuXN/XSckkOFzw6lrMJkqIXP4yP8DkJoWZfQ6w5d6wuKhDxqU7FdrDtUXBbu1Dl ossgEVHwT07q+iUfXPZcpcy4kl1MID0V7Cfr/EVUyH4b6lKezW3YXWgBKuHuTXWp gLVlkBle2+88q8LhD1mjWOatPxFnL5vK/DGO5yVZtGFdl4M9DnWDX2cJaRydOcXI whc2PB9oVpWVXHtBPjRTj0Pah8pkqgbA -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:26 2025 by rpki-client