$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: k7fDvzYGaNR/iuvR1qOFf7HRwHg2zFWp8G5gGfFSzLM= Subject key identifier: BC:78:01:B3:AD:A9:CA:5E:34:F1:B1:B2:9E:87:E8:52:8C:C1:C3:BD Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: BF Signing time: Sat 31 May 2025 05:29:14 +0000 Manifest this update: Sat 31 May 2025 05:29:14 +0000 Manifest next update: Sat 07 Jun 2025 05:29:14 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: DQuL2T4jlEkCrXhNCLQjRR9CmGI0qrRT+DA+Q9Ndhls=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: May 31 05:29:14 2025 GMT Not After : Jun 7 05:29:14 2025 GMT Subject: CN=683a93aa-bd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e5:09:26:7b:6d:52:f8:c4:5e:90:39:bc:18: 47:f7:53:37:b3:ba:61:15:ea:9c:35:b7:a1:7b:d0: 08:de:6a:25:39:26:64:ec:9e:2e:1a:4b:de:3c:c9: db:24:46:9c:b2:00:e9:1c:34:d2:3d:66:36:33:98: 76:90:74:a1:8f:b2:51:4b:9a:d6:bf:a6:48:23:ae: ec:22:26:7f:6a:cf:8c:ef:86:2b:bb:03:d7:fe:5a: 73:87:85:91:c8:b4:72:1f:62:9d:cf:85:7f:f6:bf: 29:8d:de:e1:36:d1:cd:54:93:b9:ab:57:9b:a4:81: 8c:40:88:3b:9f:a1:87:05:43:80:a2:ce:1e:76:cc: 2c:c1:fa:eb:ed:7c:a5:e6:35:dd:b2:8c:43:65:e4: 1e:01:32:9d:7a:9e:e1:64:f5:49:4b:e6:d9:a1:ae: ef:49:d6:f8:d4:45:86:f1:19:8a:48:10:94:5c:78: 06:bc:2a:a2:1f:f3:97:6f:f4:9a:a7:d7:29:45:57: 9f:11:bc:52:cf:e2:ae:fe:52:a7:b9:e6:c9:1b:0f: b4:02:56:26:57:54:16:a7:29:8a:72:49:1c:73:dc: 86:b9:da:9d:bf:2b:ce:0e:7e:a1:98:bc:4d:e2:6f: bf:c8:20:57:82:df:31:13:f5:a4:70:9a:ab:fe:68: c1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:78:01:B3:AD:A9:CA:5E:34:F1:B1:B2:9E:87:E8:52:8C:C1:C3:BD X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:60:28:41:c8:bb:98:a4:d5:21:ab:db:7b:af:47:59:e5:29: 5c:56:5f:b6:b3:68:a2:b0:fb:ca:62:59:65:ad:e9:a0:8c:b1: ed:cc:54:74:c3:c7:2b:6e:4e:09:db:69:96:15:19:2e:12:d4: bf:74:84:69:9a:61:9d:41:d1:e7:24:98:28:a3:3b:b6:52:f1: ea:f0:49:d6:53:ce:78:a8:b5:99:67:9f:9e:24:38:74:ee:66: 22:76:ad:95:54:83:57:d2:98:3c:ea:96:5d:70:49:c1:d4:fa: 84:d4:57:34:e5:b9:dd:eb:42:e8:f4:9e:3a:d1:55:c0:d4:d9: 9c:55:b1:24:90:d4:c1:a5:d8:b0:d9:62:c1:37:a1:2a:75:31: ec:e5:67:00:b8:3d:23:ac:3b:a3:a6:c4:b7:e3:c9:85:be:96: 6b:56:8a:db:e9:2f:47:9c:5b:02:82:37:47:f5:74:88:c9:eb: 0e:aa:73:e1:2d:76:ed:f5:79:96:b7:8a:4f:cc:d6:ab:60:33: 64:fb:08:37:38:08:07:cb:94:3e:01:a9:a6:74:a8:40:88:7b: 0b:91:1f:f5:4d:73:c5:96:bc:b3:75:72:a7:98:2d:d6:25:b9: f5:ce:32:d9:44:51:64:b9:41:db:de:7d:5d:51:93:4b:3a:d9: 27:44:69:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwNTMxMDUyOTE0WhcNMjUwNjA3MDUyOTE0WjAYMRYwFAYD VQQDEw02ODNhOTNhYS1iZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+UJJnttUvjEXpA5vBhH91M3s7phFeqcNbehe9AI3molOSZk7J4uGkvePMnb JEacsgDpHDTSPWY2M5h2kHShj7JRS5rWv6ZII67sIiZ/as+M74YruwPX/lpzh4WR yLRyH2Kdz4V/9r8pjd7hNtHNVJO5q1ebpIGMQIg7n6GHBUOAos4edswswfrr7Xyl 5jXdsoxDZeQeATKdep7hZPVJS+bZoa7vSdb41EWG8RmKSBCUXHgGvCqiH/OXb/Sa p9cpRVefEbxSz+Ku/lKnuebJGw+0AlYmV1QWpymKckkcc9yGudqdvyvODn6hmLxN 4m+/yCBXgt8xE/WkcJqr/mjB3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx4AbOt qcpeNPGxsp6H6FKMwcO9MB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANYChByLuYpNUhq9t7r0dZ5SlcVl+2s2iisPvKYlllremgjLHtzFR0 w8crbk4J22mWFRkuEtS/dIRpmmGdQdHnJJgoozu2UvHq8EnWU854qLWZZ5+eJDh0 7mYidq2VVINX0pg86pZdcEnB1PqE1Fc05bnd60Lo9J460VXA1NmcVbEkkNTBpdiw 2WLBN6EqdTHs5WcAuD0jrDujpsS348mFvpZrVorb6S9HnFsCgjdH9XSIyesOqnPh LXbt9XmWt4pPzNarYDNk+wg3OAgHy5Q+AammdKhAiHsLkR/1TXPFlryzdXKnmC3W Jbn1zjLZRFFkuUHb3n1dUZNLOtknRGks -----END CERTIFICATE-----Generated at Sat May 31 17:56:17 2025 by rpki-client