$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft File: qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json) Hash identifier: FVWGcOqZsVQc1SyyihJUNilxtmaxGEjrT7XyvuvBWIM= Subject key identifier: 59:C8:94:FC:F1:D6:06:10:5E:4F:D7:54:D5:74:F7:56:22:46:AD:A7 Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft Manifest number: 01FE Signing time: Mon 09 Jun 2025 01:37:18 +0000 Manifest this update: Mon 09 Jun 2025 01:37:17 +0000 Manifest next update: Mon 16 Jun 2025 01:37:17 +0000 Files and hashes: 1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: 8GfMOi0IOuFf+b9xKIK3SYd5VS3FJTKXADDBLiSPVZ8=) 2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: dBzmelJqZJRJwarLr24Qo4vmuBT6QmKRJnEzxT0UO6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 01:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Validity Not Before: Jun 9 01:37:17 2025 GMT Not After : Jun 16 01:37:17 2025 GMT Subject: CN=68463ace-9019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:48:f5:ad:19:d7:96:03:9e:d3:c2:0e:1e:2a: 5b:60:c6:f0:55:d9:ef:54:57:4f:b8:95:36:3d:83: bc:60:ea:9f:e3:74:d6:fc:42:c3:ca:41:43:88:22: 95:1e:1d:5a:f8:7a:b9:34:d0:a0:dc:ae:67:3b:92: 4d:cd:9a:a3:ab:01:b3:f3:76:87:ba:91:b9:41:54: 25:bb:eb:8a:23:70:17:89:82:4a:52:61:58:3a:72: 56:2f:b0:34:1a:85:b4:67:c1:72:f5:76:38:e1:ae: e7:18:4d:77:ae:17:b9:cc:2a:af:73:1f:8c:54:c2: ac:2a:25:23:e9:bf:e6:97:f5:8c:1e:ba:29:7c:77: 2e:7e:8d:f1:92:4a:64:2e:c4:a8:c4:5b:f2:36:cf: 68:58:56:69:85:f2:a3:fb:1a:7f:f1:4c:df:f9:ba: f4:64:0c:98:29:bc:92:49:5a:5f:dc:7e:5b:2d:0b: 1d:4d:5d:68:a0:ff:5c:9e:7b:9f:67:42:6c:cf:2a: 5b:8f:8b:3c:17:02:66:b0:6e:98:14:0e:6e:81:90: 5e:a3:0f:9a:20:78:77:70:91:c0:f0:94:9a:dc:6d: 0d:7b:87:da:17:ca:59:e8:82:c4:0a:dc:5d:84:28: e9:4c:17:fa:90:9c:28:69:14:b7:c2:d6:10:ad:5b: 77:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C8:94:FC:F1:D6:06:10:5E:4F:D7:54:D5:74:F7:56:22:46:AD:A7 X509v3 Authority Key Identifier: keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:52:93:2a:1b:e8:4c:2c:b9:04:5e:f2:4d:02:ec:a4:84:60: 28:fb:d5:a5:f9:63:49:b6:4a:20:a8:85:80:8f:3d:73:db:00: 90:9c:77:9b:c9:aa:cd:f4:ef:81:49:76:a3:6c:e1:ca:5c:d4: 37:2d:47:06:a5:08:03:99:db:e5:6c:38:2a:3a:bd:0b:d0:b8: 85:aa:c0:21:06:6e:8b:00:0b:7f:3c:40:f9:34:84:4d:cb:50: 70:35:65:95:b2:af:f7:2e:70:22:93:aa:e7:56:76:84:4c:60: d1:ed:ec:90:77:19:2a:c1:cc:1c:97:3f:f8:c4:26:eb:2d:fb: 5f:7e:95:ed:2f:5e:05:e8:6e:1d:85:bb:37:d8:c7:57:6e:2b: 79:b3:96:9b:cd:5f:5d:2a:8a:45:31:a0:5d:a9:ff:43:8b:08: d6:68:d2:7f:69:ea:1b:8d:a4:d1:0a:06:2d:16:ee:ae:0d:53: ef:b1:a4:11:be:fb:04:52:2e:57:11:a3:d2:dc:0a:74:24:18: 61:df:8c:c4:0e:7c:27:bf:d4:10:3e:ec:fb:f0:99:8a:0b:01: 03:8d:d1:6b:47:98:a6:2c:7d:a0:c1:38:27:84:94:9d:23:80: da:57:99:47:63:89:3b:77:7f:91:b5:1f:46:2f:d9:6f:17:12: 0d:71:5c:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ2RkMxMTAvBgNVBAUTKEE4QkY1NEY2MDgxOTY3MjIxOTM1Q0IxN0NDMTNFQkZC ODQxQTYwQzIwHhcNMjUwNjA5MDEzNzE3WhcNMjUwNjE2MDEzNzE3WjAYMRYwFAYD VQQDEw02ODQ2M2FjZS05MDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUj1rRnXlgOe08IOHipbYMbwVdnvVFdPuJU2PYO8YOqf43TW/ELDykFDiCKV Hh1a+Hq5NNCg3K5nO5JNzZqjqwGz83aHupG5QVQlu+uKI3AXiYJKUmFYOnJWL7A0 GoW0Z8Fy9XY44a7nGE13rhe5zCqvcx+MVMKsKiUj6b/ml/WMHropfHcufo3xkkpk LsSoxFvyNs9oWFZphfKj+xp/8Uzf+br0ZAyYKbySSVpf3H5bLQsdTV1ooP9cnnuf Z0Jszypbj4s8FwJmsG6YFA5ugZBeow+aIHh3cJHA8JSa3G0Ne4faF8pZ6ILECtxd hCjpTBf6kJwoaRS3wtYQrVt38QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnIlPzx 1gYQXk/XVNV091YiRq2nMB8GA1UdIwQYMBaAFKi/VPYIGWciGTXLF8wT6/uEGmDC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDZGQy84ODc1OTE4MjQz MkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5SVpOY3NYekJQci00UWFZ TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FMOVU5Z2daWnlJWk5jc1h6QlByLTRRYVlNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDZGQy84ODc1OTE4MjQzMkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5 SVpOY3NYekJQci00UWFZTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdUpMqG+hMLLkEXvJNAuykhGAo+9Wl+WNJtkogqIWAjz1z2wCQnHeb yarN9O+BSXajbOHKXNQ3LUcGpQgDmdvlbDgqOr0L0LiFqsAhBm6LAAt/PED5NIRN y1BwNWWVsq/3LnAik6rnVnaETGDR7eyQdxkqwcwclz/4xCbrLftffpXtL14F6G4d hbs32MdXbit5s5abzV9dKopFMaBdqf9DiwjWaNJ/aeobjaTRCgYtFu6uDVPvsaQR vvsEUi5XEaPS3Ap0JBhh34zEDnwnv9QQPuz78JmKCwEDjdFrR5imLH2gwTgnhJSd I4DaV5lHY4k7d3+RtR9GL9lvFxINcVw7 -----END CERTIFICATE-----Generated at Mon Jun 9 19:39:55 2025 by rpki-client