$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: eOmZafDiX8vTxm9PQAA3QsIuxpssmSCoAax0jIA5zHo= Subject key identifier: B6:63:C8:28:7C:3F:A8:42:F1:95:B7:8E:B2:13:3A:8C:8D:F0:82:32 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 3492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 348D Signing time: Fri 06 Jun 2025 14:47:10 +0000 Manifest this update: Fri 06 Jun 2025 14:47:09 +0000 Manifest next update: Fri 13 Jun 2025 14:47:09 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: j/I9mj3mphPEVGpIwgTWWZi+DDxki1vv55wFkPgGOjc=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: fSvzoyKPYxxU75rpRzS9/7MEh8nKxr1lS94jPbqL5BE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 14:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13458 (0x3492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Jun 6 14:47:09 2025 GMT Not After : Jun 13 14:47:09 2025 GMT Subject: CN=6842ff6d-1611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b5:15:87:44:02:9c:1f:4e:e0:54:83:b5:8b: bb:e3:3a:a0:58:5d:d8:69:7c:b8:30:a2:be:b8:91: 48:d1:69:1b:8c:6d:a1:99:43:b5:75:97:5f:6d:7c: ff:46:42:c9:75:3e:34:da:f3:e5:a8:c4:67:68:4b: e8:34:07:22:8d:22:fa:d3:40:5a:11:99:21:4f:5a: de:e1:18:b3:23:6a:1f:47:e3:a4:94:7b:c9:b6:72: d2:fc:d9:3a:17:7f:e8:49:b6:48:31:10:68:23:17: e7:db:c4:8c:ae:e3:9f:13:75:b3:4a:38:ee:a2:08: bd:ec:3a:45:b3:f6:86:a0:59:d6:0e:28:b9:71:ad: f7:53:ed:43:99:b8:14:37:58:96:4c:15:f6:65:4f: 0c:3c:a3:d8:ad:e6:b7:f4:b9:6f:64:62:8c:bd:db: a4:d9:cd:23:89:8d:8c:3e:55:d1:bc:71:3f:a2:f2: 42:06:b6:77:cf:85:df:78:60:00:87:20:ba:31:48: f7:68:9c:3d:38:ee:ee:0a:80:7f:a0:8c:df:62:e5: 57:97:b8:e5:2c:a5:62:2d:b9:5c:01:9d:fa:c9:ea: c5:c1:f1:a3:81:8b:63:76:69:c4:30:7f:5a:f6:e4: 02:c5:c7:d3:57:70:79:61:87:cb:bc:5b:fe:89:e7: 14:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:63:C8:28:7C:3F:A8:42:F1:95:B7:8E:B2:13:3A:8C:8D:F0:82:32 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f2:dc:2f:4a:9a:2b:9b:ee:1a:f9:44:9d:ab:5d:34:63:9c: db:74:37:8e:04:4c:d7:e3:dd:a0:19:44:7e:dd:5a:e7:a2:aa: 08:1c:ed:a1:9d:72:57:fb:fb:32:ea:ec:a6:4e:ae:b9:24:e7: 1a:81:44:60:ed:00:c1:e4:9f:b6:fb:b5:f0:8b:7a:25:fd:68: e2:78:90:48:fd:fe:94:d4:18:de:b0:9d:db:8a:7c:f2:07:5f: 0b:62:81:dc:92:3b:f5:63:8c:a2:40:d8:cd:dc:9c:f5:35:8d: ab:c9:d3:09:4e:9c:6f:1b:66:4f:f0:23:56:b6:82:65:21:80: c9:a5:24:c3:1c:40:02:a8:3f:07:cf:54:55:83:6d:95:73:46: 9d:56:a7:5e:9b:e9:1b:08:fb:f7:d2:9a:64:6b:31:b5:09:e4: b6:d8:05:59:95:a2:8e:a4:90:c8:b1:a8:a6:2b:72:59:de:e6: 69:b6:88:c2:86:da:72:1a:ef:e5:04:f3:31:49:aa:f1:ee:f0: 49:1b:80:3b:d4:28:25:bd:ba:7e:0f:92:a6:1f:48:fa:59:8b: 8f:91:36:c6:2b:54:e9:6f:ea:a2:55:7d:c0:26:11:42:97:e6: 13:2e:2e:60:c0:ca:49:80:37:d2:52:46:f7:85:c8:4d:48:54: 9c:a1:fe:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUwNjA2MTQ0NzA5WhcNMjUwNjEzMTQ0NzA5WjAYMRYwFAYD VQQDEw02ODQyZmY2ZC0xNjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLUVh0QCnB9O4FSDtYu74zqgWF3YaXy4MKK+uJFI0WkbjG2hmUO1dZdfbXz/ RkLJdT402vPlqMRnaEvoNAcijSL600BaEZkhT1re4RizI2ofR+OklHvJtnLS/Nk6 F3/oSbZIMRBoIxfn28SMruOfE3WzSjjuogi97DpFs/aGoFnWDii5ca33U+1DmbgU N1iWTBX2ZU8MPKPYrea39LlvZGKMvduk2c0jiY2MPlXRvHE/ovJCBrZ3z4XfeGAA hyC6MUj3aJw9OO7uCoB/oIzfYuVXl7jlLKViLblcAZ36yerFwfGjgYtjdmnEMH9a 9uQCxcfTV3B5YYfLvFv+iecUUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZjyCh8 P6hC8ZW3jrITOoyN8IIyMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd8twvSporm+4a+USdq100Y5zbdDeOBEzX492gGUR+3VrnoqoIHO2h nXJX+/sy6uymTq65JOcagURg7QDB5J+2+7Xwi3ol/WjieJBI/f6U1BjesJ3binzy B18LYoHckjv1Y4yiQNjN3Jz1NY2rydMJTpxvG2ZP8CNWtoJlIYDJpSTDHEACqD8H z1RVg22Vc0adVqdem+kbCPv30ppkazG1CeS22AVZlaKOpJDIsaimK3JZ3uZptojC htpyGu/lBPMxSarx7vBJG4A71Cglvbp+D5KmH0j6WYuPkTbGK1Tpb+qiVX3AJhFC l+YTLi5gwMpJgDfSUkb3hchNSFScof4m -----END CERTIFICATE-----Generated at Fri Jun 6 17:15:15 2025 by rpki-client