$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: a6qcdqxeIAztPDvPgQAHOSNECqcSi3KHvLoCaS8mjXE= Subject key identifier: 88:23:FB:B7:87:B6:2F:66:76:23:AB:75:FF:A3:63:19:E6:D9:6D:BF Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 0125 Signing time: Mon 09 Jun 2025 03:41:32 +0000 Manifest this update: Mon 09 Jun 2025 03:41:32 +0000 Manifest next update: Mon 16 Jun 2025 03:41:32 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: qX2kxvJozfQaFg0whwzX+d9LAjCbGoyxBhl38Bawk9w=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 03:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Jun 9 03:41:32 2025 GMT Not After : Jun 16 03:41:32 2025 GMT Subject: CN=684657ec-fddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a7:01:90:0a:3a:bf:d0:8b:cb:ef:43:ff:5f: 5f:e6:ba:ce:83:86:bc:d6:eb:08:b8:f1:37:c9:a5: 2c:b9:c4:50:2d:60:66:73:cc:e8:42:fa:b1:82:97: 93:57:47:85:c6:e9:ed:85:21:c7:af:cb:26:fa:1b: 5b:00:b5:d6:6c:39:80:e5:66:cd:0e:7b:95:9c:e6: 06:ba:f5:82:1f:42:a1:48:e7:d0:a8:2e:81:f9:a8: 8e:19:00:84:da:6e:a6:89:aa:db:bc:c1:b8:ca:82: 05:73:bd:14:72:31:36:31:a2:2e:6f:98:04:f7:37: b6:7a:7b:50:18:e9:ad:72:44:e6:51:fd:0b:1a:65: c1:0d:65:ee:d1:44:79:13:bf:0f:25:03:f2:b1:3d: 0e:7a:56:64:f0:9d:72:93:56:03:24:38:ee:37:3d: 22:fb:d0:f6:e8:26:1b:e1:83:fb:c4:38:42:cc:df: a8:4c:f9:54:e9:ba:f6:c6:3a:d9:7f:fb:74:19:ca: 85:c4:9e:aa:0d:5e:23:8d:62:e8:96:cd:eb:b6:00: cf:b7:5d:2f:6b:bb:bf:56:aa:02:12:a5:7c:14:59: 12:82:32:22:66:14:ae:20:54:7c:cb:23:6b:41:b3: 51:75:2d:3e:6a:3d:c6:30:2c:b6:58:ca:8a:4d:3f: e5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:23:FB:B7:87:B6:2F:66:76:23:AB:75:FF:A3:63:19:E6:D9:6D:BF X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:40:3e:df:15:a4:35:84:62:cf:2d:da:1b:30:7b:6a:60:47: a7:22:5f:fb:c3:12:74:91:84:ff:7e:c9:76:ba:bd:e1:68:28: ec:19:ad:72:10:2d:0a:aa:b3:a1:14:9c:04:2c:e2:a5:b7:0e: c4:4b:98:ff:e7:da:93:86:16:b3:9b:87:e4:78:87:a8:ea:a5: 2b:30:d6:f8:ea:76:21:19:81:da:48:c2:c9:51:c3:36:21:2d: 34:48:78:f7:32:8c:43:1a:45:57:0f:04:ba:6f:ce:1f:73:f4: 70:32:7f:e0:24:84:66:64:e3:c4:a1:89:ec:bd:99:0c:d8:cc: 9e:07:70:44:9c:f7:88:5d:41:96:c2:73:5a:ce:ed:fd:8c:d8: 54:3d:b5:1b:cb:76:e5:de:ea:02:b6:49:5c:30:85:9d:2f:71: cd:20:f9:47:de:ac:f5:82:1a:3b:a6:2b:df:54:a7:fe:84:41: 3c:4f:a2:6b:3f:02:0f:9b:ff:05:5f:36:19:ef:4e:12:60:d2: 92:6e:e1:43:a6:59:45:93:19:78:49:05:17:70:21:fd:09:35: 66:79:79:c4:a4:c6:b7:a2:d3:c2:d0:a0:59:51:45:29:90:d1: 8a:f3:bc:b9:ca:13:6b:86:74:3b:89:82:49:5c:59:b3:4f:0e: 3e:9d:11:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUwNjA5MDM0MTMyWhcNMjUwNjE2MDM0MTMyWjAYMRYwFAYD VQQDEw02ODQ2NTdlYy1mZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46cBkAo6v9CLy+9D/19f5rrOg4a81usIuPE3yaUsucRQLWBmc8zoQvqxgpeT V0eFxunthSHHr8sm+htbALXWbDmA5WbNDnuVnOYGuvWCH0KhSOfQqC6B+aiOGQCE 2m6miarbvMG4yoIFc70UcjE2MaIub5gE9ze2entQGOmtckTmUf0LGmXBDWXu0UR5 E78PJQPysT0OelZk8J1yk1YDJDjuNz0i+9D26CYb4YP7xDhCzN+oTPlU6br2xjrZ f/t0GcqFxJ6qDV4jjWLols3rtgDPt10va7u/VqoCEqV8FFkSgjIiZhSuIFR8yyNr QbNRdS0+aj3GMCy2WMqKTT/l1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgj+7eH ti9mdiOrdf+jYxnm2W2/MB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlQD7fFaQ1hGLPLdobMHtqYEenIl/7wxJ0kYT/fsl2ur3haCjsGa1y EC0KqrOhFJwELOKltw7ES5j/59qThhazm4fkeIeo6qUrMNb46nYhGYHaSMLJUcM2 IS00SHj3MoxDGkVXDwS6b84fc/RwMn/gJIRmZOPEoYnsvZkM2MyeB3BEnPeIXUGW wnNazu39jNhUPbUby3bl3uoCtklcMIWdL3HNIPlH3qz1gho7pivfVKf+hEE8T6Jr PwIPm/8FXzYZ704SYNKSbuFDpllFkxl4SQUXcCH9CTVmeXnEpMa3otPC0KBZUUUp kNGK87y5yhNrhnQ7iYJJXFmzTw4+nRGY -----END CERTIFICATE-----Generated at Tue Jun 10 06:51:46 2025 by rpki-client