$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: TAb4v9Ei2QXj/fpqQJb78ULTF1oBn35SBfVhiZx2uAc= Subject key identifier: 52:2C:59:6A:D6:57:5E:F3:D1:7D:6F:2C:33:AB:A2:55:2D:8E:0A:2E Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 0128 Signing time: Sun 15 Jun 2025 03:47:14 +0000 Manifest this update: Sun 15 Jun 2025 03:47:14 +0000 Manifest next update: Sun 22 Jun 2025 03:47:14 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: PLnDQ/CSkKRFOTMUJpDBdsg2dlfZKB5HdH8SPZUu10c=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Jun 15 03:47:14 2025 GMT Not After : Jun 22 03:47:14 2025 GMT Subject: CN=684e4242-a63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:c7:54:47:d5:34:1d:df:0e:e9:d2:85:33: 6b:b7:e6:39:3a:01:66:27:aa:7f:64:73:d8:bc:7b: 97:10:ac:2f:66:fb:71:f2:4d:8f:7a:66:6f:92:a5: 9b:f2:2a:75:7b:c1:7d:5d:ce:dc:e0:9e:27:98:03: e2:de:92:f7:e2:a3:2f:69:25:f7:17:7e:39:18:5b: 44:15:da:95:20:30:c2:6e:19:e9:a9:0f:97:04:41: b3:8e:43:b8:4a:0f:b6:ce:40:3b:4b:f7:c2:81:82: 8b:97:8a:c9:25:71:dd:fa:40:d1:82:74:34:6e:3f: 34:5f:82:04:f1:8d:19:85:8c:07:c4:34:05:98:a2: a0:ed:50:33:89:a6:13:1e:79:60:f7:48:70:0b:f7: 21:77:0e:d7:6b:36:d9:77:a5:b4:77:95:ec:43:a4: e3:7c:43:8b:78:1f:22:7b:6f:d1:b3:39:bb:d7:10: d2:66:c4:36:ec:bc:51:ee:d8:51:7c:a7:3b:92:63: 2c:26:c3:fb:83:54:da:5b:c1:a4:cc:ab:d3:0d:ed: e6:aa:d4:f4:f4:ef:2f:fb:82:da:9f:3c:16:4e:9d: ad:58:f4:56:40:56:ec:f9:91:00:46:6b:29:2c:e0: 86:89:9b:85:4a:36:21:76:7a:d1:99:c3:bd:fb:3d: 82:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:2C:59:6A:D6:57:5E:F3:D1:7D:6F:2C:33:AB:A2:55:2D:8E:0A:2E X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d1:58:3a:79:16:0c:13:df:2f:60:2e:2b:cb:34:17:ec:38: 06:b0:5a:90:59:d3:b5:4a:fc:27:65:46:82:dd:2c:22:e9:6a: d0:3a:e8:27:10:cd:a1:3a:ac:8f:3d:1c:f5:53:5f:d0:65:e4: 66:f0:8c:86:62:fb:41:9a:53:31:00:1d:19:d4:03:42:08:5d: 69:79:e8:7e:bb:d2:ff:25:e5:9f:7b:73:ed:35:d9:f2:6c:71: 18:13:24:a8:48:13:04:4a:a6:6a:09:e3:78:d2:6d:45:e7:4a: 1b:0a:8e:3c:7e:4f:6c:88:cf:24:e5:03:ca:bd:59:80:fa:72: f5:5c:ad:81:c6:64:9a:8b:d7:f2:a1:56:af:d1:60:dc:19:19: a1:18:9d:a0:97:25:ee:42:d6:ba:f4:9c:01:1f:27:c2:a2:9f: a4:50:eb:0e:0f:99:b6:19:44:50:03:69:f5:0a:59:a3:52:63: c1:d9:f3:7b:80:0b:11:7d:c5:57:33:bf:b4:f0:3f:61:17:88: f1:51:13:07:4b:54:b1:07:3d:5a:da:2d:b8:9f:4d:10:6e:94: d2:67:8f:7a:a6:ba:fe:e8:38:40:30:df:9c:6f:fc:e7:bb:4a: da:a4:47:ca:cc:a9:be:2b:00:40:c6:b7:73:f3:2d:1f:20:68: 20:56:d9:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUwNjE1MDM0NzE0WhcNMjUwNjIyMDM0NzE0WjAYMRYwFAYD VQQDEw02ODRlNDI0Mi1hNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutnHVEfVNB3fDunShTNrt+Y5OgFmJ6p/ZHPYvHuXEKwvZvtx8k2PemZvkqWb 8ip1e8F9Xc7c4J4nmAPi3pL34qMvaSX3F345GFtEFdqVIDDCbhnpqQ+XBEGzjkO4 Sg+2zkA7S/fCgYKLl4rJJXHd+kDRgnQ0bj80X4IE8Y0ZhYwHxDQFmKKg7VAziaYT Hnlg90hwC/chdw7XazbZd6W0d5XsQ6TjfEOLeB8ie2/Rszm71xDSZsQ27LxR7thR fKc7kmMsJsP7g1TaW8GkzKvTDe3mqtT09O8v+4LanzwWTp2tWPRWQFbs+ZEARmsp LOCGiZuFSjYhdnrRmcO9+z2C9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIsWWrW V17z0X1vLDOrolUtjgouMB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR0Vg6eRYME98vYC4ryzQX7DgGsFqQWdO1SvwnZUaC3Swi6WrQOugn EM2hOqyPPRz1U1/QZeRm8IyGYvtBmlMxAB0Z1ANCCF1peeh+u9L/JeWfe3PtNdny bHEYEySoSBMESqZqCeN40m1F50obCo48fk9siM8k5QPKvVmA+nL1XK2BxmSai9fy oVav0WDcGRmhGJ2glyXuQta69JwBHyfCop+kUOsOD5m2GURQA2n1ClmjUmPB2fN7 gAsRfcVXM7+08D9hF4jxURMHS1SxBz1a2i24n00QbpTSZ496prr+6DhAMN+cb/zn u0rapEfKzKm+KwBAxrdz8y0fIGggVtmO -----END CERTIFICATE-----Generated at Sun Jun 15 09:17:49 2025 by rpki-client