$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft File: QP0nMwGov44nCXYsZPSuom0q4LQ.mft (raw, json) Hash identifier: Puuaz2r45p7gFraBKDfaSqOC8p28aYiHoiBZaJE8who= Subject key identifier: 1C:07:AC:6A:8C:A2:B6:16:23:3A:AD:8D:2A:D4:2F:7A:1C:BD:EE:8D Authority key identifier: 40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 Certificate issuer: /CN=A9164860/serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft Manifest number: 012D Signing time: Mon 02 Jun 2025 17:21:16 +0000 Manifest this update: Mon 02 Jun 2025 17:21:16 +0000 Manifest next update: Mon 09 Jun 2025 17:21:16 +0000 Files and hashes: 1: QP0nMwGov44nCXYsZPSuom0q4LQ.crl (hash: IvtavJ9P5HYS7TWzKzkPiqO9CKSPY+rfhT62RSCZRtA=) 2: 26BFE5FE841611EEB980955AC4F9AE02.roa (hash: mR7p6xLL+eywaq3IEYtE5q1FtrVRKFEpVD4lZkW4skg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860, serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Validity Not Before: Jun 2 17:21:16 2025 GMT Not After : Jun 9 17:21:16 2025 GMT Subject: CN=683ddd8c-4238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:77:51:7c:e6:db:2a:74:70:6c:02:a7:40:9e: 0e:f9:8b:c1:80:de:b9:0a:0b:bc:5e:af:6d:59:d7: 80:52:c3:bd:1e:c9:25:11:d7:60:06:33:26:8a:6b: a0:c6:51:c5:1a:9b:56:f7:31:a9:a1:d7:3b:5d:3b: f8:76:6c:f2:1b:7c:29:58:b6:db:7c:78:43:c3:f9: a3:86:fe:e9:d2:2f:4c:9b:f3:b0:e4:cd:77:7e:de: aa:51:d8:d5:a4:1c:a4:a1:36:35:6d:37:ff:15:c9: df:42:42:ec:da:5f:42:c5:08:c4:59:46:3f:07:a3: 7f:66:8f:19:99:27:42:e3:f6:45:d9:e1:16:78:93: e5:39:f5:22:30:b2:5b:02:9f:2c:6a:00:a8:59:ce: b3:7e:0b:f2:68:df:68:8c:fd:bf:d0:b8:0d:9f:96: 72:94:8a:ac:91:80:d8:24:51:85:13:41:da:01:6a: 56:45:3d:51:eb:15:43:4e:e1:a8:7f:9d:25:09:03: b9:9a:f5:73:5a:1a:9f:5e:41:9e:b5:32:38:73:b0: 25:8c:ae:e9:ff:5b:a2:50:66:20:23:7c:86:bc:ec: ea:d9:49:d4:c1:2c:35:73:1f:36:a1:eb:bd:a4:e5: 41:20:d4:52:a0:15:8a:22:14:da:71:34:b2:fa:66: fe:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:07:AC:6A:8C:A2:B6:16:23:3A:AD:8D:2A:D4:2F:7A:1C:BD:EE:8D X509v3 Authority Key Identifier: keyid:40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:30:ec:c4:c8:39:83:45:e6:43:89:b5:e6:b6:1f:92:32:3a: a5:cd:9d:97:64:40:0e:18:9a:04:6a:fc:78:77:27:a2:ec:1e: 12:3c:9d:d2:0a:c1:eb:15:05:9d:d1:64:31:d9:05:f9:d4:26: af:65:e8:56:65:e9:ec:36:a6:15:73:ae:76:21:49:fe:ac:1c: 3a:54:80:6f:fb:d2:c8:1f:91:b6:fe:52:21:c6:b4:95:78:e5: e6:e3:f7:ca:c3:38:90:db:31:e2:7b:9c:83:e3:5e:97:86:c4: 4e:01:f4:89:c8:96:e5:b9:fa:55:04:96:43:c2:0d:5b:8b:77: e6:89:43:99:98:1e:40:64:b9:6e:03:76:a3:b6:68:80:89:f3: 08:b5:b4:87:d0:d0:34:d4:a3:f9:f9:5f:74:b0:0a:94:4e:fb: ae:4a:2b:31:65:41:44:11:e0:c9:ad:52:96:ee:eb:a2:ba:1e: ea:59:c9:1b:52:5c:ec:d8:6d:2b:5d:f8:de:0c:9f:99:9b:68: 6c:18:6b:75:99:1a:da:15:98:95:56:2b:b9:01:3d:ae:36:d4: 42:56:c3:05:05:e7:60:90:68:69:50:20:10:cc:d8:1f:36:37: 81:af:d4:9b:c9:cb:0a:f6:f4:c7:cb:be:50:6b:39:06:6b:2c: 29:a0:bf:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKDQwRkQyNzMzMDFBOEJGOEUyNzA5NzYyQzY0RjRBRUEy NkQyQUUwQjQwHhcNMjUwNjAyMTcyMTE2WhcNMjUwNjA5MTcyMTE2WjAYMRYwFAYD VQQDEw02ODNkZGQ4Yy00MjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn3dRfObbKnRwbAKnQJ4O+YvBgN65Cgu8Xq9tWdeAUsO9HsklEddgBjMmimug xlHFGptW9zGpodc7XTv4dmzyG3wpWLbbfHhDw/mjhv7p0i9Mm/Ow5M13ft6qUdjV pBykoTY1bTf/FcnfQkLs2l9CxQjEWUY/B6N/Zo8ZmSdC4/ZF2eEWeJPlOfUiMLJb Ap8sagCoWc6zfgvyaN9ojP2/0LgNn5ZylIqskYDYJFGFE0HaAWpWRT1R6xVDTuGo f50lCQO5mvVzWhqfXkGetTI4c7AljK7p/1uiUGYgI3yGvOzq2UnUwSw1cx82oeu9 pOVBINRSoBWKIhTacTSy+mb+/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwHrGqM orYWIzqtjSrUL3ocve6NMB8GA1UdIwQYMBaAFED9JzMBqL+OJwl2LGT0rqJtKuC0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC82QkVBRTA4ODdC MzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0NG5DWFlzWlBTdW9tMHE0 TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FQMG5Nd0dvdjQ0bkNYWXNaUFN1b20wcTRMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDg2MC82QkVBRTA4ODdCMzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0 NG5DWFlzWlBTdW9tMHE0TFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfMOzEyDmDReZDibXmth+SMjqlzZ2XZEAOGJoEavx4dyei7B4SPJ3S CsHrFQWd0WQx2QX51CavZehWZensNqYVc652IUn+rBw6VIBv+9LIH5G2/lIhxrSV eOXm4/fKwziQ2zHie5yD416XhsROAfSJyJblufpVBJZDwg1bi3fmiUOZmB5AZLlu A3ajtmiAifMItbSH0NA01KP5+V90sAqUTvuuSisxZUFEEeDJrVKW7uuiuh7qWckb Ulzs2G0rXfjeDJ+Zm2hsGGt1mRraFZiVViu5AT2uNtRCVsMFBedgkGhpUCAQzNgf NjeBr9SbycsK9vTHy75QazkGaywpoL/0 -----END CERTIFICATE-----Generated at Mon Jun 2 20:01:22 2025 by rpki-client