$ rpki-client -vvf rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft File: qHs26y4WaoD40fwBFc6ZGwoBh50.mft (raw, json) Hash identifier: dWz2cUGpofEbZbzamtSprcDXEHFK6LT2ltrisk/IZjo= Subject key identifier: 51:83:CE:C2:B1:12:8B:53:9A:CB:37:DD:57:24:56:A5:B7:4A:11:99 Authority key identifier: A8:7B:36:EB:2E:16:6A:80:F8:D1:FC:01:15:CE:99:1B:0A:01:87:9D Certificate issuer: /CN=A9166279/serialNumber=A87B36EB2E166A80F8D1FC0115CE991B0A01879D Certificate serial: 03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHs26y4WaoD40fwBFc6ZGwoBh50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft Manifest number: 03 Signing time: Sat 05 Jul 2025 08:33:09 +0000 Manifest this update: Sat 05 Jul 2025 08:33:08 +0000 Manifest next update: Sat 12 Jul 2025 08:33:08 +0000 Files and hashes: 1: qHs26y4WaoD40fwBFc6ZGwoBh50.crl (hash: VxJXKDvdMccTT7jtHyDuQCn6VYlkxi/0xQVsQWfN8UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.crl rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHs26y4WaoD40fwBFc6ZGwoBh50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Jul 2025 08:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166279, serialNumber=A87B36EB2E166A80F8D1FC0115CE991B0A01879D Validity Not Before: Jul 5 08:33:08 2025 GMT Not After : Jul 12 08:33:08 2025 GMT Subject: CN=6868e345-474e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:8e:67:d7:18:06:aa:10:5f:d7:96:3e:0b: 86:9b:04:2e:33:49:b6:ea:0c:58:70:7b:5d:57:a9: dc:a5:77:55:46:08:df:b8:c6:9e:46:8b:34:20:46: 32:b8:2c:1d:70:42:ad:ef:78:14:2e:91:cc:90:92: 8a:f9:0b:a3:c0:37:56:e1:30:df:46:eb:06:e3:b5: 07:e4:d6:d9:8b:a5:ba:ba:27:9c:ad:7f:36:35:88: db:b7:f7:a9:56:ba:bf:69:93:96:3b:27:fb:af:0b: ee:05:bb:87:0b:99:ab:8e:79:d0:21:e9:7a:ea:e5: 10:e8:3e:ae:24:ad:0e:fc:a5:43:74:0f:c7:5e:83: c8:19:6b:5a:70:48:8c:65:8d:9e:ce:40:15:6b:63: 64:b1:13:4a:e1:2b:82:ba:26:b9:c1:0a:93:2d:e8: 02:47:c0:7a:7c:df:5b:08:2f:50:3b:2e:61:cb:c6: c6:b7:dc:2f:11:fb:a8:6d:c2:5e:20:75:67:7d:ad: 57:15:dd:be:76:09:a9:cc:07:3d:f7:1e:aa:cf:39: 05:18:3b:da:b2:b4:60:ec:ef:3b:af:ce:b5:cb:56: 29:4a:ed:a9:ae:c5:99:c7:3c:ed:b8:90:0e:a6:00: 7d:53:60:a3:16:44:1f:77:43:97:18:00:1a:3c:51: 55:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:83:CE:C2:B1:12:8B:53:9A:CB:37:DD:57:24:56:A5:B7:4A:11:99 X509v3 Authority Key Identifier: keyid:A8:7B:36:EB:2E:16:6A:80:F8:D1:FC:01:15:CE:99:1B:0A:01:87:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHs26y4WaoD40fwBFc6ZGwoBh50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:ac:9d:86:6b:9a:d1:1a:d5:01:00:28:18:fd:79:1f:8f:d1: bd:0d:49:5b:87:b8:6d:d6:e2:9e:97:4c:b9:51:55:ac:a6:fd: b4:31:3d:44:c2:61:91:28:86:e1:6d:d0:27:85:5d:54:0d:9f: 1b:7e:0d:1e:ed:e8:57:95:05:ac:b4:ab:53:30:b5:97:3b:7e: 42:ed:e1:a3:d4:0a:83:29:30:b9:96:25:94:3e:02:76:98:1c: 07:2f:9f:15:d3:6b:e4:bd:dd:2a:3a:2b:c1:79:d7:b4:4b:2f: 40:59:fe:6b:60:be:bc:c8:3f:3c:1f:5a:c7:b2:0b:01:0f:b4: 0c:cf:78:75:9a:8e:78:de:c7:fb:d4:7e:9f:f8:eb:b7:2d:ed: 07:7a:7d:b3:be:95:47:1c:0d:32:ea:ce:d0:47:0d:9a:65:d1: c9:68:b8:e6:18:85:a5:bb:bc:dd:a4:29:48:fe:ef:6b:46:20: f1:ab:47:5d:59:7c:f2:78:35:49:b2:ab:24:d0:03:74:9a:7c: 56:d5:6a:d9:8e:14:15:e5:d5:d8:3b:f8:38:fd:48:ba:a8:18: 25:2b:f5:cf:e1:7e:97:46:02:24:f9:04:c1:0f:89:44:a5:6e: 35:ec:3e:ff:9e:af:5e:b4:d6:b9:b8:e9:32:d9:0f:90:fd:eb: 3f:af:2c:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NjI3OTExMC8GA1UEBRMoQTg3QjM2RUIyRTE2NkE4MEY4RDFGQzAxMTVDRTk5MUIw QTAxODc5RDAeFw0yNTA3MDUwODMzMDhaFw0yNTA3MTIwODMzMDhaMBgxFjAUBgNV BAMTDTY4NjhlMzQ1LTQ3NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEWI5n1xgGqhBf15Y+C4abBC4zSbbqDFhwe11Xqdyld1VGCN+4xp5GizQgRjK4 LB1wQq3veBQukcyQkor5C6PAN1bhMN9G6wbjtQfk1tmLpbq6J5ytfzY1iNu396lW ur9pk5Y7J/uvC+4Fu4cLmauOedAh6Xrq5RDoPq4krQ78pUN0D8deg8gZa1pwSIxl jZ7OQBVrY2SxE0rhK4K6JrnBCpMt6AJHwHp831sIL1A7LmHLxsa33C8R+6htwl4g dWd9rVcV3b52CanMBz33HqrPOQUYO9qytGDs7zuvzrXLVilK7amuxZnHPO24kA6m AH1TYKMWRB93Q5cYABo8UVWTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUYPOwrES i1OayzfdVyRWpbdKEZkwHwYDVR0jBBgwFoAUqHs26y4WaoD40fwBFc6ZGwoBh50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2Mjc5LzQxODFDNENFNThD RDExRjBBRDEwMDg3N0M0RjlBRTAyL3FIczI2eTRXYW9ENDBmd0JGYzZaR3dvQmg1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUhzMjZ5NFdhb0Q0MGZ3QkZjNlpHd29CaDUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2 Mjc5LzQxODFDNENFNThDRDExRjBBRDEwMDg3N0M0RjlBRTAyL3FIczI2eTRXYW9E NDBmd0JGYzZaR3dvQmg1MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK+snYZrmtEa1QEAKBj9eR+P0b0NSVuHuG3W4p6XTLlRVaym/bQxPUTC YZEohuFt0CeFXVQNnxt+DR7t6FeVBay0q1MwtZc7fkLt4aPUCoMpMLmWJZQ+AnaY HAcvnxXTa+S93So6K8F517RLL0BZ/mtgvrzIPzwfWseyCwEPtAzPeHWajnjex/vU fp/467ct7Qd6fbO+lUccDTLqztBHDZpl0clouOYYhaW7vN2kKUj+72tGIPGrR11Z fPJ4NUmyqyTQA3SafFbVatmOFBXl1dg7+Dj9SLqoGCUr9c/hfpdGAiT5BMEPiUSl bjXsPv+er1601rm46TLZD5D96z+vLOs= -----END CERTIFICATE-----Generated at Mon Jul 7 09:53:35 2025 by rpki-client