$ rpki-client -vvf rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft File: qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft (raw, json) Hash identifier: e5G1keNkDaQkvHlL6zYtbUf3t/1+4zrL2eUWegaFmQw= Subject key identifier: 1A:12:01:CA:7B:76:21:76:73:A3:3A:E9:3C:BE:04:F3:BB:01:4F:55 Authority key identifier: AA:2C:AF:4E:4F:16:AB:B3:39:C1:E5:D0:F0:59:F4:13:AE:5C:E8:84 Certificate issuer: /CN=A916DFDD/serialNumber=AA2CAF4E4F16ABB339C1E5D0F059F413AE5CE884 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft Manifest number: 0A Signing time: Tue 01 Jul 2025 08:56:31 +0000 Manifest this update: Tue 01 Jul 2025 08:56:30 +0000 Manifest next update: Tue 08 Jul 2025 08:56:30 +0000 Files and hashes: 1: qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.crl (hash: lpml1TeacQa32DBbu9mGhwWZmV5SaBiP2At1x7pNJuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.crl rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DFDD, serialNumber=AA2CAF4E4F16ABB339C1E5D0F059F413AE5CE884 Validity Not Before: Jul 1 08:56:30 2025 GMT Not After : Jul 8 08:56:30 2025 GMT Subject: CN=6863a2bf-4594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4b:71:bc:41:9a:4b:74:32:31:26:fb:90:4b: 81:6c:7a:a0:ef:4f:88:fd:88:f5:2c:42:c5:13:69: 92:b7:6c:11:dd:5f:1a:d2:c8:b5:ce:09:85:ca:e2: 2b:61:61:70:76:da:40:c0:05:a3:51:25:a4:4e:34: a7:1b:c9:48:6f:75:13:0c:2a:5f:30:ed:79:00:b6: f7:a9:f0:11:16:76:50:c5:9b:6c:c6:c4:6f:0e:42: 41:be:9a:ca:31:69:68:93:51:7b:73:fb:4b:0e:f0: 11:bb:04:a2:21:c6:aa:96:fd:0e:6d:a5:e5:4f:49: 5e:13:33:c6:0c:66:36:95:f5:6d:b7:ce:d4:36:a5: 77:51:ca:22:5a:ba:68:3c:9c:c8:bd:e9:31:12:66: 10:00:a7:60:be:42:9e:76:1b:b5:2a:1d:05:2a:2b: 43:88:c7:ee:42:11:bd:1f:b8:b5:42:7a:a3:9d:23: a9:e1:2c:bc:8e:da:37:23:7a:82:0e:e0:cf:d4:dc: d9:62:c0:30:47:14:a1:1f:84:76:f2:cb:c9:7c:05: 58:fc:25:7d:9b:42:a0:26:b3:e7:4c:25:c4:41:7a: 13:58:8d:fb:80:d3:8a:91:99:21:63:7b:f9:2a:1a: 9e:22:8a:85:2b:9a:3d:1a:c0:e1:57:88:56:1d:f5: 65:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:12:01:CA:7B:76:21:76:73:A3:3A:E9:3C:BE:04:F3:BB:01:4F:55 X509v3 Authority Key Identifier: keyid:AA:2C:AF:4E:4F:16:AB:B3:39:C1:E5:D0:F0:59:F4:13:AE:5C:E8:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:4e:4e:93:b6:67:cf:40:75:1e:83:48:2a:30:f3:a8:d5:77: 50:65:cb:38:48:db:2b:89:fa:89:f6:0e:f0:0f:c9:0a:d6:a6: a4:7e:b0:8e:6a:40:03:69:26:80:a7:1e:5b:24:75:04:32:2a: 43:b7:5e:0e:4e:0e:00:13:4e:3e:ad:47:18:6f:d4:ea:29:61: 71:b6:a1:81:d3:fb:fd:dd:39:ef:46:4b:5c:9e:f0:44:4d:b9: fc:81:d1:87:60:3b:87:a0:4b:21:1b:79:0c:53:46:1f:ef:a1: a6:9f:15:13:03:e3:36:d2:81:da:86:67:f5:c7:fc:86:c7:08: ca:9d:ac:f5:a5:1e:2b:92:96:4d:18:4d:7b:d3:0a:1a:62:3a: 64:a2:87:f8:49:eb:70:f8:68:e5:52:94:7c:92:e1:86:b0:71: 34:af:a8:1b:cb:fd:2d:ef:0e:71:6f:d1:7a:30:40:f0:82:e3: b6:f8:8f:77:f1:a4:96:a1:7f:5f:37:c2:e4:12:7f:90:e1:e6: ac:73:46:94:ab:70:d1:43:ee:2e:ba:20:d5:0e:56:53:b3:77: 10:ce:bb:05:2c:3b:4e:e1:0a:56:f3:1e:dc:98:4f:d1:c1:a6: c6:6d:33:ca:6e:b6:dd:db:47:92:cf:2b:d5:bc:f0:80:eb:a5: b9:8b:f0:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REZERDExMC8GA1UEBRMoQUEyQ0FGNEU0RjE2QUJCMzM5QzFFNUQwRjA1OUY0MTNB RTVDRTg4NDAeFw0yNTA3MDEwODU2MzBaFw0yNTA3MDgwODU2MzBaMBgxFjAUBgNV BAMTDTY4NjNhMmJmLTQ1OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWS3G8QZpLdDIxJvuQS4FseqDvT4j9iPUsQsUTaZK3bBHdXxrSyLXOCYXK4ith YXB22kDABaNRJaRONKcbyUhvdRMMKl8w7XkAtvep8BEWdlDFm2zGxG8OQkG+msox aWiTUXtz+0sO8BG7BKIhxqqW/Q5tpeVPSV4TM8YMZjaV9W23ztQ2pXdRyiJaumg8 nMi96TESZhAAp2C+Qp52G7UqHQUqK0OIx+5CEb0fuLVCeqOdI6nhLLyO2jcjeoIO 4M/U3NliwDBHFKEfhHbyy8l8BVj8JX2bQqAms+dMJcRBehNYjfuA04qRmSFje/kq Gp4iioUrmj0awOFXiFYd9WUJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGhIBynt2 IXZzozrpPL4E87sBT1UwHwYDVR0jBBgwFoAUqiyvTk8Wq7M5weXQ8Fn0E65c6IQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZERkREL0EwRDQyQTJBNEE5 MDExRjBCMjg4QUM1OUM0RjlBRTAyL3FpeXZUazhXcTdNNXdlWFE4Rm4wRTY1YzZJ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWl5dlRrOFdxN001d2VYUThGbjBFNjVjNklRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE RkREL0EwRDQyQTJBNEE5MDExRjBCMjg4QUM1OUM0RjlBRTAyL3FpeXZUazhXcTdN NXdlWFE4Rm4wRTY1YzZJUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIlOTpO2Z89AdR6DSCow86jVd1BlyzhI2yuJ+on2DvAPyQrWpqR+sI5q QANpJoCnHlskdQQyKkO3Xg5ODgATTj6tRxhv1OopYXG2oYHT+/3dOe9GS1ye8ERN ufyB0YdgO4egSyEbeQxTRh/voaafFRMD4zbSgdqGZ/XH/IbHCMqdrPWlHiuSlk0Y TXvTChpiOmSih/hJ63D4aOVSlHyS4YawcTSvqBvL/S3vDnFv0XowQPCC47b4j3fx pJahf183wuQSf5Dh5qxzRpSrcNFD7i66INUOVlOzdxDOuwUsO07hClbzHtyYT9HB psZtM8putt3bR5LPK9W88IDrpbmL8G0= -----END CERTIFICATE-----Generated at Tue Jul 1 21:32:45 2025 by rpki-client