$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: y8QFUGIN/qcCgMCwUXH9iwL9eOjJFY7mYH738ThCp8A= Subject key identifier: B4:35:D4:BF:83:36:FB:AE:78:5C:12:D2:38:37:6B:5C:3C:A4:67:8E Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 0FCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 25E7 Signing time: Fri 30 May 2025 16:54:07 +0000 Manifest this update: Fri 30 May 2025 16:54:06 +0000 Manifest next update: Fri 06 Jun 2025 16:54:06 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: K5WqA1eLJa5i2oh061poOYdDm/k/FP9RHApMrDQMXVw=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: gR4VIke3wzcLlwcHX1MfRQDB5DCCZYAeVJopuxrfT0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4043 (0xfcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: May 30 16:54:06 2025 GMT Not After : Jun 6 16:54:06 2025 GMT Subject: CN=6839e2ae-bfad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c1:49:d3:27:64:69:93:f3:5f:eb:d7:39:66: cb:38:35:ff:9a:56:cf:6a:fd:cd:2f:b2:6b:a6:07: b9:a8:87:65:22:7e:9d:cc:3a:ea:a1:d6:d0:64:ee: fa:f5:e5:7c:19:f5:d0:6b:a0:ab:89:4d:85:9f:37: bd:12:a0:2d:41:e0:29:4e:86:6f:39:a5:ef:3c:5f: 22:b3:2e:67:5d:28:64:ef:9f:c9:64:f8:f9:5b:67: b3:b8:86:0d:9c:80:c1:27:8b:0b:f6:3e:30:01:a6: 73:a3:24:89:a9:67:cf:d5:02:7e:15:66:b3:92:04: a5:df:bc:f3:b8:84:b7:bb:34:b3:6a:11:35:05:0c: f1:a3:e9:25:28:be:19:62:38:b3:f9:59:0e:61:45: 6a:b2:dd:3f:e8:ef:06:3d:34:42:eb:c2:92:b5:37: 91:18:ec:df:e0:61:e9:b6:a6:6f:fb:97:d3:76:1f: 65:93:ff:c6:43:c8:5e:6f:28:9e:05:13:17:6a:a3: 7c:16:ae:3e:73:73:47:c1:73:1e:98:0a:a0:a3:b0: 2b:2d:c3:c4:4c:e2:4e:00:35:3c:f7:e5:df:55:2d: 3a:0d:e4:a8:82:b2:c3:ee:fe:5b:cd:ec:a0:58:65: 97:e8:c2:07:70:69:e7:f4:7e:90:1a:c7:8b:1c:40: 01:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:35:D4:BF:83:36:FB:AE:78:5C:12:D2:38:37:6B:5C:3C:A4:67:8E X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:da:aa:13:03:3c:b2:f6:9e:3b:21:e8:06:4c:52:2f:3c:4d: e4:23:ae:34:02:2e:4b:97:94:e6:c1:b0:c3:ec:44:9b:de:72: eb:3b:b6:f2:50:5e:c4:70:b9:8f:dc:4a:3d:f4:66:0c:da:fd: 44:43:21:a8:05:63:ac:15:24:2f:5e:07:74:31:30:7b:7d:6e: 6e:47:20:b1:a3:82:c0:46:3d:b8:dc:f2:d7:75:a2:a0:cb:70: 1e:54:6c:65:12:98:39:83:20:97:a6:3a:e0:ee:4f:c0:31:d1: 37:74:2e:f0:78:50:89:3a:97:94:88:3f:c7:9f:47:72:c4:a8: 17:a6:58:13:7b:db:70:fb:c7:20:86:f9:0a:b1:bc:64:e5:14: 1c:ab:94:d1:d1:24:d0:7f:5e:61:b6:0f:ec:ef:de:e3:ad:3a: 72:ee:22:ef:e4:98:57:f4:9b:50:0c:da:98:9e:73:d2:f4:41: be:d4:8a:9e:46:f8:c7:91:fb:29:37:3b:d0:2f:a8:12:d3:35: ee:d4:be:45:00:53:a5:b1:37:cc:0f:4c:a0:02:2c:7c:75:53: 21:77:84:37:28:66:3f:87:b9:77:e6:06:cf:b6:ac:78:34:d9: f1:62:8b:52:bc:28:c9:19:f8:c7:8a:55:4a:b4:7a:ae:bd:3f: 7b:08:c7:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUwNTMwMTY1NDA2WhcNMjUwNjA2MTY1NDA2WjAYMRYwFAYD VQQDEw02ODM5ZTJhZS1iZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sFJ0ydkaZPzX+vXOWbLODX/mlbPav3NL7Jrpge5qIdlIn6dzDrqodbQZO76 9eV8GfXQa6CriU2Fnze9EqAtQeApToZvOaXvPF8isy5nXShk75/JZPj5W2ezuIYN nIDBJ4sL9j4wAaZzoySJqWfP1QJ+FWazkgSl37zzuIS3uzSzahE1BQzxo+klKL4Z Yjiz+VkOYUVqst0/6O8GPTRC68KStTeRGOzf4GHptqZv+5fTdh9lk//GQ8hebyie BRMXaqN8Fq4+c3NHwXMemAqgo7ArLcPETOJOADU89+XfVS06DeSogrLD7v5bzeyg WGWX6MIHcGnn9H6QGseLHEABhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQ11L+D NvuueFwS0jg3a1w8pGeOMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF2qoTAzyy9p47IegGTFIvPE3kI640Ai5Ll5TmwbDD7ESb3nLrO7by UF7EcLmP3Eo99GYM2v1EQyGoBWOsFSQvXgd0MTB7fW5uRyCxo4LARj243PLXdaKg y3AeVGxlEpg5gyCXpjrg7k/AMdE3dC7weFCJOpeUiD/Hn0dyxKgXplgTe9tw+8cg hvkKsbxk5RQcq5TR0STQf15htg/s797jrTpy7iLv5JhX9JtQDNqYnnPS9EG+1Iqe RvjHkfspNzvQL6gS0zXu1L5FAFOlsTfMD0ygAix8dVMhd4Q3KGY/h7l35gbPtqx4 NNnxYotSvCjJGfjHilVKtHquvT97CMdg -----END CERTIFICATE-----Generated at Sat May 31 16:55:01 2025 by rpki-client