$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: uQQkP6VXRjepZMEgkdnbe2+xjLhR4srNA19hUQzjJmg= Subject key identifier: 77:A4:77:55:A0:25:52:42:F8:78:96:45:FE:FC:B1:2B:F6:B5:96:51 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 0494 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 048E Signing time: Sun 08 Jun 2025 23:37:42 +0000 Manifest this update: Sun 08 Jun 2025 23:37:42 +0000 Manifest next update: Sun 15 Jun 2025 23:37:42 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: xf+XLcaJ+Ny+2WdZPiRHlOpnkAaN7oX7ZroJ1ndVHDk=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 23:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Jun 8 23:37:42 2025 GMT Not After : Jun 15 23:37:42 2025 GMT Subject: CN=68461ec6-a97f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d2:79:a7:2f:2f:81:2c:50:dd:eb:66:36:09: f1:e0:63:b1:fb:ad:d9:5d:cf:7d:3f:ae:e3:13:18: 05:d9:ee:31:b7:c0:a9:7a:94:70:f9:c3:83:e4:3e: 83:1c:9d:d0:31:46:97:0d:dd:e7:6f:80:fb:f8:26: 9c:f4:a0:ea:e7:4c:3d:ed:bc:81:27:65:d0:b8:b7: 9b:17:e8:e7:7e:7b:a2:87:3a:0c:67:69:f2:1f:12: 69:00:6a:c7:a6:50:ba:76:fe:dd:f2:43:f1:18:35: 3e:94:d2:41:de:4a:74:a6:fa:40:8c:b0:66:fc:44: 26:b9:5f:fa:da:9f:19:76:56:a3:38:70:cb:63:05: f3:e0:0c:be:88:6a:e1:7d:f2:a2:2f:67:34:37:57: 38:42:9c:01:31:5a:48:23:1e:ef:33:c9:76:5b:3c: 9d:7a:47:b2:7b:59:22:63:05:28:80:52:83:a9:49: e2:24:8e:80:a5:5a:68:24:47:47:28:5a:66:35:7e: 27:b7:81:bf:8f:46:a8:e6:16:81:ef:55:6e:a3:db: eb:f2:00:7e:aa:bf:58:3f:f6:59:12:4d:33:09:e0: 24:0f:c2:7b:ee:59:01:77:75:70:c5:9b:db:e5:15: 80:39:40:3e:c5:e4:6e:f6:bc:ed:62:f8:07:6b:e1: 0b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A4:77:55:A0:25:52:42:F8:78:96:45:FE:FC:B1:2B:F6:B5:96:51 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e1:3e:83:8b:1f:5c:cf:51:1c:4c:0c:a4:78:dd:d8:3c:c0: a3:a1:e5:e6:eb:df:ad:d9:39:ca:f0:87:35:07:c3:5c:f7:4a: cf:d9:46:e8:58:88:1b:13:d2:0e:22:db:30:7a:8b:64:67:f8: 6d:a7:86:a8:ca:32:e7:79:c1:05:59:f3:d4:3c:13:b4:c1:80: a1:6e:1c:16:53:39:fe:c6:41:58:e5:d9:5b:ea:31:a8:9b:86: 11:92:0e:c9:63:ba:83:f9:87:39:0e:99:88:f2:7b:39:0b:7a: 7a:d4:9d:0c:c6:53:14:e3:40:e4:7e:39:84:8f:50:2a:62:cb: 76:5c:26:43:c9:c1:71:1d:86:df:c3:c8:51:26:af:56:90:1b: d1:fc:70:c1:6f:c9:58:52:ff:01:57:84:0c:67:27:99:9c:25: df:95:73:51:9e:c4:4d:b9:5f:45:da:93:31:bd:c5:f0:20:76: ab:bd:3e:a7:ea:f9:73:62:ed:70:c0:a1:f4:e9:03:3a:ab:03: 6f:67:e4:9f:f6:3b:33:73:4c:2a:21:ae:89:a8:20:f0:01:7e: 38:01:bc:9a:d5:7b:90:95:b2:45:b7:71:72:f1:71:49:0b:a6: 66:32:46:83:ee:ff:0c:0c:eb:66:e5:76:b6:24:4a:db:e5:ba: e6:fb:01:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUwNjA4MjMzNzQyWhcNMjUwNjE1MjMzNzQyWjAYMRYwFAYD VQQDEw02ODQ2MWVjNi1hOTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNJ5py8vgSxQ3etmNgnx4GOx+63ZXc99P67jExgF2e4xt8CpepRw+cOD5D6D HJ3QMUaXDd3nb4D7+Cac9KDq50w97byBJ2XQuLebF+jnfnuihzoMZ2nyHxJpAGrH plC6dv7d8kPxGDU+lNJB3kp0pvpAjLBm/EQmuV/62p8ZdlajOHDLYwXz4Ay+iGrh ffKiL2c0N1c4QpwBMVpIIx7vM8l2Wzydekeye1kiYwUogFKDqUniJI6ApVpoJEdH KFpmNX4nt4G/j0ao5haB71Vuo9vr8gB+qr9YP/ZZEk0zCeAkD8J77lkBd3VwxZvb 5RWAOUA+xeRu9rztYvgHa+ELHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHekd1Wg JVJC+HiWRf78sSv2tZZRMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA84T6Dix9cz1EcTAykeN3YPMCjoeXm69+t2TnK8Ic1B8Nc90rP2Ubo WIgbE9IOItsweotkZ/htp4aoyjLnecEFWfPUPBO0wYChbhwWUzn+xkFY5dlb6jGo m4YRkg7JY7qD+Yc5DpmI8ns5C3p61J0MxlMU40DkfjmEj1AqYst2XCZDycFxHYbf w8hRJq9WkBvR/HDBb8lYUv8BV4QMZyeZnCXflXNRnsRNuV9F2pMxvcXwIHarvT6n 6vlzYu1wwKH06QM6qwNvZ+Sf9jszc0wqIa6JqCDwAX44Abya1XuQlbJFt3Fy8XFJ C6ZmMkaD7v8MDOtm5Xa2JErb5brm+wGe -----END CERTIFICATE-----Generated at Mon Jun 9 14:20:33 2025 by rpki-client