$ rpki-client -vvf rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft File: QJOHCXJ0OMjB3r_9BBWQWEggxug.mft (raw, json) Hash identifier: Wm/5AmejAVOO5ocBhru71897UJUeJowIbEFV/mKXmIg= Subject key identifier: 55:71:17:60:EF:6B:98:2F:8F:78:CD:1F:73:79:95:51:32:1F:B3:DC Authority key identifier: 40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 Certificate issuer: /CN=A917618F/serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Certificate serial: 12B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft Manifest number: 12AA Signing time: Fri 30 May 2025 17:15:30 +0000 Manifest this update: Fri 30 May 2025 17:15:29 +0000 Manifest next update: Fri 06 Jun 2025 17:15:29 +0000 Files and hashes: 1: QJOHCXJ0OMjB3r_9BBWQWEggxug.crl (hash: GkSxvPcATjvjQQoc6uQqoP23JKbUX1D7h9EXLyVatds=) 2: 2FE4DA1EC2E111E8A19CB72FC4F9AE02.roa (hash: HkQW1ELmD+iLXWXgNsuJGsFujvrmVSrBFXmyCQkIzxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4787 (0x12b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917618F, serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Validity Not Before: May 30 17:15:29 2025 GMT Not After : Jun 6 17:15:29 2025 GMT Subject: CN=6839e7b1-6fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:38:d0:a3:b6:c5:bc:aa:9e:2f:91:70:96:81: e5:fb:55:59:c7:97:00:58:cc:5a:c1:4e:ea:c2:1c: f1:9e:dc:a5:b3:18:7f:c8:63:44:cf:c3:a5:fa:bd: 87:ce:b2:a4:86:b0:23:00:b9:86:01:3f:a5:c1:3e: 9c:7f:29:7b:7c:2f:f5:39:67:10:09:96:03:e8:d7: b9:a6:b5:13:84:83:c4:bd:b3:23:7f:19:03:a4:df: 2d:c4:57:17:81:fc:30:5a:b0:e5:ee:da:b4:9a:d4: 45:a1:d7:fb:f1:aa:5f:a3:cc:53:17:60:42:52:e9: a6:cf:0d:c2:6f:c5:d2:54:63:6d:7e:eb:89:74:ac: 59:0a:44:59:dc:e0:f1:b7:09:8f:12:cf:7e:20:70: 8a:c4:1f:cc:08:35:f2:11:ac:40:cf:96:a2:3d:1b: 65:5c:f5:4d:a4:99:6b:44:48:76:36:e6:2e:e4:f7: 94:4c:8c:5e:69:8c:dc:8b:af:b0:0a:07:2a:4d:ee: 0b:ce:1e:d0:92:34:48:91:87:25:92:9f:18:e7:69: d6:47:a7:aa:9b:83:ad:3d:f2:28:38:92:21:6a:11: 09:bb:33:40:33:e6:0c:84:8b:da:e2:d1:b3:ef:3d: a1:6a:9e:ca:e9:3a:ea:01:98:65:52:35:08:bf:75: 56:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:71:17:60:EF:6B:98:2F:8F:78:CD:1F:73:79:95:51:32:1F:B3:DC X509v3 Authority Key Identifier: keyid:40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c5:e3:2a:dd:6f:be:a3:1c:d0:5d:2d:3a:b5:18:2a:24:fc: a2:1d:c9:6b:eb:52:21:7c:bc:8a:14:91:67:aa:03:42:92:82: 21:fd:ca:40:c0:ff:b4:f4:c6:b2:7d:33:5a:e0:fe:97:b6:ee: 51:3b:d0:9c:ae:a0:6c:d0:b5:e6:ac:ed:50:82:80:d9:d8:f5: 86:f8:65:03:0b:bd:75:15:16:28:a1:1c:4c:80:8c:41:90:d0: 86:1b:23:be:71:95:6d:b2:c7:39:85:12:ba:7b:f0:d4:4f:6b: 27:e4:38:e6:46:97:12:70:a2:85:7c:f0:c3:09:a4:ae:ba:6f: af:07:4e:11:54:b0:cf:4d:79:0d:8c:bb:71:d8:e0:6a:dd:c6: f5:e6:8d:62:72:fc:6d:84:03:bd:41:c5:7b:21:74:7f:2a:ec: 10:4e:dd:f7:d0:d5:24:5c:9c:89:d5:1a:d9:34:80:60:1b:5c: fd:2b:4c:3d:02:24:68:d7:aa:a7:8a:48:2d:96:54:92:53:a8: 67:78:38:28:f9:bb:ba:8c:2c:33:09:b2:68:d8:8a:da:c1:c4: 4d:c8:30:2c:b6:0f:01:68:27:02:74:e6:f9:ee:89:08:02:60: 9f:fe:eb:82:6f:76:79:f2:7e:14:51:7f:2f:24:44:c1:8b:13: ac:ea:96:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICErMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYxOEYxMTAvBgNVBAUTKDQwOTM4NzA5NzI3NDM4QzhDMURFQkZGRDA0MTU5MDU4 NDgyMEM2RTgwHhcNMjUwNTMwMTcxNTI5WhcNMjUwNjA2MTcxNTI5WjAYMRYwFAYD VQQDEw02ODM5ZTdiMS02ZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjjQo7bFvKqeL5FwloHl+1VZx5cAWMxawU7qwhzxntylsxh/yGNEz8Ol+r2H zrKkhrAjALmGAT+lwT6cfyl7fC/1OWcQCZYD6Ne5prUThIPEvbMjfxkDpN8txFcX gfwwWrDl7tq0mtRFodf78apfo8xTF2BCUummzw3Cb8XSVGNtfuuJdKxZCkRZ3ODx twmPEs9+IHCKxB/MCDXyEaxAz5aiPRtlXPVNpJlrREh2NuYu5PeUTIxeaYzci6+w CgcqTe4Lzh7QkjRIkYclkp8Y52nWR6eqm4OtPfIoOJIhahEJuzNAM+YMhIva4tGz 7z2hap7K6TrqAZhlUjUIv3VWsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVxF2Dv a5gvj3jNH3N5lVEyH7PcMB8GA1UdIwQYMBaAFECThwlydDjIwd6//QQVkFhIIMbo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjE4Ri9EMjhENzVDMEMy REYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9NakIzcl85QkJXUVdFZ2d4 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKT0hDWEowT01qQjNyXzlCQldRV0VnZ3h1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjE4Ri9EMjhENzVDMEMyREYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9N akIzcl85QkJXUVdFZ2d4dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANxeMq3W++oxzQXS06tRgqJPyiHclr61IhfLyKFJFnqgNCkoIh/cpA wP+09MayfTNa4P6Xtu5RO9CcrqBs0LXmrO1QgoDZ2PWG+GUDC711FRYooRxMgIxB kNCGGyO+cZVtssc5hRK6e/DUT2sn5DjmRpcScKKFfPDDCaSuum+vB04RVLDPTXkN jLtx2OBq3cb15o1icvxthAO9QcV7IXR/KuwQTt330NUkXJyJ1RrZNIBgG1z9K0w9 AiRo16qnikgtllSSU6hneDgo+bu6jCwzCbJo2IrawcRNyDAstg8BaCcCdOb57okI AmCf/uuCb3Z58n4UUX8vJETBixOs6pYO -----END CERTIFICATE-----Generated at Sat May 31 17:42:42 2025 by rpki-client