$ rpki-client -vvf rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft File: rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft (raw, json) Hash identifier: xypXJ8FhYXvlobLnLXCTUOOTc3guEAT05SybyXQbe+8= Subject key identifier: AA:BA:F2:01:5F:62:A2:5E:7D:9D:65:8A:E4:A3:02:1D:F9:4A:60:6E Authority key identifier: AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 Certificate issuer: /CN=A917799C/serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft Manifest number: 06 Signing time: Mon 07 Jul 2025 08:33:31 +0000 Manifest this update: Mon 07 Jul 2025 08:33:31 +0000 Manifest next update: Mon 14 Jul 2025 08:33:31 +0000 Files and hashes: 1: rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl (hash: qyWY1RkmHHCVSboIaUs10Yw2s3Zcgji59E33gdrQ1og=) 2: 1A10CA38554511F0BE9D290EC4F9AE02.roa (hash: +cgq7m1m+3yCjZbwy4Qcjluah/ZFibIuVd5FM/B6ZOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Jul 2025 08:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917799C, serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Validity Not Before: Jul 7 08:33:31 2025 GMT Not After : Jul 14 08:33:31 2025 GMT Subject: CN=686b865b-7118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:ba:1f:fe:ac:7a:11:c6:81:1c:c3:8c:36:7e: 51:e0:dc:e5:df:9e:5a:42:68:47:90:7a:13:c3:d4: 76:63:46:85:1b:0a:b4:10:fd:7f:05:0d:20:19:13: a6:99:45:d5:32:d1:86:9b:9f:ec:9f:87:eb:49:88: da:8a:e6:4f:11:ac:c6:9e:a0:7e:a8:c0:bf:75:2c: 23:e0:00:9b:c5:bb:03:5d:8a:df:19:40:a4:6e:a8: 00:f0:a5:03:e9:3d:dd:29:59:91:bf:d0:e4:93:ca: 21:ae:fd:b2:56:32:01:e4:0a:33:99:87:e0:12:a1: f1:9c:de:06:a2:f9:2e:bd:34:3d:6e:c6:3d:13:91: 47:23:2e:c2:e4:ea:a3:4a:a2:17:85:b1:05:85:13: 5c:5b:5e:34:3f:2e:21:ca:95:03:45:98:12:10:54: aa:91:55:32:b4:9c:01:dd:ba:08:91:f5:21:ac:a2: 5d:f4:22:13:b2:a6:d1:4b:00:bf:61:2b:81:07:ab: b1:d8:2c:e9:36:f1:d9:1d:4a:23:75:f3:57:db:1b: b6:24:9b:2d:a9:7f:38:95:43:ca:07:2a:2f:d8:cc: e5:2f:8d:80:01:d6:65:81:85:76:5a:9c:38:7a:40: 5c:14:ce:5e:61:29:e0:a1:ae:a5:aa:b9:5f:80:e7: 79:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:BA:F2:01:5F:62:A2:5E:7D:9D:65:8A:E4:A3:02:1D:F9:4A:60:6E X509v3 Authority Key Identifier: keyid:AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:56:9d:33:9b:83:d2:90:e6:1c:d5:f6:59:e0:34:b0:b0:7b: ae:78:3d:76:6a:68:ce:83:7d:d7:ca:0e:ad:a1:66:a3:7b:96: 13:87:20:b5:1f:44:b7:65:1b:b8:8c:f8:d3:9c:3e:af:91:b7: 55:f1:42:bf:bd:00:2b:55:a1:fa:fe:66:47:9b:27:07:f7:5a: 3f:6c:14:72:32:63:9e:b5:79:92:3f:07:96:e1:03:33:11:90: c8:c5:c7:08:f4:26:21:0d:b7:9f:32:29:d0:fa:ed:48:fe:4c: 5e:cf:e9:e2:23:cf:32:72:d6:2d:8a:3e:02:84:64:66:0a:c6: dc:c1:b4:00:80:bd:b9:2d:c2:bf:99:0c:f2:ca:87:f9:48:06: 1e:1d:fe:9f:30:5e:71:cd:0f:1d:93:4d:cd:68:3d:9f:cb:ad: 16:9e:fd:79:32:1c:73:09:10:8d:62:75:21:aa:e3:e0:35:0c: cb:d2:0a:03:aa:b6:69:e3:38:ba:cb:d1:12:7f:9b:a5:8a:0a: 9e:84:90:3a:cc:36:af:84:14:e8:e4:8f:51:d1:3d:2c:5a:93: 4c:d9:88:3b:3b:bc:f7:24:48:32:bc:bf:ef:18:e5:fd:3d:22: e5:f9:25:2c:6e:6f:61:3b:8b:74:00:0b:bf:42:19:31:b5:dd: db:d3:73:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Nzk5QzExMC8GA1UEBRMoQUQwNzAyNDAyOTNBQ0RDNTI0Q0ExMzM2NTgyRDcwQzIx OUZDQzdFMDAeFw0yNTA3MDcwODMzMzFaFw0yNTA3MTQwODMzMzFaMBgxFjAUBgNV BAMTDTY4NmI4NjViLTcxMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5uh/+rHoRxoEcw4w2flHg3OXfnlpCaEeQehPD1HZjRoUbCrQQ/X8FDSAZE6aZ RdUy0Yabn+yfh+tJiNqK5k8RrMaeoH6owL91LCPgAJvFuwNdit8ZQKRuqADwpQPp Pd0pWZG/0OSTyiGu/bJWMgHkCjOZh+ASofGc3gai+S69ND1uxj0TkUcjLsLk6qNK oheFsQWFE1xbXjQ/LiHKlQNFmBIQVKqRVTK0nAHdugiR9SGsol30IhOyptFLAL9h K4EHq7HYLOk28dkdSiN181fbG7Ykmy2pfziVQ8oHKi/YzOUvjYAB1mWBhXZanDh6 QFwUzl5hKeChrqWquV+A53kZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqrryAV9i ol59nWWK5KMCHflKYG4wHwYDVR0jBBgwFoAUrQcCQCk6zcUkyhM2WC1wwhn8x+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3OTlDLzJEMzM1RTZBNTU0 NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNVa3loTTJXQzF3d2huOHgt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclFjQ1FDazZ6Y1VreWhNMldDMXd3aG44eC1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 OTlDLzJEMzM1RTZBNTU0NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNV a3loTTJXQzF3d2huOHgtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALtWnTObg9KQ5hzV9lngNLCwe654PXZqaM6DfdfKDq2hZqN7lhOHILUf RLdlG7iM+NOcPq+Rt1XxQr+9ACtVofr+ZkebJwf3Wj9sFHIyY561eZI/B5bhAzMR kMjFxwj0JiENt58yKdD67Uj+TF7P6eIjzzJy1i2KPgKEZGYKxtzBtACAvbktwr+Z DPLKh/lIBh4d/p8wXnHNDx2TTc1oPZ/LrRae/XkyHHMJEI1idSGq4+A1DMvSCgOq tmnjOLrL0RJ/m6WKCp6EkDrMNq+EFOjkj1HRPSxak0zZiDs7vPckSDK8v+8Y5f09 IuX5JSxub2E7i3QAC79CGTG13dvTc2Q= -----END CERTIFICATE-----Generated at Tue Jul 8 02:10:12 2025 by rpki-client