$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: t2fEWK4/H3A7qVP1PrfdyT9xZacOEjgrY/UENhE1pD8= Subject key identifier: 76:16:40:F2:82:6A:77:7F:90:50:52:EA:02:1D:6D:33:13:B9:24:8C Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 03EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 03E9 Signing time: Sat 31 May 2025 00:43:03 +0000 Manifest this update: Sat 31 May 2025 00:43:03 +0000 Manifest next update: Sat 07 Jun 2025 00:43:03 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: 1S31iVPqKkSOEZ2V7oqflE9152i+p4bOC7lLc/VvdS0=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: vev8cF3wVonEj/spB6AbH6AE+o8N+kb1JbFrPlAS1N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: May 31 00:43:03 2025 GMT Not After : Jun 7 00:43:03 2025 GMT Subject: CN=683a5097-a665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9b:1c:31:f7:e4:89:1d:e6:d5:db:0d:41:c3: 08:92:a9:7e:a3:0e:3d:58:ff:ab:39:7a:61:bf:e4: d8:6a:0a:17:4c:95:b1:cc:48:88:11:e3:69:db:25: 87:51:da:25:b1:62:4b:38:49:4a:16:30:4f:05:0f: d8:91:c3:f3:69:a3:b2:81:7f:c8:5d:ac:b3:89:14: e9:60:a3:b4:86:99:f8:50:1a:52:ef:89:b3:a2:fa: 35:ea:75:a7:0c:a1:db:f2:8e:b3:a0:ab:36:70:a4: fc:89:26:cf:68:01:5d:24:a1:96:52:5f:41:26:83: cb:65:d8:70:e5:f9:50:3b:b6:9c:88:27:c4:be:82: f6:a8:cd:8b:8a:ce:08:69:98:9b:f2:55:9c:9f:0e: d2:12:68:4d:70:a9:fc:bd:8f:51:5d:b9:8c:78:8d: b4:1d:91:ec:30:b9:28:85:fb:bc:bb:92:a7:9a:b0: 94:45:8c:45:f2:56:4d:18:67:60:3c:10:96:0a:da: 9f:ef:1f:c4:93:fd:92:22:1f:07:1a:8d:81:07:dd: 51:11:a3:45:d9:e8:80:a8:e7:a3:70:59:69:b0:09: f0:7d:1e:4e:db:d4:62:10:64:6a:b2:b4:5e:99:fe: a5:87:ab:2c:07:24:40:86:b3:b2:d6:d1:b8:b1:d6: bb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:16:40:F2:82:6A:77:7F:90:50:52:EA:02:1D:6D:33:13:B9:24:8C X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:5c:ce:1d:b9:87:b8:01:0b:84:ee:3e:fe:9d:82:0e:01:4f: f3:98:12:0d:84:fd:79:77:12:1a:45:55:85:da:cf:e8:2e:a6: b0:63:7d:ac:6c:de:cd:a9:b4:10:0a:8d:22:93:68:bb:af:05: 9a:08:61:78:94:69:e4:c9:b4:f2:18:33:4a:74:65:98:3e:1b: 51:09:f2:a2:da:26:9b:63:f2:03:4c:e3:0d:29:77:f4:ff:de: 47:04:5b:5b:db:f3:e9:fa:5e:ec:25:1b:2f:1f:a3:9c:d4:b2: 70:6d:10:ae:cc:43:e0:c8:1d:4a:8e:70:d2:bd:a7:e6:00:69: ea:36:a2:6f:a5:d6:d4:bf:8b:de:50:38:03:6d:f1:91:aa:bc: 5e:a0:43:a9:f9:2f:ab:24:fc:1e:30:47:f4:18:f7:41:93:44: a2:83:5c:e6:f9:88:02:61:07:3e:82:d1:0c:e3:1d:2c:5f:98: ed:ce:50:6d:88:a9:d3:25:de:33:94:bf:ef:fd:1f:6e:8b:08: 2c:c0:54:28:b9:4e:fd:4e:c3:7c:27:0b:b5:d1:6b:3a:f2:15: ea:77:23:75:e0:b2:ca:95:8f:ff:01:33:78:82:50:9b:9b:6f: 78:66:76:d7:d5:ec:1d:70:71:cc:db:ac:fb:5d:69:c6:5e:11: 57:ba:5c:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUwNTMxMDA0MzAzWhcNMjUwNjA3MDA0MzAzWjAYMRYwFAYD VQQDEw02ODNhNTA5Ny1hNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpscMffkiR3m1dsNQcMIkql+ow49WP+rOXphv+TYagoXTJWxzEiIEeNp2yWH UdolsWJLOElKFjBPBQ/YkcPzaaOygX/IXayziRTpYKO0hpn4UBpS74mzovo16nWn DKHb8o6zoKs2cKT8iSbPaAFdJKGWUl9BJoPLZdhw5flQO7aciCfEvoL2qM2Lis4I aZib8lWcnw7SEmhNcKn8vY9RXbmMeI20HZHsMLkohfu8u5KnmrCURYxF8lZNGGdg PBCWCtqf7x/Ek/2SIh8HGo2BB91REaNF2eiAqOejcFlpsAnwfR5O29RiEGRqsrRe mf6lh6ssByRAhrOy1tG4sda7IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYWQPKC and/kFBS6gIdbTMTuSSMMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAXM4duYe4AQuE7j7+nYIOAU/zmBINhP15dxIaRVWF2s/oLqawY32s bN7NqbQQCo0ik2i7rwWaCGF4lGnkybTyGDNKdGWYPhtRCfKi2iabY/IDTOMNKXf0 /95HBFtb2/Pp+l7sJRsvH6Oc1LJwbRCuzEPgyB1KjnDSvafmAGnqNqJvpdbUv4ve UDgDbfGRqrxeoEOp+S+rJPweMEf0GPdBk0Sig1zm+YgCYQc+gtEM4x0sX5jtzlBt iKnTJd4zlL/v/R9uiwgswFQouU79TsN8Jwu10Ws68hXqdyN14LLKlY//ATN4glCb m294ZnbX1ewdcHHM26z7XWnGXhFXulzN -----END CERTIFICATE-----Generated at Sat May 31 17:44:03 2025 by rpki-client