$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: pRD/L2oUg1okLbZ+ueUL72cu4wmyDRA396mhH4wKAio= Subject key identifier: 46:8D:02:49:09:4D:A2:C4:D5:EF:8B:02:3C:F2:E3:2B:E7:99:77:C3 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 01CB Signing time: Fri 13 Jun 2025 02:00:46 +0000 Manifest this update: Fri 13 Jun 2025 02:00:46 +0000 Manifest next update: Fri 20 Jun 2025 02:00:46 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: 7sroBoF+CPiVAn0Qe4lSgxfEqiLQHNpGXHcJZf9NJqo=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: L+V30ULZZ1KBiifHC7zDGdNJ17lrpWMv8iHx76Nc92w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Jun 13 02:00:46 2025 GMT Not After : Jun 20 02:00:46 2025 GMT Subject: CN=684b864e-f05b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:eb:bb:ec:94:2a:56:8c:3d:7a:6c:c5:90:1e: e4:da:01:74:79:65:47:be:12:95:eb:d6:18:39:28: 8d:df:94:1c:0a:16:af:04:71:c9:d9:2b:1f:dc:ce: 80:74:d1:9d:2d:b2:09:18:ef:6f:a3:ac:5e:41:ba: 5c:94:ae:2f:80:23:70:c4:49:af:cc:a7:50:40:ec: 4a:98:3d:c5:94:8b:47:f9:eb:90:f2:02:a2:30:0b: 33:77:fa:c9:f8:7c:eb:15:3e:ad:15:37:78:61:b1: c6:62:1c:fb:2a:56:9b:e9:64:be:fc:6d:f4:2d:fd: ea:1d:55:92:c8:8f:8e:17:46:80:0f:68:ea:45:3f: c9:9b:bf:fe:5f:b7:81:74:98:55:ec:41:8c:1a:b9: cf:86:76:87:f2:ca:d4:3f:8d:c2:58:7f:36:74:38: ab:0e:df:cb:82:b4:b5:28:41:9c:54:cc:e6:72:e1: e4:4e:33:a0:bd:3a:80:6c:93:37:95:f1:24:84:c0: 3c:62:7c:ec:06:f3:a6:26:b2:f4:42:ad:56:69:8f: 24:e8:9f:bb:1e:4d:b5:71:cb:51:74:7d:4d:30:26: a2:52:65:fd:cf:e8:8b:c9:9e:1a:e7:32:ef:4c:69: 78:a3:f4:dd:70:37:3d:f4:12:e5:c4:73:35:32:75: 9b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8D:02:49:09:4D:A2:C4:D5:EF:8B:02:3C:F2:E3:2B:E7:99:77:C3 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e0:77:0f:95:3f:c0:cb:6b:6e:4b:a2:0c:56:68:f7:c4:bc: eb:8e:37:f0:8b:d1:db:48:4a:98:9e:9d:84:9d:15:eb:1a:f8: ac:5b:a5:35:e5:b5:5c:30:a6:e8:87:d5:51:fc:19:82:eb:3a: f5:a5:3e:35:4f:a3:6a:db:24:b7:bb:d4:58:29:d9:3f:ca:74: 9f:b7:14:4b:c4:38:8f:59:52:01:3f:14:8e:4c:f9:fb:38:b6: 03:19:9f:f0:c7:32:37:93:49:7a:61:40:cd:57:47:56:1b:de: 3e:aa:94:93:b6:7a:1b:e3:0f:b3:51:8c:53:f1:60:e0:68:7f: 41:46:b0:4c:e6:dc:ba:a1:29:59:31:7a:66:e7:fc:5e:6b:96: 88:6e:e6:45:da:d0:70:52:e8:cf:c9:a9:c3:78:c3:ba:5c:b9: e8:e0:09:b1:3f:eb:87:16:46:33:56:d4:4e:d0:fd:a3:44:e9: 6a:69:12:ef:fd:9f:a6:94:c3:3e:0d:c3:ad:e2:e6:51:cd:f0: 79:bb:3e:71:e3:26:b7:34:d3:a5:af:40:21:33:57:0e:c5:47: 92:65:02:65:e1:c0:d4:70:cc:19:42:94:99:b9:20:5f:a3:6e: 40:66:d6:f9:49:1a:7a:69:cc:8d:e7:cd:cd:9a:30:e0:e0:72: 87:b3:e3:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUwNjEzMDIwMDQ2WhcNMjUwNjIwMDIwMDQ2WjAYMRYwFAYD VQQDEw02ODRiODY0ZS1mMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOu77JQqVow9emzFkB7k2gF0eWVHvhKV69YYOSiN35QcChavBHHJ2Ssf3M6A dNGdLbIJGO9vo6xeQbpclK4vgCNwxEmvzKdQQOxKmD3FlItH+euQ8gKiMAszd/rJ +HzrFT6tFTd4YbHGYhz7Klab6WS+/G30Lf3qHVWSyI+OF0aAD2jqRT/Jm7/+X7eB dJhV7EGMGrnPhnaH8srUP43CWH82dDirDt/LgrS1KEGcVMzmcuHkTjOgvTqAbJM3 lfEkhMA8YnzsBvOmJrL0Qq1WaY8k6J+7Hk21cctRdH1NMCaiUmX9z+iLyZ4a5zLv TGl4o/TdcDc99BLlxHM1MnWbNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaNAkkJ TaLE1e+LAjzy4yvnmXfDMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD4HcPlT/Ay2tuS6IMVmj3xLzrjjfwi9HbSEqYnp2EnRXrGvisW6U1 5bVcMKboh9VR/BmC6zr1pT41T6Nq2yS3u9RYKdk/ynSftxRLxDiPWVIBPxSOTPn7 OLYDGZ/wxzI3k0l6YUDNV0dWG94+qpSTtnob4w+zUYxT8WDgaH9BRrBM5ty6oSlZ MXpm5/xea5aIbuZF2tBwUujPyanDeMO6XLno4AmxP+uHFkYzVtRO0P2jROlqaRLv /Z+mlMM+DcOt4uZRzfB5uz5x4ya3NNOlr0AhM1cOxUeSZQJl4cDUcMwZQpSZuSBf o25AZtb5SRp6acyN583NmjDg4HKHs+Pi -----END CERTIFICATE-----Generated at Fri Jun 13 10:21:39 2025 by rpki-client