$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: gHd38xCtm4w4XBcCv6YQ8MOk62vVf7iI8T0kEH8Jg/Q= Subject key identifier: 81:52:87:AC:34:23:6D:AB:B4:79:19:A8:A2:43:11:85:78:86:C0:F6 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 01C9 Signing time: Mon 09 Jun 2025 02:06:25 +0000 Manifest this update: Mon 09 Jun 2025 02:06:24 +0000 Manifest next update: Mon 16 Jun 2025 02:06:24 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: eYpGMDklnnUwbxTqc3bwEKz+EPjLljq/djpvRG8zcbE=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: L+V30ULZZ1KBiifHC7zDGdNJ17lrpWMv8iHx76Nc92w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 02:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Jun 9 02:06:24 2025 GMT Not After : Jun 16 02:06:24 2025 GMT Subject: CN=684641a1-8428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3b:ec:67:64:21:98:3d:73:81:4f:0a:d0:80: 81:31:e8:63:c4:db:01:1c:48:58:c3:a4:da:5c:99: 8c:c2:3a:ea:4e:4a:f8:66:d4:6f:a6:c3:c7:e2:03: 8b:e8:a7:49:a2:5b:e4:68:b8:cd:19:cf:60:d1:58: e3:0b:76:be:c3:f1:73:9d:08:5f:2b:e3:e1:0e:1d: 4f:3f:cd:4c:60:de:b9:b6:43:cb:0a:e1:ce:4a:7f: f0:a0:56:a6:60:97:d9:e0:5a:01:ac:dd:eb:91:ae: 8c:5c:b8:8d:a5:5b:60:68:95:83:d0:e2:3e:88:d1: f2:8e:66:9a:c0:59:15:25:71:fa:6f:ec:0d:be:76: 75:d5:20:1d:ca:e6:b8:6c:63:ad:90:28:91:2f:47: 6c:3c:68:d6:3d:03:77:a9:11:ae:89:d8:a0:a6:8a: d6:f0:09:12:b7:a0:cd:5d:71:34:e5:75:01:81:88: 84:c2:cf:0c:c3:e8:4b:8e:57:34:44:0e:22:52:73: 68:53:03:54:01:45:a1:4d:38:55:fc:fd:1d:c9:4c: 8e:b9:84:0a:fa:29:1b:d2:be:f6:a7:4a:4f:65:31: 50:fb:f1:e1:ed:7e:72:88:f2:e8:76:5f:77:df:1c: eb:bb:90:11:3c:67:f2:07:2a:5a:ad:20:0d:ef:2e: 3d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:52:87:AC:34:23:6D:AB:B4:79:19:A8:A2:43:11:85:78:86:C0:F6 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:bc:bf:30:4b:90:44:ad:1d:20:2c:39:3f:88:09:03:59:41: b0:d8:d2:8a:f1:8a:cc:81:4a:1b:00:0d:4e:b6:6d:43:2c:dc: 40:e4:4b:9c:8f:0a:1c:9b:a1:30:d2:45:ee:f3:ac:69:e1:41: 19:1d:86:68:5b:46:42:fc:93:23:64:5f:6d:1d:bc:a5:d8:f3: 45:7a:77:13:bc:0c:90:1b:00:85:f1:f6:c5:62:d0:41:54:68: e7:78:0a:7e:84:e0:d5:63:ef:1a:dd:18:08:41:7c:31:f4:33: cd:75:70:0f:18:f4:50:5a:b6:39:fa:01:08:d0:07:c7:48:2a: 45:87:79:86:e4:3b:26:b0:38:25:04:33:a3:50:a9:fd:25:e4: f3:80:bf:7e:7d:0f:ff:d7:b3:10:48:5d:72:a9:f1:da:12:66: ce:ae:a1:5c:9f:c2:86:cb:12:58:ae:55:b7:53:8e:12:a2:27: ed:02:2b:5a:c9:d9:10:5f:a1:97:4f:e5:a8:71:9c:47:e1:87: 30:49:7f:90:6d:b4:5d:45:96:be:33:17:5e:2c:4b:a3:12:81: 6a:e2:4c:de:f0:53:1a:a6:25:b8:ee:55:1e:4a:59:35:22:0d: e2:6e:06:c7:f1:30:b5:83:ad:49:69:e9:83:30:47:c7:e3:60: 78:6f:86:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUwNjA5MDIwNjI0WhcNMjUwNjE2MDIwNjI0WjAYMRYwFAYD VQQDEw02ODQ2NDFhMS04NDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjvsZ2QhmD1zgU8K0ICBMehjxNsBHEhYw6TaXJmMwjrqTkr4ZtRvpsPH4gOL 6KdJolvkaLjNGc9g0VjjC3a+w/FznQhfK+PhDh1PP81MYN65tkPLCuHOSn/woFam YJfZ4FoBrN3rka6MXLiNpVtgaJWD0OI+iNHyjmaawFkVJXH6b+wNvnZ11SAdyua4 bGOtkCiRL0dsPGjWPQN3qRGuidigporW8AkSt6DNXXE05XUBgYiEws8Mw+hLjlc0 RA4iUnNoUwNUAUWhTThV/P0dyUyOuYQK+ikb0r72p0pPZTFQ+/Hh7X5yiPLodl93 3xzru5ARPGfyByparSAN7y493wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFSh6w0 I22rtHkZqKJDEYV4hsD2MB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmvL8wS5BErR0gLDk/iAkDWUGw2NKK8YrMgUobAA1Otm1DLNxA5Euc jwocm6Ew0kXu86xp4UEZHYZoW0ZC/JMjZF9tHbyl2PNFencTvAyQGwCF8fbFYtBB VGjneAp+hODVY+8a3RgIQXwx9DPNdXAPGPRQWrY5+gEI0AfHSCpFh3mG5DsmsDgl BDOjUKn9JeTzgL9+fQ//17MQSF1yqfHaEmbOrqFcn8KGyxJYrlW3U44SoiftAita ydkQX6GXT+WocZxH4YcwSX+QbbRdRZa+MxdeLEujEoFq4kze8FMapiW47lUeSlk1 Ig3ibgbH8TC1g61JaemDMEfH42B4b4Yc -----END CERTIFICATE-----Generated at Wed Jun 11 02:03:25 2025 by rpki-client