$ rpki-client -vvf rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft File: QGGGPd9D57OxiePJwyF7wSuzXyE.mft (raw, json) Hash identifier: JF2UIukC9bxRqqN1eMyrBNIgiJitjVlPEU/vCNZ6GQ4= Subject key identifier: DD:9A:2D:C3:EE:C6:45:39:53:42:17:01:71:EA:89:F5:BA:D7:21:32 Authority key identifier: 40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 Certificate issuer: /CN=A919E8DB/serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft Manifest number: 65 Signing time: Sat 31 May 2025 06:45:47 +0000 Manifest this update: Sat 31 May 2025 06:45:47 +0000 Manifest next update: Sat 07 Jun 2025 06:45:47 +0000 Files and hashes: 1: QGGGPd9D57OxiePJwyF7wSuzXyE.crl (hash: 4+ual+x4GD5Mus2xm3YQjfO8JUGDNOWjSb4lSnNNQ3w=) 2: DCAA44D6BF2A11EFBAAF1F16C4F9AE02.roa (hash: fSJH1SOLPO4NysKX51na/qXDmlPOAQyyNuZ41eZmd8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E8DB, serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Validity Not Before: May 31 06:45:47 2025 GMT Not After : Jun 7 06:45:47 2025 GMT Subject: CN=683aa59b-6506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:60:da:50:fa:96:26:3e:5a:e5:82:00:e7:44: 10:c6:30:69:e7:2a:d6:12:f3:30:ab:70:d9:b0:94: bc:74:56:47:35:99:75:0d:ab:79:ea:9c:32:85:f6: 73:37:4f:4c:82:30:78:aa:cd:1b:99:82:b3:7b:db: 89:ee:ea:f0:ae:51:17:fe:ae:8e:ef:2f:07:2d:f0: 27:63:2e:e2:66:01:b5:f8:15:71:e2:7f:bc:f1:b0: ca:22:5b:f6:c7:c5:4c:3c:f0:1e:65:8a:31:29:79: db:f2:51:03:27:d9:18:3b:85:e8:cc:55:66:fb:d6: 32:7d:bd:91:32:55:0a:96:a8:f7:e4:67:ca:a1:dd: 5a:dd:f4:ee:7b:76:23:46:bc:f5:7b:e2:80:47:c9: 3a:15:b9:98:97:19:26:f7:09:00:33:45:d5:32:9a: 69:95:d5:41:68:82:42:00:47:1f:57:55:3a:2b:09: 6b:3e:73:22:b5:5c:78:68:48:71:57:93:68:a4:03: 5a:b3:16:84:42:e2:23:24:0b:0e:18:91:dd:e5:b6: bf:02:a0:70:7c:8c:e5:7f:69:51:9d:6e:6d:42:07: f3:e8:60:b6:a1:8b:d9:b6:09:e7:93:d5:08:17:f0: 68:d1:1b:3e:5e:22:df:b0:22:43:28:92:f4:f1:f9: a1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9A:2D:C3:EE:C6:45:39:53:42:17:01:71:EA:89:F5:BA:D7:21:32 X509v3 Authority Key Identifier: keyid:40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b6:38:bb:2f:13:e9:1b:90:50:a7:2d:03:b9:21:55:2f:94: 65:a4:e3:05:a4:81:75:25:9e:03:e2:70:6a:85:25:74:c0:d3: fe:5b:41:5a:22:aa:d3:8c:8c:a4:bb:d0:13:e1:ab:b8:68:6d: 2c:54:8f:a5:db:b0:90:ac:34:cf:ec:e9:da:1e:ff:38:73:48: 30:ed:67:a7:7e:5a:6b:d9:8f:29:49:51:c0:b6:53:91:c3:5f: c4:89:84:91:9d:62:01:03:35:58:46:fd:04:d4:f1:e1:06:b4: 68:06:52:ac:72:02:c1:e4:6e:56:a1:11:a7:fe:5e:b7:9b:16: 24:80:0a:bb:4e:c8:71:94:2f:63:40:12:6c:1b:45:cf:da:80: db:54:1b:26:b1:8f:fd:53:bb:16:6b:22:59:58:fc:93:cf:78: ec:0b:2c:ca:93:d3:c4:60:da:86:45:ce:49:ff:a0:f0:c2:cf: 00:2a:96:a8:c4:83:1a:51:50:e6:2e:44:ea:b5:93:f0:3e:e2: 2b:73:8a:26:3d:60:55:7f:7d:85:5f:b5:db:52:bb:fe:55:ef: 74:91:c5:a8:8c:77:cd:8a:77:25:9e:58:6d:e5:6d:5a:80:52: 0b:b4:e3:b5:e5:71:50:ff:af:71:10:36:67:ed:b5:05:46:6a: f4:4a:ce:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RThEQjExMC8GA1UEBRMoNDA2MTg2M0RERjQzRTdCM0IxODlFM0M5QzMyMTdCQzEy QkIzNUYyMTAeFw0yNTA1MzEwNjQ1NDdaFw0yNTA2MDcwNjQ1NDdaMBgxFjAUBgNV BAMTDTY4M2FhNTliLTY1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8YNpQ+pYmPlrlggDnRBDGMGnnKtYS8zCrcNmwlLx0Vkc1mXUNq3nqnDKF9nM3 T0yCMHiqzRuZgrN724nu6vCuURf+ro7vLwct8CdjLuJmAbX4FXHif7zxsMoiW/bH xUw88B5lijEpedvyUQMn2Rg7hejMVWb71jJ9vZEyVQqWqPfkZ8qh3Vrd9O57diNG vPV74oBHyToVuZiXGSb3CQAzRdUymmmV1UFogkIARx9XVTorCWs+cyK1XHhoSHFX k2ikA1qzFoRC4iMkCw4Ykd3ltr8CoHB8jOV/aVGdbm1CB/PoYLahi9m2CeeT1QgX 8GjRGz5eIt+wIkMokvTx+aEVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3Zotw+7G RTlTQhcBceqJ9brXITIwHwYDVR0jBBgwFoAUQGGGPd9D57OxiePJwyF7wSuzXyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFOERCL0I0OEUyNUY0Qjc2 MzExRUY4MkREOEYzM0M0RjlBRTAyL1FHR0dQZDlENTdPeGllUEp3eUY3d1N1elh5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUdHR1BkOUQ1N094aWVQSnd5Rjd3U3V6WHlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlF OERCL0I0OEUyNUY0Qjc2MzExRUY4MkREOEYzM0M0RjlBRTAyL1FHR0dQZDlENTdP eGllUEp3eUY3d1N1elh5RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHq2OLsvE+kbkFCnLQO5IVUvlGWk4wWkgXUlngPicGqFJXTA0/5bQVoi qtOMjKS70BPhq7hobSxUj6XbsJCsNM/s6doe/zhzSDDtZ6d+WmvZjylJUcC2U5HD X8SJhJGdYgEDNVhG/QTU8eEGtGgGUqxyAsHkblahEaf+XrebFiSACrtOyHGUL2NA EmwbRc/agNtUGyaxj/1TuxZrIllY/JPPeOwLLMqT08Rg2oZFzkn/oPDCzwAqlqjE gxpRUOYuROq1k/A+4itziiY9YFV/fYVftdtSu/5V73SRxaiMd82KdyWeWG3lbVqA Ugu047XlcVD/r3EQNmfttQVGavRKzrY= -----END CERTIFICATE-----Generated at Sat May 31 17:54:58 2025 by rpki-client