$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json) Hash identifier: PZtCUsZvBKR0zxQjRugA6UNQpG5MDz/KkCFUia1Ct24= Subject key identifier: 11:93:08:12:C4:D3:E6:52:34:F9:0D:73:4F:80:54:1E:C8:D9:DE:63 Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B Certificate issuer: /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Certificate serial: 07CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft Manifest number: 07C3 Signing time: Sun 08 Jun 2025 20:48:22 +0000 Manifest this update: Sun 08 Jun 2025 20:48:21 +0000 Manifest next update: Sun 15 Jun 2025 20:48:21 +0000 Files and hashes: 1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: i9ti2fMdZjVrMNYkwI1nq+NV/XRwyIGeCXjo2gJL6J4=) 2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 20:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1994 (0x7ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Validity Not Before: Jun 8 20:48:21 2025 GMT Not After : Jun 15 20:48:21 2025 GMT Subject: CN=6845f715-e3fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4d:f8:4d:6b:82:21:55:3e:1d:ab:b1:e0:15: b3:5d:9d:6c:67:3d:eb:a7:69:d6:04:42:38:e0:06: e1:3f:7d:30:7f:df:ac:e0:2a:24:13:28:31:27:3b: 34:0f:3f:6e:f6:1b:9d:c9:49:ec:c8:29:04:f8:2b: 8d:bf:06:09:8b:6a:27:40:69:b9:d2:e1:a6:f3:8b: 20:3b:28:23:10:8e:5e:b9:8e:79:1d:45:bf:2a:46: 06:1a:b3:ce:ba:7c:59:0d:c6:fb:64:13:a9:e1:82: 4f:d6:1d:a5:84:da:90:10:a4:49:3c:69:29:a4:d8: de:2e:c8:52:f7:f2:58:ed:ef:e5:9c:e1:f1:6d:25: b3:ce:96:75:32:48:57:e8:f6:38:5c:25:ef:8f:c5: bd:53:3d:fc:55:cb:6a:3b:49:60:b8:fc:de:1b:22: 07:6a:65:51:de:7d:0d:08:e9:bc:2a:85:13:16:73: 8c:c8:25:26:5c:5c:44:12:ad:fd:eb:21:b8:0e:90: ea:04:da:66:df:f1:bd:b4:85:7c:94:f5:d2:44:1b: c8:fa:d1:9c:0a:5c:91:fe:e9:82:bb:ae:6b:34:12: 5f:5a:cf:ef:28:54:cb:08:4b:e2:bc:d0:e7:d0:3c: 15:5a:26:43:a9:43:67:4b:db:47:7b:d9:6d:c8:4e: 34:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:93:08:12:C4:D3:E6:52:34:F9:0D:73:4F:80:54:1E:C8:D9:DE:63 X509v3 Authority Key Identifier: keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:0f:36:a1:11:bb:6f:70:42:65:17:3b:5f:26:8c:ba:2d:8f: 40:64:e3:b9:00:4f:d4:14:85:10:3c:50:7d:c2:e0:b1:d5:41: b2:22:2a:61:e3:4c:a7:8b:20:c5:b6:18:bc:89:21:f5:24:cf: 3f:c0:fb:04:3c:ea:5f:a3:97:b8:80:b6:29:f7:ad:97:28:e2: 73:b3:d5:68:92:89:8f:f4:35:60:23:74:28:a4:98:46:91:1e: 3b:5d:c1:d2:60:7d:93:1a:59:14:99:53:6f:1a:c6:25:e1:44: 4c:62:5e:a3:89:06:f3:09:31:56:a9:4c:ba:d2:b8:f9:ae:76: 20:77:56:42:00:c7:45:58:2e:df:76:a1:a5:78:10:73:c4:47: 19:b0:9e:23:e7:fd:44:43:27:d6:fe:b2:1e:f2:ae:cc:fa:71: ef:d8:77:33:36:e6:eb:f6:0d:31:dd:9b:22:56:40:70:63:bc: b1:3b:49:78:39:09:41:c3:cc:0d:5b:6f:52:77:ee:a6:f1:76: 3b:52:88:b7:e6:79:07:76:f4:ef:3b:f9:bd:01:91:92:15:9f: 22:f7:6d:73:3e:c4:e8:54:87:ed:48:3e:c8:b8:06:ad:b4:75: ec:79:fc:be:76:d1:25:31:22:2e:16:82:8f:2f:1f:4b:66:50: a1:a9:bb:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGNEMxMTAvBgNVBAUTKDQxRTM4MEEwQzlGQUJDQzEwRjhFQTMyOTYzNTJFNkE3 ODc4RDM1M0IwHhcNMjUwNjA4MjA0ODIxWhcNMjUwNjE1MjA0ODIxWjAYMRYwFAYD VQQDEw02ODQ1ZjcxNS1lM2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzE34TWuCIVU+Haux4BWzXZ1sZz3rp2nWBEI44AbhP30wf9+s4CokEygxJzs0 Dz9u9hudyUnsyCkE+CuNvwYJi2onQGm50uGm84sgOygjEI5euY55HUW/KkYGGrPO unxZDcb7ZBOp4YJP1h2lhNqQEKRJPGkppNjeLshS9/JY7e/lnOHxbSWzzpZ1MkhX 6PY4XCXvj8W9Uz38VctqO0lguPzeGyIHamVR3n0NCOm8KoUTFnOMyCUmXFxEEq39 6yG4DpDqBNpm3/G9tIV8lPXSRBvI+tGcClyR/umCu65rNBJfWs/vKFTLCEvivNDn 0DwVWiZDqUNnS9tHe9ltyE40OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGTCBLE 0+ZSNPkNc0+AVB7I2d5jMB8GA1UdIwQYMBaAFEHjgKDJ+rzBD46jKWNS5qeHjTU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEY0Qy85NDA3NjVGQ0Y5 NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZNRVBqcU1wWTFMbXA0ZU5O VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlT0FvTW42dk1FUGpxTXBZMUxtcDRlTk5Ucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEY0Qy85NDA3NjVGQ0Y5NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZN RVBqcU1wWTFMbXA0ZU5OVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrDzahEbtvcEJlFztfJoy6LY9AZOO5AE/UFIUQPFB9wuCx1UGyIiph 40yniyDFthi8iSH1JM8/wPsEPOpfo5e4gLYp962XKOJzs9VokomP9DVgI3QopJhG kR47XcHSYH2TGlkUmVNvGsYl4URMYl6jiQbzCTFWqUy60rj5rnYgd1ZCAMdFWC7f dqGleBBzxEcZsJ4j5/1EQyfW/rIe8q7M+nHv2HczNubr9g0x3ZsiVkBwY7yxO0l4 OQlBw8wNW29Sd+6m8XY7Uoi35nkHdvTvO/m9AZGSFZ8i921zPsToVIftSD7IuAat tHXsefy+dtElMSIuFoKPLx9LZlChqbv1 -----END CERTIFICATE-----Generated at Tue Jun 10 04:21:59 2025 by rpki-client