$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json) Hash identifier: heLCawP9f7G2hEP9t+f1U81KX80Zp+F++HTuXDWifsM= Subject key identifier: DC:0A:AF:46:0B:7B:25:8A:53:C9:28:ED:97:85:3C:94:E7:92:B4:35 Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B Certificate issuer: /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Certificate serial: 07CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft Manifest number: 07C4 Signing time: Tue 10 Jun 2025 21:00:57 +0000 Manifest this update: Tue 10 Jun 2025 21:00:57 +0000 Manifest next update: Tue 17 Jun 2025 21:00:56 +0000 Files and hashes: 1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: kbYAwtys7nukpskj9wAUJZ9HuXFd9CqS9jSGd9H/qXI=) 2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 21:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1995 (0x7cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Validity Not Before: Jun 10 21:00:57 2025 GMT Not After : Jun 17 21:00:56 2025 GMT Subject: CN=68489d09-9606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ed:f2:f5:0b:9d:73:b6:3b:42:48:90:0f:a7: 4d:46:62:59:6e:85:c1:c6:aa:39:fd:60:78:c1:69: ae:be:9b:4b:1c:94:87:79:1b:6c:42:b7:f9:5e:e3: ba:b2:e3:e2:4a:1b:79:32:28:73:e2:a2:6e:e2:46: 26:fc:e2:7a:14:4b:2a:72:93:d9:01:d2:32:2d:d9: d8:5c:17:76:11:53:f6:47:c9:d0:8f:c0:c9:ab:44: 8f:6b:b9:2e:41:1d:d0:aa:21:33:e0:14:e9:7b:b9: 5c:bc:87:10:ec:33:09:c9:d2:a0:28:3f:02:7e:36: 8f:ef:c7:5a:32:8d:d2:6c:b6:e5:bd:26:58:84:05: 19:8e:c4:79:87:60:9b:ae:1f:b3:ff:c4:fc:8a:73: 0a:d4:39:9a:61:8f:c0:2b:0e:fa:59:8c:80:c8:51: 41:7b:23:a1:83:dc:9a:e7:45:a1:44:7c:28:25:04: fc:15:a5:8c:6b:20:86:b8:a6:ab:9f:2b:52:20:17: 3f:db:cd:2e:96:44:5c:08:b7:2a:7c:25:c1:a6:16: d7:89:e4:88:7e:d7:ef:7e:9c:62:f1:65:4e:e6:30: d8:1f:d9:75:67:df:3d:d0:ba:58:ef:d1:f5:06:5a: 7a:52:c6:c0:df:33:c0:ed:5b:c9:58:bd:47:6f:12: 44:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0A:AF:46:0B:7B:25:8A:53:C9:28:ED:97:85:3C:94:E7:92:B4:35 X509v3 Authority Key Identifier: keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:20:94:9c:71:79:2f:34:ea:c9:ad:b2:e0:c6:a9:7f:f9:55: bc:a4:44:80:3f:ec:dc:28:90:69:49:c9:5b:ba:8c:c9:43:4a: f4:e3:89:4d:42:08:cc:65:a6:4e:59:ec:73:20:db:d8:e7:a5: 73:20:0d:47:07:af:37:ca:7d:b1:29:97:29:bf:b0:a5:08:34: 5c:41:3d:44:91:3b:f8:57:e8:d8:59:49:e7:20:db:17:c2:a2: ae:44:5f:77:16:9d:67:38:fa:64:b5:51:b9:d4:f9:f5:9e:cb: b7:e6:c4:8a:31:a9:d4:87:a6:24:a5:f4:b3:f5:28:a4:13:55: ef:2f:35:20:fc:fe:c3:d5:0c:ec:0d:2c:39:e9:84:36:b2:61: 8d:36:48:cd:be:25:bb:f6:af:ed:34:b5:61:1c:45:b1:9c:ab: 43:71:d3:40:87:71:0d:2f:0e:22:03:7a:4b:d2:a1:a4:3a:51: 61:5d:55:c1:ee:d1:c4:d9:eb:41:88:f3:5a:40:c3:26:c5:ad: 0b:34:74:a1:4c:b8:45:a9:39:2c:62:f9:1c:19:1a:66:36:0a: ec:f0:7b:ab:66:7c:d3:06:73:2c:97:f0:10:5f:86:81:0a:a5: 31:74:18:c1:9b:92:3e:17:94:87:29:c1:57:ee:1a:f0:a1:23: ae:e8:8f:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGNEMxMTAvBgNVBAUTKDQxRTM4MEEwQzlGQUJDQzEwRjhFQTMyOTYzNTJFNkE3 ODc4RDM1M0IwHhcNMjUwNjEwMjEwMDU3WhcNMjUwNjE3MjEwMDU2WjAYMRYwFAYD VQQDEw02ODQ4OWQwOS05NjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyO3y9Qudc7Y7QkiQD6dNRmJZboXBxqo5/WB4wWmuvptLHJSHeRtsQrf5XuO6 suPiSht5Mihz4qJu4kYm/OJ6FEsqcpPZAdIyLdnYXBd2EVP2R8nQj8DJq0SPa7ku QR3QqiEz4BTpe7lcvIcQ7DMJydKgKD8CfjaP78daMo3SbLblvSZYhAUZjsR5h2Cb rh+z/8T8inMK1DmaYY/AKw76WYyAyFFBeyOhg9ya50WhRHwoJQT8FaWMayCGuKar nytSIBc/280ulkRcCLcqfCXBphbXieSIftfvfpxi8WVO5jDYH9l1Z9890LpY79H1 Blp6UsbA3zPA7VvJWL1HbxJE+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwKr0YL eyWKU8ko7ZeFPJTnkrQ1MB8GA1UdIwQYMBaAFEHjgKDJ+rzBD46jKWNS5qeHjTU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEY0Qy85NDA3NjVGQ0Y5 NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZNRVBqcU1wWTFMbXA0ZU5O VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlT0FvTW42dk1FUGpxTXBZMUxtcDRlTk5Ucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEY0Qy85NDA3NjVGQ0Y5NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZN RVBqcU1wWTFMbXA0ZU5OVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLIJSccXkvNOrJrbLgxql/+VW8pESAP+zcKJBpSclbuozJQ0r044lN QgjMZaZOWexzINvY56VzIA1HB683yn2xKZcpv7ClCDRcQT1EkTv4V+jYWUnnINsX wqKuRF93Fp1nOPpktVG51Pn1nsu35sSKManUh6YkpfSz9SikE1XvLzUg/P7D1Qzs DSw56YQ2smGNNkjNviW79q/tNLVhHEWxnKtDcdNAh3ENLw4iA3pL0qGkOlFhXVXB 7tHE2etBiPNaQMMmxa0LNHShTLhFqTksYvkcGRpmNgrs8HurZnzTBnMsl/AQX4aB CqUxdBjBm5I+F5SHKcFX7hrwoSOu6I9G -----END CERTIFICATE-----Generated at Wed Jun 11 06:17:29 2025 by rpki-client