$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: +bazCgq6WfY+2KKP003DdGfujCr+B2nV2muCqQlEFTk= Subject key identifier: DD:7E:5E:26:29:72:26:A2:9E:AC:37:A1:89:72:C2:E5:F3:B3:99:DC Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: 6B Signing time: Wed 11 Jun 2025 06:19:50 +0000 Manifest this update: Wed 11 Jun 2025 06:19:50 +0000 Manifest next update: Wed 18 Jun 2025 06:19:50 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: /0KaXfpHCU6VHx4J4vAWks0PUE8J0N0uyMFEiSF0xn8=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 06:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Validity Not Before: Jun 11 06:19:50 2025 GMT Not After : Jun 18 06:19:50 2025 GMT Subject: CN=68492006-44f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4b:a9:51:da:19:91:2d:b2:1a:81:4f:b5:44: 55:9a:3e:fa:29:28:a9:79:9b:6a:b6:84:24:7e:e4: ac:14:44:24:35:d4:30:f6:8d:06:8a:c2:5e:ff:78: 56:f7:1d:df:c1:df:ec:2a:d5:72:22:6a:5f:4c:57: ba:db:bd:5f:44:9f:25:a6:a9:51:dd:ec:2f:6c:bb: fe:b6:46:ea:fb:f3:74:c6:96:d1:7a:2f:b6:83:ea: de:57:ad:c4:08:ae:2f:11:d7:8d:b6:40:69:69:7f: 14:41:31:2b:6e:3e:8f:3c:36:d5:07:0d:11:f8:da: 34:ac:3e:62:77:50:2d:35:b0:46:e7:55:3d:4e:89: 70:12:0f:9b:bd:0c:7e:86:23:6d:eb:5a:1f:86:4d: 5c:ff:55:d3:6a:e6:d8:36:3f:0d:69:d5:ac:ad:05: aa:3b:bf:57:f0:89:bc:c7:e6:41:3b:9c:34:8a:95: ce:4b:4e:cf:f3:15:33:38:b7:28:ab:d4:64:6e:d4: 4c:85:f0:3e:5f:8d:a0:f9:12:1c:ec:76:22:f8:2b: 85:39:c5:97:8f:23:a2:7a:f3:a3:90:53:76:18:e0: 64:73:a4:7b:04:5d:64:24:72:4a:c1:67:94:86:8d: 5f:eb:9b:dc:81:14:86:bd:74:a3:50:23:70:d4:31: 77:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7E:5E:26:29:72:26:A2:9E:AC:37:A1:89:72:C2:E5:F3:B3:99:DC X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:f0:f9:3e:ce:46:6a:70:9a:c6:91:db:ea:21:19:36:da:0f: a8:b0:87:90:9e:c4:6a:9c:8f:25:33:39:b9:06:fa:76:ab:3e: 30:6a:21:05:da:82:c4:1d:9b:58:16:27:e7:37:9c:4b:27:e1: c3:51:0d:7a:7e:de:87:26:4e:0c:06:c1:6e:b4:8c:9e:2a:9b: 35:fe:4a:d2:d8:0d:d6:eb:d9:f1:f3:bb:09:49:92:56:76:2a: b2:88:d3:b1:49:cc:8b:61:6d:62:4e:cb:6b:65:d9:ef:95:96: ae:71:88:77:67:53:55:8b:33:ac:d7:f4:08:93:7c:9d:bd:cc: 6d:a6:fb:1d:f2:85:49:95:00:4a:84:5b:1a:b4:5c:6e:93:22: db:ae:fb:3c:03:ed:c7:25:ae:ed:5b:5e:8f:f5:40:ee:0a:d4: 68:60:cf:9a:83:75:e1:47:83:42:8e:a4:f7:5d:7d:8b:0a:2f: ab:0d:b0:11:3b:c2:21:a6:47:b7:c8:83:3d:70:c0:be:73:f7: 79:5a:4f:6e:b0:d5:e2:06:d3:86:57:c3:59:df:43:34:5c:d7: 0d:a3:0a:8a:4e:16:5d:63:c7:1b:d1:85:7f:2a:dd:22:64:ee: d7:85:7b:fb:d5:68:9d:5d:a3:cf:b4:27:2b:f1:95:b6:b6:1b: a9:87:f8:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REVGRTExMC8GA1UEBRMoQTgyOTJGNjIwNEM4MjEzRDc5MUZBNkNDQUFGNTc4NTE5 NEVGODFBMDAeFw0yNTA2MTEwNjE5NTBaFw0yNTA2MTgwNjE5NTBaMBgxFjAUBgNV BAMTDTY4NDkyMDA2LTQ0ZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFS6lR2hmRLbIagU+1RFWaPvopKKl5m2q2hCR+5KwURCQ11DD2jQaKwl7/eFb3 Hd/B3+wq1XIial9MV7rbvV9EnyWmqVHd7C9su/62Rur783TGltF6L7aD6t5XrcQI ri8R1422QGlpfxRBMStuPo88NtUHDRH42jSsPmJ3UC01sEbnVT1OiXASD5u9DH6G I23rWh+GTVz/VdNq5tg2Pw1p1aytBao7v1fwibzH5kE7nDSKlc5LTs/zFTM4tyir 1GRu1EyF8D5fjaD5EhzsdiL4K4U5xZePI6J686OQU3YY4GRzpHsEXWQkckrBZ5SG jV/rm9yBFIa9dKNQI3DUMXdZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3X5eJily JqKerDehiXLC5fOzmdwwHwYDVR0jBBgwFoAUqCkvYgTIIT15H6bMqvV4UZTvgaAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERUZFLzExNjRDQUUwQTUx NjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdh QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUNrdllnVElJVDE1SDZiTXF2VjRVWlR2Z2FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RUZFLzExNjRDQUUwQTUxNjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQx NUg2Yk1xdlY0VVpUdmdhQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHfw+T7ORmpwmsaR2+ohGTbaD6iwh5CexGqcjyUzObkG+narPjBqIQXa gsQdm1gWJ+c3nEsn4cNRDXp+3ocmTgwGwW60jJ4qmzX+StLYDdbr2fHzuwlJklZ2 KrKI07FJzIthbWJOy2tl2e+Vlq5xiHdnU1WLM6zX9AiTfJ29zG2m+x3yhUmVAEqE Wxq0XG6TItuu+zwD7cclru1bXo/1QO4K1Ghgz5qDdeFHg0KOpPddfYsKL6sNsBE7 wiGmR7fIgz1wwL5z93laT26w1eIG04ZXw1nfQzRc1w2jCopOFl1jxxvRhX8q3SJk 7teFe/vVaJ1do8+0Jyvxlba2G6mH+Ic= -----END CERTIFICATE-----Generated at Wed Jun 11 14:35:06 2025 by rpki-client