$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: CSvkRagUmJmFfa49nlJ7KP1q3Um/xV4ceZrz1i1iPl4= Subject key identifier: 87:A5:64:59:18:44:4A:35:E9:4A:6A:22:3E:BC:CE:EB:DE:CD:67:D7 Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: 6A Signing time: Mon 09 Jun 2025 05:54:53 +0000 Manifest this update: Mon 09 Jun 2025 05:54:53 +0000 Manifest next update: Mon 16 Jun 2025 05:54:53 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: iyb2dncZ1oD6YuFYpWd0rZvgzsAkjcBbdziL6lXDDKg=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 05:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Validity Not Before: Jun 9 05:54:53 2025 GMT Not After : Jun 16 05:54:53 2025 GMT Subject: CN=6846772d-1644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b4:dc:67:a3:01:dd:f6:88:9c:44:1d:f3:41: 8d:9e:47:4c:66:c4:a5:51:f9:1d:a0:ca:f1:04:28: 83:cc:48:7b:5e:83:01:e2:3d:37:45:ec:4a:95:0d: fd:3e:0a:3d:9e:da:65:65:85:08:34:18:9e:a9:c0: 9a:7a:fd:29:dc:f9:f0:fd:e3:fa:de:e6:bc:5a:33: 45:fe:8f:41:d6:1d:4a:b6:fd:65:10:ff:e6:de:ed: 43:f9:13:8b:96:7f:59:42:82:e4:a2:de:83:9a:11: 69:93:44:64:64:5a:c1:a8:ee:34:b2:0f:58:2c:0d: 86:c7:6b:7f:8f:54:77:18:52:d1:1b:cc:f9:9b:81: 12:a5:34:d6:41:2b:e4:77:0d:50:c7:cd:36:da:8a: 5f:f2:e7:e9:bf:9d:43:ed:a4:89:c4:96:12:5e:76: 8d:d7:aa:d1:78:96:d7:5c:cc:69:54:f5:f8:61:fd: ca:f9:9c:46:61:84:17:4e:ae:b6:c1:cb:b9:46:1a: 6a:a5:cc:d9:8e:c0:7c:24:d8:3e:1d:01:18:ed:ec: 5a:36:77:3d:6a:55:ae:d9:38:f8:c8:be:bd:44:32: db:19:eb:ef:e2:e6:db:f4:8d:dc:20:2c:16:47:3a: d6:d5:8c:fa:66:fa:35:97:d3:71:8c:7f:69:da:b5: ab:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A5:64:59:18:44:4A:35:E9:4A:6A:22:3E:BC:CE:EB:DE:CD:67:D7 X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:ea:bc:7a:d2:58:ae:c9:33:f5:46:eb:ec:cf:a1:44:7c:60: 2f:6d:91:93:44:22:2b:d8:f8:61:ed:f2:aa:d7:e5:ec:06:e9: 63:27:76:f5:09:69:39:56:5c:72:60:7b:79:98:df:5a:0d:7c: 4c:bc:77:3a:6b:be:24:34:47:a9:bf:b0:e8:60:e9:1f:70:d5: e5:3b:53:00:50:73:a6:ec:fa:ff:25:25:a8:8e:61:5d:5d:43: 28:1f:b5:20:4b:1f:21:c0:a8:b2:ac:5b:e3:89:42:82:cd:74: 30:30:fc:72:e1:80:a9:73:09:20:ab:af:01:a7:66:7e:12:34: 57:51:13:96:5d:10:bf:ef:42:3a:2f:46:f6:0d:ea:c1:39:1e: 58:78:e7:14:e9:80:5d:57:c9:aa:ab:94:d4:a1:82:86:5b:aa: 4f:70:6c:cd:ae:10:ba:10:cb:32:0a:ad:f6:a4:2a:48:cb:73: a5:4b:c7:94:2f:02:ba:3a:7b:f3:ed:12:9b:3c:ec:80:5c:ea: 61:e7:45:53:8d:bc:58:35:b3:cb:ee:64:21:d2:c0:6b:b6:2b: 58:39:7e:7f:70:b0:bf:21:26:7f:19:fc:2c:cc:5e:c4:36:de: 87:71:c2:34:cf:4b:95:e1:a9:d6:1e:34:27:32:84:c2:6d:76: 24:30:d6:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REVGRTExMC8GA1UEBRMoQTgyOTJGNjIwNEM4MjEzRDc5MUZBNkNDQUFGNTc4NTE5 NEVGODFBMDAeFw0yNTA2MDkwNTU0NTNaFw0yNTA2MTYwNTU0NTNaMBgxFjAUBgNV BAMTDTY4NDY3NzJkLTE2NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+tNxnowHd9oicRB3zQY2eR0xmxKVR+R2gyvEEKIPMSHtegwHiPTdF7EqVDf0+ Cj2e2mVlhQg0GJ6pwJp6/Snc+fD94/re5rxaM0X+j0HWHUq2/WUQ/+be7UP5E4uW f1lCguSi3oOaEWmTRGRkWsGo7jSyD1gsDYbHa3+PVHcYUtEbzPmbgRKlNNZBK+R3 DVDHzTbail/y5+m/nUPtpInElhJedo3XqtF4ltdczGlU9fhh/cr5nEZhhBdOrrbB y7lGGmqlzNmOwHwk2D4dARjt7Fo2dz1qVa7ZOPjIvr1EMtsZ6+/i5tv0jdwgLBZH OtbVjPpm+jWX03GMf2natatrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh6VkWRhE SjXpSmoiPrzO697NZ9cwHwYDVR0jBBgwFoAUqCkvYgTIIT15H6bMqvV4UZTvgaAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERUZFLzExNjRDQUUwQTUx NjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdh QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUNrdllnVElJVDE1SDZiTXF2VjRVWlR2Z2FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RUZFLzExNjRDQUUwQTUxNjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQx NUg2Yk1xdlY0VVpUdmdhQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJfqvHrSWK7JM/VG6+zPoUR8YC9tkZNEIivY+GHt8qrX5ewG6WMndvUJ aTlWXHJge3mY31oNfEy8dzprviQ0R6m/sOhg6R9w1eU7UwBQc6bs+v8lJaiOYV1d QygftSBLHyHAqLKsW+OJQoLNdDAw/HLhgKlzCSCrrwGnZn4SNFdRE5ZdEL/vQjov RvYN6sE5Hlh45xTpgF1XyaqrlNShgoZbqk9wbM2uELoQyzIKrfakKkjLc6VLx5Qv Aro6e/PtEps87IBc6mHnRVONvFg1s8vuZCHSwGu2K1g5fn9wsL8hJn8Z/CzMXsQ2 3odxwjTPS5XhqdYeNCcyhMJtdiQw1lI= -----END CERTIFICATE-----Generated at Tue Jun 10 21:41:29 2025 by rpki-client