$ rpki-client -vvf rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft File: qSHPiNjIngus1O4YU4wzsnipWSw.mft (raw, json) Hash identifier: wZctjz948lsE0zTlBBOgKT7RHscAK/wSyme6cS+aJwc= Subject key identifier: 24:91:61:E5:A9:21:E3:65:66:76:5F:44:F5:75:91:D5:F2:4E:C7:8B Authority key identifier: A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C Certificate issuer: /CN=A91127A2/serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Certificate serial: 05FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft Manifest number: 05F8 Signing time: Sat 28 Jun 2025 22:29:45 +0000 Manifest this update: Sat 28 Jun 2025 22:29:45 +0000 Manifest next update: Sat 05 Jul 2025 22:29:45 +0000 Files and hashes: 1: qSHPiNjIngus1O4YU4wzsnipWSw.crl (hash: yeYiKiQo2MnI4JfCDaXdPz3C9afu2GLRROXl//JfyY8=) 2: 07332486B1D111EBA956F96AC4F9AE02.roa (hash: QK+G6fNVeQvRNDArbOTnNoOHNeXa2RP5xEy26aJHwS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:29:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1533 (0x5fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127A2, serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Validity Not Before: Jun 28 22:29:45 2025 GMT Not After : Jul 5 22:29:45 2025 GMT Subject: CN=68606cd9-bd52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:66:a0:e3:8c:3b:a0:f7:f2:42:a5:72:70: a9:91:71:54:f7:5c:4e:51:55:22:a8:33:eb:b5:d3: 65:3c:fc:52:af:74:76:ab:8c:a9:3e:0f:3e:17:83: 15:5b:65:0f:48:7e:f2:08:10:dc:14:17:79:a8:25: 76:58:0e:0b:40:bc:3a:72:94:b8:e7:d4:3c:f3:80: ab:b0:06:2c:f6:1b:63:8e:53:87:7a:37:0e:6e:dc: 6d:fa:1b:f2:4e:89:f8:a5:b2:2a:11:8e:79:75:c7: bd:e7:b8:ae:f1:e1:6d:fd:dc:09:78:d5:23:93:89: 24:0f:a9:9b:ca:7d:bb:13:68:e7:3d:c0:f7:a9:c4: 90:a5:c7:7c:a6:24:80:f0:e7:79:85:75:06:26:0c: 79:cc:81:14:5c:59:f0:64:9f:e0:a5:75:dc:7b:73: 98:0d:aa:e3:f6:9a:82:16:0f:df:9e:7c:9c:db:b5: 58:ee:ab:18:e7:aa:0b:c0:ef:08:dc:40:37:3d:54: 62:0c:82:18:e1:9d:9d:2e:da:6c:b6:a9:68:3c:98: dd:0b:93:5e:5a:d2:e2:9d:50:05:44:14:be:9f:d9: 9d:4f:e8:66:25:2e:80:85:7b:4b:17:b7:4c:cb:62: 35:da:0d:90:56:1d:29:47:34:0e:77:d6:b6:35:3f: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:91:61:E5:A9:21:E3:65:66:76:5F:44:F5:75:91:D5:F2:4E:C7:8B X509v3 Authority Key Identifier: keyid:A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:57:68:06:81:42:17:41:75:12:f7:3d:a9:67:f0:58:a3:2f: 6e:04:69:45:c9:2c:ff:40:a7:45:d9:17:6f:56:a6:f9:50:a9: 7e:71:b8:b9:18:99:79:1a:e8:38:94:24:81:97:f0:62:7f:f3: 62:34:ba:94:52:52:9e:6a:05:b6:85:c9:4c:3a:dd:bc:db:af: e1:99:21:f4:f8:1f:d7:e0:09:46:6b:cf:d4:1d:2a:d1:5a:2f: 86:f6:e4:6d:73:bd:e5:d4:d5:b0:a6:e7:97:9c:2c:e0:0d:a0: f8:e0:a8:3e:56:af:5e:72:a8:f4:d2:e9:28:6b:98:4e:61:75: c4:ac:39:28:b5:d6:09:a7:86:e8:8f:8f:26:48:c3:41:11:c0: 81:72:d6:ba:4f:fb:aa:8d:5b:17:d6:9b:69:a7:28:31:42:af: f2:09:6d:f8:9c:f4:52:ea:ae:89:2d:ca:46:5c:fa:28:37:d8: 00:ca:2a:e0:86:5f:46:c1:5b:5e:8c:93:90:ec:f3:46:c8:4a: 8a:07:07:27:5a:b2:46:f6:76:b3:b0:66:1a:a0:06:0f:8b:74: 6b:8c:fd:1b:9d:45:ef:b7:1c:f3:ab:43:e5:72:2e:ea:b8:4d: ab:51:d4:53:e5:0b:06:16:c3:fb:b9:3d:51:ab:36:e5:0e:48: a6:44:39:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QTIxMTAvBgNVBAUTKEE5MjFDRjg4RDhDODlFMEJBQ0Q0RUUxODUzOEMzM0Iy NzhBOTU5MkMwHhcNMjUwNjI4MjIyOTQ1WhcNMjUwNzA1MjIyOTQ1WjAYMRYwFAYD VQQDEw02ODYwNmNkOS1iZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6RmoOOMO6D38kKlcnCpkXFU91xOUVUiqDPrtdNlPPxSr3R2q4ypPg8+F4MV W2UPSH7yCBDcFBd5qCV2WA4LQLw6cpS459Q884CrsAYs9htjjlOHejcObtxt+hvy Ton4pbIqEY55dce957iu8eFt/dwJeNUjk4kkD6mbyn27E2jnPcD3qcSQpcd8piSA 8Od5hXUGJgx5zIEUXFnwZJ/gpXXce3OYDarj9pqCFg/fnnyc27VY7qsY56oLwO8I 3EA3PVRiDIIY4Z2dLtpstqloPJjdC5NeWtLinVAFRBS+n9mdT+hmJS6AhXtLF7dM y2I12g2QVh0pRzQOd9a2NT8bTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSRYeWp IeNlZnZfRPV1kdXyTseLMB8GA1UdIwQYMBaAFKkhz4jYyJ4LrNTuGFOMM7J4qVks MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdBMi9EMUNENTQ1OEIx Q0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5ndXMxTzRZVTR3enNuaXBX U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTSFBpTmpJbmd1czFPNFlVNHd6c25pcFdTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdBMi9EMUNENTQ1OEIxQ0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5n dXMxTzRZVTR3enNuaXBXU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGV2gGgUIXQXUS9z2pZ/BYoy9uBGlFySz/QKdF2RdvVqb5UKl+cbi5 GJl5Gug4lCSBl/Bif/NiNLqUUlKeagW2hclMOt2826/hmSH0+B/X4AlGa8/UHSrR Wi+G9uRtc73l1NWwpueXnCzgDaD44Kg+Vq9ecqj00ukoa5hOYXXErDkotdYJp4bo j48mSMNBEcCBcta6T/uqjVsX1ptppygxQq/yCW34nPRS6q6JLcpGXPooN9gAyirg hl9GwVtejJOQ7PNGyEqKBwcnWrJG9nazsGYaoAYPi3RrjP0bnUXvtxzzq0Plci7q uE2rUdRT5QsGFsP7uT1RqzblDkimRDnx -----END CERTIFICATE-----Generated at Sun Jun 29 12:51:34 2025 by rpki-client