$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: wqO4+XuolqnveFGcyjCEaaoXBoZAkWepkoNp1LOBhSQ= Subject key identifier: 6E:70:6A:52:34:CF:8A:B8:59:99:5D:08:86:72:95:9D:50:63:56:D2 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1BD5 Signing time: Mon 30 Jun 2025 16:25:50 +0000 Manifest this update: Mon 30 Jun 2025 16:25:49 +0000 Manifest next update: Mon 07 Jul 2025 16:25:49 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: IQqSyyC55NATA2QEKvBQifk29i+PigL5NNT6SCBQD6I=) 2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: DzfAqd947/aw0GqhghbdVi3PbAms0DDMSaZSwYpp3rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7175 (0x1c07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: Jun 30 16:25:49 2025 GMT Not After : Jul 7 16:25:49 2025 GMT Subject: CN=6862ba8e-da8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bb:5f:22:6d:41:50:06:e5:fe:3c:68:3b:7a: a7:dc:dc:64:da:e4:72:79:42:9a:3e:c3:33:75:a9: da:30:91:26:b7:a0:f5:d4:20:6d:7b:fe:a8:e1:9d: 6d:23:fe:be:11:6e:e4:f8:80:29:03:0a:7d:ae:08: fe:e9:d5:9a:fc:27:d5:10:20:82:f6:d3:00:d1:ed: c6:e4:35:34:23:f7:83:ef:cd:a1:2f:d5:6c:be:41: 33:7f:f8:d5:ff:04:42:f1:cd:bc:2e:f5:b9:e8:b8: dd:89:c7:57:8d:ab:45:e6:fd:ac:40:63:d6:14:af: ae:9e:3a:60:e4:e9:c3:8a:6c:a6:e8:02:b5:d6:d6: bb:cc:16:34:7d:2d:8f:29:aa:e9:0e:0e:a9:fd:d7: 52:fb:5c:51:bd:e1:d3:63:61:6f:ab:ae:cc:6c:16: 7d:ba:70:18:0b:a5:e3:dd:83:c2:2e:1c:45:48:18: 96:f9:28:a6:f7:59:91:30:cb:66:83:04:92:c2:4b: 0f:14:95:9c:5f:25:6f:54:34:ac:23:0f:b8:03:2a: cb:79:0e:b9:9d:ef:ef:50:d5:fe:78:19:e4:fe:26: 52:31:69:01:c4:c6:43:36:f7:03:5b:9b:86:84:be: 89:fa:ea:dd:08:28:52:7c:8c:40:51:36:50:e9:47: c7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:70:6A:52:34:CF:8A:B8:59:99:5D:08:86:72:95:9D:50:63:56:D2 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:6f:c5:ba:eb:84:cd:c6:bb:68:63:61:fc:b5:1f:9d:88:b7: b5:90:92:09:ab:fb:d5:ca:67:6f:b9:dc:36:79:56:23:17:50: 4f:27:4f:25:e4:d9:be:fc:c6:aa:3f:eb:77:98:ac:30:c0:8d: 26:51:a2:1b:cd:93:93:f8:02:bb:2c:0b:d4:00:3b:eb:96:29: 26:d2:99:98:67:47:60:f5:b5:5f:5f:7a:d8:2e:96:49:86:19: 59:18:a3:75:cf:43:c9:30:3d:5c:d1:db:ae:a6:24:98:65:c6: eb:29:ba:41:17:4a:16:a5:b9:c0:de:28:05:b1:79:45:43:9c: a8:45:0f:c4:07:45:54:65:0c:f8:be:10:1e:db:52:b6:28:f4: 70:6e:0a:d3:ae:7d:05:e9:5b:50:0b:27:5a:c2:5d:9d:16:1b: 99:6f:ee:b6:ae:42:7d:58:e5:a6:42:30:43:e0:2c:3d:62:52: c0:34:5b:64:3d:24:06:b5:a4:a9:3d:30:81:73:9a:e2:af:22: 23:ac:e5:65:b4:0c:c6:8c:ce:de:0e:e3:3b:40:0d:6a:e4:7d: 90:ea:27:82:b9:c4:60:ce:1f:43:7a:ae:8c:d7:e8:34:72:bc: f7:10:10:2f:7f:26:ab:7f:05:69:02:b3:41:0f:92:ce:92:05: 98:58:6c:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUwNjMwMTYyNTQ5WhcNMjUwNzA3MTYyNTQ5WjAYMRYwFAYD VQQDEw02ODYyYmE4ZS1kYThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rtfIm1BUAbl/jxoO3qn3Nxk2uRyeUKaPsMzdanaMJEmt6D11CBte/6o4Z1t I/6+EW7k+IApAwp9rgj+6dWa/CfVECCC9tMA0e3G5DU0I/eD782hL9VsvkEzf/jV /wRC8c28LvW56LjdicdXjatF5v2sQGPWFK+unjpg5OnDimym6AK11ta7zBY0fS2P KarpDg6p/ddS+1xRveHTY2Fvq67MbBZ9unAYC6Xj3YPCLhxFSBiW+Sim91mRMMtm gwSSwksPFJWcXyVvVDSsIw+4AyrLeQ65ne/vUNX+eBnk/iZSMWkBxMZDNvcDW5uG hL6J+urdCChSfIxAUTZQ6UfHhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5walI0 z4q4WZldCIZylZ1QY1bSMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHb8W664TNxrtoY2H8tR+diLe1kJIJq/vVymdvudw2eVYjF1BPJ08l 5Nm+/MaqP+t3mKwwwI0mUaIbzZOT+AK7LAvUADvrlikm0pmYZ0dg9bVfX3rYLpZJ hhlZGKN1z0PJMD1c0duupiSYZcbrKbpBF0oWpbnA3igFsXlFQ5yoRQ/EB0VUZQz4 vhAe21K2KPRwbgrTrn0F6VtQCydawl2dFhuZb+62rkJ9WOWmQjBD4Cw9YlLANFtk PSQGtaSpPTCBc5riryIjrOVltAzGjM7eDuM7QA1q5H2Q6ieCucRgzh9Deq6M1+g0 crz3EBAvfyarfwVpArNBD5LOkgWYWGwx -----END CERTIFICATE-----Generated at Tue Jul 1 20:43:04 2025 by rpki-client