$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: VjBlB+qquMkkTL6i7IKaZZ2VILo4ZZKxkIl3u2ThZb8= Subject key identifier: E0:46:89:94:5E:DE:5B:19:05:47:2C:C5:20:BB:2F:59:A3:7A:5F:4D Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 062F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 0617 Signing time: Wed 02 Jul 2025 23:18:44 +0000 Manifest this update: Wed 02 Jul 2025 23:18:43 +0000 Manifest next update: Wed 09 Jul 2025 23:18:43 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: ER43rp9nWYOBArgGryazZIQ7gxiWJl1/lE1z0BOTD+o=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: 6YYJp70ovWJbV5hwBiIeegk/fbVe4hEWR6AUPM6tWHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Jul 2 23:18:43 2025 GMT Not After : Jul 9 23:18:43 2025 GMT Subject: CN=6865be53-0c7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6d:cf:3c:87:43:34:e1:69:1f:ad:44:d4:c5: d9:48:f8:63:d0:ae:a9:9d:be:1d:09:da:0f:a3:b3: 85:09:b4:3c:80:e9:d7:79:9b:63:20:96:5d:e9:c3: 2f:38:ed:46:35:60:81:84:3b:ad:01:07:b9:8c:76: 50:f9:ba:8b:ed:8a:e6:1b:98:ef:9c:fd:5c:5e:dd: 96:a2:c4:ed:41:c0:da:95:c5:ee:b7:09:a4:ae:47: f1:10:d9:40:ee:74:05:6c:3f:77:fc:6b:0e:b9:cc: 62:ab:4a:63:a3:ad:ce:18:79:72:50:cb:8c:74:5a: 3b:39:1e:90:c9:7e:e5:4b:2d:2a:b4:e0:10:98:f7: 77:84:06:a8:57:30:29:6f:19:97:24:be:be:54:29: e8:d7:34:27:2a:64:74:a1:58:fd:0f:99:7e:c3:08: 0a:bf:7c:30:4d:0e:0b:ae:62:ac:ce:4b:89:42:45: 79:9d:4d:62:e6:2d:c9:89:18:14:b1:9c:69:31:42: 8e:f0:c7:ba:b7:75:1c:51:d4:ef:c7:6d:1e:cf:bb: 79:80:86:8a:e9:9e:13:2a:d9:b3:a4:4f:ca:46:47: d9:15:dd:53:2d:7f:b7:97:3e:67:05:be:7c:31:62: e7:98:b1:76:57:2e:6b:0f:1d:99:bf:a6:31:8d:e1: 42:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:46:89:94:5E:DE:5B:19:05:47:2C:C5:20:BB:2F:59:A3:7A:5F:4D X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ae:17:5a:1d:f1:80:54:9e:80:bc:e8:55:fa:07:5a:99:89: 60:90:ed:14:12:4e:33:73:df:90:20:04:6c:77:3f:ed:8a:24: a9:99:37:ec:87:36:b8:52:64:4b:4e:92:20:16:3b:69:ea:da: bb:a9:6f:3e:dc:8d:ef:98:fa:51:e3:03:1d:ce:a1:cc:db:f0: 47:c5:db:1d:a5:0f:3e:09:5f:e4:74:3d:3c:61:4d:f2:7f:14: e8:fd:41:44:b2:c9:4c:1c:3b:eb:91:2b:21:34:5f:bf:35:b9: 9f:35:2d:66:b9:56:1f:3d:90:60:97:e2:9b:3e:ad:85:e3:bd: fd:bf:5e:d7:07:b1:e8:c7:10:f5:b9:7f:a4:55:84:4b:ca:d9: 04:35:ef:82:23:f7:83:ff:d0:ca:bc:f4:42:19:e1:28:f4:26: 63:74:ab:34:70:3e:70:0a:65:09:c1:d2:28:78:d0:50:4c:91: 8c:6a:5e:fe:8c:e3:53:0b:70:12:83:a5:c1:4d:97:b3:ee:49: 03:b2:93:ee:35:0f:52:2d:cc:1c:a3:7b:98:5b:49:14:cc:6a: 2a:87:f5:48:51:a7:8c:d2:b8:5a:a1:74:2b:50:f8:af:9f:02: d5:4f:2d:15:73:b7:7e:9c:a0:14:c8:cf:b3:2a:ec:ca:38:e4: 6c:42:ce:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwNzAyMjMxODQzWhcNMjUwNzA5MjMxODQzWjAYMRYwFAYD VQQDEw02ODY1YmU1My0wYzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArG3PPIdDNOFpH61E1MXZSPhj0K6pnb4dCdoPo7OFCbQ8gOnXeZtjIJZd6cMv OO1GNWCBhDutAQe5jHZQ+bqL7YrmG5jvnP1cXt2WosTtQcDalcXutwmkrkfxENlA 7nQFbD93/GsOucxiq0pjo63OGHlyUMuMdFo7OR6QyX7lSy0qtOAQmPd3hAaoVzAp bxmXJL6+VCno1zQnKmR0oVj9D5l+wwgKv3wwTQ4LrmKszkuJQkV5nU1i5i3JiRgU sZxpMUKO8Me6t3UcUdTvx20ez7t5gIaK6Z4TKtmzpE/KRkfZFd1TLX+3lz5nBb58 MWLnmLF2Vy5rDx2Zv6YxjeFCvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBGiZRe 3lsZBUcsxSC7L1mjel9NMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUrhdaHfGAVJ6AvOhV+gdamYlgkO0UEk4zc9+QIARsdz/tiiSpmTfs hza4UmRLTpIgFjtp6tq7qW8+3I3vmPpR4wMdzqHM2/BHxdsdpQ8+CV/kdD08YU3y fxTo/UFEsslMHDvrkSshNF+/NbmfNS1muVYfPZBgl+KbPq2F4739v17XB7HoxxD1 uX+kVYRLytkENe+CI/eD/9DKvPRCGeEo9CZjdKs0cD5wCmUJwdIoeNBQTJGMal7+ jONTC3ASg6XBTZez7kkDspPuNQ9SLcwco3uYW0kUzGoqh/VIUaeM0rhaoXQrUPiv nwLVTy0Vc7d+nKAUyM+zKuzKOORsQs6N -----END CERTIFICATE-----Generated at Thu Jul 3 17:38:37 2025 by rpki-client