$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: UFaboBK+r8in8GyecoWgdm01GOlbKjCj/DbpnINeY2E= Subject key identifier: 3B:DB:AB:4E:5C:58:7B:E0:64:86:53:52:64:59:E7:D1:A4:E9:39:75 Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 0659 Signing time: Mon 30 Jun 2025 22:52:30 +0000 Manifest this update: Mon 30 Jun 2025 22:52:29 +0000 Manifest next update: Mon 07 Jul 2025 22:52:29 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: uCkZHwu69h+awL+2Ftx7YTHJhnr1+EbuGPUuRGGvdKY=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Jun 30 22:52:29 2025 GMT Not After : Jul 7 22:52:29 2025 GMT Subject: CN=6863152e-6a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:98:fb:05:e4:2a:bf:f1:69:d8:18:bd:5e:9d: 9a:16:92:9b:7f:be:37:cd:f8:66:e4:b1:24:87:da: a1:f9:4b:41:3e:90:93:f8:1e:bc:5e:f2:a5:b9:02: 02:0f:e5:a4:32:dd:62:c1:3e:9f:5b:19:e9:af:fd: 21:a7:d0:24:85:1a:46:0d:2d:3b:aa:f9:2f:ae:9d: bc:04:f6:ae:c8:6d:6a:dc:0e:2a:d7:96:ea:54:c8: a3:0a:66:32:cf:3e:f5:a4:86:98:dc:8a:2c:a7:8d: 45:1c:53:ca:4a:39:33:9d:13:43:1b:6b:d7:4b:6f: 79:db:e7:db:ce:47:dd:0d:e8:d6:2a:59:be:be:41: 63:58:f9:b6:e4:74:97:62:0c:43:5d:a2:fd:fc:02: 92:73:9e:6d:2e:48:4d:d1:6e:46:f7:2b:43:12:02: ed:bd:3e:fc:1d:2d:3a:c4:e9:1a:2a:08:53:6f:b0: 39:bc:3f:ea:fc:e0:ba:a0:11:ef:01:8d:2d:48:43: b5:9a:a5:27:cb:dc:19:49:6e:e5:0d:76:d5:d9:27: 01:29:b3:24:81:25:af:67:aa:4f:5f:19:63:99:55: f1:07:ac:4d:11:46:8f:fd:2f:ca:45:8b:30:43:6e: 4b:fa:5c:97:01:e8:09:55:1a:f7:cf:d3:37:4d:9d: ef:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DB:AB:4E:5C:58:7B:E0:64:86:53:52:64:59:E7:D1:A4:E9:39:75 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:2b:7b:ca:82:db:99:a9:aa:b4:79:59:5f:93:e6:cc:61:59: 68:3c:10:c4:23:18:38:e5:c6:41:f6:00:98:79:17:42:b2:04: 52:a0:d4:32:fd:0e:6a:80:18:bf:70:bb:fd:50:d6:25:4c:26: 89:d7:c4:64:82:41:62:77:6f:14:8a:e1:78:2c:8e:b0:03:bc: 7e:97:97:64:4e:84:38:cd:51:bb:7d:3e:0f:c1:4b:60:e5:17: e5:c7:84:76:34:40:07:a4:f8:59:fc:aa:8f:19:7a:7e:da:ca: 3c:dc:ac:f9:06:ff:df:bf:12:43:81:83:65:a6:f1:f7:47:7a: dc:2a:af:ed:b1:16:4d:e5:6f:f6:c3:a6:f4:e1:7c:00:7b:04: a1:33:f7:63:c1:ce:8d:9e:52:a6:e0:52:a1:16:46:55:81:c7: b4:25:bb:e7:46:34:a8:25:33:49:a7:0e:a7:aa:61:80:cd:6f: 6e:93:41:be:22:e1:c3:c1:0f:3d:10:57:fc:45:dc:34:0e:4f: da:96:f6:60:db:dc:cc:7e:05:19:47:ca:ee:35:c7:46:b4:c1: 33:cf:28:c4:04:67:2d:61:cb:7e:17:fe:99:2b:63:d4:4d:76: cc:b8:5b:f2:b7:2b:f5:f8:91:1f:c2:3b:07:87:38:e2:c6:22: 62:5b:d7:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUwNjMwMjI1MjI5WhcNMjUwNzA3MjI1MjI5WjAYMRYwFAYD VQQDEw02ODYzMTUyZS02YTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmpj7BeQqv/Fp2Bi9Xp2aFpKbf743zfhm5LEkh9qh+UtBPpCT+B68XvKluQIC D+WkMt1iwT6fWxnpr/0hp9AkhRpGDS07qvkvrp28BPauyG1q3A4q15bqVMijCmYy zz71pIaY3Iosp41FHFPKSjkznRNDG2vXS2952+fbzkfdDejWKlm+vkFjWPm25HSX YgxDXaL9/AKSc55tLkhN0W5G9ytDEgLtvT78HS06xOkaKghTb7A5vD/q/OC6oBHv AY0tSEO1mqUny9wZSW7lDXbV2ScBKbMkgSWvZ6pPXxljmVXxB6xNEUaP/S/KRYsw Q25L+lyXAegJVRr3z9M3TZ3vMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvbq05c WHvgZIZTUmRZ59Gk6Tl1MB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUK3vKgtuZqaq0eVlfk+bMYVloPBDEIxg45cZB9gCYeRdCsgRSoNQy /Q5qgBi/cLv9UNYlTCaJ18RkgkFid28UiuF4LI6wA7x+l5dkToQ4zVG7fT4PwUtg 5Rflx4R2NEAHpPhZ/KqPGXp+2so83Kz5Bv/fvxJDgYNlpvH3R3rcKq/tsRZN5W/2 w6b04XwAewShM/djwc6NnlKm4FKhFkZVgce0JbvnRjSoJTNJpw6nqmGAzW9uk0G+ IuHDwQ89EFf8Rdw0Dk/alvZg29zMfgUZR8ruNcdGtMEzzyjEBGctYct+F/6ZK2PU TXbMuFvytyv1+JEfwjsHhzjixiJiW9e6 -----END CERTIFICATE-----Generated at Wed Jul 2 19:08:08 2025 by rpki-client