$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json) Hash identifier: EsGiqPsXXEzqoAecWxpghAowGnEXgmzXAV1h1MOLyY8= Subject key identifier: 1E:79:B3:5C:6B:A1:EA:90:9E:F1:95:4E:32:97:0C:87:3C:2E:9C:07 Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft Manifest number: 01BB Signing time: Thu 03 Jul 2025 03:16:08 +0000 Manifest this update: Thu 03 Jul 2025 03:16:07 +0000 Manifest next update: Thu 10 Jul 2025 03:16:07 +0000 Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: pIOHc12daHc+2GIaSyUeNTJAbY67Hlnd7kWc6q1V21E=) 2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: li4OxnhOQgQRujPF67sN5Xz793LOnzHpSZGFaFwRWYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC, serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: Jul 3 03:16:07 2025 GMT Not After : Jul 10 03:16:07 2025 GMT Subject: CN=6865f5f7-1d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:15:e3:b4:a9:43:4c:f2:00:16:26:0a:3f:5a: d4:40:56:1d:5c:5a:4f:bf:a6:62:af:57:bc:90:d0: 0f:6e:6c:b6:7d:5c:ae:eb:75:9a:07:75:2f:e9:3a: 73:55:41:ea:c8:d6:e6:ab:41:93:08:bf:f5:c0:43: a0:7f:97:12:6f:64:1c:fe:c8:84:c4:60:af:4d:27: 3f:0e:0e:55:a9:f3:f3:e3:fe:76:df:28:b5:b3:50: 09:00:00:c2:ad:9a:40:87:d8:59:c8:7b:4d:be:76: 95:75:30:74:55:10:b9:a6:53:e7:47:0f:a3:9a:7c: b4:30:ef:28:c2:57:ab:ec:48:e0:63:f1:37:89:b8: 63:a2:c5:1f:67:36:19:6d:0a:5e:16:b1:e3:20:f3: df:70:b9:63:55:a0:fe:fb:b9:29:9b:3f:81:2b:97: 3c:73:3f:8b:3a:41:af:e2:64:97:91:a5:fd:4f:8c: 8c:d2:ef:e7:5f:48:cb:10:02:9b:0e:62:96:9c:d0: 79:b2:7d:88:b2:7a:20:55:2c:86:63:4f:59:df:99: b7:2c:44:0d:f8:8b:34:16:fa:41:64:7a:af:bb:23: 5f:6f:6d:ef:ce:5f:3f:c6:cb:36:4a:32:72:3f:ff: 6c:18:ce:42:2d:ac:b0:aa:29:7b:a1:fd:30:ce:da: a6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:79:B3:5C:6B:A1:EA:90:9E:F1:95:4E:32:97:0C:87:3C:2E:9C:07 X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d5:cc:86:9f:6f:df:53:71:85:47:9e:51:cc:85:60:d7:de: e2:bc:69:df:57:59:0a:45:72:cb:96:a4:7a:13:84:11:9a:f4: 0b:18:1d:ee:0f:04:e6:54:f9:7b:d8:dc:c6:bf:95:95:45:8c: b7:5b:60:4b:d8:74:5c:8f:ad:46:09:ba:9a:de:c3:0e:e5:76: 99:fa:7e:6b:ac:25:36:c9:c7:72:14:59:34:de:1f:9d:fe:6c: a0:22:ac:b4:fe:83:2f:a5:d7:a6:e0:46:c9:3a:47:2b:e2:45: 69:aa:22:bb:22:d4:db:2d:c3:c9:19:b4:8c:b9:b9:41:48:b8: 0d:44:c1:97:dc:33:cf:c0:95:b2:3b:a2:dd:19:39:dc:89:ce: 08:40:9f:15:6e:0c:9c:63:7c:d2:7c:97:c6:9b:4b:b4:99:82: 1c:3f:cc:4a:0e:74:77:68:39:fa:99:00:17:e9:f7:98:21:86: 2b:31:58:b8:83:ca:24:94:fb:82:5c:c6:c2:bf:02:47:60:73: de:53:35:40:13:b0:52:2a:8b:00:81:45:71:ff:fc:5c:f0:4e: dc:4c:3f:8f:fe:d7:b8:e2:bc:c7:f5:37:8a:40:da:44:9c:bf: 16:6e:a9:38:4b:ef:07:81:07:a5:07:1f:96:9f:d3:3e:42:c2: 4c:17:e7:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjUwNzAzMDMxNjA3WhcNMjUwNzEwMDMxNjA3WjAYMRYwFAYD VQQDEw02ODY1ZjVmNy0xZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhXjtKlDTPIAFiYKP1rUQFYdXFpPv6Zir1e8kNAPbmy2fVyu63WaB3Uv6Tpz VUHqyNbmq0GTCL/1wEOgf5cSb2Qc/siExGCvTSc/Dg5VqfPz4/523yi1s1AJAADC rZpAh9hZyHtNvnaVdTB0VRC5plPnRw+jmny0MO8owler7EjgY/E3ibhjosUfZzYZ bQpeFrHjIPPfcLljVaD++7kpmz+BK5c8cz+LOkGv4mSXkaX9T4yM0u/nX0jLEAKb DmKWnNB5sn2IsnogVSyGY09Z35m3LEQN+Is0FvpBZHqvuyNfb23vzl8/xss2SjJy P/9sGM5CLaywqil7of0wztqmDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB55s1xr oeqQnvGVTjKXDIc8LpwHMB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFCQy9EOTQyMDA3NkM0RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFD a2pTbDlVeFNPN1FldS1oNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu1cyGn2/fU3GFR55RzIVg197ivGnfV1kKRXLLlqR6E4QRmvQLGB3u DwTmVPl72NzGv5WVRYy3W2BL2HRcj61GCbqa3sMO5XaZ+n5rrCU2ycdyFFk03h+d /mygIqy0/oMvpdem4EbJOkcr4kVpqiK7ItTbLcPJGbSMublBSLgNRMGX3DPPwJWy O6LdGTncic4IQJ8VbgycY3zSfJfGm0u0mYIcP8xKDnR3aDn6mQAX6feYIYYrMVi4 g8oklPuCXMbCvwJHYHPeUzVAE7BSKosAgUVx//xc8E7cTD+P/te44rzH9TeKQNpE nL8Wbqk4S+8HgQelBx+Wn9M+QsJMF+cd -----END CERTIFICATE-----Generated at Thu Jul 3 06:05:25 2025 by rpki-client