$ rpki-client -vvf rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft File: QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft (raw, json) Hash identifier: lakh/IV6cErxXph2JkvGxPpSAz1uxrSrnxZOuAeOHrQ= Subject key identifier: 92:A1:9F:56:75:D5:1A:25:75:7C:C8:ED:F9:41:DB:19:26:C2:C4:CA Authority key identifier: 42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE Certificate issuer: /CN=A912087D/serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft Manifest number: 0240 Signing time: Tue 01 Jul 2025 02:34:38 +0000 Manifest this update: Tue 01 Jul 2025 02:34:37 +0000 Manifest next update: Tue 08 Jul 2025 02:34:37 +0000 Files and hashes: 1: QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl (hash: hOEciGutCQ7AiKiEJNjyMzTtgRoOZ3I8TJkp0FTXeTU=) 2: 07E789A228F011ED94BE9345C4F9AE02.roa (hash: jWdCBukfmwdIx7AmCNNn8IWevCXBAGWSyySXEJZ9MpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912087D, serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Validity Not Before: Jul 1 02:34:37 2025 GMT Not After : Jul 8 02:34:37 2025 GMT Subject: CN=6863493d-1794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4a:7e:94:a7:1f:5b:61:80:d8:0f:35:99:24: bf:95:c4:66:2e:19:ac:73:64:ac:01:72:33:4a:8f: fa:49:07:e0:27:ce:21:76:a1:ec:70:08:6c:b5:15: 82:ce:fc:f3:db:56:96:c9:42:75:76:18:8b:b5:f9: 07:a4:0d:fe:bd:64:47:6f:2e:a3:8a:ff:35:c3:46: 72:f0:fa:fc:c7:6d:69:83:71:1c:5e:9e:19:f5:cf: 6e:08:9d:31:05:bb:4a:72:12:4d:00:be:c1:a9:9a: 68:58:fc:ef:cb:4d:9e:00:d6:8c:d1:10:fd:f8:c4: 81:3a:c4:00:43:a3:5d:72:3e:b7:d0:a5:ef:5e:83: de:0c:58:68:4a:06:2c:a1:ff:a1:51:ee:a0:e0:9c: 90:bd:3e:fe:4f:ca:ae:dd:41:ff:4b:59:32:67:20: 57:8b:b8:62:fd:0c:97:a0:d7:4e:74:1a:ca:29:10: e0:8e:45:47:87:66:10:7e:15:49:29:c2:e1:f1:5c: a5:a7:a4:4f:23:89:fe:72:4a:d9:26:17:35:8b:a0: 46:57:91:6d:53:a1:8b:69:82:86:2f:c7:35:54:1b: a4:0d:01:ee:73:29:f7:05:f8:82:e7:02:72:dd:c0: 6b:3e:a0:c7:34:9b:7f:4f:74:8f:1d:d2:9c:d9:10: 72:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A1:9F:56:75:D5:1A:25:75:7C:C8:ED:F9:41:DB:19:26:C2:C4:CA X509v3 Authority Key Identifier: keyid:42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:79:9b:e6:50:8e:8f:2f:fc:4b:0b:6b:dd:22:33:59:6e:18: a9:93:5d:9b:dc:c8:70:01:b3:8b:9b:ab:ab:8a:c0:e4:1f:0c: 5e:0b:1b:66:35:41:09:45:e4:1a:9f:80:b3:5b:4d:eb:a8:73: 66:a7:03:f1:28:a9:b5:b9:33:5c:4b:c4:43:54:81:bb:71:ea: 6e:58:59:8d:ba:f1:93:aa:62:8d:3f:ac:d5:d0:ce:12:c4:7d: b1:5a:81:48:18:8e:c4:1f:25:23:33:e5:ff:48:bc:53:43:bb: 18:fa:0d:31:ab:86:22:0f:a6:7b:c6:54:b1:3d:3e:67:fc:14: d4:b6:30:ff:af:ba:62:16:41:7c:e1:a4:4c:19:a9:39:4c:fc: 44:99:fb:e5:31:56:8b:1d:d9:cb:a7:51:7e:ff:25:51:df:39: c4:88:11:04:f0:ad:8a:c5:11:c8:48:37:42:66:db:bd:ef:fe: b5:aa:a4:76:44:75:3e:47:be:a0:ac:19:0c:92:04:40:58:c4: f6:8c:28:c7:f4:5b:d2:dd:14:ee:52:18:4c:df:cd:a4:6c:d3: 1f:63:d2:8e:0e:d1:02:cd:09:34:f4:6f:c6:fb:ab:e8:0a:40: df:8e:e9:87:93:e8:9d:4d:bf:76:80:32:e5:92:88:a4:2d:36: 28:bc:39:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA4N0QxMTAvBgNVBAUTKDQyQTg0RDhDMDg4OUFEQzU1ODYwNjYzOTkzQkNDQTgz NjEyNzFCRkUwHhcNMjUwNzAxMDIzNDM3WhcNMjUwNzA4MDIzNDM3WjAYMRYwFAYD VQQDEw02ODYzNDkzZC0xNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Ep+lKcfW2GA2A81mSS/lcRmLhmsc2SsAXIzSo/6SQfgJ84hdqHscAhstRWC zvzz21aWyUJ1dhiLtfkHpA3+vWRHby6jiv81w0Zy8Pr8x21pg3EcXp4Z9c9uCJ0x BbtKchJNAL7BqZpoWPzvy02eANaM0RD9+MSBOsQAQ6Ndcj630KXvXoPeDFhoSgYs of+hUe6g4JyQvT7+T8qu3UH/S1kyZyBXi7hi/QyXoNdOdBrKKRDgjkVHh2YQfhVJ KcLh8Vylp6RPI4n+ckrZJhc1i6BGV5FtU6GLaYKGL8c1VBukDQHucyn3BfiC5wJy 3cBrPqDHNJt/T3SPHdKc2RBy1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKhn1Z1 1RoldXzI7flB2xkmwsTKMB8GA1UdIwQYMBaAFEKoTYwIia3FWGBmOZO8yoNhJxv+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDg3RC80QzE1ODU4QzI4 RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJjVllZR1k1azd6S2cyRW5H XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxaE5qQWlKcmNWWVlHWTVrN3pLZzJFbkdfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDg3RC80QzE1ODU4QzI4RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJj VllZR1k1azd6S2cyRW5HXzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDeZvmUI6PL/xLC2vdIjNZbhipk12b3MhwAbOLm6urisDkHwxeCxtm NUEJReQan4CzW03rqHNmpwPxKKm1uTNcS8RDVIG7cepuWFmNuvGTqmKNP6zV0M4S xH2xWoFIGI7EHyUjM+X/SLxTQ7sY+g0xq4YiD6Z7xlSxPT5n/BTUtjD/r7piFkF8 4aRMGak5TPxEmfvlMVaLHdnLp1F+/yVR3znEiBEE8K2KxRHISDdCZtu97/61qqR2 RHU+R76grBkMkgRAWMT2jCjH9FvS3RTuUhhM382kbNMfY9KODtECzQk09G/G+6vo CkDfjumHk+idTb92gDLlkoikLTYovDmk -----END CERTIFICATE-----Generated at Thu Jul 3 02:06:48 2025 by rpki-client