$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: Tc9PM+7oa44MiWrFcnWMVCxwWGonhA+D9IjQVItc9I0= Subject key identifier: 75:4C:F4:4E:72:C3:6B:B7:67:87:4C:BC:15:7C:02:E8:FC:E7:49:11 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BD9 Signing time: Wed 02 Jul 2025 19:04:01 +0000 Manifest this update: Wed 02 Jul 2025 19:04:00 +0000 Manifest next update: Wed 09 Jul 2025 19:04:00 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: 4Rf9IxrQvTAEMuCejkJmsfWmu6fGQvAI7Zea5geo59k=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Jul 2 19:04:00 2025 GMT Not After : Jul 9 19:04:00 2025 GMT Subject: CN=686582a0-7d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7b:30:bb:89:18:55:ce:68:e0:e1:0e:f6:c2: be:fe:4a:d0:f6:78:5c:e0:28:96:9d:1c:bb:71:11: 26:2f:4a:ce:a8:5d:61:54:17:c1:2b:a5:f4:3e:92: a0:04:63:07:32:6e:33:a1:e8:29:08:0a:dd:6a:81: 4c:5a:b4:90:1e:72:a6:be:7e:6c:29:74:e5:2a:a2: 1b:84:4c:db:4b:7f:63:f2:de:54:b1:de:9c:74:8e: be:cf:a9:c4:0a:7e:78:fa:5c:d6:0e:04:8b:60:30: 6f:4d:20:0b:6c:ee:48:24:cd:95:65:ba:9a:b6:90: 77:48:62:c3:21:5c:f6:30:9e:92:d0:39:1a:37:01: 18:87:36:44:74:6c:90:cf:02:6b:29:18:0f:bf:8b: 16:d0:02:23:03:89:9c:82:91:dc:cf:fb:b3:5f:51: 90:51:67:8c:8b:bd:d2:11:37:e3:15:6e:d6:2e:b0: 90:1d:13:3f:69:e7:07:c9:06:44:68:61:95:4f:5c: 4f:e5:fb:e4:ea:3b:0d:bb:21:4d:c8:08:d8:77:84: 43:c3:98:d6:3a:d4:9c:a1:28:ad:aa:b3:1f:ff:32: ac:a5:5e:9d:4a:e2:c2:48:f5:ba:8b:e3:e7:dd:78: 9e:92:81:72:ce:4f:5a:9c:0e:f7:3d:fb:8d:f8:9f: bd:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4C:F4:4E:72:C3:6B:B7:67:87:4C:BC:15:7C:02:E8:FC:E7:49:11 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:7a:5d:6f:a1:9b:ac:5a:4c:e8:4c:ac:9c:d7:82:f8:e1:51: 8e:a8:b7:fa:87:41:82:90:d7:16:eb:a0:97:34:aa:74:74:c1: 86:ce:ff:99:d8:49:f3:3d:53:48:a2:6a:1c:ac:e1:24:ba:c3: 07:03:fb:15:2a:e0:d2:79:9d:c2:fb:bd:0b:b9:c7:2e:f8:15: fe:d6:2f:00:ce:ed:ea:96:92:52:a6:99:3a:d1:ce:fa:af:57: 82:d8:87:af:96:02:90:fc:e5:b2:4d:b9:a0:d5:ae:ad:d9:75: 45:5a:a6:43:d3:16:47:d0:d4:e7:40:0c:50:67:ce:85:08:8b: 3b:d4:30:53:64:a1:1e:cc:11:7a:83:d8:5a:d7:ab:40:00:c8: 35:19:ad:02:63:3f:69:d9:b7:3a:9e:c7:20:ea:5a:4c:3f:7c: 19:e2:3a:fc:a3:7e:2f:78:e1:23:3a:0a:ed:df:5b:e8:e5:1c: f1:62:fb:5c:c8:ba:94:ed:05:13:c5:a1:79:2f:02:2d:63:26: 31:b1:2b:1b:48:36:72:38:25:3b:8c:85:4e:fd:12:ae:dc:57: 4e:11:fd:d4:a2:23:6a:7a:aa:f7:cf:72:62:51:2c:81:04:f5: 84:57:df:8c:2c:ae:37:6d:72:8a:a8:88:f9:32:42:11:8a:59: 61:b1:e5:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwNzAyMTkwNDAwWhcNMjUwNzA5MTkwNDAwWjAYMRYwFAYD VQQDEw02ODY1ODJhMC03ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3swu4kYVc5o4OEO9sK+/krQ9nhc4CiWnRy7cREmL0rOqF1hVBfBK6X0PpKg BGMHMm4zoegpCArdaoFMWrSQHnKmvn5sKXTlKqIbhEzbS39j8t5Usd6cdI6+z6nE Cn54+lzWDgSLYDBvTSALbO5IJM2VZbqatpB3SGLDIVz2MJ6S0DkaNwEYhzZEdGyQ zwJrKRgPv4sW0AIjA4mcgpHcz/uzX1GQUWeMi73SETfjFW7WLrCQHRM/aecHyQZE aGGVT1xP5fvk6jsNuyFNyAjYd4RDw5jWOtScoSitqrMf/zKspV6dSuLCSPW6i+Pn 3XiekoFyzk9anA73PfuN+J+90wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVM9E5y w2u3Z4dMvBV8Auj850kRMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFel1voZusWkzoTKyc14L44VGOqLf6h0GCkNcW66CXNKp0dMGGzv+Z 2EnzPVNIomocrOEkusMHA/sVKuDSeZ3C+70Luccu+BX+1i8Azu3qlpJSppk60c76 r1eC2IevlgKQ/OWyTbmg1a6t2XVFWqZD0xZH0NTnQAxQZ86FCIs71DBTZKEezBF6 g9ha16tAAMg1Ga0CYz9p2bc6nscg6lpMP3wZ4jr8o34veOEjOgrt31vo5RzxYvtc yLqU7QUTxaF5LwItYyYxsSsbSDZyOCU7jIVO/RKu3FdOEf3UoiNqeqr3z3JiUSyB BPWEV9+MLK43bXKKqIj5MkIRillhseVp -----END CERTIFICATE-----Generated at Fri Jul 4 14:54:31 2025 by rpki-client