$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: iuHkb0NbFIRudt/K9i94jrVIGvGxfkxLTxCOb630zsU= Subject key identifier: 92:24:C9:2C:A4:01:0D:E5:5C:9A:C8:11:E0:9D:61:C3:2D:52:66:EE Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 5A Signing time: Thu 03 Jul 2025 07:22:27 +0000 Manifest this update: Thu 03 Jul 2025 07:22:27 +0000 Manifest next update: Thu 10 Jul 2025 07:22:27 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: T4NcUMYpxdyHs9H46nbYFhdpjHSLdbFY2xwLtnwBQoo=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Jul 3 07:22:27 2025 GMT Not After : Jul 10 07:22:27 2025 GMT Subject: CN=68662fb3-05ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b2:43:10:2f:c5:1a:0d:63:8e:88:f7:05:7a: 16:20:8b:c6:c2:fc:e0:c4:3d:8b:4f:a4:25:09:9c: a9:38:aa:02:a1:62:78:5c:f6:6a:d6:5a:5c:dd:4c: 49:39:3e:4f:93:79:0d:d6:45:d8:d5:03:c8:c1:72: 7a:ca:2e:7d:22:3c:01:ad:a3:12:cc:d4:9e:5c:ad: d5:6f:cf:a7:52:cb:96:1e:af:5d:cd:95:7f:12:af: 5d:be:83:4d:f5:34:a6:24:b3:a5:6a:eb:04:9c:db: 31:a4:6f:5f:44:78:38:79:6e:9e:d8:5e:1d:fb:25: 8e:b1:10:9b:ae:eb:d1:18:8f:d9:67:a5:19:90:df: be:72:f9:85:24:bc:5f:b1:b8:b6:66:41:0b:7e:e9: 2d:54:93:50:f8:ed:85:68:21:c9:30:cf:e5:13:d7: bc:3b:d9:df:11:36:8b:8f:91:86:8d:6b:eb:f8:cb: 6e:c5:12:a0:ca:62:2c:cb:dd:87:6e:c1:e6:4b:b5: 59:a8:d9:de:80:2b:e9:03:6b:02:ed:61:88:96:c5: 5c:43:4b:2f:c4:ca:0d:f0:e9:09:85:ea:d9:83:c0: e2:b4:98:80:1d:2d:89:63:db:c2:14:cc:65:d3:c3: 36:45:d0:35:ac:f0:96:40:18:ea:a8:93:03:e1:97: cd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:24:C9:2C:A4:01:0D:E5:5C:9A:C8:11:E0:9D:61:C3:2D:52:66:EE X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:9e:c6:ff:b1:f1:dc:a1:1f:c9:da:c5:2e:f9:2c:39:9a:a7: 7a:2d:5c:ff:cd:c2:8d:24:93:07:87:a4:93:9c:ef:bd:55:a9: bb:b7:84:33:e0:86:1d:44:df:7f:51:73:fa:e9:37:76:61:56: af:e4:78:21:e6:79:fb:71:8a:7d:9b:b1:0a:56:62:08:74:f8: 89:b6:58:2e:49:a0:ee:bb:fb:b0:16:36:3f:d0:29:78:94:a9: 02:3f:a8:1c:81:20:d5:37:15:11:f8:96:55:9c:96:91:72:50: e5:04:b7:48:4a:9d:b6:59:75:01:75:de:91:cb:8c:23:66:0b: f0:dd:b5:83:c3:c3:56:e9:02:d6:a4:5c:4f:ba:5e:61:87:e0: ac:54:8a:99:be:a9:af:70:04:43:de:f0:9d:0e:80:1f:db:2c: 26:58:4d:17:c3:2e:fa:f5:ee:bb:19:35:a6:00:b5:e8:3b:4a: d3:a9:55:b5:9a:da:30:05:89:0a:0d:29:5b:a6:55:9d:fe:f0: 0f:42:12:9f:6e:fb:b8:3f:bb:ab:2d:77:0e:e7:f5:a8:55:bd: 9a:89:50:a2:74:56:19:e3:55:00:38:76:0f:34:5f:dc:2e:d3: b8:8c:4e:bd:8c:66:de:ba:c6:d9:08:f5:a5:b5:a4:7e:8f:6c: f8:d8:55:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTA3MDMwNzIyMjdaFw0yNTA3MTAwNzIyMjdaMBgxFjAUBgNV BAMTDTY4NjYyZmIzLTA1YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChskMQL8UaDWOOiPcFehYgi8bC/ODEPYtPpCUJnKk4qgKhYnhc9mrWWlzdTEk5 Pk+TeQ3WRdjVA8jBcnrKLn0iPAGtoxLM1J5crdVvz6dSy5Yer13NlX8Sr12+g031 NKYks6Vq6wSc2zGkb19EeDh5bp7YXh37JY6xEJuu69EYj9lnpRmQ375y+YUkvF+x uLZmQQt+6S1Uk1D47YVoIckwz+UT17w72d8RNouPkYaNa+v4y27FEqDKYizL3Ydu weZLtVmo2d6AK+kDawLtYYiWxVxDSy/Eyg3w6QmF6tmDwOK0mIAdLYlj28IUzGXT wzZF0DWs8JZAGOqokwPhl83xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkiTJLKQB DeVcmsgR4J1hwy1SZu4wHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJGexv+x8dyhH8naxS75LDmap3otXP/Nwo0kkweHpJOc771Vqbu3hDPg hh1E339Rc/rpN3ZhVq/keCHmeftxin2bsQpWYgh0+Im2WC5JoO67+7AWNj/QKXiU qQI/qByBINU3FRH4llWclpFyUOUEt0hKnbZZdQF13pHLjCNmC/DdtYPDw1bpAtak XE+6XmGH4KxUipm+qa9wBEPe8J0OgB/bLCZYTRfDLvr17rsZNaYAteg7StOpVbWa 2jAFiQoNKVumVZ3+8A9CEp9u+7g/u6stdw7n9ahVvZqJUKJ0VhnjVQA4dg80X9wu 07iMTr2MZt66xtkI9aW1pH6PbPjYVfk= -----END CERTIFICATE-----Generated at Fri Jul 4 18:59:25 2025 by rpki-client