$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: edJapuGAwdLVpZTeHrf7AgDWQ+MyPhH/smL38a4pehg= Subject key identifier: C9:57:9F:37:92:31:FB:38:B8:22:47:D5:94:92:45:31:C0:23:CD:B3 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: C5 Signing time: Thu 03 Jul 2025 05:57:27 +0000 Manifest this update: Thu 03 Jul 2025 05:57:26 +0000 Manifest next update: Thu 10 Jul 2025 05:57:26 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: zQ8UKcFPaALZOkyyxvYlazhuxGVvKgdRpm3l/I34KEI=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Jul 3 05:57:26 2025 GMT Not After : Jul 10 05:57:26 2025 GMT Subject: CN=68661bc6-7a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:73:25:db:0b:80:1d:79:58:59:c1:3f:df:1e: 14:89:b1:79:15:00:e8:0f:a6:83:74:88:ec:70:66: c1:65:c3:07:5c:40:34:d0:97:ea:82:81:e5:84:41: 31:57:7c:e5:bc:af:f9:36:9c:10:a2:c5:3b:c0:28: 50:ef:91:89:46:66:5e:c3:4b:de:c4:76:fd:15:05: dd:d5:c3:75:68:46:37:16:57:48:23:ad:6a:3f:f3: ef:e1:22:6b:c6:64:26:e3:79:58:a7:47:67:78:38: 80:ba:41:cd:6b:79:98:ab:57:dd:aa:4b:85:f6:6c: bf:32:9b:71:01:64:cb:d9:d3:c9:2c:74:a8:97:5d: 7c:06:fa:57:13:89:3d:b5:9e:be:13:6c:74:10:39: 5f:ff:2a:34:c5:26:37:11:bc:47:b3:76:f0:1c:6a: 35:b5:fa:eb:2f:2f:07:90:6d:77:61:c6:06:23:69: f5:3c:5a:17:0c:9e:5e:aa:b2:fb:dd:8f:69:24:df: 51:34:ae:52:1e:7f:1f:d9:94:20:78:e5:49:d9:e8: 2d:dd:56:f1:0d:29:1b:d1:c1:6f:db:1a:9b:e5:d9: 9c:16:cc:e4:6f:7f:94:79:93:65:21:f0:ca:2b:03: c2:66:d7:03:8e:c4:27:10:d7:94:7b:bf:c9:14:d8: 7a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:57:9F:37:92:31:FB:38:B8:22:47:D5:94:92:45:31:C0:23:CD:B3 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:dd:22:cf:fa:bc:5b:37:14:c8:74:04:93:e5:61:e1:f2:8d: 6f:8d:32:a3:bb:a2:c3:eb:5f:cd:8e:c2:a1:19:db:9e:d7:9b: f7:11:7f:8c:c2:9c:2b:0c:63:48:20:d5:62:2a:0c:61:c4:f6: 0a:57:fa:fc:61:1f:f1:66:07:1c:c3:bf:23:4d:b2:4f:eb:24: 30:1b:cc:3f:af:e9:74:b9:b1:3a:22:e1:f2:73:48:e0:af:09: 49:b1:e5:68:a1:3b:bd:38:5c:ec:c8:38:d9:a8:2e:38:91:af: fa:34:ca:0b:cb:8c:da:a7:71:9a:57:df:96:44:c2:0b:a1:88: ce:f1:e0:dc:ed:e3:42:f7:f0:b4:a3:6e:30:44:b2:29:64:35: 0e:e0:8c:4b:b8:b1:a6:f9:1e:9b:90:0e:28:75:5d:64:20:11: bb:4a:24:5b:20:82:33:f5:f3:c1:0d:7d:37:28:ae:d6:7e:ed: 9b:3f:72:6f:32:e5:35:18:27:4f:1c:90:e7:99:aa:8a:ca:9b: 51:fe:26:98:49:e5:b0:18:01:2e:d7:21:39:48:1b:e0:96:75: 07:cc:9b:8e:43:2a:5e:a1:99:ce:d5:45:9e:a8:44:14:5b:42: 55:0f:40:49:21:86:83:c3:45:3e:57:b7:f0:1f:6b:9b:06:3c: a2:13:94:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwNzAzMDU1NzI2WhcNMjUwNzEwMDU1NzI2WjAYMRYwFAYD VQQDEw02ODY2MWJjNi03YTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XMl2wuAHXlYWcE/3x4UibF5FQDoD6aDdIjscGbBZcMHXEA00JfqgoHlhEEx V3zlvK/5NpwQosU7wChQ75GJRmZew0vexHb9FQXd1cN1aEY3FldII61qP/Pv4SJr xmQm43lYp0dneDiAukHNa3mYq1fdqkuF9my/MptxAWTL2dPJLHSol118BvpXE4k9 tZ6+E2x0EDlf/yo0xSY3EbxHs3bwHGo1tfrrLy8HkG13YcYGI2n1PFoXDJ5eqrL7 3Y9pJN9RNK5SHn8f2ZQgeOVJ2egt3VbxDSkb0cFv2xqb5dmcFszkb3+UeZNlIfDK KwPCZtcDjsQnENeUe7/JFNh6AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlXnzeS Mfs4uCJH1ZSSRTHAI82zMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA3SLP+rxbNxTIdAST5WHh8o1vjTKju6LD61/NjsKhGdue15v3EX+M wpwrDGNIINViKgxhxPYKV/r8YR/xZgccw78jTbJP6yQwG8w/r+l0ubE6IuHyc0jg rwlJseVooTu9OFzsyDjZqC44ka/6NMoLy4zap3GaV9+WRMILoYjO8eDc7eNC9/C0 o24wRLIpZDUO4IxLuLGm+R6bkA4odV1kIBG7SiRbIIIz9fPBDX03KK7Wfu2bP3Jv MuU1GCdPHJDnmaqKyptR/iaYSeWwGAEu1yE5SBvglnUHzJuOQypeoZnO1UWeqEQU W0JVD0BJIYaDw0U+V7fwH2ubBjyiE5R8 -----END CERTIFICATE-----Generated at Thu Jul 3 23:21:41 2025 by rpki-client