$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: K+rziiZHG/ECnKsDYxbJhfsmQD51HwAMOlw5i0rS4sw= Subject key identifier: 0A:24:25:F6:A1:B6:97:93:93:F5:00:47:79:BF:CD:9C:C6:8D:14:1C Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 349A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 349A Signing time: Wed 02 Jul 2025 14:40:32 +0000 Manifest this update: Wed 02 Jul 2025 14:40:32 +0000 Manifest next update: Wed 09 Jul 2025 14:40:32 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: Ci9/8P0IA6GdQPL69CXycFoEQxhTVH5silfHIY6R9Dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13466 (0x349a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Jul 2 14:40:32 2025 GMT Not After : Jul 9 14:40:32 2025 GMT Subject: CN=686544e0-a15c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:26:14:0f:61:a4:5c:dc:27:1f:94:3c:ac:c3: ff:cd:0f:56:a0:05:09:50:c3:d3:1c:ee:cb:24:20: 25:c0:e7:d1:74:4c:38:45:38:99:48:3f:c7:f6:f9: ee:f0:c0:a8:54:06:62:f4:1f:79:be:53:93:d9:f0: 45:cc:4c:a4:0a:23:4e:72:75:f7:f4:3f:5c:87:14: 1c:b2:d8:f4:9f:99:fd:16:30:48:40:18:19:22:7c: 3a:b0:e4:7d:a3:67:51:7d:ee:42:80:a0:1e:5b:a4: 1a:82:59:1b:67:ee:47:48:1e:81:af:21:fd:fb:31: cf:11:1f:e8:a5:71:86:70:af:ea:72:11:e8:af:77: d2:a7:25:a6:ae:8d:a8:88:5d:26:28:18:ca:69:99: d7:6c:b1:7e:23:0c:6a:59:a4:df:cd:d1:3d:c1:74: 3a:32:2f:ca:fe:16:72:66:2c:36:94:46:70:11:79: 5c:0c:c8:8e:83:8a:93:4a:91:1a:67:ab:3a:8a:26: 87:20:ad:58:40:86:71:5c:93:44:83:c2:f1:06:94: fb:9b:f6:05:84:b8:ab:ea:9f:f8:fd:6e:58:04:44: b0:24:39:69:d8:ef:7d:89:f9:28:8e:9c:bc:09:ed: 10:14:92:83:11:0d:08:92:fc:a0:e1:71:57:6b:34: 82:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:24:25:F6:A1:B6:97:93:93:F5:00:47:79:BF:CD:9C:C6:8D:14:1C X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b3:38:60:24:ae:30:7e:50:6c:af:2b:46:e7:f9:78:c7:87: 97:a0:99:85:fc:fa:64:a3:ba:e0:60:67:c5:a8:58:87:e3:80: 04:dc:eb:ab:9a:ac:10:e7:2e:13:c6:7b:f1:58:98:30:ff:f8: 9a:c1:07:da:d8:2d:df:15:2b:2d:31:c8:16:ad:b5:54:e9:c1: b9:11:76:21:d7:45:5e:b0:68:3f:0c:63:7a:be:0c:d2:8a:d0: 42:ff:15:3b:54:ab:b0:c9:ed:e1:73:c6:cf:21:c0:af:7a:6b: 5e:da:2e:b4:c5:63:44:c9:b5:2b:f9:f8:f2:61:9c:04:f7:06: d7:fb:48:93:12:54:24:f2:72:89:83:e7:ae:38:03:13:04:7e: 19:f5:19:8c:0e:bd:0b:20:e9:ba:17:20:9e:d5:59:d7:17:37: 68:f0:36:1e:1d:6a:ea:74:f1:33:47:69:51:21:41:2f:2e:82: ec:cb:44:6d:b5:a5:9d:1a:2f:99:ba:c9:08:87:d0:6b:d4:26: 10:f9:a5:b3:20:0d:cc:4f:24:d6:47:eb:c5:61:1a:28:83:0a: 71:9d:79:61:2f:90:a4:f8:e4:ba:c5:5d:a3:15:e2:28:a7:d5: e4:7a:9b:11:65:6d:47:fe:14:ad:10:a6:1f:e9:24:e6:25:21: 56:18:22:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjUwNzAyMTQ0MDMyWhcNMjUwNzA5MTQ0MDMyWjAYMRYwFAYD VQQDEw02ODY1NDRlMC1hMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yYUD2GkXNwnH5Q8rMP/zQ9WoAUJUMPTHO7LJCAlwOfRdEw4RTiZSD/H9vnu 8MCoVAZi9B95vlOT2fBFzEykCiNOcnX39D9chxQcstj0n5n9FjBIQBgZInw6sOR9 o2dRfe5CgKAeW6QaglkbZ+5HSB6BryH9+zHPER/opXGGcK/qchHor3fSpyWmro2o iF0mKBjKaZnXbLF+IwxqWaTfzdE9wXQ6Mi/K/hZyZiw2lEZwEXlcDMiOg4qTSpEa Z6s6iiaHIK1YQIZxXJNEg8LxBpT7m/YFhLir6p/4/W5YBESwJDlp2O99ifkojpy8 Ce0QFJKDEQ0Ikvyg4XFXazSC5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAokJfah tpeTk/UAR3m/zZzGjRQcMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOszhgJK4wflBsrytG5/l4x4eXoJmF/Ppko7rgYGfFqFiH44AE3Our mqwQ5y4TxnvxWJgw//iawQfa2C3fFSstMcgWrbVU6cG5EXYh10VesGg/DGN6vgzS itBC/xU7VKuwye3hc8bPIcCvemte2i60xWNEybUr+fjyYZwE9wbX+0iTElQk8nKJ g+euOAMTBH4Z9RmMDr0LIOm6FyCe1VnXFzdo8DYeHWrqdPEzR2lRIUEvLoLsy0Rt taWdGi+ZuskIh9Br1CYQ+aWzIA3MTyTWR+vFYRoogwpxnXlhL5Ck+OS6xV2jFeIo p9XkepsRZW1H/hStEKYf6STmJSFWGCL+ -----END CERTIFICATE-----Generated at Thu Jul 3 23:50:37 2025 by rpki-client