$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft File: Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft (raw, json) Hash identifier: VU/KaITzVraLJt1UWFH8VYnYuwz6B2Kfeh5N9jsjYNo= Subject key identifier: 60:1A:E6:18:78:60:90:4A:48:91:64:97:2C:4F:3D:9E:AB:A7:62:0E Authority key identifier: 42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 Certificate issuer: /CN=A914EAE4/serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Certificate serial: 1B20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft Manifest number: 1B1C Signing time: Wed 02 Jul 2025 16:25:38 +0000 Manifest this update: Wed 02 Jul 2025 16:25:38 +0000 Manifest next update: Wed 09 Jul 2025 16:25:38 +0000 Files and hashes: 1: Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl (hash: lPzMB7fs1w2j1b9sp0DMIK2frawpND7IzIRJY+pg3dI=) 2: 7E1ADD74E00E11EDA7E1B640C4F9AE02.roa (hash: l8rbVcrxpBL4K1nr5JzCpQg12eUyxOnsIOK36gYUlKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:25:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6944 (0x1b20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Validity Not Before: Jul 2 16:25:38 2025 GMT Not After : Jul 9 16:25:38 2025 GMT Subject: CN=68655d82-968d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:76:a7:ed:f6:9a:c7:ae:f1:b8:4f:1a:04:5d: ce:2b:2a:ab:81:aa:6b:07:6f:4a:53:3a:24:fe:5f: 70:8f:e8:86:1a:d4:cd:42:e2:f8:f4:1e:2b:f5:87: 92:09:58:48:c8:40:a1:ee:c1:1f:f0:57:ea:87:f7: f5:80:e4:61:1a:9f:f4:a2:04:e3:e8:20:33:84:b0: 33:c2:f4:08:00:09:aa:57:29:fc:cb:95:1e:e5:c0: 93:6c:55:49:dc:d6:e7:96:cd:56:b6:9b:8e:27:ca: 29:07:bf:99:72:f8:e9:83:56:cb:1a:33:82:20:b3: f0:f6:0e:55:0d:6f:b8:79:f0:75:26:9c:ea:44:bd: 55:05:2e:45:33:95:11:15:09:63:dc:23:f4:0a:57: 37:33:48:5a:8b:c2:5b:c1:f0:f0:d9:af:0e:66:cf: 87:4c:d8:7e:87:14:e9:02:1e:56:8f:3b:99:80:4e: 49:18:4a:44:7b:06:fe:2d:24:38:b7:3b:3a:26:e3: 91:03:4b:5c:9c:5b:0d:b0:f6:ea:91:57:de:ff:fe: 99:f2:65:96:fa:bc:67:ab:a6:91:3b:af:78:61:9c: b7:19:d4:bc:34:88:69:94:64:31:84:44:7c:eb:5b: 67:58:b4:89:a4:d3:46:2d:e5:3a:ad:52:2d:1f:80: 45:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1A:E6:18:78:60:90:4A:48:91:64:97:2C:4F:3D:9E:AB:A7:62:0E X509v3 Authority Key Identifier: keyid:42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:4c:90:e8:07:df:ec:30:6f:73:74:a7:f3:02:d2:5f:b1:cd: e8:7c:ab:76:1e:b9:94:3e:cd:4c:42:b6:27:eb:46:d4:9d:0c: 1f:63:3e:39:e8:34:df:5f:51:4e:34:ad:19:59:1c:bd:1f:90: 31:99:f8:28:0a:6e:73:09:5e:63:f4:6f:79:c1:7a:66:48:d7: 47:e7:2b:b4:6e:4f:99:46:10:af:70:fc:a7:94:7e:b2:70:70: cc:94:e4:97:31:97:20:12:d4:ba:da:f4:ee:f5:10:4d:f1:0e: 1b:5b:af:1c:e9:2d:57:a6:f7:12:d3:11:b4:34:4d:34:b5:58: 23:93:a5:33:c6:61:10:2b:7c:7d:f2:5e:d7:46:38:27:05:61: c9:75:22:ff:dc:d7:1e:3c:5f:c7:3c:a1:37:60:51:c4:37:83: 3d:93:e2:f0:38:ea:f7:01:5e:b5:e2:7e:e8:a7:09:b0:e0:ae: 9c:90:6f:90:96:7f:7e:93:17:f9:28:37:e8:99:59:38:f4:c2: 90:79:d2:fe:9f:c1:90:3f:46:33:d7:5f:e3:1e:a8:b5:76:19: ce:c6:20:47:24:e8:bd:33:b3:bd:75:25:14:bf:fa:ea:af:ba: 48:f4:2d:da:1b:80:6f:f5:df:59:60:5e:02:ae:b9:49:39:1f: 34:93:76:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKDQyOUVDRTE5MzhDQzg5MjRCMTExMDk2NUM5Q0Y0Rjk2 NDg2MDIwMTgwHhcNMjUwNzAyMTYyNTM4WhcNMjUwNzA5MTYyNTM4WjAYMRYwFAYD VQQDEw02ODY1NWQ4Mi05NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Han7faax67xuE8aBF3OKyqrgaprB29KUzok/l9wj+iGGtTNQuL49B4r9YeS CVhIyECh7sEf8Ffqh/f1gORhGp/0ogTj6CAzhLAzwvQIAAmqVyn8y5Ue5cCTbFVJ 3Nbnls1WtpuOJ8opB7+Zcvjpg1bLGjOCILPw9g5VDW+4efB1JpzqRL1VBS5FM5UR FQlj3CP0Clc3M0hai8JbwfDw2a8OZs+HTNh+hxTpAh5WjzuZgE5JGEpEewb+LSQ4 tzs6JuORA0tcnFsNsPbqkVfe//6Z8mWW+rxnq6aRO694YZy3GdS8NIhplGQxhER8 61tnWLSJpNNGLeU6rVItH4BFNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAa5hh4 YJBKSJFklyxPPZ6rp2IOMB8GA1UdIwQYMBaAFEKezhk4zIkksREJZcnPT5ZIYCAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC81RUNDMTVBQTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlTU3hFUWxseWM5UGxraGdJ QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FwN09HVGpNaVNTeEVRbGx5YzlQbGtoZ0lCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUFFNC81RUNDMTVBQTI1NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlT U3hFUWxseWM5UGxraGdJQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoTJDoB9/sMG9zdKfzAtJfsc3ofKt2HrmUPs1MQrYn60bUnQwfYz45 6DTfX1FONK0ZWRy9H5AxmfgoCm5zCV5j9G95wXpmSNdH5yu0bk+ZRhCvcPynlH6y cHDMlOSXMZcgEtS62vTu9RBN8Q4bW68c6S1XpvcS0xG0NE00tVgjk6UzxmEQK3x9 8l7XRjgnBWHJdSL/3NcePF/HPKE3YFHEN4M9k+LwOOr3AV614n7opwmw4K6ckG+Q ln9+kxf5KDfomVk49MKQedL+n8GQP0Yz11/jHqi1dhnOxiBHJOi9M7O9dSUUv/rq r7pI9C3aG4Bv9d9ZYF4CrrlJOR80k3Zn -----END CERTIFICATE-----Generated at Thu Jul 3 23:27:56 2025 by rpki-client