$ rpki-client -vvf rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft File: QuOGLXRTXCypqrN6cZW1keruIeU.mft (raw, json) Hash identifier: Zvakz7XJypPlSKDT0DW9SpzkgiNJjNe1EXeNUr9d73A= Subject key identifier: 83:60:67:66:F4:4B:6A:30:7E:1E:27:07:2C:9A:8F:3A:49:2E:AD:10 Authority key identifier: 42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 Certificate issuer: /CN=A91580E4/serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft Manifest number: 33 Signing time: Tue 01 Jul 2025 08:25:19 +0000 Manifest this update: Tue 01 Jul 2025 08:25:19 +0000 Manifest next update: Tue 08 Jul 2025 08:25:19 +0000 Files and hashes: 1: QuOGLXRTXCypqrN6cZW1keruIeU.crl (hash: mpDLwbETq5iRCYB1+zDbq4yQ7Uz/Mvf22y0qee7R6Ow=) 2: E78F55A408BC11F09C4FB471C4F9AE02.roa (hash: voOUCH7zRGxksu2fNV8QOYiL4kmVMcLs8S+aobdc9H8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580E4, serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Validity Not Before: Jul 1 08:25:19 2025 GMT Not After : Jul 8 08:25:19 2025 GMT Subject: CN=68639b6f-8834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bd:c6:59:a8:54:d9:65:f3:42:3a:9f:de:d8: f4:eb:bb:8b:5b:c7:6a:88:26:3a:76:e0:ca:8f:56: ed:b4:bb:7c:56:c0:82:e5:c0:6d:56:4a:c8:df:a6: b4:5f:f9:fa:ed:60:42:b1:0b:8c:f2:3a:9f:69:4e: a9:99:ea:3c:a9:e0:56:45:7e:65:b2:a8:cd:df:75: 22:a9:fd:63:13:ff:4e:a3:32:a9:a6:85:31:bc:b9: 8e:08:88:b8:b9:c9:14:ee:f6:f2:ee:df:b6:2e:b1: ef:d9:70:68:4b:f8:19:a9:58:cd:1f:bf:c3:14:ab: db:9c:03:c3:03:86:e3:43:79:5c:f5:0c:ae:47:6e: c3:31:95:d2:7a:8f:15:00:3e:5e:3e:2d:d5:17:db: ea:ff:0f:2e:1c:5b:ae:53:54:e8:c0:60:c4:bc:7a: 16:fb:e2:90:86:83:b4:41:6b:be:b7:14:b3:f8:12: 3f:a2:14:57:99:4a:7a:52:51:ba:b9:64:06:cd:2f: 08:a4:15:d7:91:4d:2c:d4:94:9b:3d:a0:04:b5:6a: a6:b6:ea:3f:12:d1:ed:61:80:a4:5a:08:ea:f3:e0: fd:d9:61:f8:ec:f7:87:e5:70:5c:34:fd:03:82:4f: ec:30:12:cd:65:d5:40:c4:97:b6:9a:ba:db:11:46: fd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:60:67:66:F4:4B:6A:30:7E:1E:27:07:2C:9A:8F:3A:49:2E:AD:10 X509v3 Authority Key Identifier: keyid:42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:2c:e5:42:f7:2b:f7:ed:b1:79:99:20:14:f1:26:d7:cd:3f: 4e:50:0b:19:5e:c1:5e:63:40:a9:f4:de:3f:d9:eb:6f:a6:fa: 63:76:8b:5f:7c:f4:78:85:0d:af:2a:f0:90:a3:08:a8:aa:b5: a5:f8:03:b5:63:34:75:19:69:0a:fa:2e:b2:25:e8:f6:cb:ca: 3b:85:34:ae:f3:87:f0:6e:c7:d6:6d:cd:b2:1a:0a:bc:e0:82: e6:58:14:6a:3e:12:d6:4b:cb:3b:2a:9c:41:71:ad:0e:d3:2c: 9c:a9:13:fc:e5:59:a2:0e:af:6e:22:75:3b:8a:aa:48:3a:e0: c1:df:90:03:a7:70:85:78:6f:2d:a9:7d:c4:74:0f:3b:ac:ba: f2:92:f5:21:c9:46:21:9d:85:69:4c:fc:2b:e3:de:56:bc:3a: 8d:17:5d:6f:70:e3:5b:5a:4f:9c:64:da:8e:43:da:42:98:0c: ff:ff:45:0d:63:ca:e9:c1:b0:7d:ac:90:b8:46:e5:ac:ad:7a: 4b:0d:eb:ad:44:91:06:ca:e2:72:b1:84:32:ff:1f:98:f7:a8: 37:b7:28:6e:73:8f:2e:9f:b7:27:65:34:90:29:b0:6c:7e:54: a8:90:61:43:46:e9:95:0f:ee:9d:48:e5:76:b9:71:77:c0:16: b3:6e:02:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODBFNDExMC8GA1UEBRMoNDJFMzg2MkQ3NDUzNUMyQ0E5QUFCMzdBNzE5NUI1OTFF QUVFMjFFNTAeFw0yNTA3MDEwODI1MTlaFw0yNTA3MDgwODI1MTlaMBgxFjAUBgNV BAMTDTY4NjM5YjZmLTg4MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCavcZZqFTZZfNCOp/e2PTru4tbx2qIJjp24MqPVu20u3xWwILlwG1WSsjfprRf +frtYEKxC4zyOp9pTqmZ6jyp4FZFfmWyqM3fdSKp/WMT/06jMqmmhTG8uY4IiLi5 yRTu9vLu37Yuse/ZcGhL+BmpWM0fv8MUq9ucA8MDhuNDeVz1DK5HbsMxldJ6jxUA Pl4+LdUX2+r/Dy4cW65TVOjAYMS8ehb74pCGg7RBa763FLP4Ej+iFFeZSnpSUbq5 ZAbNLwikFdeRTSzUlJs9oAS1aqa26j8S0e1hgKRaCOrz4P3ZYfjs94flcFw0/QOC T+wwEs1l1UDEl7aautsRRv1NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg2BnZvRL ajB+HicHLJqPOkkurRAwHwYDVR0jBBgwFoAUQuOGLXRTXCypqrN6cZW1keruIeUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MEU0LzVDMEM5NTUwMDhC QzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5cHFyTjZjWlcxa2VydUll VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXVPR0xYUlRYQ3lwcXJONmNaVzFrZXJ1SWVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MEU0LzVDMEM5NTUwMDhCQzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5 cHFyTjZjWlcxa2VydUllVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADMs5UL3K/ftsXmZIBTxJtfNP05QCxlewV5jQKn03j/Z62+m+mN2i198 9HiFDa8q8JCjCKiqtaX4A7VjNHUZaQr6LrIl6PbLyjuFNK7zh/Bux9ZtzbIaCrzg guZYFGo+EtZLyzsqnEFxrQ7TLJypE/zlWaIOr24idTuKqkg64MHfkAOncIV4by2p fcR0DzusuvKS9SHJRiGdhWlM/Cvj3la8Oo0XXW9w41taT5xk2o5D2kKYDP//RQ1j yunBsH2skLhG5ayteksN661EkQbK4nKxhDL/H5j3qDe3KG5zjy6ftydlNJApsGx+ VKiQYUNG6ZUP7p1I5Xa5cXfAFrNuArY= -----END CERTIFICATE-----Generated at Wed Jul 2 07:27:01 2025 by rpki-client