$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: 6/Fs2ovL9MA09rK236j1xFK6+qt8+ZDOIryFLPPObvc= Subject key identifier: B0:CA:56:4B:F7:B7:97:BD:73:83:79:F2:EE:64:AA:C1:1E:64:AF:AD Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 0774 Signing time: Wed 02 Jul 2025 22:58:29 +0000 Manifest this update: Wed 02 Jul 2025 22:58:28 +0000 Manifest next update: Wed 09 Jul 2025 22:58:28 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: 3s+HKKB4TZ9KyIqS296Aja6knKQXnQSCOcQgVtqnGRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: Jul 2 22:58:28 2025 GMT Not After : Jul 9 22:58:28 2025 GMT Subject: CN=6865b995-ccc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:86:c6:75:0e:17:9e:80:6b:25:8e:f5:d0:bb: f7:a3:6a:1c:d9:eb:4f:8f:f3:5e:ae:d7:2a:eb:93: 34:38:6e:01:5f:e1:c0:6d:00:7a:40:aa:e5:e7:1e: 46:d5:d3:e8:94:b9:98:20:ff:27:97:7b:89:f8:bb: d8:51:2f:f8:9b:7c:a9:7b:4f:f4:08:c0:1a:da:7b: 33:5f:56:6a:f6:e4:36:b5:26:e0:01:d3:8d:f5:3c: 8f:ec:4e:d2:bf:69:fc:41:45:a9:7c:03:5b:4a:ed: 22:c5:5c:b0:1e:af:03:91:de:10:8d:c3:72:a2:0a: df:f3:1a:d4:10:50:8e:b7:04:1a:0e:15:a9:dc:4a: 55:79:a1:d8:37:c9:53:0b:2c:73:ea:27:55:74:57: 8c:b3:71:ec:3e:7c:9a:87:b4:ed:0c:3f:76:12:03: 76:15:a0:95:5a:bf:ac:a5:7f:cf:a0:1a:b9:4a:35: 5d:11:83:c3:03:63:2d:81:3f:81:28:0e:61:ac:fb: d8:0f:51:24:d5:a3:f7:e8:c9:8c:53:e9:13:03:ed: 5f:60:d1:61:c3:4b:9b:5c:5e:3d:88:44:3f:54:29: 5d:27:30:7e:56:c0:63:3c:fb:f1:9a:f6:a2:1a:28: 0a:30:85:4c:a3:5f:83:2e:24:e2:e4:61:35:94:df: 68:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CA:56:4B:F7:B7:97:BD:73:83:79:F2:EE:64:AA:C1:1E:64:AF:AD X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:4b:02:2c:c1:51:55:f1:95:5d:2c:51:60:07:85:45:63:70: da:c4:83:11:a6:99:bc:59:1d:53:71:50:0d:48:67:36:c7:69: 6b:e5:f8:60:8b:7b:eb:2d:36:53:1d:6c:b0:bd:58:e8:3f:0b: c5:a2:bb:f8:24:b9:a9:f3:33:ae:45:15:3e:a1:13:f4:90:db: 54:bb:0a:6a:93:66:c1:48:69:53:10:5d:fe:09:3b:17:ea:bb: 61:cd:5e:11:00:f2:9c:8f:77:12:2d:4d:9b:3b:e7:2c:39:b2: 04:48:2b:2a:22:c7:74:2e:db:9e:42:cf:d6:a4:65:79:2e:70: b0:6b:95:a7:7c:29:2f:e3:eb:d7:b2:5a:28:96:6b:9c:4a:5c: 47:06:0c:f5:45:48:50:0e:16:56:e1:33:ce:05:97:f3:98:82: 18:18:b3:d0:a6:6c:fb:68:95:c3:61:ab:af:6e:c6:41:49:5e: b2:9d:0b:3d:76:a2:8d:76:f1:97:da:62:ca:d8:1d:01:20:67: 1d:e4:4b:98:ce:14:be:39:c7:de:91:bd:c8:78:9b:84:b0:2f: 20:a2:a6:bd:4f:59:20:aa:50:e3:af:13:f6:60:7f:8c:9f:78: 35:f0:7f:54:26:ac:ec:7b:3c:bf:18:68:f1:d8:7a:a3:8a:26: c5:a5:c1:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjUwNzAyMjI1ODI4WhcNMjUwNzA5MjI1ODI4WjAYMRYwFAYD VQQDEw02ODY1Yjk5NS1jY2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4bGdQ4XnoBrJY710Lv3o2oc2etPj/Nertcq65M0OG4BX+HAbQB6QKrl5x5G 1dPolLmYIP8nl3uJ+LvYUS/4m3ype0/0CMAa2nszX1Zq9uQ2tSbgAdON9TyP7E7S v2n8QUWpfANbSu0ixVywHq8Dkd4QjcNyogrf8xrUEFCOtwQaDhWp3EpVeaHYN8lT Cyxz6idVdFeMs3HsPnyah7TtDD92EgN2FaCVWr+spX/PoBq5SjVdEYPDA2MtgT+B KA5hrPvYD1Ek1aP36MmMU+kTA+1fYNFhw0ubXF49iEQ/VCldJzB+VsBjPPvxmvai GigKMIVMo1+DLiTi5GE1lN9o4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDKVkv3 t5e9c4N58u5kqsEeZK+tMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOSwIswVFV8ZVdLFFgB4VFY3DaxIMRppm8WR1TcVANSGc2x2lr5fhg i3vrLTZTHWywvVjoPwvForv4JLmp8zOuRRU+oRP0kNtUuwpqk2bBSGlTEF3+CTsX 6rthzV4RAPKcj3cSLU2bO+csObIESCsqIsd0LtueQs/WpGV5LnCwa5WnfCkv4+vX sloolmucSlxHBgz1RUhQDhZW4TPOBZfzmIIYGLPQpmz7aJXDYauvbsZBSV6ynQs9 dqKNdvGX2mLK2B0BIGcd5EuYzhS+Ocfekb3IeJuEsC8goqa9T1kgqlDjrxP2YH+M n3g18H9UJqzsezy/GGjx2HqjiibFpcFC -----END CERTIFICATE-----Generated at Thu Jul 3 08:27:57 2025 by rpki-client