$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft File: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft (raw, json) Hash identifier: vaVND+rLC1L7UpLUX8HiRIKytTSZetooKny4y0Lb42k= Subject key identifier: CE:97:3A:EC:35:69:1E:AD:D0:0B:A9:DB:BC:F8:60:D2:9D:53:7A:EE Authority key identifier: A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D Certificate issuer: /CN=A9164164/serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft Manifest number: 77 Signing time: Thu 03 Jul 2025 06:59:21 +0000 Manifest this update: Thu 03 Jul 2025 06:59:21 +0000 Manifest next update: Thu 10 Jul 2025 06:59:21 +0000 Files and hashes: 1: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl (hash: su4i3EGKq3Zq8bAVCwXYcNumWM+lf7WZPjle4AEd/ak=) 2: F1487C2AA18211EFA2B7E923C4F9AE02.roa (hash: ow0JlSSKtHwrzhAKotnC4Hb7SPL+BmK/kbudjjYhQGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164, serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Validity Not Before: Jul 3 06:59:21 2025 GMT Not After : Jul 10 06:59:21 2025 GMT Subject: CN=68662a49-79f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9b:47:db:d9:d1:50:bf:bd:36:e0:77:10:cd: 64:e0:e7:7c:6a:e5:8d:b2:ba:b4:4d:8f:52:e6:ee: b9:ee:ed:5e:40:72:63:b5:5a:75:ae:3e:a0:39:43: d8:35:cd:47:4e:d8:34:ef:8b:5c:bf:3e:b8:2d:b4: 7e:e1:db:13:a6:0a:c6:51:67:68:48:ff:54:8e:6b: 8d:39:ba:72:25:ac:ba:d6:85:7f:0d:26:0b:0d:6b: bc:36:e4:13:14:e8:91:ee:8c:57:c6:2a:bc:12:af: 86:95:da:3a:91:e8:c8:5f:14:a0:32:a6:9c:dc:b9: 38:fd:33:92:0d:3f:ce:f9:5c:3a:60:63:fc:aa:78: 42:4b:e0:38:3f:e4:50:f6:ba:8e:75:7d:da:e3:e7: f6:45:fd:8f:8d:87:09:21:3b:88:55:2e:0a:1a:fd: ae:4d:17:10:fd:62:7b:50:61:72:fb:a2:61:a6:29: b8:b8:8d:02:2e:50:90:f0:2f:92:e6:8c:68:f9:af: 5d:22:bf:6d:c9:b3:ad:0d:36:55:9b:e1:9a:90:e0: f0:23:d3:f8:39:f4:60:61:68:3c:41:73:49:51:5a: b4:46:aa:d1:9e:7c:f2:c0:e8:cf:f2:c5:bf:fe:95: 56:7a:a3:0c:b4:69:84:99:28:a1:1f:d6:a3:8c:b2: 51:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:97:3A:EC:35:69:1E:AD:D0:0B:A9:DB:BC:F8:60:D2:9D:53:7A:EE X509v3 Authority Key Identifier: keyid:A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:24:b2:5f:fc:9a:74:81:f6:21:18:bc:f8:da:8a:76:6f:af: c3:74:7f:dc:3d:80:1e:d6:bc:0b:aa:df:a7:fc:15:4a:8a:4c: 97:94:8d:c6:19:b9:9f:07:cd:c9:93:50:cd:66:60:72:d7:cd: c5:cc:04:8b:d6:d1:11:b2:64:4a:b3:5b:51:d9:0f:5c:a8:80: af:ba:41:37:90:5b:e1:1a:51:e8:70:34:72:54:ef:a6:c8:3d: 13:3a:9c:f4:c4:02:99:7c:2e:13:aa:f3:ff:e2:01:b2:aa:93: b2:7c:60:78:9b:4d:7e:bf:d6:2d:09:5d:0f:13:97:92:8e:cc: d0:47:80:ee:f6:3f:89:44:81:02:6f:1a:00:10:b5:31:7f:be: 72:2c:b0:55:bf:16:87:09:c6:39:e8:89:89:4a:92:ef:4d:d5: bf:d1:d2:ff:15:0a:c3:12:2d:54:7e:98:88:dc:d9:b9:0a:b1: 61:b8:d2:73:c8:13:92:e9:d0:93:06:34:9c:2f:bb:9e:2b:56: 39:d0:c3:f9:cf:dc:06:39:f8:c1:95:ff:02:b1:15:cb:95:65: 88:1f:c0:82:01:a7:47:9e:75:8a:cf:a4:94:8e:7f:36:10:83: 6a:a1:ba:1a:50:82:fa:23:24:b8:1c:69:01:11:12:a0:08:49: 7a:7a:69:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDE2NDExMC8GA1UEBRMoQTg3MzcyMDFGQTRDNjRGQTAwNTY0MDIyREIwNkY2MEU3 RUUyQ0QwRDAeFw0yNTA3MDMwNjU5MjFaFw0yNTA3MTAwNjU5MjFaMBgxFjAUBgNV BAMTDTY4NjYyYTQ5LTc5ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFm0fb2dFQv7024HcQzWTg53xq5Y2yurRNj1Lm7rnu7V5AcmO1WnWuPqA5Q9g1 zUdO2DTvi1y/PrgttH7h2xOmCsZRZ2hI/1SOa405unIlrLrWhX8NJgsNa7w25BMU 6JHujFfGKrwSr4aV2jqR6MhfFKAyppzcuTj9M5INP875XDpgY/yqeEJL4Dg/5FD2 uo51fdrj5/ZF/Y+NhwkhO4hVLgoa/a5NFxD9YntQYXL7omGmKbi4jQIuUJDwL5Lm jGj5r10iv23Js60NNlWb4ZqQ4PAj0/g59GBhaDxBc0lRWrRGqtGefPLA6M/yxb/+ lVZ6owy0aYSZKKEf1qOMslHPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzpc67DVp Hq3QC6nbvPhg0p1Teu4wHwYDVR0jBBgwFoAUqHNyAfpMZPoAVkAi2wb2Dn7izQ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0MTY0L0E2OEUyNjRFQTE4 MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBvQVZrQWkyd2IyRG43aXpR MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUhOeUFmcE1aUG9BVmtBaTJ3YjJEbjdpelEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 MTY0L0E2OEUyNjRFQTE4MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBv QVZrQWkyd2IyRG43aXpRMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB0ksl/8mnSB9iEYvPjainZvr8N0f9w9gB7WvAuq36f8FUqKTJeUjcYZ uZ8HzcmTUM1mYHLXzcXMBIvW0RGyZEqzW1HZD1yogK+6QTeQW+EaUehwNHJU76bI PRM6nPTEApl8LhOq8//iAbKqk7J8YHibTX6/1i0JXQ8Tl5KOzNBHgO72P4lEgQJv GgAQtTF/vnIssFW/FocJxjnoiYlKku9N1b/R0v8VCsMSLVR+mIjc2bkKsWG40nPI E5Lp0JMGNJwvu54rVjnQw/nP3AY5+MGV/wKxFcuVZYgfwIIBp0eedYrPpJSOfzYQ g2qhuhpQgvojJLgcaQEREqAISXp6aYo= -----END CERTIFICATE-----Generated at Thu Jul 3 23:33:53 2025 by rpki-client