$ rpki-client -vvf rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft File: qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft (raw, json) Hash identifier: gq112gcKvPqwOYToTSiIFakGzTa2lGs5x2zTV3fIkRE= Subject key identifier: 01:8B:3F:89:6D:77:A0:37:EC:EA:22:3F:05:AA:EC:30:1C:28:10:CC Authority key identifier: AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 Certificate issuer: /CN=A91705D7/serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft Manifest number: E0 Signing time: Thu 03 Jul 2025 06:10:14 +0000 Manifest this update: Thu 03 Jul 2025 06:10:13 +0000 Manifest next update: Thu 10 Jul 2025 06:10:13 +0000 Files and hashes: 1: qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl (hash: /XrvAzEBdxtZlE4Lwunvbr8Mtq+sC+4ajo28SannJbU=) 2: 4FEDDA6831C511F0996C265EC4F9AE02.roa (hash: G8CAzDlv561lCTXBbNuUwLBStLkoC94IOzFjIj5uYjk=) 3: 362B52EA31C511F0B796F75DC4F9AE02.roa (hash: 32ChZuN5aLmUO2MNOxKOn9C6wDIBYJGI4WGeVTj7tjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91705D7, serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Validity Not Before: Jul 3 06:10:13 2025 GMT Not After : Jul 10 06:10:13 2025 GMT Subject: CN=68661ec5-0967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:b3:aa:a6:ad:61:3e:8c:55:75:33:e0:0f:72: a2:b2:41:69:04:40:76:30:e7:8e:2a:2a:5f:14:70: 81:94:d4:3d:ab:f2:ff:15:21:00:78:96:4b:ba:e8: 58:bd:04:37:6b:c3:24:e0:0e:74:3c:ab:74:15:13: e9:79:82:69:92:6b:b6:a0:84:10:64:51:15:55:1d: 0c:af:6f:4c:81:31:f9:13:f3:0e:28:88:58:d4:e7: 7a:82:cb:f6:8e:49:6b:6c:e0:51:e1:f6:f9:33:a4: 9d:fb:f9:be:78:6a:d5:d8:f0:d6:38:d5:c2:b5:20: c4:52:01:04:c4:5e:2e:00:db:51:11:49:ab:79:d7: 24:07:ce:59:24:db:2d:b2:0f:1a:7b:8e:e0:a5:45: ed:cd:dd:e7:3e:1e:32:a0:a0:a6:52:00:ed:9a:06: 95:94:13:d5:9a:73:e9:97:91:6c:ca:71:60:9a:ac: 49:f3:21:4f:7b:68:f7:be:3c:81:18:b2:3c:93:e7: 19:22:96:33:9b:72:93:47:5d:e1:fa:4e:53:0f:f7: 89:fd:9b:8d:84:b3:7c:c8:a6:22:0d:e1:ad:40:38: 3b:0e:86:6a:85:99:61:d1:19:04:b2:62:d7:ec:e2: 4b:8a:6c:ef:e5:d2:55:ea:1b:a0:26:c7:97:fe:ad: ba:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8B:3F:89:6D:77:A0:37:EC:EA:22:3F:05:AA:EC:30:1C:28:10:CC X509v3 Authority Key Identifier: keyid:AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:80:66:93:6a:6d:a1:72:50:55:f4:0d:26:62:af:7a:89:bd: 78:b5:b1:b7:cf:88:9b:3d:df:0c:33:4a:41:a8:2c:f8:fd:2b: 33:67:48:98:4a:f5:d6:33:b5:ad:10:7e:c4:3f:02:a7:b4:fe: 22:55:23:13:f2:82:2b:9a:98:a2:f3:41:3a:42:90:99:56:60: 3f:92:9c:66:92:46:01:67:20:20:b6:5e:35:48:a9:11:2e:2c: 8a:c2:cd:79:2b:08:a1:a5:92:95:a1:8b:3c:72:d0:b7:8f:e5: a1:d9:97:21:d3:26:ed:b4:e2:61:02:b4:ca:30:40:50:f8:cc: 66:7b:5e:d9:5a:d6:f5:0d:72:50:2c:15:9c:1b:31:a1:f3:37: 25:96:90:fd:a9:39:71:c0:af:1d:7d:ef:68:d3:db:a2:72:48: d4:dc:53:f2:a9:42:26:3b:38:08:1c:79:af:72:96:f6:9b:3a: 06:17:04:4d:e0:9d:9d:95:35:40:1d:72:87:ad:49:89:07:68: 44:0b:b8:af:25:5f:8e:74:cb:dd:2a:d0:b0:b2:e9:70:6f:70: 0e:d2:2c:8a:ed:6b:a9:74:22:f2:a9:97:0f:29:98:db:f0:30: 48:29:0a:16:16:6b:4d:7d:19:bf:9d:3a:d8:3b:80:0c:49:d0: 20:64:42:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1RDcxMTAvBgNVBAUTKEFBNDQwNUIxQkZBOTZDOUM2OUIwMjkwMzNFRjQ4MUQ4 RjU4QTc3RTUwHhcNMjUwNzAzMDYxMDEzWhcNMjUwNzEwMDYxMDEzWjAYMRYwFAYD VQQDEw02ODY2MWVjNS0wOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkrOqpq1hPoxVdTPgD3KiskFpBEB2MOeOKipfFHCBlNQ9q/L/FSEAeJZLuuhY vQQ3a8Mk4A50PKt0FRPpeYJpkmu2oIQQZFEVVR0Mr29MgTH5E/MOKIhY1Od6gsv2 jklrbOBR4fb5M6Sd+/m+eGrV2PDWONXCtSDEUgEExF4uANtREUmredckB85ZJNst sg8ae47gpUXtzd3nPh4yoKCmUgDtmgaVlBPVmnPpl5FsynFgmqxJ8yFPe2j3vjyB GLI8k+cZIpYzm3KTR13h+k5TD/eJ/ZuNhLN8yKYiDeGtQDg7DoZqhZlh0RkEsmLX 7OJLimzv5dJV6hugJseX/q26JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGLP4lt d6A37OoiPwWq7DAcKBDMMB8GA1UdIwQYMBaAFKpEBbG/qWycabApAz70gdj1infl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDVENy85NkEzNkFBODE2 RDgxMUVGQkY5MDFFNUZDNEY5QUUwMi9xa1FGc2ItcGJKeHBzQ2tEUHZTQjJQV0tk LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FrUUZzYi1wYkp4cHNDa0RQdlNCMlBXS2QtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDVENy85NkEzNkFBODE2RDgxMUVGQkY5MDFFNUZDNEY5QUUwMi9xa1FGc2ItcGJK eHBzQ2tEUHZTQjJQV0tkLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAegGaTam2hclBV9A0mYq96ib14tbG3z4ibPd8MM0pBqCz4/SszZ0iY SvXWM7WtEH7EPwKntP4iVSMT8oIrmpii80E6QpCZVmA/kpxmkkYBZyAgtl41SKkR LiyKws15KwihpZKVoYs8ctC3j+Wh2Zch0ybttOJhArTKMEBQ+Mxme17ZWtb1DXJQ LBWcGzGh8zcllpD9qTlxwK8dfe9o09uickjU3FPyqUImOzgIHHmvcpb2mzoGFwRN 4J2dlTVAHXKHrUmJB2hEC7ivJV+OdMvdKtCwsulwb3AO0iyK7WupdCLyqZcPKZjb 8DBIKQoWFmtNfRm/nTrYO4AMSdAgZEKk -----END CERTIFICATE-----Generated at Fri Jul 4 03:25:05 2025 by rpki-client