$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json) Hash identifier: 0dCGetRi95zJAvzsCWV/NIA0c1kWwwcVNsYHfVgkSaU= Subject key identifier: 77:F0:CA:8F:F8:BC:29:4D:59:D7:85:6C:5E:7B:D6:A8:8F:AF:63:A3 Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft Manifest number: 6B Signing time: Thu 03 Jul 2025 07:11:10 +0000 Manifest this update: Thu 03 Jul 2025 07:11:10 +0000 Manifest next update: Thu 10 Jul 2025 07:11:10 +0000 Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: ZtRoJcG3D870r489hEDaAbx8Q2PE0iMRJKUpQ0bxzmY=) 2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: 3X4IEvNoArraBKAuq5CyT+VKjti9XVZccQ9OUFJ9p8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Validity Not Before: Jul 3 07:11:10 2025 GMT Not After : Jul 10 07:11:10 2025 GMT Subject: CN=68662d0e-b487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:23:e6:13:97:9b:bd:4e:c9:87:a3:a8:f0:f6: fa:17:be:02:18:98:fa:9d:e3:8d:09:71:c6:69:ae: 56:fd:b8:e7:85:4d:db:3c:58:ab:d8:ee:aa:71:3b: 27:ee:a3:2e:47:1b:f1:a3:b8:36:61:47:e0:46:f9: 4f:c2:1c:62:71:b2:29:ae:8a:7d:2d:e8:d0:e4:d1: 42:41:80:2e:d1:54:81:c2:ec:5d:65:4c:c1:35:f5: c5:ed:e4:a8:a3:44:fc:3d:e7:4d:61:ed:9a:a2:8d: 72:ab:97:40:65:ea:54:7c:46:69:d5:61:21:f1:33: 09:9c:86:96:e8:66:ee:36:48:77:4f:8e:f1:b0:f9: 9c:9c:3a:2c:fb:09:4c:28:fc:42:1c:04:fa:50:85: 1f:06:a2:b1:3e:01:a9:cd:13:45:bd:bd:aa:fd:6a: 38:8a:b0:1b:1d:9c:3d:fc:ae:24:ab:19:41:17:13: 55:d1:35:3c:b9:a9:18:c9:8a:ce:89:5b:b0:d3:7b: ac:00:3a:2d:ea:4d:c8:2d:09:e6:b9:a9:ee:ce:a1: 62:99:98:98:c2:c1:3a:cf:cd:9f:ee:65:ef:6f:f7: d6:b8:f3:3f:14:e1:b7:9d:5f:9f:ca:47:a8:dd:8f: 7d:1e:cb:72:3e:d0:2e:25:7a:76:0c:78:f4:59:18: 74:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F0:CA:8F:F8:BC:29:4D:59:D7:85:6C:5E:7B:D6:A8:8F:AF:63:A3 X509v3 Authority Key Identifier: keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:e3:76:3d:db:a6:4d:6b:69:d5:52:11:4d:90:e2:40:4d:2b: ed:04:b0:26:a2:d9:bd:ae:ac:18:88:cf:71:09:28:cb:77:a6: e9:07:ee:96:e0:e2:e5:03:d8:bd:fc:d3:1c:e7:6c:0e:ee:be: 19:d5:80:fa:74:7a:9e:b0:80:1e:89:7e:11:0b:80:6b:34:46: 4d:5d:8e:7c:2e:d4:3a:e9:c0:1e:26:c3:d8:75:96:e5:6c:0a: 88:44:fe:39:14:45:a0:ee:53:ec:3f:14:e4:29:d2:5a:d5:25: 6e:27:24:20:9b:9a:7b:ac:a9:09:a1:c3:20:3e:02:13:18:2c: 81:35:b1:e8:aa:9d:25:3f:6c:4a:22:5f:aa:a0:dd:69:ad:2f: 55:fd:2e:df:41:cd:79:ff:a6:48:8d:2f:3d:7d:4f:e9:f7:e5: 1d:68:cc:8f:b6:2f:9a:c1:eb:54:e6:c3:34:cc:8b:3e:28:1c: b9:4c:40:80:20:86:dd:59:54:3b:7f:14:b1:d1:12:f5:08:ab: a7:a6:b6:f3:1e:e8:85:f9:48:a6:8b:19:c8:41:b4:53:6c:e9: b8:24:c0:fd:e2:aa:05:ff:78:2c:42:c6:46:62:7c:bd:09:11: 3d:8d:38:dd:dc:c7:7a:e8:85:fa:bb:0c:dd:f6:96:82:8e:16: 8b:69:8b:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoNDAyRDFEMEJEOTFGNDM4MDJDN0EwRDcwNzM2MTg4QkVC QTBBMDgxMjAeFw0yNTA3MDMwNzExMTBaFw0yNTA3MTAwNzExMTBaMBgxFjAUBgNV BAMTDTY4NjYyZDBlLWI0ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQI+YTl5u9TsmHo6jw9voXvgIYmPqd440JccZprlb9uOeFTds8WKvY7qpxOyfu oy5HG/GjuDZhR+BG+U/CHGJxsimuin0t6NDk0UJBgC7RVIHC7F1lTME19cXt5Kij RPw9501h7ZqijXKrl0Bl6lR8RmnVYSHxMwmchpboZu42SHdPjvGw+ZycOiz7CUwo /EIcBPpQhR8GorE+AanNE0W9var9ajiKsBsdnD38riSrGUEXE1XRNTy5qRjJis6J W7DTe6wAOi3qTcgtCea5qe7OoWKZmJjCwTrPzZ/uZe9v99a48z8U4bedX5/KR6jd j30ey3I+0C4lenYMePRZGHQtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd/DKj/i8 KU1Z14VsXnvWqI+vY6MwHwYDVR0jBBgwFoAUQC0dC9kfQ4Aseg1wc2GIvroKCBIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzFDOTQ2QUYyQjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL1FDMGRDOWtmUTRBc2VnMXdjMkdJdnJvS0NC SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUMwZEM5a2ZRNEFzZWcxd2MyR0l2cm9LQ0JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzFDOTQ2QUYyQjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL1FDMGRDOWtmUTRB c2VnMXdjMkdJdnJvS0NCSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJHjdj3bpk1radVSEU2Q4kBNK+0EsCai2b2urBiIz3EJKMt3pukH7pbg 4uUD2L380xznbA7uvhnVgPp0ep6wgB6JfhELgGs0Rk1djnwu1DrpwB4mw9h1luVs CohE/jkURaDuU+w/FOQp0lrVJW4nJCCbmnusqQmhwyA+AhMYLIE1seiqnSU/bEoi X6qg3WmtL1X9Lt9BzXn/pkiNLz19T+n35R1ozI+2L5rB61TmwzTMiz4oHLlMQIAg ht1ZVDt/FLHREvUIq6emtvMe6IX5SKaLGchBtFNs6bgkwP3iqgX/eCxCxkZifL0J ET2NON3cx3rohfq7DN32loKOFotpi+k= -----END CERTIFICATE-----Generated at Thu Jul 3 22:53:29 2025 by rpki-client