$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft File: QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json) Hash identifier: eeYh7+NqfRvKLJZMpqaQZVQjIzHNbqvy8P5qbPeS/ig= Subject key identifier: 12:89:F8:BB:D5:89:EB:45:C1:7A:B1:87:30:42:1E:F6:CC:73:8B:2F Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft Manifest number: 76 Signing time: Sun 29 Jun 2025 05:52:43 +0000 Manifest this update: Sun 29 Jun 2025 05:52:43 +0000 Manifest next update: Sun 06 Jul 2025 05:52:43 +0000 Files and hashes: 1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: 4DdcY7Gsb0Bd10UulbNyqxerrHXVu+NuSwKxfLM9anY=) 2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: Jun 29 05:52:43 2025 GMT Not After : Jul 6 05:52:43 2025 GMT Subject: CN=6860d4ab-2ea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fa:e7:47:e0:35:16:99:03:16:27:98:79:95: de:a0:22:5b:89:fd:e6:de:6e:71:f4:83:d9:1b:9f: 0c:09:32:1c:93:71:04:d6:d2:04:33:f3:04:d4:40: 64:c0:f9:bf:51:3c:df:c0:3e:82:ea:7f:b1:dd:53: 8c:a7:92:d4:3f:e7:83:16:df:9f:93:8a:59:c7:6f: 03:2c:4f:ca:8f:29:58:a4:5e:94:52:22:2c:cf:13: 3e:66:dc:6b:d0:cf:f6:0e:d8:7b:57:01:7d:66:51: 86:05:e4:86:be:e6:7e:29:7b:8d:91:9d:f6:82:c4: 81:34:b9:f4:78:af:2c:2f:cf:30:88:94:09:69:08: a0:04:8f:ab:ba:90:dd:0f:28:2b:14:62:7e:1c:f0: 7f:62:af:a6:0e:0f:61:d5:03:a3:2b:8b:86:f5:ac: 4c:57:71:ad:2e:b7:5c:86:4b:ac:90:24:1c:02:fa: a8:cc:53:08:6a:c7:e1:19:f9:10:af:bb:3f:11:22: 3a:1b:30:e7:c2:cc:12:c6:19:e6:9d:a3:6c:32:33: f3:39:ba:f4:26:f1:e0:2f:1a:b6:22:26:cf:de:68: 5a:57:41:dd:4e:d7:e4:7a:ea:34:04:21:34:7f:dd: 75:79:8a:21:7a:1a:55:db:2b:37:60:56:b1:8f:c1: f2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:89:F8:BB:D5:89:EB:45:C1:7A:B1:87:30:42:1E:F6:CC:73:8B:2F X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:32:fd:6d:38:77:71:44:6d:1b:f0:33:0f:a0:8d:d5:b2:ed: 9b:0d:e6:58:2a:d2:1a:d2:64:af:c9:9d:66:02:52:f2:52:51: 90:ee:29:f5:9c:fa:99:85:d6:be:6d:10:da:2d:19:1a:98:5c: f7:65:3f:35:8e:e8:74:eb:6b:87:a9:3f:3c:91:bd:33:41:c6: 86:ab:be:fe:3c:c5:d0:a2:b9:28:6d:ba:e6:e6:80:ed:03:63: 3c:32:7c:c0:05:b1:b7:77:38:21:3f:5a:8e:61:de:69:ac:b6: 85:26:0d:05:4f:db:e5:e9:d0:57:f5:b7:0c:1c:5b:9c:5b:36: 05:36:6d:b5:d6:37:3e:51:bc:0b:f9:aa:3e:b8:36:34:2f:74: e7:cb:c0:17:14:a5:65:48:e7:fe:86:0a:6d:fe:2d:e6:7b:5f: e2:a9:40:4d:3c:e7:19:c3:8b:29:77:c9:6f:13:72:f2:37:b1: d1:1d:95:4c:40:70:71:7d:10:79:38:57:b9:ab:91:59:49:a7: 82:d1:63:ff:e0:87:ac:b2:e7:c7:6a:a7:88:c1:55:88:7d:07: 5a:c2:a8:cd:b3:9b:4f:31:30:15:fb:b8:c3:82:0b:cc:7e:12: 0e:1c:9f:34:0b:6e:1c:a7:36:dd:f0:27:39:7b:04:bc:9a:f5: d1:5f:c7:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzMxQzExMC8GA1UEBRMoNDBGQUE3MEY4QTIzQTAzRDE2QTExMDg2REJFNTAyRTg2 MjE2NDk2NzAeFw0yNTA2MjkwNTUyNDNaFw0yNTA3MDYwNTUyNDNaMBgxFjAUBgNV BAMTDTY4NjBkNGFiLTJlYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS+udH4DUWmQMWJ5h5ld6gIluJ/ebebnH0g9kbnwwJMhyTcQTW0gQz8wTUQGTA +b9RPN/APoLqf7HdU4ynktQ/54MW35+TilnHbwMsT8qPKVikXpRSIizPEz5m3GvQ z/YO2HtXAX1mUYYF5Ia+5n4pe42RnfaCxIE0ufR4rywvzzCIlAlpCKAEj6u6kN0P KCsUYn4c8H9ir6YOD2HVA6Mri4b1rExXca0ut1yGS6yQJBwC+qjMUwhqx+EZ+RCv uz8RIjobMOfCzBLGGeado2wyM/M5uvQm8eAvGrYiJs/eaFpXQd1O1+R66jQEITR/ 3XV5iiF6GlXbKzdgVrGPwfIvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEon4u9WJ 60XBerGHMEIe9sxziy8wHwYDVR0jBBgwFoAUQPqnD4ojoD0WoRCG2+UC6GIWSWcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMzFDL0YxMDdEQTEwQTZD RjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NX Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVBxbkQ0b2pvRDBXb1JDRzItVUM2R0lXU1djLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD MzFDL0YxMDdEQTEwQTZDRjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0Qw V29SQ0cyLVVDNkdJV1NXYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABYy/W04d3FEbRvwMw+gjdWy7ZsN5lgq0hrSZK/JnWYCUvJSUZDuKfWc +pmF1r5tENotGRqYXPdlPzWO6HTra4epPzyRvTNBxoarvv48xdCiuShtuubmgO0D YzwyfMAFsbd3OCE/Wo5h3mmstoUmDQVP2+Xp0Ff1twwcW5xbNgU2bbXWNz5RvAv5 qj64NjQvdOfLwBcUpWVI5/6GCm3+LeZ7X+KpQE085xnDiyl3yW8TcvI3sdEdlUxA cHF9EHk4V7mrkVlJp4LRY//gh6yy58dqp4jBVYh9B1rCqM2zm08xMBX7uMOCC8x+ Eg4cnzQLbhynNt3wJzl7BLya9dFfx3A= -----END CERTIFICATE-----Generated at Sun Jun 29 20:28:51 2025 by rpki-client