$ rpki-client -vvf rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft File: rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft (raw, json) Hash identifier: tp7UQhTpjFEfhqzqhbdimRghVfcD9aZkO9JhhBaCXOI= Subject key identifier: AA:17:F1:4A:56:9B:EF:D9:D3:67:A7:06:7C:2C:E8:6F:2E:B4:88:43 Authority key identifier: AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F Certificate issuer: /CN=A919F55C/serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft Manifest number: 04AC Signing time: Sat 28 Jun 2025 23:30:22 +0000 Manifest this update: Sat 28 Jun 2025 23:30:22 +0000 Manifest next update: Sat 05 Jul 2025 23:30:22 +0000 Files and hashes: 1: rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl (hash: LrCXDqI8q5jMJnPn3DxHXuRzst33e69GscSVdyN5TDc=) 2: 0EC6A7E0372D11ECA616091EC4F9AE02.roa (hash: xRvy8+EZ4EWMUGqE/C33LsDCdW9x6WHrip13g/dJz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F55C, serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Validity Not Before: Jun 28 23:30:22 2025 GMT Not After : Jul 5 23:30:22 2025 GMT Subject: CN=68607b0e-b28e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4e:af:25:1f:c7:45:cc:d4:4b:e8:a2:18:ad: 15:f0:9b:80:d3:cc:3a:a2:02:ee:37:d0:c4:26:fa: 69:3e:57:10:8f:11:e3:ae:25:4b:90:3c:27:f6:22: 54:8a:c3:a4:5a:7e:13:cd:27:54:5a:34:42:c0:71: 9b:42:a1:b7:cd:fc:11:d4:8a:af:2f:42:d2:23:32: 4f:4b:9e:89:3b:ad:86:fd:58:a0:2d:b5:c9:0e:2e: 87:1d:3d:db:ac:98:32:3d:a8:36:45:f8:07:59:19: 26:1d:a4:ba:26:58:fa:7c:d6:3f:c5:b4:ab:b7:15: 04:f2:ba:59:50:74:ca:dc:64:92:90:34:54:2e:90: 8d:a6:2a:41:26:fe:9e:67:dd:78:2d:74:49:90:b2: bd:85:ba:0b:a2:b7:cb:87:34:26:ab:c6:70:7b:da: d6:85:a4:50:d4:f4:33:e1:3c:90:e5:42:fc:f4:7b: 7e:df:fa:ae:d6:5f:fe:c8:f0:47:2d:c7:e3:42:60: 22:3a:ef:88:67:6d:fc:00:9f:2f:e9:b8:19:66:c4: 5a:d4:61:0c:3c:3a:bb:c9:b4:65:77:b0:f9:39:87: cb:1f:17:8e:29:75:36:5a:fb:38:cd:9e:8d:7d:b5: 6b:a3:24:4b:fb:82:d2:94:bd:4a:58:ac:e9:5b:ac: ad:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:17:F1:4A:56:9B:EF:D9:D3:67:A7:06:7C:2C:E8:6F:2E:B4:88:43 X509v3 Authority Key Identifier: keyid:AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:54:e1:f7:52:ef:e0:d3:0b:45:50:23:a6:7e:11:02:f9:4e: a5:fa:5a:17:e6:2f:4d:6d:47:f8:ef:ad:9b:89:bb:5a:1a:f5: 62:b8:76:df:7e:1e:be:4b:87:ae:a7:14:6b:96:4e:1c:74:e4: d1:e4:34:8b:ee:82:93:7d:65:9e:5e:ea:db:19:23:1d:3e:7a: 63:85:7a:4d:53:81:2e:cc:0d:85:46:c0:75:66:95:9d:ae:cb: 76:d9:33:1b:cf:86:40:8d:0a:c0:6d:68:df:94:86:50:69:54: 35:60:53:ae:5b:e1:f9:9a:7c:6a:2d:ea:df:56:82:db:1c:bf: d3:34:92:97:78:e3:b6:79:86:f5:bf:6f:f5:a6:59:aa:73:a5: e8:35:73:23:6a:6f:17:69:53:de:bb:da:6b:5b:8c:b6:56:42: 82:56:2f:31:9c:5d:53:cb:c4:ed:e2:02:9e:fd:0f:41:03:78: 31:92:f7:14:e3:9f:ef:88:3d:50:57:0c:df:ca:a9:06:a6:67: a2:4c:87:08:be:ab:3b:6d:0f:a6:2e:3e:b6:87:ae:64:f7:5b: 6c:2d:2e:ef:56:da:66:05:ff:1a:7b:24:00:21:3b:44:d6:32: 5c:17:6e:88:84:d7:eb:7e:65:ce:bd:f5:83:fa:80:9b:11:e6: e0:50:89:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1NUMxMTAvBgNVBAUTKEFEMDZEQkNDNTMzNEM2RDc1MTM3MkZCMTc5NTRGNEFB QUREQzlDM0YwHhcNMjUwNjI4MjMzMDIyWhcNMjUwNzA1MjMzMDIyWjAYMRYwFAYD VQQDEw02ODYwN2IwZS1iMjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7U6vJR/HRczUS+iiGK0V8JuA08w6ogLuN9DEJvppPlcQjxHjriVLkDwn9iJU isOkWn4TzSdUWjRCwHGbQqG3zfwR1IqvL0LSIzJPS56JO62G/VigLbXJDi6HHT3b rJgyPag2RfgHWRkmHaS6Jlj6fNY/xbSrtxUE8rpZUHTK3GSSkDRULpCNpipBJv6e Z914LXRJkLK9hboLorfLhzQmq8Zwe9rWhaRQ1PQz4TyQ5UL89Ht+3/qu1l/+yPBH LcfjQmAiOu+IZ238AJ8v6bgZZsRa1GEMPDq7ybRld7D5OYfLHxeOKXU2Wvs4zZ6N fbVroyRL+4LSlL1KWKzpW6ytpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoX8UpW m+/Z02enBnws6G8utIhDMB8GA1UdIwQYMBaAFK0G28xTNMbXUTcvsXlU9Kqt3Jw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjU1Qy85RjE5Rjk2RTM3 MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0ZFJOeS14ZVZUMHFxM2Nu RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRYmJ6Rk0weHRkUk55LXhlVlQwcXEzY25EOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjU1Qy85RjE5Rjk2RTM3MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0 ZFJOeS14ZVZUMHFxM2NuRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLVOH3Uu/g0wtFUCOmfhEC+U6l+loX5i9NbUf4762bibtaGvViuHbf fh6+S4eupxRrlk4cdOTR5DSL7oKTfWWeXurbGSMdPnpjhXpNU4EuzA2FRsB1ZpWd rst22TMbz4ZAjQrAbWjflIZQaVQ1YFOuW+H5mnxqLerfVoLbHL/TNJKXeOO2eYb1 v2/1plmqc6XoNXMjam8XaVPeu9prW4y2VkKCVi8xnF1Ty8Tt4gKe/Q9BA3gxkvcU 45/viD1QVwzfyqkGpmeiTIcIvqs7bQ+mLj62h65k91tsLS7vVtpmBf8aeyQAITtE 1jJcF26IhNfrfmXOvfWD+oCbEebgUImt -----END CERTIFICATE-----Generated at Sun Jun 29 17:48:53 2025 by rpki-client