$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft File: -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json) Hash identifier: KEuNHSkvU14yfardjkpVk1xZIRLxR/LD3WZ69UXNFHY= Subject key identifier: BE:23:9F:F9:58:2F:1A:93:7E:CE:44:2A:08:CB:6F:1D:C2:C1:80:07 Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A Certificate issuer: /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft Manifest number: 067E Signing time: Wed 02 Jul 2025 22:36:14 +0000 Manifest this update: Wed 02 Jul 2025 22:36:14 +0000 Manifest next update: Wed 09 Jul 2025 22:36:14 +0000 Files and hashes: 1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: vF66zmxTb9d80xGBSUKBBJ+qKfQUDflf7UJKqT3B3TE=) 2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: ACBayas3sWm8LRkAgsG4BLCCWR0NJPgThMvDEl+trzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE97, serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Validity Not Before: Jul 2 22:36:14 2025 GMT Not After : Jul 9 22:36:14 2025 GMT Subject: CN=6865b45e-4a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:78:84:4e:1d:15:7d:96:cc:c5:eb:2e:ca: 6a:da:26:af:86:c5:45:32:33:4c:44:c8:30:83:17: fe:41:36:15:fa:c4:5a:05:fc:b5:1b:7d:20:88:63: f4:de:21:c0:88:08:77:54:e8:79:43:09:0d:d7:a3: 5f:4d:69:4e:f3:bd:f2:8d:f1:2d:06:9c:c2:d9:c1: 51:66:8c:f1:7b:17:1a:0b:fa:d4:8a:91:a9:f5:95: 60:73:30:f7:ef:48:c3:af:93:a7:ba:22:95:60:5f: f2:6a:47:86:26:36:37:91:eb:30:51:8f:0c:8e:5a: ca:31:01:8e:ae:eb:ec:fc:e4:cf:11:94:44:6a:04: 2e:9d:63:5c:45:42:8c:a3:63:a3:da:93:7e:cb:0a: ac:e9:9f:5a:cc:2b:60:dc:53:98:f5:2a:8b:d2:c5: 29:8c:a6:06:62:82:10:76:f1:49:1d:bb:14:f1:a5: f9:da:d7:d6:2c:4a:21:dd:19:c1:56:dc:64:be:ed: 04:ea:bf:cb:13:9a:81:76:75:58:04:34:92:16:87: 51:3b:e7:84:cc:10:ee:cf:71:56:56:c4:d9:48:7d: 5c:1f:86:b6:5d:64:0e:27:2a:27:c1:15:4f:a9:1f: ab:68:cb:65:83:a5:a1:97:2b:67:11:6d:52:87:33: e9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:23:9F:F9:58:2F:1A:93:7E:CE:44:2A:08:CB:6F:1D:C2:C1:80:07 X509v3 Authority Key Identifier: keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:02:13:fd:a7:b8:7b:84:ab:ae:22:f3:f2:a4:de:d7:2a:33: fc:c3:71:cf:73:b2:5b:8f:df:56:d7:dd:90:08:f9:e9:85:68: c5:1c:70:97:30:2c:23:2a:9b:36:2a:d5:77:e7:ff:b5:23:f6: f2:17:ca:7d:f9:17:e3:29:64:ea:e3:5a:7d:7a:a3:6e:a5:26: b8:7b:d3:41:75:55:ff:d4:7b:89:4d:2a:e8:8a:5d:e5:4e:04: ee:ae:26:d4:43:ab:d1:e9:6e:ed:d1:5b:71:ee:3b:b7:47:95: cc:44:b1:a2:9d:c7:4f:9b:48:a6:31:79:df:be:c0:1d:9e:96: 03:95:de:33:a0:fa:d4:f0:55:53:0b:44:b8:89:31:93:da:65: 0c:76:b4:96:e0:53:b3:4c:f3:82:31:24:65:e6:01:7b:d5:35: 98:d6:0d:a0:f6:38:eb:cb:4c:b0:a0:59:17:ff:3e:24:b6:90: 6c:3a:c6:10:47:87:69:b5:1b:12:6a:77:58:15:16:72:f3:83: 84:e9:6c:64:f5:aa:e1:36:e7:a6:d6:cf:20:7e:57:bf:6f:ee: bc:4f:d6:0e:3c:8d:51:66:0b:0f:2a:6e:61:55:f7:93:be:bc: d3:8c:1c:89:a0:31:4a:80:59:91:e2:4f:a0:6d:d8:9e:c9:54: 55:47:c2:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFOTcxMTAvBgNVBAUTKEY5MDZEOTdGN0FBODdDODZEQTk5MDM5RDIzNkVDREI1 MUQyMzFGN0EwHhcNMjUwNzAyMjIzNjE0WhcNMjUwNzA5MjIzNjE0WjAYMRYwFAYD VQQDEw02ODY1YjQ1ZS00YTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW94hE4dFX2WzMXrLspq2iavhsVFMjNMRMgwgxf+QTYV+sRaBfy1G30giGP0 3iHAiAh3VOh5QwkN16NfTWlO873yjfEtBpzC2cFRZozxexcaC/rUipGp9ZVgczD3 70jDr5OnuiKVYF/yakeGJjY3keswUY8MjlrKMQGOruvs/OTPEZREagQunWNcRUKM o2Oj2pN+ywqs6Z9azCtg3FOY9SqL0sUpjKYGYoIQdvFJHbsU8aX52tfWLEoh3RnB Vtxkvu0E6r/LE5qBdnVYBDSSFodRO+eEzBDuz3FWVsTZSH1cH4a2XWQOJyonwRVP qR+raMtlg6WhlytnEW1ShzPp/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4jn/lY LxqTfs5EKgjLbx3CwYAHMB8GA1UdIwQYMBaAFPkG2X96qHyG2pkDnSNuzbUdIx96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkU5Ny9EMjE4MzAyRTdE NDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJYmFtUU9kSTI3TnRSMGpI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RYlpmM3FvZkliYW1RT2RJMjdOdFIwakgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkU5Ny9EMjE4MzAyRTdENDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJ YmFtUU9kSTI3TnRSMGpIM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOAhP9p7h7hKuuIvPypN7XKjP8w3HPc7Jbj99W192QCPnphWjFHHCX MCwjKps2KtV35/+1I/byF8p9+RfjKWTq41p9eqNupSa4e9NBdVX/1HuJTSroil3l TgTuribUQ6vR6W7t0Vtx7ju3R5XMRLGincdPm0imMXnfvsAdnpYDld4zoPrU8FVT C0S4iTGT2mUMdrSW4FOzTPOCMSRl5gF71TWY1g2g9jjry0ywoFkX/z4ktpBsOsYQ R4dptRsSandYFRZy84OE6Wxk9arhNuem1s8gfle/b+68T9YOPI1RZgsPKm5hVfeT vrzTjByJoDFKgFmR4k+gbdieyVRVR8J9 -----END CERTIFICATE-----Generated at Thu Jul 3 17:30:07 2025 by rpki-client