$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft File: -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json) Hash identifier: FeDaK9LXmJh4wIeoM+JAKUsFVGxlbjlbzCpIwc0MZKE= Subject key identifier: D0:FF:3D:16:B7:4C:0F:48:7D:13:90:6F:83:85:DE:D4:D2:6D:27:D2 Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A Certificate issuer: /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft Manifest number: 0666 Signing time: Wed 14 May 2025 22:26:22 +0000 Manifest this update: Wed 14 May 2025 22:26:22 +0000 Manifest next update: Wed 21 May 2025 22:26:21 +0000 Files and hashes: 1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: DIv0lv2e+Gbwd3vxzj7C4+ANwhmU9kVXZmaWfDTEu40=) 2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: ACBayas3sWm8LRkAgsG4BLCCWR0NJPgThMvDEl+trzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE97, serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Validity Not Before: May 14 22:26:22 2025 GMT Not After : May 21 22:26:21 2025 GMT Subject: CN=6825188e-961e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:72:9d:e7:71:0c:68:0b:3c:5a:79:d2:e5:6a: 66:7e:5f:f2:7c:69:58:13:d1:70:af:34:37:5a:76: 8a:a6:94:f8:59:6a:59:aa:a5:3b:7e:94:1d:3d:23: d8:c9:8f:ee:2f:88:e0:07:0e:c1:ad:8b:37:ab:43: 84:fa:dc:aa:14:4a:d7:62:39:bb:b0:12:7c:29:b0: 40:89:23:5d:48:0d:02:0a:2f:8c:40:21:a8:ae:ad: 62:31:93:5d:af:b7:bd:c4:bf:3c:c7:fd:d5:e0:15: 7d:6a:7d:27:b7:48:99:59:4d:8c:a0:b1:e1:a0:7b: cc:be:5f:8c:88:f0:4d:68:1a:8b:4f:c5:bd:89:04: 02:7e:df:4c:4f:12:72:26:bf:05:58:95:6e:49:70: 72:47:f2:4b:f0:eb:ca:a5:18:62:56:ed:91:87:3d: 49:46:0e:5b:b8:f4:15:37:1a:d2:23:ce:bd:c3:ec: a5:7b:b9:52:b2:f7:7a:9c:3f:0f:a4:2c:e8:27:c6: 4a:7b:37:23:0c:95:64:e7:57:c1:60:af:f2:00:4f: be:dd:eb:59:af:61:7f:ab:87:2d:9e:e3:97:af:e2: 98:4f:c5:b9:40:4f:e9:2e:ea:e4:f4:14:ed:94:61: 11:8a:a8:fd:97:08:4a:ed:73:4f:ab:19:c2:78:23: 95:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FF:3D:16:B7:4C:0F:48:7D:13:90:6F:83:85:DE:D4:D2:6D:27:D2 X509v3 Authority Key Identifier: keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:72:0a:0f:65:dc:cc:6b:4e:ef:e3:eb:1f:0b:62:83:0d:f8: f2:9d:ae:76:00:8e:7e:80:b1:cd:55:36:92:80:bd:62:67:e8: 5a:5e:c3:e5:43:2b:6c:06:0f:d0:89:0c:58:e0:f7:d8:94:50: ce:29:8b:9a:5a:6a:e7:ad:f6:6e:32:a4:a4:b0:fe:24:33:e0: 00:b3:a3:c6:30:8f:e6:78:79:08:fc:4f:a8:ea:66:48:ce:a5: 9d:13:19:f5:e0:80:4c:e3:5e:76:0d:a5:93:c5:59:b1:5c:df: 9a:11:87:a1:41:85:06:23:35:d8:62:d7:78:c1:61:55:1b:91: 3c:b2:10:e7:ab:d8:48:41:fe:37:7c:3a:17:fc:ea:9a:46:12: ee:14:ca:d3:a4:f7:7b:7d:6a:6a:58:38:6c:d9:3e:44:ac:45: 44:6e:c1:da:16:37:22:ad:46:c4:92:1c:46:9d:a3:c4:8f:6b: d4:73:39:22:dd:40:d5:d9:9f:ce:b4:b6:c9:fa:b6:63:b6:62: 7a:f3:c8:43:1e:e6:89:c7:42:89:dc:4b:fa:d3:08:11:1c:da: ae:4a:67:aa:69:6d:c0:8c:59:85:b2:b4:1c:90:5e:c5:1d:e4: b8:e1:16:dd:05:c6:36:cb:f4:db:92:35:e3:7f:a6:a4:f4:b9: a4:5a:52:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFOTcxMTAvBgNVBAUTKEY5MDZEOTdGN0FBODdDODZEQTk5MDM5RDIzNkVDREI1 MUQyMzFGN0EwHhcNMjUwNTE0MjIyNjIyWhcNMjUwNTIxMjIyNjIxWjAYMRYwFAYD VQQDEw02ODI1MTg4ZS05NjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHKd53EMaAs8WnnS5Wpmfl/yfGlYE9FwrzQ3WnaKppT4WWpZqqU7fpQdPSPY yY/uL4jgBw7BrYs3q0OE+tyqFErXYjm7sBJ8KbBAiSNdSA0CCi+MQCGorq1iMZNd r7e9xL88x/3V4BV9an0nt0iZWU2MoLHhoHvMvl+MiPBNaBqLT8W9iQQCft9MTxJy Jr8FWJVuSXByR/JL8OvKpRhiVu2Rhz1JRg5buPQVNxrSI869w+yle7lSsvd6nD8P pCzoJ8ZKezcjDJVk51fBYK/yAE++3etZr2F/q4ctnuOXr+KYT8W5QE/pLurk9BTt lGERiqj9lwhK7XNPqxnCeCOVRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFND/PRa3 TA9IfROQb4OF3tTSbSfSMB8GA1UdIwQYMBaAFPkG2X96qHyG2pkDnSNuzbUdIx96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkU5Ny9EMjE4MzAyRTdE NDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJYmFtUU9kSTI3TnRSMGpI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RYlpmM3FvZkliYW1RT2RJMjdOdFIwakgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkU5Ny9EMjE4MzAyRTdENDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJ YmFtUU9kSTI3TnRSMGpIM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAicgoPZdzMa07v4+sfC2KDDfjyna52AI5+gLHNVTaSgL1iZ+haXsPl QytsBg/QiQxY4PfYlFDOKYuaWmrnrfZuMqSksP4kM+AAs6PGMI/meHkI/E+o6mZI zqWdExn14IBM4152DaWTxVmxXN+aEYehQYUGIzXYYtd4wWFVG5E8shDnq9hIQf43 fDoX/OqaRhLuFMrTpPd7fWpqWDhs2T5ErEVEbsHaFjcirUbEkhxGnaPEj2vUczki 3UDV2Z/OtLbJ+rZjtmJ688hDHuaJx0KJ3Ev60wgRHNquSmeqaW3AjFmFsrQckF7F HeS44RbdBcY2y/TbkjXjf6ak9LmkWlIB -----END CERTIFICATE-----Generated at Thu May 15 19:11:30 2025 by rpki-client