$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft File: qkHKgdI-9YhhkyqtErMWkNvPEAM.mft (raw, json) Hash identifier: JeRYubK4F2vh59NpbCv0glI0blfTciZVllwbcPvVy6s= Subject key identifier: 41:2A:EB:69:78:AF:BD:96:B4:35:E8:13:33:56:88:47:34:76:FC:16 Authority key identifier: AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 Certificate issuer: /CN=A91A5744/serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft Manifest number: 0C4F Signing time: Wed 02 Jul 2025 18:38:21 +0000 Manifest this update: Wed 02 Jul 2025 18:38:21 +0000 Manifest next update: Wed 09 Jul 2025 18:38:21 +0000 Files and hashes: 1: qkHKgdI-9YhhkyqtErMWkNvPEAM.crl (hash: 43FNbDafvjLfS2mXERkw2JV7JMzj7OCYziTYQxudaQI=) 2: 220DBB66054011EA90A20C7EC4F9AE02.roa (hash: l5CGLlauMb+Ni/lNc+v9jsE4+D1HZp9e9rAFpWt3fHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5744, serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Validity Not Before: Jul 2 18:38:21 2025 GMT Not After : Jul 9 18:38:21 2025 GMT Subject: CN=68657c9d-6ade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cf:44:de:83:7d:ee:99:41:c2:b6:ca:52:0e: b2:81:66:eb:de:49:50:68:2f:e9:c6:83:9c:b8:19: bb:5d:46:83:65:b3:70:c9:73:fc:17:0b:82:c3:da: 0b:3c:1b:3f:f4:e5:20:c1:dd:de:ef:58:59:16:f7: 39:ad:9d:17:71:83:d1:fc:2d:c6:78:94:b0:3f:08: 41:60:c0:dd:e4:ba:3e:c7:4c:e7:e6:b1:50:bf:d6: c0:e1:21:31:0a:cf:12:16:a9:1e:1d:2b:a3:6a:e5: e8:32:77:d5:1a:dd:fa:24:96:b1:57:c7:5b:ee:5a: b0:71:29:86:79:d7:78:26:b1:74:8d:b9:10:6e:bb: 35:64:b2:c6:76:5f:05:1b:e4:31:e2:bc:61:78:3e: f7:23:5e:72:89:65:0f:53:c5:db:a4:a2:10:c5:8b: c5:63:09:2f:12:36:7c:91:34:35:29:e4:30:f5:f5: 37:8e:e2:6a:19:79:78:9f:43:e1:c4:80:91:6c:21: e8:df:c1:c1:ce:d4:7c:0c:7b:d0:3f:7c:eb:3f:8a: 3c:ff:ae:8e:ec:57:96:f8:4e:68:0b:b3:8d:61:9a: c3:27:cf:11:5e:57:48:57:ab:1b:35:91:77:35:ab: 21:22:7c:96:4f:17:dc:fb:b2:48:ea:b5:7c:09:44: 13:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:2A:EB:69:78:AF:BD:96:B4:35:E8:13:33:56:88:47:34:76:FC:16 X509v3 Authority Key Identifier: keyid:AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:bf:23:74:5a:3c:d9:bb:75:9e:e7:84:93:2d:c2:67:a2:40: 1b:c3:2e:f6:fc:1d:92:ca:3b:e4:4e:9b:1d:c6:08:f9:f3:a0: e9:32:1d:1e:95:fe:ee:8d:2b:ba:56:ff:d0:0c:dc:ce:47:74: b7:97:e6:ea:62:3c:f3:86:45:33:5b:a7:b7:d7:e7:e3:68:c2: 82:9f:86:25:04:5c:7e:36:54:6e:a4:d9:1e:12:39:88:33:52: d7:c0:45:f8:2d:c1:f8:c4:6d:5d:16:92:f8:bc:33:05:a5:97: 8d:5b:84:91:8a:6d:9a:da:6d:41:3b:57:82:b7:ab:6f:00:8d: 06:cf:38:c4:8f:6a:ef:ee:e3:db:9a:6e:ba:54:bf:e3:d5:09: 45:15:77:cc:ca:90:53:f9:fd:0b:9d:09:6e:af:65:0b:93:30: d3:ca:8c:6b:e9:39:5b:d7:0d:cd:1f:c3:b3:df:64:e8:8b:de: 8a:15:51:58:8a:8d:f5:6c:28:d1:51:18:65:c1:0f:6e:5f:7e: 3d:84:22:e1:8f:3f:f1:fd:27:84:66:7b:24:7a:0d:ce:f9:2e: 82:c9:c7:d2:b5:ce:5d:25:a8:e0:f7:51:4a:54:c3:d8:a7:cd: b9:b9:29:09:28:56:b2:be:d4:06:46:fd:78:df:4e:f4:21:1e: a1:c3:00:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3NDQxMTAvBgNVBAUTKEFBNDFDQTgxRDIzRUY1ODg2MTkzMkFBRDEyQjMxNjkw REJDRjEwMDMwHhcNMjUwNzAyMTgzODIxWhcNMjUwNzA5MTgzODIxWjAYMRYwFAYD VQQDEw02ODY1N2M5ZC02YWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAls9E3oN97plBwrbKUg6ygWbr3klQaC/pxoOcuBm7XUaDZbNwyXP8FwuCw9oL PBs/9OUgwd3e71hZFvc5rZ0XcYPR/C3GeJSwPwhBYMDd5Lo+x0zn5rFQv9bA4SEx Cs8SFqkeHSujauXoMnfVGt36JJaxV8db7lqwcSmGedd4JrF0jbkQbrs1ZLLGdl8F G+Qx4rxheD73I15yiWUPU8XbpKIQxYvFYwkvEjZ8kTQ1KeQw9fU3juJqGXl4n0Ph xICRbCHo38HBztR8DHvQP3zrP4o8/66O7FeW+E5oC7ONYZrDJ88RXldIV6sbNZF3 NashInyWTxfc+7JI6rV8CUQT6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEq62l4 r72WtDXoEzNWiEc0dvwWMB8GA1UdIwQYMBaAFKpByoHSPvWIYZMqrRKzFpDbzxAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTc0NC8zOTdGNkNENDA1 MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZaGhreXF0RXJNV2tOdlBF QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrSEtnZEktOVloaGt5cXRFck1Xa052UEVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTc0NC8zOTdGNkNENDA1MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZ aGhreXF0RXJNV2tOdlBFQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYvyN0WjzZu3We54STLcJnokAbwy72/B2SyjvkTpsdxgj586DpMh0e lf7ujSu6Vv/QDNzOR3S3l+bqYjzzhkUzW6e31+fjaMKCn4YlBFx+NlRupNkeEjmI M1LXwEX4LcH4xG1dFpL4vDMFpZeNW4SRim2a2m1BO1eCt6tvAI0GzzjEj2rv7uPb mm66VL/j1QlFFXfMypBT+f0LnQlur2ULkzDTyoxr6Tlb1w3NH8Oz32Toi96KFVFY io31bCjRURhlwQ9uX349hCLhjz/x/SeEZnskeg3O+S6CycfStc5dJajg91FKVMPY p825uSkJKFayvtQGRv143070IR6hwwDV -----END CERTIFICATE-----Generated at Thu Jul 3 11:30:15 2025 by rpki-client