$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft File: QBwaNjT5h86fnlzvVAncG9D_K6o.mft (raw, json) Hash identifier: Hdly5hEt3uN5W86t5RV/hbisxGbcVHl6d6YOgT2ysdc= Subject key identifier: 2D:3B:36:4D:E6:7F:56:5E:D9:4E:A1:A0:2D:EA:DA:84:94:13:E7:F4 Authority key identifier: 40:1C:1A:36:34:F9:87:CE:9F:9E:5C:EF:54:09:DC:1B:D0:FF:2B:AA Certificate issuer: /CN=A91A5A57/serialNumber=401C1A3634F987CE9F9E5CEF5409DC1BD0FF2BAA Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBwaNjT5h86fnlzvVAncG9D_K6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft Manifest number: A7 Signing time: Tue 01 Jul 2025 06:47:22 +0000 Manifest this update: Tue 01 Jul 2025 06:47:21 +0000 Manifest next update: Tue 08 Jul 2025 06:47:21 +0000 Files and hashes: 1: QBwaNjT5h86fnlzvVAncG9D_K6o.crl (hash: z+3nFtQPWm5f5QszkY5YZPJk0UgRFbHyINptqYJ4jeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.crl rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBwaNjT5h86fnlzvVAncG9D_K6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57, serialNumber=401C1A3634F987CE9F9E5CEF5409DC1BD0FF2BAA Validity Not Before: Jul 1 06:47:21 2025 GMT Not After : Jul 8 06:47:21 2025 GMT Subject: CN=6863847a-2ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f2:35:93:28:12:9f:52:c0:43:a9:91:2d:e9: e3:2d:aa:09:d3:f2:e6:de:f0:f4:12:3a:9c:2b:af: ae:51:27:35:b5:87:48:a4:eb:fe:8c:fa:b6:e5:4c: 4f:d5:3e:96:2a:67:cf:93:9e:3f:ed:dc:8d:1f:9f: 1d:fc:03:db:14:a0:31:b7:bd:f5:da:cd:1b:82:7f: 05:76:ec:cc:d9:3e:85:9d:18:37:60:bc:63:af:b7: eb:69:4b:ce:da:04:74:65:9d:db:29:b2:61:0e:29: 60:8a:5f:55:26:49:e4:8b:7d:41:d5:fa:d3:0d:0e: 48:69:23:30:c4:0e:91:bd:52:da:0a:43:8a:75:af: 60:3b:b5:db:bd:4b:03:ef:9a:d8:bd:c6:1e:c5:b9: a3:89:e9:a8:51:13:8d:30:f8:7c:36:10:b2:38:cb: f3:8b:73:aa:e9:cb:51:1e:b1:16:53:4c:b1:f0:57: 53:88:fb:f4:bc:d8:97:c7:39:95:7a:6a:78:91:57: 86:e6:fe:83:95:c0:24:7b:11:6e:66:07:e4:38:b8: a0:85:90:b3:2c:f4:41:21:07:ef:1a:a4:cb:c0:90: ff:4e:b5:29:be:2f:7a:93:59:44:cb:e1:56:df:c2: d5:06:3d:73:55:df:f0:89:8d:21:3c:6b:7d:48:24: 0f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3B:36:4D:E6:7F:56:5E:D9:4E:A1:A0:2D:EA:DA:84:94:13:E7:F4 X509v3 Authority Key Identifier: keyid:40:1C:1A:36:34:F9:87:CE:9F:9E:5C:EF:54:09:DC:1B:D0:FF:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBwaNjT5h86fnlzvVAncG9D_K6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:03:9e:3c:80:7b:39:8c:47:6b:0b:0b:ae:ec:bb:85:04:3a: 58:d1:70:ec:c8:83:71:12:52:06:bd:88:85:e5:5a:42:13:69: b2:dc:a6:08:e3:12:c4:02:e8:9d:60:3e:03:7b:07:f5:87:71: 44:d9:ba:e6:d4:d5:6c:ad:22:25:f6:e3:8c:92:6c:82:da:c3: 4f:54:3a:b5:ad:1c:0e:51:57:f8:87:af:e9:a4:45:c7:66:52: 27:cd:91:69:8d:88:5c:62:1a:e8:1c:6d:b0:fa:ad:df:f0:19: 2e:d6:fd:e6:f1:15:f2:76:aa:56:16:6b:62:a7:5e:8f:43:d8: 51:bf:dd:a8:49:48:c4:dd:2b:d6:ab:be:0f:9d:39:72:13:ba: 08:9c:00:31:b5:24:97:66:7f:18:e5:ee:c5:9b:9e:f6:21:ee: 36:45:5c:82:f8:46:90:81:dc:ea:8a:86:bc:03:0f:33:85:22: b9:88:04:c9:72:2e:41:77:e1:de:e7:04:3e:65:3e:2a:91:b6: 12:3d:fb:0a:a8:92:23:16:e4:f1:b2:60:5e:d7:f8:fb:e2:50: 1d:83:0c:88:e7:1e:81:2c:0c:7d:f5:9f:66:66:cc:4e:28:ca: 17:76:ab:bf:b3:a7:7b:68:37:d8:30:24:2a:74:1f:2d:01:ab: a9:64:da:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBNTcxMTAvBgNVBAUTKDQwMUMxQTM2MzRGOTg3Q0U5RjlFNUNFRjU0MDlEQzFC RDBGRjJCQUEwHhcNMjUwNzAxMDY0NzIxWhcNMjUwNzA4MDY0NzIxWjAYMRYwFAYD VQQDEw02ODYzODQ3YS0yY2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfI1kygSn1LAQ6mRLenjLaoJ0/Lm3vD0EjqcK6+uUSc1tYdIpOv+jPq25UxP 1T6WKmfPk54/7dyNH58d/APbFKAxt7312s0bgn8FduzM2T6FnRg3YLxjr7fraUvO 2gR0ZZ3bKbJhDilgil9VJknki31B1frTDQ5IaSMwxA6RvVLaCkOKda9gO7XbvUsD 75rYvcYexbmjiemoURONMPh8NhCyOMvzi3Oq6ctRHrEWU0yx8FdTiPv0vNiXxzmV emp4kVeG5v6DlcAkexFuZgfkOLighZCzLPRBIQfvGqTLwJD/TrUpvi96k1lEy+FW 38LVBj1zVd/wiY0hPGt9SCQPLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC07Nk3m f1Ze2U6hoC3q2oSUE+f0MB8GA1UdIwQYMBaAFEAcGjY0+YfOn55c71QJ3BvQ/yuq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny83NkYyNjdGQTU2 RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi9RQndhTmpUNWg4NmZubHp2VkFuY0c5RF9L Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCd2FOalQ1aDg2Zm5senZWQW5jRzlEX0s2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE1Ny83NkYyNjdGQTU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi9RQndhTmpUNWg4 NmZubHp2VkFuY0c5RF9LNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3A548gHs5jEdrCwuu7LuFBDpY0XDsyINxElIGvYiF5VpCE2my3KYI 4xLEAuidYD4Dewf1h3FE2brm1NVsrSIl9uOMkmyC2sNPVDq1rRwOUVf4h6/ppEXH ZlInzZFpjYhcYhroHG2w+q3f8Bku1v3m8RXydqpWFmtip16PQ9hRv92oSUjE3SvW q74PnTlyE7oInAAxtSSXZn8Y5e7Fm572Ie42RVyC+EaQgdzqioa8Aw8zhSK5iATJ ci5Bd+He5wQ+ZT4qkbYSPfsKqJIjFuTxsmBe1/j74lAdgwyI5x6BLAx99Z9mZsxO KMoXdqu/s6d7aDfYMCQqdB8tAaupZNo0 -----END CERTIFICATE-----Generated at Thu Jul 3 01:12:44 2025 by rpki-client