$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: /Ne/x8S9pHgfF4LspMZkKPZ2QmA6RV5OPyPgag5bNjc= Subject key identifier: 03:4B:38:F9:73:28:64:FC:E1:C8:FE:4F:D1:07:6B:79:63:62:FE:2B Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 0603 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 05FF Signing time: Sat 28 Jun 2025 22:28:45 +0000 Manifest this update: Sat 28 Jun 2025 22:28:44 +0000 Manifest next update: Sat 05 Jul 2025 22:28:44 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: yIt5mkWAiY7xD3+1HjmmuRI+MrZRbFw0tkITgNckhVo=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: gGaPSZTXBZeyhBvTnRDrA4x3lhLiqzg2ne+ktqQeFQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1539 (0x603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Jun 28 22:28:44 2025 GMT Not After : Jul 5 22:28:44 2025 GMT Subject: CN=68606c9d-8142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:78:0a:c1:b9:45:77:b2:86:a2:2e:24:00:46: f8:0e:90:e6:d9:e3:e4:f4:3d:6f:de:ab:f9:ee:fb: 5e:f1:d8:8f:48:c5:49:1a:78:d6:3e:52:5b:5d:b6: 51:8e:de:ad:18:1e:6f:71:f9:5b:66:15:ed:dd:e5: d9:4b:60:be:24:f3:84:dd:d9:75:3a:0b:20:5c:94: 32:8e:48:b3:03:7a:10:4d:b6:0d:d2:de:8b:bf:4d: c0:26:b2:9b:68:3c:00:f5:a4:12:f9:04:e6:7c:bf: 95:b0:e4:12:fd:be:79:4d:71:23:40:79:f8:f2:c9: 9f:09:cc:09:91:3f:ec:a8:aa:47:59:b6:1f:b1:88: 2c:f7:d6:79:a5:39:54:b0:88:cb:98:f0:c3:ba:c9: e8:fe:e7:70:f6:98:f7:15:52:ae:d9:9a:dd:70:27: 8a:18:9c:96:17:98:75:d7:d0:9a:7b:6e:19:10:86: b3:25:39:76:42:5a:dd:d7:a4:3c:4c:ce:ab:43:25: 73:87:d7:33:ff:3f:3a:88:9d:31:6e:66:d9:8a:d8: 03:43:74:ed:c0:43:4b:f7:ad:5b:0b:a0:aa:4e:ab: 7d:55:d5:ec:97:21:38:3e:79:6b:4e:43:23:4c:cb: 02:4b:04:bb:bb:5e:ea:77:84:89:fa:a3:59:7f:3a: 0a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4B:38:F9:73:28:64:FC:E1:C8:FE:4F:D1:07:6B:79:63:62:FE:2B X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:8b:61:50:fb:da:ed:5c:e8:f1:19:a9:a5:68:51:5f:60:14: 6e:31:39:89:17:55:34:1d:81:68:90:ff:be:c7:ce:37:a8:3b: 1d:87:f2:e3:4d:42:dd:0a:4d:57:cd:bb:dd:61:7f:f3:52:51: 91:ca:96:d7:60:bc:fe:09:05:d7:67:47:81:58:29:75:ee:70: ea:93:5e:c0:1e:19:50:26:fe:3e:eb:55:da:72:2d:b9:fe:b0: 20:cb:25:07:25:db:fc:47:33:b1:c3:cf:9e:f8:8b:e0:d3:86: 44:2c:33:f1:c8:c6:7b:a1:0f:54:3f:19:d0:92:cf:8b:92:fd: 02:90:84:7a:d5:c2:8f:c5:b7:2c:6a:fc:6d:6b:b3:30:3d:5d: 36:ff:67:d6:6c:7d:e5:41:ae:f0:45:74:e6:42:cb:a4:66:6a: cf:5f:d7:9b:5b:5c:23:a6:00:b8:54:81:22:6b:0d:d9:a3:dd: 82:3d:e1:3f:95:3f:54:07:5f:8a:b1:4e:38:41:43:97:c8:b0: 90:c9:1f:30:1b:4f:15:10:5a:e1:d1:a6:2a:bc:47:80:6a:fe: 3a:ff:cc:b4:c6:18:6c:82:6b:02:71:71:98:a2:75:3b:52:1d: 3d:84:53:a8:e5:15:61:d2:26:6c:2e:3c:b5:fb:49:46:53:70: 32:79:40:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUwNjI4MjIyODQ0WhcNMjUwNzA1MjIyODQ0WjAYMRYwFAYD VQQDEw02ODYwNmM5ZC04MTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXgKwblFd7KGoi4kAEb4DpDm2ePk9D1v3qv57vte8diPSMVJGnjWPlJbXbZR jt6tGB5vcflbZhXt3eXZS2C+JPOE3dl1OgsgXJQyjkizA3oQTbYN0t6Lv03AJrKb aDwA9aQS+QTmfL+VsOQS/b55TXEjQHn48smfCcwJkT/sqKpHWbYfsYgs99Z5pTlU sIjLmPDDusno/udw9pj3FVKu2ZrdcCeKGJyWF5h119Cae24ZEIazJTl2Qlrd16Q8 TM6rQyVzh9cz/z86iJ0xbmbZitgDQ3TtwENL961bC6CqTqt9VdXslyE4PnlrTkMj TMsCSwS7u17qd4SJ+qNZfzoKFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANLOPlz KGT84cj+T9EHa3ljYv4rMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADi2FQ+9rtXOjxGamlaFFfYBRuMTmJF1U0HYFokP++x843qDsdh/Lj TULdCk1XzbvdYX/zUlGRypbXYLz+CQXXZ0eBWCl17nDqk17AHhlQJv4+61Xaci25 /rAgyyUHJdv8RzOxw8+e+Ivg04ZELDPxyMZ7oQ9UPxnQks+Lkv0CkIR61cKPxbcs avxta7MwPV02/2fWbH3lQa7wRXTmQsukZmrPX9ebW1wjpgC4VIEiaw3Zo92CPeE/ lT9UB1+KsU44QUOXyLCQyR8wG08VEFrh0aYqvEeAav46/8y0xhhsgmsCcXGYonU7 Uh09hFOo5RVh0iZsLjy1+0lGU3AyeUDs -----END CERTIFICATE-----Generated at Sun Jun 29 12:21:33 2025 by rpki-client