$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: bGq7w9urEHvVtl1nJeq0gDlBCRMOYxBO8vN9gTFpOR8= Subject key identifier: 8B:47:E4:EF:77:34:C9:90:75:E4:6B:9B:29:63:A1:F5:F8:AF:DC:73 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 0430 Signing time: Thu 03 Jul 2025 00:41:01 +0000 Manifest this update: Thu 03 Jul 2025 00:41:00 +0000 Manifest next update: Thu 10 Jul 2025 00:41:00 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: 5iGYGaqPEofhrHvks2Eur00QFyWXot+AWkjjyFKKu3o=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Jul 3 00:41:00 2025 GMT Not After : Jul 10 00:41:00 2025 GMT Subject: CN=6865d19c-78ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e4:79:96:c0:41:aa:83:db:cc:fb:35:35:08: 8d:77:25:a9:3b:93:45:51:3b:e0:c4:e3:24:10:30: 0d:85:74:60:39:45:87:49:8f:5d:3e:b4:51:81:b5: 47:92:69:80:2d:19:c9:2e:79:48:08:f8:7a:aa:b6: ad:d6:d3:80:3e:76:9a:da:4c:99:ca:93:3b:5a:61: 58:e6:62:95:aa:eb:8c:14:53:bb:82:15:d8:b9:0e: 2f:78:e6:c7:73:c1:19:ac:2c:e1:e1:7b:b7:df:df: 1a:0d:31:c7:af:16:99:2f:c2:64:d8:a6:c8:e1:dd: 73:51:7f:bb:e4:d2:8b:61:04:2c:40:02:ac:be:31: 31:4f:6e:0e:e7:f7:b0:f4:d3:0a:c5:2f:f9:bd:e7: be:75:35:3f:bc:e3:04:28:0d:de:50:10:43:cf:79: 65:77:6f:b9:dd:32:a0:c9:fd:78:2e:b1:ef:81:62: 7a:04:22:63:aa:1b:21:c3:0a:07:6e:be:04:60:67: a1:0b:d0:aa:ad:8d:e2:dc:52:c2:6f:14:84:6a:1f: 79:1d:7f:33:59:51:3a:a3:90:87:e4:96:01:7a:e8: ad:d6:9b:60:88:f8:00:27:29:96:76:0e:fd:52:90: ed:58:5a:ff:f5:b4:da:e4:b9:a7:95:1b:1c:ed:88: e0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:47:E4:EF:77:34:C9:90:75:E4:6B:9B:29:63:A1:F5:F8:AF:DC:73 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:fc:a1:1d:be:b4:9a:42:fc:a4:14:c0:5f:7a:1c:60:37:39: 7b:e9:ac:26:37:bd:bf:fb:04:e6:e4:a6:6c:38:be:2c:3a:83: c9:ee:06:31:de:cb:53:75:c6:a2:3f:76:55:15:b4:12:e4:fb: c2:57:47:7c:45:8d:2c:53:3b:fe:48:52:7a:70:f1:91:b9:a4: b4:de:c2:f2:d2:63:9d:60:9e:f4:1f:81:a2:3f:5a:fe:ff:03: 8d:16:d6:07:9d:ce:4e:bf:f8:5b:d4:15:9a:4b:ca:c5:a8:6d: da:48:5f:60:c0:c3:f2:0e:fc:6e:e8:c1:df:6c:bb:aa:bc:7a: c3:c5:3d:6c:ce:c7:f5:e5:3a:b2:32:cf:4e:c3:bd:9c:6e:81: ef:53:9e:de:8d:cb:73:f6:df:e8:fc:5d:41:54:b1:4b:f1:f7: 0b:cf:9a:e3:e8:d2:f3:e9:cb:23:2c:39:e4:2d:00:51:1d:70: c3:08:c3:90:a6:5f:1f:6e:0a:0a:bb:bb:15:79:0c:8d:58:96: fd:e2:32:d5:bb:e8:4d:09:6c:4f:7f:61:59:00:39:f5:8e:8a: 10:74:5e:bd:fb:af:36:bf:cf:66:63:14:31:1c:65:56:43:67: 28:46:47:47:fa:84:b0:b8:8f:51:7a:a6:9f:a1:66:78:94:05: 9f:80:a9:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUwNzAzMDA0MTAwWhcNMjUwNzEwMDA0MTAwWjAYMRYwFAYD VQQDEw02ODY1ZDE5Yy03OGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+R5lsBBqoPbzPs1NQiNdyWpO5NFUTvgxOMkEDANhXRgOUWHSY9dPrRRgbVH kmmALRnJLnlICPh6qrat1tOAPnaa2kyZypM7WmFY5mKVquuMFFO7ghXYuQ4veObH c8EZrCzh4Xu3398aDTHHrxaZL8Jk2KbI4d1zUX+75NKLYQQsQAKsvjExT24O5/ew 9NMKxS/5vee+dTU/vOMEKA3eUBBDz3lld2+53TKgyf14LrHvgWJ6BCJjqhshwwoH br4EYGehC9CqrY3i3FLCbxSEah95HX8zWVE6o5CH5JYBeuit1ptgiPgAJymWdg79 UpDtWFr/9bTa5LmnlRsc7YjgPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItH5O93 NMmQdeRrmyljofX4r9xzMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr/KEdvrSaQvykFMBfehxgNzl76awmN72/+wTm5KZsOL4sOoPJ7gYx 3stTdcaiP3ZVFbQS5PvCV0d8RY0sUzv+SFJ6cPGRuaS03sLy0mOdYJ70H4GiP1r+ /wONFtYHnc5Ov/hb1BWaS8rFqG3aSF9gwMPyDvxu6MHfbLuqvHrDxT1szsf15Tqy Ms9Ow72cboHvU57ejctz9t/o/F1BVLFL8fcLz5rj6NLz6csjLDnkLQBRHXDDCMOQ pl8fbgoKu7sVeQyNWJb94jLVu+hNCWxPf2FZADn1jooQdF69+682v89mYxQxHGVW Q2coRkdH+oSwuI9ReqafoWZ4lAWfgKls -----END CERTIFICATE-----Generated at Thu Jul 3 07:53:09 2025 by rpki-client