$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft File: QyiNyelBKGI4XB6D3TeGNYMyDRg.mft (raw, json) Hash identifier: Vcl2VLPlbQmDBb4z33dl6cUXZNgJFWBXIXFOvvd3Xzo= Subject key identifier: 2E:05:98:D4:A3:D0:82:25:A4:D7:C5:BE:44:8B:00:DD:1F:82:10:F1 Authority key identifier: 43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 Certificate issuer: /CN=A91D8A55/serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft Manifest number: 0181 Signing time: Tue 01 Jul 2025 04:05:36 +0000 Manifest this update: Tue 01 Jul 2025 04:05:35 +0000 Manifest next update: Tue 08 Jul 2025 04:05:35 +0000 Files and hashes: 1: QyiNyelBKGI4XB6D3TeGNYMyDRg.crl (hash: zPweORKYpGzCHxbWp5qsFmeAW/aImLc937IoG7/zbPU=) 2: D1596F0E0BCF11EE8FB8EE16C4F9AE02.roa (hash: JnZnYwDPY6T9KAqalaHmfpI6/yYUrsg6tF5XISERaGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8A55, serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Validity Not Before: Jul 1 04:05:35 2025 GMT Not After : Jul 8 04:05:35 2025 GMT Subject: CN=68635e8f-759b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:41:82:31:49:60:45:08:91:17:10:e9:7e:23: d5:1a:fe:bf:39:74:71:ac:6f:fe:26:71:72:b8:b1: 00:19:7b:a4:8f:e0:84:07:b0:8e:c6:43:8a:7e:f3: 38:c0:70:08:0d:27:64:7e:66:4b:eb:ec:2c:3b:df: 88:1a:08:62:84:75:f2:bb:ff:69:e9:1d:83:41:82: 9c:ed:34:c7:29:2f:f7:e8:33:14:5c:cf:a3:bf:68: 33:23:23:db:7c:ee:4f:a6:ed:26:d3:f1:50:e6:85: b2:c3:4f:91:a5:5b:49:15:20:a3:db:e3:d3:0f:4f: 78:63:52:24:57:ad:89:9e:d5:78:4a:ae:ab:42:49: df:87:88:e7:20:20:1a:b2:fc:cf:e1:e8:25:e0:ec: 79:c5:dc:9c:fe:c9:e2:d9:1b:f0:b5:fa:65:45:28: 63:96:bc:bd:6b:9b:53:8a:c1:8a:5f:e3:ff:34:c6: 9b:64:96:b0:ba:b3:35:14:bc:23:a8:e8:6c:cd:a8: 8f:d4:b6:2c:45:a1:9d:f0:10:97:e0:ca:d7:a1:51: 96:1d:f1:31:45:da:da:88:eb:8f:45:06:23:4a:7c: f5:ee:08:a7:cd:ab:10:62:de:26:f2:bc:fb:66:93: 9a:d6:50:54:61:40:32:4c:b1:f1:4e:ca:d3:31:50: aa:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:05:98:D4:A3:D0:82:25:A4:D7:C5:BE:44:8B:00:DD:1F:82:10:F1 X509v3 Authority Key Identifier: keyid:43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:f3:ec:7c:09:07:96:b7:b4:d3:76:15:b9:13:cd:66:42:b3: 3c:f8:a8:71:bb:40:0a:92:6e:48:c1:56:b3:ae:1e:7f:bf:eb: 84:b5:80:9b:14:fd:f1:bf:c0:8a:d6:cc:67:b0:90:ca:a9:62: 22:39:95:23:97:a0:52:a9:49:a8:f8:55:f6:8d:aa:a8:25:09: 60:cf:a8:80:bb:3c:83:c2:8e:3f:5c:6a:e2:36:de:7c:57:34: 29:a4:34:fa:0c:01:10:4a:79:cd:e9:3d:f7:6d:eb:54:ea:c1: 22:fc:64:a4:b8:9c:11:7c:fe:62:69:03:4c:4c:74:5a:c7:d7: cc:20:08:49:78:ed:d4:2c:bd:36:d2:b3:6e:f6:fc:42:61:a1: c9:c4:9f:9b:2d:40:48:89:0c:0a:23:51:11:0e:19:d5:32:ce: bb:7e:95:30:47:31:f0:01:69:c8:c0:a9:f3:07:d9:58:be:0c: 09:bf:17:19:2d:80:e3:20:4a:06:63:66:64:45:0a:ff:99:c9: e5:b0:67:d2:02:79:17:21:31:ad:e1:dd:9c:82:b2:e4:c1:4b: 6f:83:3f:1b:de:9e:04:e7:e2:69:fd:00:ab:34:c9:91:cb:da: 45:fe:59:8f:4b:61:2d:92:cb:65:a4:77:52:91:87:ed:71:20: 43:d4:60:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhBNTUxMTAvBgNVBAUTKDQzMjg4REM5RTk0MTI4NjIzODVDMUU4M0REMzc4NjM1 ODMzMjBEMTgwHhcNMjUwNzAxMDQwNTM1WhcNMjUwNzA4MDQwNTM1WjAYMRYwFAYD VQQDEw02ODYzNWU4Zi03NTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykGCMUlgRQiRFxDpfiPVGv6/OXRxrG/+JnFyuLEAGXukj+CEB7COxkOKfvM4 wHAIDSdkfmZL6+wsO9+IGghihHXyu/9p6R2DQYKc7TTHKS/36DMUXM+jv2gzIyPb fO5Ppu0m0/FQ5oWyw0+RpVtJFSCj2+PTD094Y1IkV62JntV4Sq6rQknfh4jnICAa svzP4egl4Ox5xdyc/sni2RvwtfplRShjlry9a5tTisGKX+P/NMabZJawurM1FLwj qOhszaiP1LYsRaGd8BCX4MrXoVGWHfExRdraiOuPRQYjSnz17ginzasQYt4m8rz7 ZpOa1lBUYUAyTLHxTsrTMVCqUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4FmNSj 0IIlpNfFvkSLAN0fghDxMB8GA1UdIwQYMBaAFEMojcnpQShiOFweg903hjWDMg0Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEE1NS81RkM2NTgyNjBC QzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktHSTRYQjZEM1RlR05ZTXlE UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5aU55ZWxCS0dJNFhCNkQzVGVHTllNeURSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEE1NS81RkM2NTgyNjBCQzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktH STRYQjZEM1RlR05ZTXlEUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr8+x8CQeWt7TTdhW5E81mQrM8+Khxu0AKkm5IwVazrh5/v+uEtYCb FP3xv8CK1sxnsJDKqWIiOZUjl6BSqUmo+FX2jaqoJQlgz6iAuzyDwo4/XGriNt58 VzQppDT6DAEQSnnN6T33betU6sEi/GSkuJwRfP5iaQNMTHRax9fMIAhJeO3ULL02 0rNu9vxCYaHJxJ+bLUBIiQwKI1ERDhnVMs67fpUwRzHwAWnIwKnzB9lYvgwJvxcZ LYDjIEoGY2ZkRQr/mcnlsGfSAnkXITGt4d2cgrLkwUtvgz8b3p4E5+Jp/QCrNMmR y9pF/lmPS2EtkstlpHdSkYftcSBD1GAN -----END CERTIFICATE-----Generated at Wed Jul 2 19:45:51 2025 by rpki-client