$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: x1a6h16Z3A3jyI+3WPQ/FIIj7uJNyVYxDlM0DO9ece0= Subject key identifier: 08:46:6C:A1:F3:49:75:D9:CA:E9:6E:09:8F:F3:C7:0C:00:01:5A:BC Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 01FC Signing time: Tue 01 Jul 2025 02:44:53 +0000 Manifest this update: Tue 01 Jul 2025 02:44:52 +0000 Manifest next update: Tue 08 Jul 2025 02:44:52 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: NIRMWUKOpYQAO0cKKxzrhhuyArwSprICwiWijoQhZWQ=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Jul 1 02:44:52 2025 GMT Not After : Jul 8 02:44:52 2025 GMT Subject: CN=68634ba4-3a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ff:07:8a:ba:cb:00:10:89:87:5d:ab:28:f1: 5f:32:71:8b:e8:4b:6f:a1:1d:1f:26:a1:f9:33:c1: b2:42:9b:e8:50:4d:ad:82:59:af:05:b7:94:15:a7: 8d:a7:d9:c1:b4:6f:e9:83:d5:ea:9e:43:ec:7f:bc: d5:be:fc:6b:52:92:95:6b:cf:25:69:40:7a:4a:5d: 43:30:49:4d:5d:9c:a2:f1:47:21:95:8d:ef:1e:42: 29:68:94:c3:de:31:06:02:97:31:5a:05:e8:ed:5b: 71:cf:90:1f:59:0c:95:33:2a:28:17:f1:bf:3d:d8: ea:67:4f:0f:12:4a:1e:b7:d3:e4:a6:6c:58:88:47: c7:b9:41:4f:d3:24:8d:e5:4b:a9:fb:d9:4a:e9:74: 10:08:42:33:17:cb:c6:ea:1f:14:d7:41:93:e2:e7: 23:b1:08:5a:f4:ec:ed:4c:f1:72:3a:b0:78:5f:98: b5:23:a7:04:09:df:c2:9a:6b:f0:27:27:66:25:75: d3:ef:0c:c8:4e:ea:56:2a:c5:68:c0:3d:81:9a:aa: 02:86:bf:81:78:89:eb:1b:3d:e8:6a:0c:79:23:ed: ca:53:d5:b2:23:4d:16:6e:0a:36:a8:65:de:a0:96: ea:b4:6c:4f:5a:c6:b1:7f:b7:ae:64:5d:2c:32:f0: 61:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:46:6C:A1:F3:49:75:D9:CA:E9:6E:09:8F:F3:C7:0C:00:01:5A:BC X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a6:c3:e6:4c:c4:04:86:37:2c:2e:93:64:bc:da:66:c2:ef: 43:66:3d:90:00:1b:e1:f2:e9:72:2a:c2:72:c1:77:c7:23:b5: 57:3d:e8:82:55:8c:a3:b7:38:20:ee:16:c9:5a:00:e7:b2:62: 70:47:c4:cb:93:00:35:0f:f1:6b:95:c7:1c:7c:81:8f:f6:1c: f9:c2:57:b6:c2:09:39:ab:ae:2c:f5:3b:38:ba:26:f3:f3:0e: 9b:fa:aa:e9:88:1f:2e:7a:b5:93:e3:5b:ec:91:2b:10:0f:61: c1:ab:85:22:c2:bd:0e:0b:52:1e:c3:aa:63:1d:e1:59:21:31: 18:06:66:a2:f8:51:08:22:da:fe:fe:52:21:04:42:1c:05:ed: e2:65:14:ad:91:f4:53:cb:ae:76:ce:63:07:6e:47:89:09:12: 8d:3e:94:e4:8b:e8:f0:8b:af:23:97:67:bb:95:0e:c8:b3:dd: 89:52:16:90:e1:5a:b1:22:34:32:66:12:b1:db:08:0d:38:fd: d6:03:68:a0:1c:22:e1:da:59:af:98:b8:2e:1d:69:fd:e7:10: e2:44:6d:4a:8b:5d:53:30:a0:a3:12:4f:02:cd:83:97:3c:f6: c5:cc:97:24:a8:b1:f7:57:e0:30:01:07:d7:63:eb:b1:3e:1f: 8d:fa:da:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUwNzAxMDI0NDUyWhcNMjUwNzA4MDI0NDUyWjAYMRYwFAYD VQQDEw02ODYzNGJhNC0zYTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/8HirrLABCJh12rKPFfMnGL6EtvoR0fJqH5M8GyQpvoUE2tglmvBbeUFaeN p9nBtG/pg9XqnkPsf7zVvvxrUpKVa88laUB6Sl1DMElNXZyi8UchlY3vHkIpaJTD 3jEGApcxWgXo7Vtxz5AfWQyVMyooF/G/PdjqZ08PEkoet9PkpmxYiEfHuUFP0ySN 5Uup+9lK6XQQCEIzF8vG6h8U10GT4ucjsQha9OztTPFyOrB4X5i1I6cECd/Cmmvw JydmJXXT7wzITupWKsVowD2BmqoChr+BeInrGz3oagx5I+3KU9WyI00Wbgo2qGXe oJbqtGxPWsaxf7euZF0sMvBhqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhGbKHz SXXZyuluCY/zxwwAAVq8MB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6psPmTMQEhjcsLpNkvNpmwu9DZj2QABvh8ulyKsJywXfHI7VXPeiC VYyjtzgg7hbJWgDnsmJwR8TLkwA1D/FrlcccfIGP9hz5wle2wgk5q64s9Ts4uibz 8w6b+qrpiB8uerWT41vskSsQD2HBq4Uiwr0OC1Iew6pjHeFZITEYBmai+FEIItr+ /lIhBEIcBe3iZRStkfRTy652zmMHbkeJCRKNPpTki+jwi68jl2e7lQ7Is92JUhaQ 4VqxIjQyZhKx2wgNOP3WA2igHCLh2lmvmLguHWn95xDiRG1Ki11TMKCjEk8CzYOX PPbFzJckqLH3V+AwAQfXY+uxPh+N+tp+ -----END CERTIFICATE-----Generated at Wed Jul 2 11:43:37 2025 by rpki-client