$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: 0RMg/VJCjp1icPTLF/gB5LuehHMIa73pTvoAdihCzNM= Subject key identifier: 17:68:38:52:22:C7:3C:22:CC:25:56:12:E2:82:0A:44:58:EE:52:62 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 0166 Signing time: Tue 01 Jul 2025 04:24:14 +0000 Manifest this update: Tue 01 Jul 2025 04:24:13 +0000 Manifest next update: Tue 08 Jul 2025 04:24:13 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: uQ8FjM2lmDyGwSmMAz03/S+rJj2qfQpGVaO1UIK55mA=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: e+rpsrJfE3yU94kVnBShl6jDwyCOKp3rugpFTdwj4Dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Jul 1 04:24:13 2025 GMT Not After : Jul 8 04:24:13 2025 GMT Subject: CN=686362ee-6608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:3d:d5:93:89:24:f9:de:fb:ec:c8:48:82:c6: 8b:91:52:e4:13:45:85:ba:42:17:d0:d2:81:80:55: 73:bd:6b:1e:93:dc:28:2c:df:90:25:64:c1:19:9f: 9f:4b:ca:44:9c:d6:bc:fc:6f:6e:e2:17:a7:93:c1: 29:fb:d3:63:41:4c:93:89:45:41:3e:d8:aa:a5:4e: a9:d3:c7:b4:95:70:31:1a:1d:37:d2:91:ba:68:dc: bd:a5:db:fa:7b:ef:c1:de:4f:24:5c:ca:97:3d:58: ce:a9:29:14:8b:f6:8d:6c:24:1e:14:e0:61:4c:99: 29:5e:fc:43:f0:06:d5:95:33:f2:24:63:0b:c1:28: 91:6e:f7:11:3f:53:0e:71:c8:9f:1c:3e:8a:b0:de: 11:98:04:11:d7:7b:fe:03:ae:73:bf:89:74:c5:b7: 04:f7:4c:cc:33:9a:e2:c2:99:a7:84:6e:0c:f1:df: 14:c3:ac:1d:b1:25:4a:19:16:da:15:56:53:ea:17: 46:cd:f6:6a:15:52:82:ed:03:f1:3c:bb:53:ba:62: 04:08:e3:98:0a:ec:a9:d7:e9:34:3b:7a:39:f9:b8: 13:3f:94:e9:50:ce:1e:83:fe:89:de:69:1c:57:33: 58:db:c4:99:a6:37:e3:98:20:11:c0:55:bb:32:9a: 7b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:68:38:52:22:C7:3C:22:CC:25:56:12:E2:82:0A:44:58:EE:52:62 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:93:38:b3:59:04:38:fc:d7:9a:47:5c:b2:77:f4:c4:b5:80: 3d:86:83:44:a2:2b:fb:b6:4c:35:ed:93:30:0e:9d:31:99:77: e2:68:63:40:98:a1:1a:18:35:51:f1:2a:07:7b:c8:a4:b4:3b: 0d:4d:97:62:94:11:47:f6:17:99:fe:b3:99:95:19:6e:d9:0f: cf:a0:c2:f8:dc:6f:77:c4:34:ce:24:2c:da:3b:bf:0b:1d:02: 58:d3:fd:6c:00:de:1e:a0:fb:e0:60:67:04:31:8e:7b:a2:24: 03:81:5f:a8:e0:05:af:fc:89:5a:5a:10:fe:38:68:ff:06:6e: 1f:94:a4:e5:a4:38:48:a6:a4:9f:0a:e9:b7:7b:ac:de:87:f2: 67:a7:70:b5:a7:19:60:5b:b5:fe:af:6c:aa:d4:e5:ea:bc:67: d7:6d:96:f8:81:6e:24:43:9f:b1:ec:d2:4d:71:0b:86:4f:c9: d2:55:5a:5e:44:fa:0b:08:1a:65:18:27:55:bc:00:af:30:f3: b6:2f:d1:90:bd:8b:f6:12:0d:9c:e1:62:33:f3:2d:d8:78:21: 08:78:4c:95:c4:e2:a1:d3:c5:ec:5d:a8:98:f2:01:57:7f:3b: eb:e3:34:ad:e1:08:11:da:84:c4:2e:c4:b3:0b:d7:39:87:49: 7b:40:c1:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjUwNzAxMDQyNDEzWhcNMjUwNzA4MDQyNDEzWjAYMRYwFAYD VQQDEw02ODYzNjJlZS02NjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmT3Vk4kk+d777MhIgsaLkVLkE0WFukIX0NKBgFVzvWsek9woLN+QJWTBGZ+f S8pEnNa8/G9u4henk8Ep+9NjQUyTiUVBPtiqpU6p08e0lXAxGh030pG6aNy9pdv6 e+/B3k8kXMqXPVjOqSkUi/aNbCQeFOBhTJkpXvxD8AbVlTPyJGMLwSiRbvcRP1MO ccifHD6KsN4RmAQR13v+A65zv4l0xbcE90zMM5riwpmnhG4M8d8Uw6wdsSVKGRba FVZT6hdGzfZqFVKC7QPxPLtTumIECOOYCuyp1+k0O3o5+bgTP5TpUM4eg/6J3mkc VzNY28SZpjfjmCARwFW7Mpp7GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdoOFIi xzwizCVWEuKCCkRY7lJiMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADkzizWQQ4/NeaR1yyd/TEtYA9hoNEoiv7tkw17ZMwDp0xmXfiaGNA mKEaGDVR8SoHe8iktDsNTZdilBFH9heZ/rOZlRlu2Q/PoML43G93xDTOJCzaO78L HQJY0/1sAN4eoPvgYGcEMY57oiQDgV+o4AWv/IlaWhD+OGj/Bm4flKTlpDhIpqSf Cum3e6zeh/Jnp3C1pxlgW7X+r2yq1OXqvGfXbZb4gW4kQ5+x7NJNcQuGT8nSVVpe RPoLCBplGCdVvACvMPO2L9GQvYv2Eg2c4WIz8y3YeCEIeEyVxOKh08XsXaiY8gFX fzvr4zSt4QgR2oTELsSzC9c5h0l7QMFP -----END CERTIFICATE-----Generated at Wed Jul 2 15:00:41 2025 by rpki-client