$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft File: qSFNuZGEmynE8EXDNkcOnYLEjOI.mft (raw, json) Hash identifier: eIvX8PxEA57taXRuixw14IpaUNcgTh4N7CC9nAK3ndM= Subject key identifier: 9D:B9:70:8F:60:D0:51:FF:ED:74:55:39:FB:71:D5:E8:A7:15:53:77 Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft Manifest number: FE Signing time: Tue 01 Jul 2025 05:42:21 +0000 Manifest this update: Tue 01 Jul 2025 05:42:20 +0000 Manifest next update: Tue 08 Jul 2025 05:42:20 +0000 Files and hashes: 1: qSFNuZGEmynE8EXDNkcOnYLEjOI.crl (hash: 6/zkMlHTCiAS+5xIdkbCjui4r5biejXm6ZZKIw0QMYE=) 2: 70C04006D5EF11EE8279357EC4F9AE02.roa (hash: Jluh9mrxLx3CmJG4INslPH8RKZMT0C9KwG0Dzzekk1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929, serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: Jul 1 05:42:20 2025 GMT Not After : Jul 8 05:42:20 2025 GMT Subject: CN=6863753d-33fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7a:75:7a:ed:67:f6:e4:0f:4e:39:0b:52:44: 11:d6:7d:6a:82:19:8a:d1:28:43:9c:2a:0d:c2:bc: 33:82:64:eb:70:45:e5:e8:24:ff:ad:04:33:57:cf: 21:34:c1:b6:70:ef:6b:99:a9:b1:cf:22:59:04:bb: 6f:ff:85:69:0c:dd:e3:da:93:9c:6d:2e:df:1d:99: d1:6c:e0:14:d5:73:d5:1e:49:55:d1:e3:64:cf:2e: a6:0d:6b:7b:c7:e7:17:4d:7a:e6:4d:7b:0a:79:2f: c4:44:f6:fd:f4:4a:b3:eb:57:c3:12:02:ae:fd:71: 63:33:85:1b:3d:cc:a7:50:12:64:80:4f:a9:cf:dc: 30:cb:bc:1c:45:da:a2:7e:44:2b:a8:b9:07:94:ad: 3a:79:38:ae:00:f4:dd:73:80:6a:98:94:9d:1e:a0: 3d:34:ef:f8:56:d9:51:74:3b:4c:88:5a:6e:cb:ad: b9:83:4e:35:f0:e5:78:9f:56:82:5a:e3:fd:5d:d9: 73:2f:9f:03:f7:b0:6c:78:6d:20:20:c6:a8:ec:58: 13:f3:f9:b6:20:11:53:b2:d6:f5:68:2b:9f:62:71: a6:71:c0:41:24:b2:ba:6f:bb:1c:3e:1e:9d:ac:c7: 68:bc:91:18:5f:0a:39:56:b6:d7:03:2b:3c:2c:5e: 01:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B9:70:8F:60:D0:51:FF:ED:74:55:39:FB:71:D5:E8:A7:15:53:77 X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:75:07:c1:77:d9:c6:58:26:c1:16:75:f0:13:97:cb:b2:b8: 13:f9:30:4b:13:af:9b:f5:13:53:52:0c:d2:05:e5:11:0a:a1: da:cf:97:48:c3:0b:ad:27:d7:15:49:02:9e:d0:ab:f3:01:0b: 10:84:98:a7:72:04:90:34:c4:66:a3:e5:6c:9f:e3:86:0c:ae: 28:dc:db:f8:d0:84:74:ed:99:72:8c:4d:94:77:59:3f:cc:3f: d6:ee:0a:a5:11:c0:7a:b8:0f:19:6b:24:a4:07:65:f8:cc:4c: 96:ec:f5:51:e8:1a:d9:94:d8:0d:8b:b0:26:c0:de:37:12:45: 37:92:e7:78:47:bc:c4:a8:a2:87:b0:86:6b:06:15:ca:ec:e5: 3b:e4:29:f0:69:93:17:e5:50:aa:18:01:81:30:94:72:58:e4: 4f:fb:28:9a:da:b2:db:d0:52:25:26:7c:3e:3a:54:53:a2:24: 16:f7:b0:e4:3f:91:02:19:df:a5:36:2d:d9:10:35:9d:82:ee: f0:31:98:d3:89:60:50:bf:24:6c:3b:ef:f9:3b:fc:29:30:9a: ef:f4:db:a4:f1:32:65:8a:74:74:ed:b7:d1:28:3e:ff:44:e1: bb:31:9e:b8:5c:1d:2f:bf:00:0a:ba:f6:13:44:1d:4f:23:dc: d0:77:50:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5MjkxMTAvBgNVBAUTKEE5MjE0REI5OTE4NDlCMjlDNEYwNDVDMzM2NDcwRTlE ODJDNDhDRTIwHhcNMjUwNzAxMDU0MjIwWhcNMjUwNzA4MDU0MjIwWjAYMRYwFAYD VQQDEw02ODYzNzUzZC0zM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3p1eu1n9uQPTjkLUkQR1n1qghmK0ShDnCoNwrwzgmTrcEXl6CT/rQQzV88h NMG2cO9rmamxzyJZBLtv/4VpDN3j2pOcbS7fHZnRbOAU1XPVHklV0eNkzy6mDWt7 x+cXTXrmTXsKeS/ERPb99Eqz61fDEgKu/XFjM4UbPcynUBJkgE+pz9wwy7wcRdqi fkQrqLkHlK06eTiuAPTdc4BqmJSdHqA9NO/4VtlRdDtMiFpuy625g0418OV4n1aC WuP9XdlzL58D97BseG0gIMao7FgT8/m2IBFTstb1aCufYnGmccBBJLK6b7scPh6d rMdovJEYXwo5VrbXAys8LF4B0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ25cI9g 0FH/7XRVOftx1einFVN3MB8GA1UdIwQYMBaAFKkhTbmRhJspxPBFwzZHDp2CxIzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjkyOS9CRUJERUE5OEQ1 RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15bkU4RVhETmtjT25ZTEVq T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjkyOS9CRUJERUE5OEQ1RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15 bkU4RVhETmtjT25ZTEVqT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTdQfBd9nGWCbBFnXwE5fLsrgT+TBLE6+b9RNTUgzSBeURCqHaz5dI wwutJ9cVSQKe0KvzAQsQhJincgSQNMRmo+Vsn+OGDK4o3Nv40IR07ZlyjE2Ud1k/ zD/W7gqlEcB6uA8ZaySkB2X4zEyW7PVR6BrZlNgNi7AmwN43EkU3kud4R7zEqKKH sIZrBhXK7OU75CnwaZMX5VCqGAGBMJRyWORP+yia2rLb0FIlJnw+OlRToiQW97Dk P5ECGd+lNi3ZEDWdgu7wMZjTiWBQvyRsO+/5O/wpMJrv9Nuk8TJlinR07bfRKD7/ ROG7MZ64XB0vvwAKuvYTRB1PI9zQd1AN -----END CERTIFICATE-----Generated at Tue Jul 1 17:09:05 2025 by rpki-client