$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft File: QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft (raw, json) Hash identifier: l1d8H81fQR8hoZvG+Jq6/yiO1hkpOBaG6bEqnISCoag= Subject key identifier: 8F:D7:64:09:CA:D3:E0:9A:8F:6C:80:86:CE:D6:6E:AF:EC:48:FC:84 Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft Manifest number: 03BD Signing time: Thu 03 Jul 2025 01:00:59 +0000 Manifest this update: Thu 03 Jul 2025 01:00:59 +0000 Manifest next update: Thu 10 Jul 2025 01:00:59 +0000 Files and hashes: 1: QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl (hash: NMBY/Od36bcw8AP06zLYin6SrLjv4chsTD2d66AGw10=) 2: FFDA736894CB11ECA827746DC4F9AE02.roa (hash: pj2LnVj5JMKgQoW/CIO4SmTNgNuQfByzQiOUhiNM/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9, serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Jul 3 01:00:59 2025 GMT Not After : Jul 10 01:00:59 2025 GMT Subject: CN=6865d64b-73ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ca:1f:be:c5:35:2c:cf:8b:27:e3:35:98:b6: e0:c4:13:e4:86:92:9f:eb:a8:1f:9c:04:f6:b4:98: 8c:08:95:ad:c8:65:15:0a:ba:86:81:be:fb:62:de: f2:81:5a:04:ec:58:db:4d:22:14:e1:c4:89:00:03: c4:55:ab:21:26:75:48:e8:b2:63:be:a5:b9:63:c9: a2:6d:88:76:dc:ad:e0:4c:14:1e:fa:e0:2f:a2:bc: 44:7b:d3:59:73:d2:fa:5c:3d:4a:0b:c5:19:4d:50: 89:9d:68:01:98:16:7a:0a:fe:33:00:87:f8:72:0d: 82:70:f9:c4:fb:c7:ee:ec:6c:67:2a:2f:c3:e5:87: 4a:dc:1d:e3:6a:fa:29:be:72:6b:4d:a4:56:37:73: a5:6d:85:1e:7b:ce:75:11:73:f8:23:73:f6:8d:ed: 2e:82:dc:97:8d:98:c6:20:5f:6a:a4:95:28:c4:2c: 97:ff:78:00:26:f4:19:35:60:00:2c:84:4c:ce:d0: b1:e6:f2:82:8c:2e:e4:8d:af:c2:9c:b7:fd:e6:0e: 40:bc:c8:27:c7:69:c9:1b:10:91:15:33:8a:13:a9: f6:94:7d:ac:e9:b1:0a:e6:d6:66:d3:27:fc:58:85: e6:bc:09:6d:57:3b:ca:c0:f0:e3:e7:db:72:8f:42: a7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D7:64:09:CA:D3:E0:9A:8F:6C:80:86:CE:D6:6E:AF:EC:48:FC:84 X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:99:d0:58:1b:28:82:fe:3a:d3:4d:36:c0:48:cb:21:3d:a4: 4a:cc:f9:1d:fc:13:6f:96:6b:62:17:9b:77:20:b9:a6:8d:d5: fa:f6:84:65:e0:e4:af:c1:61:f6:0d:2e:1d:7e:be:27:b7:5c: ed:7d:c1:ae:e1:db:20:ea:37:57:cf:11:e7:80:b2:ea:29:a6: fb:84:31:00:20:df:f3:c5:07:92:97:43:02:02:f8:1b:36:de: 49:5a:8a:55:1c:03:bc:a1:a4:67:d2:79:65:fa:3c:3f:53:bf: 7b:c9:f9:ca:5e:e9:91:a2:9e:cf:fe:68:f9:a1:6a:c4:b6:63: f6:33:e8:71:c0:69:a9:02:b6:09:38:8e:cf:80:6b:46:49:20: 8a:07:2c:01:95:36:b8:17:46:04:e9:b0:b2:a1:3c:cf:99:93: 39:5a:68:cc:c6:66:d2:fc:51:fe:a5:8e:f6:b8:ea:db:4f:1c: 1f:d0:70:13:52:7c:8f:05:70:46:8b:8a:e2:33:78:27:93:e4: e8:c0:c5:58:a2:b6:ee:ff:66:39:00:69:96:cc:e1:62:a0:75: 02:c9:c9:aa:b0:d0:9e:0e:ca:37:5a:41:c0:de:3a:9e:d1:4c: cb:96:e7:d3:f9:7c:bd:59:aa:ae:95:75:db:4c:f1:2c:0e:ab: 5c:1d:ff:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjUwNzAzMDEwMDU5WhcNMjUwNzEwMDEwMDU5WjAYMRYwFAYD VQQDEw02ODY1ZDY0Yi03M2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssofvsU1LM+LJ+M1mLbgxBPkhpKf66gfnAT2tJiMCJWtyGUVCrqGgb77Yt7y gVoE7FjbTSIU4cSJAAPEVashJnVI6LJjvqW5Y8mibYh23K3gTBQe+uAvorxEe9NZ c9L6XD1KC8UZTVCJnWgBmBZ6Cv4zAIf4cg2CcPnE+8fu7GxnKi/D5YdK3B3javop vnJrTaRWN3OlbYUee851EXP4I3P2je0ugtyXjZjGIF9qpJUoxCyX/3gAJvQZNWAA LIRMztCx5vKCjC7kja/CnLf95g5AvMgnx2nJGxCRFTOKE6n2lH2s6bEK5tZm0yf8 WIXmvAltVzvKwPDj59tyj0KnxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/XZAnK 0+Caj2yAhs7Wbq/sSPyEMB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhDOS83MzhEREZDNDk0QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1 OG5JQjlOdktyR3daRWhrQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXmdBYGyiC/jrTTTbASMshPaRKzPkd/BNvlmtiF5t3ILmmjdX69oRl 4OSvwWH2DS4dfr4nt1ztfcGu4dsg6jdXzxHngLLqKab7hDEAIN/zxQeSl0MCAvgb Nt5JWopVHAO8oaRn0nll+jw/U797yfnKXumRop7P/mj5oWrEtmP2M+hxwGmpArYJ OI7PgGtGSSCKBywBlTa4F0YE6bCyoTzPmZM5WmjMxmbS/FH+pY72uOrbTxwf0HAT UnyPBXBGi4riM3gnk+TowMVYorbu/2Y5AGmWzOFioHUCycmqsNCeDso3WkHA3jqe 0UzLlufT+Xy9WaqulXXbTPEsDqtcHf9n -----END CERTIFICATE-----Generated at Fri Jul 4 17:52:23 2025 by rpki-client