$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft File: QRfXbD7AS2IRM0hQpc1uowVTUFw.mft (raw, json) Hash identifier: rlznG5MXy+eww7YbxYxN/UJ4n4PWZitAK3CdNr5ct0U= Subject key identifier: 0C:CE:42:B3:6F:80:2F:98:49:E4:D4:2A:51:8A:28:60:EF:45:93:5A Authority key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C Certificate issuer: /CN=A91ED6B5/serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Certificate serial: 0456 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft Manifest number: 0452 Signing time: Tue 01 Jul 2025 00:44:43 +0000 Manifest this update: Tue 01 Jul 2025 00:44:42 +0000 Manifest next update: Tue 08 Jul 2025 00:44:42 +0000 Files and hashes: 1: QRfXbD7AS2IRM0hQpc1uowVTUFw.crl (hash: 6LhwFTkLBS2c6fYd194/ARAMlkfOI2xL0LLEs/qgU0M=) 2: 06A899FECCF311EC86719729C4F9AE02.roa (hash: aXuFAPx3sTT3XGxZkToSNXJ/vwo2rNiJs7Ikunvy7v4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED6B5, serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Validity Not Before: Jul 1 00:44:42 2025 GMT Not After : Jul 8 00:44:42 2025 GMT Subject: CN=68632f7a-dedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:a8:5f:59:f9:e9:d6:37:4d:d1:d6:2d:e1: 12:4a:15:4c:2c:7e:ed:fb:6d:0e:e9:27:a7:3c:dd: 96:0f:ad:6e:61:06:89:be:ef:5a:6e:65:ba:d5:8a: eb:30:8c:48:3d:1e:77:59:69:4f:9f:8b:e4:ef:84: 42:b6:0d:3c:87:46:7e:7f:41:82:ef:4d:ea:a3:a7: a9:79:38:63:aa:47:d0:ee:dc:24:25:87:9c:70:64: 55:04:88:b7:26:15:87:55:fc:e5:96:e7:5e:f4:72: c9:3c:ce:f7:65:94:ba:1d:00:83:5f:3e:9a:86:f3: f3:d5:bd:13:d5:d4:38:98:08:7d:09:34:91:41:95: 4c:50:67:19:ad:26:fe:cf:6d:6b:92:ac:2b:2b:c2: 31:59:07:ef:11:4f:d3:4a:67:d8:e7:c7:d5:8b:a7: f4:e9:ea:c4:d4:e3:b3:44:43:0d:8d:5e:57:29:6c: 3b:b1:5d:f4:a6:10:be:f7:45:91:97:30:ed:9e:5f: ed:aa:ee:11:67:97:8a:65:43:dc:40:95:81:c8:6b: d6:25:e2:2e:7d:f7:f8:31:cf:7f:1e:0c:58:dd:2f: 47:52:99:bc:53:06:94:28:ef:b1:7e:c7:cd:88:29: 6b:14:0a:c0:5a:da:25:b6:6a:96:0b:91:9c:21:67: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:CE:42:B3:6F:80:2F:98:49:E4:D4:2A:51:8A:28:60:EF:45:93:5A X509v3 Authority Key Identifier: keyid:41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:19:78:94:41:eb:7f:84:31:e2:bf:e0:8b:a7:9d:3e:be:06: 45:f2:59:7a:3c:9e:21:e7:48:8f:a9:7c:e5:58:c2:1e:69:37: 24:50:c0:17:71:2c:02:c4:65:e8:6c:85:f2:d7:81:fb:a6:72: fe:33:f6:19:b9:26:89:2b:00:64:9c:f0:62:5c:0e:70:7e:28: b6:95:59:cb:ae:b3:6a:19:bd:ce:a7:05:05:c2:d0:38:42:0e: ba:89:7d:7a:15:61:0f:3e:95:88:a7:20:f3:46:7a:31:e2:37: 42:c2:bd:86:0f:9f:b0:24:6d:12:fa:b9:4a:7a:6c:a7:6d:2d: ec:56:f3:1e:ca:b4:96:84:6f:ad:ad:42:16:06:c4:04:40:6e: fe:da:3e:08:4e:a3:77:c9:83:b3:f2:0a:3b:f4:ec:da:ce:15: 32:ae:1d:a4:54:5b:05:7b:8d:b9:06:e3:d5:d2:95:83:a7:5d: 30:74:21:1e:45:fb:1c:23:a7:d2:29:4d:95:d5:96:96:00:52: 7b:2b:2d:bb:ce:9c:00:08:27:a9:ef:aa:2d:42:9a:f5:10:5a: 12:15:05:4c:02:c5:55:d2:04:49:23:ac:30:9d:42:66:5e:4f: eb:2e:b7:d0:ab:bb:77:b9:ba:4e:73:43:50:51:35:df:25:d8: d3:72:e3:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ2QjUxMTAvBgNVBAUTKDQxMTdENzZDM0VDMDRCNjIxMTMzNDg1MEE1Q0Q2RUEz MDU1MzUwNUMwHhcNMjUwNzAxMDA0NDQyWhcNMjUwNzA4MDA0NDQyWjAYMRYwFAYD VQQDEw02ODYzMmY3YS1kZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqmoX1n56dY3TdHWLeESShVMLH7t+20O6SenPN2WD61uYQaJvu9abmW61Yrr MIxIPR53WWlPn4vk74RCtg08h0Z+f0GC703qo6epeThjqkfQ7twkJYeccGRVBIi3 JhWHVfzllude9HLJPM73ZZS6HQCDXz6ahvPz1b0T1dQ4mAh9CTSRQZVMUGcZrSb+ z21rkqwrK8IxWQfvEU/TSmfY58fVi6f06erE1OOzREMNjV5XKWw7sV30phC+90WR lzDtnl/tqu4RZ5eKZUPcQJWByGvWJeIufff4Mc9/HgxY3S9HUpm8UwaUKO+xfsfN iClrFArAWtoltmqWC5GcIWcZTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzOQrNv gC+YSeTUKlGKKGDvRZNaMB8GA1UdIwQYMBaAFEEX12w+wEtiETNIUKXNbqMFU1Bc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDZCNS9FRjQ2OUJGQzU5 NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMySVJNMGhRcGMxdW93VlRV RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSZlhiRDdBUzJJUk0waFFwYzF1b3dWVFVGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDZCNS9FRjQ2OUJGQzU5NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMy SVJNMGhRcGMxdW93VlRVRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlGXiUQet/hDHiv+CLp50+vgZF8ll6PJ4h50iPqXzlWMIeaTckUMAX cSwCxGXobIXy14H7pnL+M/YZuSaJKwBknPBiXA5wfii2lVnLrrNqGb3OpwUFwtA4 Qg66iX16FWEPPpWIpyDzRnox4jdCwr2GD5+wJG0S+rlKemynbS3sVvMeyrSWhG+t rUIWBsQEQG7+2j4ITqN3yYOz8go79OzazhUyrh2kVFsFe425BuPV0pWDp10wdCEe RfscI6fSKU2V1ZaWAFJ7Ky27zpwACCep76otQpr1EFoSFQVMAsVV0gRJI6wwnUJm Xk/rLrfQq7t3ubpOc0NQUTXfJdjTcuPi -----END CERTIFICATE-----Generated at Tue Jul 1 18:45:46 2025 by rpki-client