$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: J3/NRJ9VcL2Uwyq7OIjDF5gAZxtnYh0CwCqOJDVHUtg= Subject key identifier: 90:E5:A9:B6:69:AF:B6:F7:70:96:54:A5:A3:8F:EB:1E:A7:70:B0:BA Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 18F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 18CD Signing time: Wed 02 Jul 2025 16:36:38 +0000 Manifest this update: Wed 02 Jul 2025 16:36:37 +0000 Manifest next update: Wed 09 Jul 2025 16:36:37 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: BCnBuVUV6C/E8yQ7EZB59j/5abZOAl6fvJXz7OvHuH0=) 2: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=) 3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6391 (0x18f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Jul 2 16:36:37 2025 GMT Not After : Jul 9 16:36:37 2025 GMT Subject: CN=68656015-2a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:27:49:02:c1:63:6f:22:91:fa:61:02:b1:84: 88:aa:cb:a0:44:60:24:b7:7b:f6:12:1f:5c:68:61: bd:54:2f:e0:40:58:90:b8:d9:b2:e2:3f:0b:7a:d5: 4b:61:18:1b:92:4a:fd:dc:f3:96:fe:1d:ab:11:2e: 0f:ea:48:82:3d:32:77:b7:61:bd:39:5f:2b:a9:70: a3:43:9b:0c:a3:9d:7e:8d:d6:3c:ef:f8:0c:0d:23: 27:64:2d:18:17:7c:0f:9f:94:ae:2c:64:98:05:6c: b2:4f:18:33:8b:be:85:49:c2:03:75:6e:03:3b:3e: 4c:ee:5f:90:5b:89:6c:c2:e6:da:2f:e6:73:27:b4: fc:93:2b:ea:26:1d:25:f0:67:af:4e:15:cd:56:bd: dd:9f:34:b7:1b:6e:30:0d:c1:59:1b:d7:72:13:59: 8f:30:3e:0d:82:c3:d1:cd:a3:df:99:a6:9c:65:8e: 9b:d3:19:cb:61:dc:3d:3e:cf:c2:96:3f:1d:d1:d5: 6d:a2:af:14:e4:46:d8:3d:92:57:53:19:b2:6d:94: ef:7e:66:fa:9a:20:a9:fa:04:35:e4:6c:c4:0c:29: 70:a3:7f:13:cc:7c:28:d7:29:a6:d9:e8:9d:ab:c5: 86:8a:f5:52:33:72:0d:ab:51:3d:bf:71:0d:50:e2: b5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E5:A9:B6:69:AF:B6:F7:70:96:54:A5:A3:8F:EB:1E:A7:70:B0:BA X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:a3:aa:86:03:52:24:54:9e:7d:a0:59:ce:73:61:8a:c4:6f: 07:1b:42:ae:58:07:fd:6a:07:3f:82:ae:b6:9a:23:9c:7d:6e: 97:ce:d6:d3:60:94:57:ab:45:a4:5d:11:99:2b:98:17:20:fd: 26:0b:42:2c:95:4e:01:70:08:19:b7:84:09:43:05:e0:15:30: 9e:54:c4:8e:2b:7c:1f:21:43:9d:0d:fa:a6:66:4b:76:7c:94: a4:d5:57:88:fa:22:af:fc:ce:65:32:66:a4:66:24:16:28:18: e3:2c:5c:c8:05:88:58:25:16:6e:64:5f:a8:e3:54:af:1f:a7: b5:6d:e0:ae:57:5d:b8:87:19:9c:0a:2f:0d:68:91:67:b4:63: 96:8a:db:7e:77:8d:2f:d9:35:2e:1c:95:1c:42:ab:cf:86:54: 02:3d:37:25:be:b9:88:8c:35:88:f0:e9:98:b5:03:4e:bf:22: 28:d3:82:ab:cf:43:81:10:07:65:a1:35:90:13:2f:a4:66:ca: 4c:53:f0:bf:43:b4:78:7d:1a:eb:f4:0f:23:a4:f1:92:b0:e2: 52:7b:b4:51:cf:e8:84:cb:3f:4d:4d:5c:6f:b1:86:a7:41:1e: aa:16:f5:92:81:d8:1d:1c:91:e8:56:fc:3c:a3:c8:e1:4f:28: 96:12:69:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUwNzAyMTYzNjM3WhcNMjUwNzA5MTYzNjM3WjAYMRYwFAYD VQQDEw02ODY1NjAxNS0yYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+CdJAsFjbyKR+mECsYSIqsugRGAkt3v2Eh9caGG9VC/gQFiQuNmy4j8LetVL YRgbkkr93POW/h2rES4P6kiCPTJ3t2G9OV8rqXCjQ5sMo51+jdY87/gMDSMnZC0Y F3wPn5SuLGSYBWyyTxgzi76FScIDdW4DOz5M7l+QW4lswubaL+ZzJ7T8kyvqJh0l 8GevThXNVr3dnzS3G24wDcFZG9dyE1mPMD4NgsPRzaPfmaacZY6b0xnLYdw9Ps/C lj8d0dVtoq8U5EbYPZJXUxmybZTvfmb6miCp+gQ15GzEDClwo38TzHwo1ymm2eid q8WGivVSM3INq1E9v3ENUOK17QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDlqbZp r7b3cJZUpaOP6x6ncLC6MB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBno6qGA1IkVJ59oFnOc2GKxG8HG0KuWAf9agc/gq62miOcfW6XztbT YJRXq0WkXRGZK5gXIP0mC0IslU4BcAgZt4QJQwXgFTCeVMSOK3wfIUOdDfqmZkt2 fJSk1VeI+iKv/M5lMmakZiQWKBjjLFzIBYhYJRZuZF+o41SvH6e1beCuV124hxmc Ci8NaJFntGOWitt+d40v2TUuHJUcQqvPhlQCPTclvrmIjDWI8OmYtQNOvyIo04Kr z0OBEAdloTWQEy+kZspMU/C/Q7R4fRrr9A8jpPGSsOJSe7RRz+iEyz9NTVxvsYan QR6qFvWSgdgdHJHoVvw8o8jhTyiWEmnf -----END CERTIFICATE-----Generated at Thu Jul 3 02:44:06 2025 by rpki-client