$ rpki-client -vvf rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft File: QstM8CH28_wMgcT98cl9dCEAMXs.mft (raw, json) Hash identifier: QCEKq0VO7VwVluIVV0LKd4SnPF0cT9u9RZSHdrNyT1A= Subject key identifier: 08:F2:BE:FD:05:B8:6E:8A:E4:F4:24:A4:57:03:6D:16:61:BC:A9:20 Authority key identifier: 42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B Certificate issuer: /CN=A9113B73/serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Certificate serial: 074B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft Manifest number: 0742 Signing time: Wed 18 Jun 2025 21:35:06 +0000 Manifest this update: Wed 18 Jun 2025 21:35:06 +0000 Manifest next update: Wed 25 Jun 2025 21:35:06 +0000 Files and hashes: 1: QstM8CH28_wMgcT98cl9dCEAMXs.crl (hash: Bvi1Xm8E/TmmWWcKvZMwDmB5o5zjIHzCi+hcgoTKBM4=) 2: 038C732E874611EB83B41D39C4F9AE02.roa (hash: xDFL83BDJofXsoqgs4IapCDppXS9oRsh4Talz2QouY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:35:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1867 (0x74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113B73, serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Validity Not Before: Jun 18 21:35:06 2025 GMT Not After : Jun 25 21:35:06 2025 GMT Subject: CN=6853310a-43b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cd:15:de:34:04:26:5e:46:2f:f9:a5:4d:f3: 7d:24:95:22:b0:30:de:63:b3:3d:30:5c:b7:a1:19: 95:09:71:8d:b1:0f:e3:85:39:55:65:97:a4:d9:26: 09:40:28:21:91:7f:b8:e4:c4:45:ac:fb:ac:fc:14: 8d:5f:c7:73:04:a0:2b:4a:8d:bf:72:b1:0a:f4:e5: 88:f9:c8:02:6e:23:b8:df:1b:e6:3a:25:94:1a:78: 0d:3a:67:2e:fa:79:92:62:a0:4d:50:59:2d:e4:b2: bf:89:7a:4c:1b:84:3c:c3:3f:48:8c:a0:24:c5:92: f0:41:a2:c8:5e:de:d5:14:8f:a4:4f:f9:6d:03:d9: 87:46:98:59:89:b2:7c:d3:9f:85:fa:b4:ef:54:a6: 9b:07:fd:51:90:8c:95:37:e5:dd:92:33:c4:86:7e: 78:8a:ae:b0:ab:43:bd:0c:39:0b:45:3a:c2:2e:82: c6:8d:b2:eb:81:a3:7d:07:49:95:e5:4f:f1:f6:04: 9f:f8:10:62:48:b4:ea:29:a4:89:29:1d:42:26:27: 97:04:67:08:a1:8c:d8:30:fd:00:9c:e8:ce:04:e7: 56:03:ea:03:55:51:c1:1c:8a:c0:46:3e:c5:d2:54: ca:7f:eb:f8:cc:d0:b9:89:b8:a8:e9:13:19:2f:39: 73:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F2:BE:FD:05:B8:6E:8A:E4:F4:24:A4:57:03:6D:16:61:BC:A9:20 X509v3 Authority Key Identifier: keyid:42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:47:18:02:17:76:49:40:de:0c:14:e6:ef:19:26:07:53:89: 93:01:fc:3e:67:4f:0b:0b:30:85:8a:a0:c3:4b:06:6f:1d:98: 6c:b0:50:df:e9:19:39:74:01:d1:43:65:b6:e6:50:f7:77:c6: 08:08:ec:d8:58:cd:de:9e:9b:9e:f9:18:81:9e:a1:5a:9f:2b: 7c:65:db:ce:0e:5b:ab:53:97:24:49:10:42:b6:77:80:c3:47: 40:f2:a8:83:a4:d9:13:15:e6:2a:62:47:78:5b:14:99:78:93: 6f:45:b5:25:ce:cd:01:f3:d8:8a:b1:78:17:94:dd:7e:97:2b: b5:06:1a:5b:a6:5f:d4:9d:14:2e:f1:cb:90:93:1b:99:a2:2f: 85:35:7c:d7:7e:94:dc:be:e6:de:ac:65:d6:99:d1:b6:73:3e: b9:c6:7e:52:ac:b9:5a:59:5a:6e:8c:9a:ce:17:75:49:47:9d: 0d:5c:e0:f2:4e:87:0d:14:97:df:aa:50:19:e7:f5:c5:82:18: ba:16:38:8d:7b:81:d4:77:3a:fe:50:a7:46:1a:18:b4:46:8e: 77:c7:f4:d9:d5:c5:04:4f:70:89:1b:43:6b:39:d4:f6:49:29: 54:cd:76:12:c6:a5:72:47:a2:ef:3b:06:cb:5c:16:03:d4:50: 96:e3:87:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCNzMxMTAvBgNVBAUTKDQyQ0I0Q0YwMjFGNkYzRkMwQzgxQzRGREYxQzk3RDc0 MjEwMDMxN0IwHhcNMjUwNjE4MjEzNTA2WhcNMjUwNjI1MjEzNTA2WjAYMRYwFAYD VQQDEw02ODUzMzEwYS00M2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl80V3jQEJl5GL/mlTfN9JJUisDDeY7M9MFy3oRmVCXGNsQ/jhTlVZZek2SYJ QCghkX+45MRFrPus/BSNX8dzBKArSo2/crEK9OWI+cgCbiO43xvmOiWUGngNOmcu +nmSYqBNUFkt5LK/iXpMG4Q8wz9IjKAkxZLwQaLIXt7VFI+kT/ltA9mHRphZibJ8 05+F+rTvVKabB/1RkIyVN+XdkjPEhn54iq6wq0O9DDkLRTrCLoLGjbLrgaN9B0mV 5U/x9gSf+BBiSLTqKaSJKR1CJieXBGcIoYzYMP0AnOjOBOdWA+oDVVHBHIrARj7F 0lTKf+v4zNC5ibio6RMZLzlz/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjyvv0F uG6K5PQkpFcDbRZhvKkgMB8GA1UdIwQYMBaAFELLTPAh9vP8DIHE/fHJfXQhADF7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0I3My9CQTYzNTk4MjJG RTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhfd01nY1Q5OGNsOWRDRUFN WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzdE04Q0gyOF93TWdjVDk4Y2w5ZENFQU1Ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0I3My9CQTYzNTk4MjJGRTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhf d01nY1Q5OGNsOWRDRUFNWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIRxgCF3ZJQN4MFObvGSYHU4mTAfw+Z08LCzCFiqDDSwZvHZhssFDf 6Rk5dAHRQ2W25lD3d8YICOzYWM3enpue+RiBnqFanyt8ZdvODlurU5ckSRBCtneA w0dA8qiDpNkTFeYqYkd4WxSZeJNvRbUlzs0B89iKsXgXlN1+lyu1Bhpbpl/UnRQu 8cuQkxuZoi+FNXzXfpTcvuberGXWmdG2cz65xn5SrLlaWVpujJrOF3VJR50NXODy TocNFJffqlAZ5/XFghi6FjiNe4HUdzr+UKdGGhi0Ro53x/TZ1cUET3CJG0NrOdT2 SSlUzXYSxqVyR6LvOwbLXBYD1FCW44cp -----END CERTIFICATE-----Generated at Thu Jun 19 12:59:45 2025 by rpki-client