$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft File: QvY5Q1NTT7CXXsweC49bZSOvr8U.mft (raw, json) Hash identifier: T6cGHo09gjOV8qxDk9Cl+rkRYUZNpz/j//CQBgHBLgY= Subject key identifier: E6:96:93:F2:CA:53:69:C9:3A:51:26:BF:AF:1E:19:50:FC:A5:37:FE Authority key identifier: 42:F6:39:43:53:53:4F:B0:97:5E:CC:1E:0B:8F:5B:65:23:AF:AF:C5 Certificate issuer: /CN=A91178F4/serialNumber=42F6394353534FB0975ECC1E0B8F5B6523AFAFC5 Certificate serial: 0BC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft Manifest number: 0BC2 Signing time: Sat 14 Jun 2025 18:46:56 +0000 Manifest this update: Sat 14 Jun 2025 18:46:55 +0000 Manifest next update: Sat 21 Jun 2025 18:46:55 +0000 Files and hashes: 1: QvY5Q1NTT7CXXsweC49bZSOvr8U.crl (hash: 2j+yf18F6M877xY4B8G/glOtwnOE8uEQWS5znhaFALI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.crl rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3010 (0xbc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91178F4, serialNumber=42F6394353534FB0975ECC1E0B8F5B6523AFAFC5 Validity Not Before: Jun 14 18:46:55 2025 GMT Not After : Jun 21 18:46:55 2025 GMT Subject: CN=684dc3a0-f362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a8:8e:db:dd:58:3d:d2:f8:65:e0:df:3f:19: 4c:41:a1:c2:17:a0:f8:b5:fc:03:56:aa:2a:98:bd: 63:ab:9d:d6:5e:7a:aa:03:48:a8:b9:25:53:cb:98: cd:79:d3:fb:b5:d5:0a:ed:45:60:95:b0:f1:96:b0: a5:d7:c9:d3:dd:b1:c5:17:d2:ca:a3:74:e2:30:dc: ec:76:c1:1d:34:51:bc:2d:20:57:f3:98:e3:74:a3: ab:06:f8:8f:ba:b8:f0:8e:95:94:4f:b8:e0:3a:00: c1:81:5b:11:6e:98:36:cd:8e:a4:5a:08:40:9d:fa: 55:ae:15:53:1f:bd:53:71:74:47:6b:6a:a4:b7:21: 93:16:90:b2:60:15:6d:45:70:98:b9:56:4b:bf:a9: bd:e5:71:30:0f:93:7b:28:57:f6:1d:4d:73:87:37: fb:ca:fd:2b:ec:bf:40:c5:27:e5:b3:c3:3e:22:42: 10:63:f9:af:45:08:83:3e:3e:59:33:76:62:ec:d2: 0b:ff:4d:4f:f5:fc:19:b2:a7:00:0a:52:b2:76:81: 93:a6:93:d7:f2:a0:7e:9c:d8:78:7d:bc:6b:58:04: 20:32:30:e3:31:0b:53:e6:81:9d:24:1e:7b:f2:0e: e7:c0:63:ed:05:92:77:45:93:1a:8a:67:76:cf:9c: 71:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:96:93:F2:CA:53:69:C9:3A:51:26:BF:AF:1E:19:50:FC:A5:37:FE X509v3 Authority Key Identifier: keyid:42:F6:39:43:53:53:4F:B0:97:5E:CC:1E:0B:8F:5B:65:23:AF:AF:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:2c:62:9c:d8:58:26:60:89:9e:9a:26:09:23:bf:4b:d8:a5: 68:dc:75:67:69:05:ef:30:2e:a5:64:ba:3d:cd:d0:27:21:55: 45:9d:4e:68:55:24:51:b3:b8:f4:38:9b:2d:eb:a4:68:d1:83: 3b:f1:aa:8d:79:79:6b:9a:55:b2:30:6d:08:00:df:4b:64:c7: 8b:79:18:be:87:ed:39:8b:bc:93:53:50:f6:34:b6:46:29:12: 09:ca:0f:89:6e:de:06:d0:4f:0b:f3:29:91:a5:cc:6a:13:29: 9a:dd:89:74:01:5b:8f:59:ff:21:b3:c1:96:b2:04:b9:b9:cc: 02:89:e1:d3:4e:b8:25:d1:75:c5:a9:97:fd:f6:50:56:19:57: b5:9e:1a:20:5b:1f:10:e9:18:33:f2:38:64:e2:8b:39:fc:12: 36:0c:d0:35:b7:12:1d:77:75:f8:6c:df:33:9e:b6:56:8d:dd: 3e:d2:43:e3:ad:76:82:2f:57:1d:c1:3f:b7:00:fc:90:76:d5: 2d:94:8f:2f:d9:c4:f9:70:99:e4:5b:64:30:4a:61:da:c5:34: da:40:65:88:da:b2:00:fd:cb:29:8e:c0:2f:7a:a6:7d:6b:e5: fd:1a:bf:09:68:71:d6:fe:f9:ef:32:81:54:35:9b:e3:e7:69: fd:60:db:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4RjQxMTAvBgNVBAUTKDQyRjYzOTQzNTM1MzRGQjA5NzVFQ0MxRTBCOEY1QjY1 MjNBRkFGQzUwHhcNMjUwNjE0MTg0NjU1WhcNMjUwNjIxMTg0NjU1WjAYMRYwFAYD VQQDEw02ODRkYzNhMC1mMzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraiO291YPdL4ZeDfPxlMQaHCF6D4tfwDVqoqmL1jq53WXnqqA0iouSVTy5jN edP7tdUK7UVglbDxlrCl18nT3bHFF9LKo3TiMNzsdsEdNFG8LSBX85jjdKOrBviP urjwjpWUT7jgOgDBgVsRbpg2zY6kWghAnfpVrhVTH71TcXRHa2qktyGTFpCyYBVt RXCYuVZLv6m95XEwD5N7KFf2HU1zhzf7yv0r7L9AxSfls8M+IkIQY/mvRQiDPj5Z M3Zi7NIL/01P9fwZsqcAClKydoGTppPX8qB+nNh4fbxrWAQgMjDjMQtT5oGdJB57 8g7nwGPtBZJ3RZMaimd2z5xxLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaWk/LK U2nJOlEmv68eGVD8pTf+MB8GA1UdIwQYMBaAFEL2OUNTU0+wl17MHguPW2Ujr6/F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9ENzA2NUUzNDIx MzIxMUVBOUEwNUZGNDBDNEY5QUUwMi9Rdlk1UTFOVFQ3Q1hYc3dlQzQ5YlpTT3Zy OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F2WTVRMU5UVDdDWFhzd2VDNDliWlNPdnI4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzhGNC9ENzA2NUUzNDIxMzIxMUVBOUEwNUZGNDBDNEY5QUUwMi9Rdlk1UTFOVFQ3 Q1hYc3dlQzQ5YlpTT3ZyOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiLGKc2FgmYImemiYJI79L2KVo3HVnaQXvMC6lZLo9zdAnIVVFnU5o VSRRs7j0OJst66Ro0YM78aqNeXlrmlWyMG0IAN9LZMeLeRi+h+05i7yTU1D2NLZG KRIJyg+Jbt4G0E8L8ymRpcxqEyma3Yl0AVuPWf8hs8GWsgS5ucwCieHTTrgl0XXF qZf99lBWGVe1nhogWx8Q6Rgz8jhk4os5/BI2DNA1txIdd3X4bN8znrZWjd0+0kPj rXaCL1cdwT+3APyQdtUtlI8v2cT5cJnkW2QwSmHaxTTaQGWI2rIA/cspjsAveqZ9 a+X9Gr8JaHHW/vnvMoFUNZvj52n9YNsH -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:55 2025 by rpki-client