$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft File: QoezMyF220hqLLxCVAL6nIa23Eg.mft (raw, json) Hash identifier: XsTacgMhWsJtQPH99btsG8O3wqmIzLzNNr9IXe7NjXo= Subject key identifier: C9:A7:E3:21:D3:6E:83:9B:D9:30:CB:FB:C9:00:52:09:71:0A:BE:E0 Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1E3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft Manifest number: 32AC Signing time: Sat 14 Jun 2025 15:38:57 +0000 Manifest this update: Sat 14 Jun 2025 15:38:56 +0000 Manifest next update: Sat 21 Jun 2025 15:38:56 +0000 Files and hashes: 1: QoezMyF220hqLLxCVAL6nIa23Eg.crl (hash: M10etcYGOxeCqmtKmjmNlBLl3FUh3ZMmrpEkAfGrLqE=) 2: 4FA6792A8F6711E6A509C92DC4F9AE02.roa (hash: 6QVoFOwpeph3ATod5Q7+936XeOZ3MM2p/wTqRhcPdKs=) 3: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (hash: X2qav5EFr+Ua635VH9BvI7EhV1owUod2CiDjBop2am4=) 4: 4BDAE70EB7A911EF9D4E880CC4F9AE02.roa (hash: LAARyCxmzy516MHC0uw5Kfkv56HjOBgenKPezXUQvg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7739 (0x1e3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD, serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: Jun 14 15:38:56 2025 GMT Not After : Jun 21 15:38:56 2025 GMT Subject: CN=684d9790-b5a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:aa:cd:08:08:0b:51:c6:91:c9:fa:7f:27:f2: 98:5f:a8:d9:ed:91:3f:9d:07:72:45:3f:3c:41:c5: 61:31:a6:66:33:2d:42:57:5f:1d:9a:8b:1d:1d:2e: df:02:d5:ec:4c:e6:0b:8b:95:b2:1e:f9:f1:4b:0c: 55:07:ec:6a:cd:4c:88:4a:ec:e4:76:dc:20:e9:30: 8f:86:75:72:56:23:27:17:e1:68:1c:bb:8f:a3:9e: ed:6c:69:2a:96:8b:27:f4:76:a3:79:04:71:d1:63: 47:51:bb:66:fe:1d:39:b4:04:52:41:af:91:7e:f3: aa:6e:26:ae:43:74:5a:90:bf:7a:a1:0a:cb:0e:98: 6c:5d:ec:8e:e0:37:01:aa:25:08:c6:58:3d:cd:9c: a6:74:72:10:ee:a8:4e:aa:b0:ea:d1:b7:b7:c7:3a: 45:0a:94:a1:21:4b:56:0b:52:48:c2:d0:a3:d5:87: 92:dd:23:8c:73:12:de:a0:f6:79:ac:fa:13:43:21: 16:8a:4d:87:52:98:31:da:62:6a:7b:8c:e7:97:ce: 41:44:92:2d:12:99:6f:eb:2f:83:ac:b2:d7:9c:c2: 73:98:26:6a:9d:60:3a:86:16:0d:7b:2e:85:4f:f8: 98:5e:48:f6:97:e8:8d:f4:a3:47:17:40:22:51:d3: 6b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A7:E3:21:D3:6E:83:9B:D9:30:CB:FB:C9:00:52:09:71:0A:BE:E0 X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:f4:7f:8f:c5:42:2b:1e:df:d0:d6:99:6a:3f:44:cf:a8:8e: ad:93:25:38:83:e6:36:41:ec:c4:fd:7f:13:23:53:9b:80:08: 65:df:5b:88:94:34:0a:dc:ad:99:50:e2:b2:b6:99:d2:2d:a8: f5:a5:9e:01:f5:d7:e1:af:e2:b8:54:fc:75:41:53:e7:0e:66: a6:7f:e3:c5:89:86:23:5a:12:57:5e:c6:b9:e7:31:07:4e:c7: 7a:8e:4d:99:93:5e:3f:42:f0:21:03:61:92:0a:15:ae:d6:10: e8:12:ae:a5:d2:dc:38:b0:8a:5d:8b:9a:f0:5d:af:41:31:90: 0c:3d:6d:60:5c:2c:10:9e:10:c1:ad:90:00:7f:8e:d9:3e:ba: 4c:63:26:a3:e8:01:a9:d3:a7:54:c4:90:86:71:a4:73:22:25: a3:a7:15:72:4b:7f:04:c0:03:95:fe:66:d7:b3:0c:b7:6c:50: 8d:da:2f:03:0a:be:d7:27:53:bf:4e:81:23:6a:f8:30:b6:af: 94:a2:e3:48:98:57:d8:1f:1b:44:bc:20:02:9c:08:75:0a:c2: 1f:00:01:d1:d9:a3:02:b8:df:d5:c9:02:f7:6d:9f:9f:d2:93: df:8c:52:0e:d5:d0:59:69:e6:38:ec:aa:5a:4d:88:c8:f9:95: d4:01:0a:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjUwNjE0MTUzODU2WhcNMjUwNjIxMTUzODU2WjAYMRYwFAYD VQQDEw02ODRkOTc5MC1iNWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1arNCAgLUcaRyfp/J/KYX6jZ7ZE/nQdyRT88QcVhMaZmMy1CV18dmosdHS7f AtXsTOYLi5WyHvnxSwxVB+xqzUyISuzkdtwg6TCPhnVyViMnF+FoHLuPo57tbGkq losn9HajeQRx0WNHUbtm/h05tARSQa+RfvOqbiauQ3RakL96oQrLDphsXeyO4DcB qiUIxlg9zZymdHIQ7qhOqrDq0be3xzpFCpShIUtWC1JIwtCj1YeS3SOMcxLeoPZ5 rPoTQyEWik2HUpgx2mJqe4znl85BRJItEplv6y+DrLLXnMJzmCZqnWA6hhYNey6F T/iYXkj2l+iN9KNHF0AiUdNrBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmn4yHT boOb2TDL+8kAUglxCr7gMB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJERC8zQUUwMDRCNEQ3NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIw aHFMTHhDVkFMNm5JYTIzRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN9H+PxUIrHt/Q1plqP0TPqI6tkyU4g+Y2QezE/X8TI1ObgAhl31uI lDQK3K2ZUOKytpnSLaj1pZ4B9dfhr+K4VPx1QVPnDmamf+PFiYYjWhJXXsa55zEH Tsd6jk2Zk14/QvAhA2GSChWu1hDoEq6l0tw4sIpdi5rwXa9BMZAMPW1gXCwQnhDB rZAAf47ZPrpMYyaj6AGp06dUxJCGcaRzIiWjpxVyS38EwAOV/mbXswy3bFCN2i8D Cr7XJ1O/ToEjavgwtq+UouNImFfYHxtEvCACnAh1CsIfAAHR2aMCuN/VyQL3bZ+f 0pPfjFIO1dBZaeY47KpaTYjI+ZXUAQod -----END CERTIFICATE-----Generated at Sun Jun 15 08:45:14 2025 by rpki-client