$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft File: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft (raw, json) Hash identifier: Dhh7EPDJG9s1CDTTFnJGmmga1qRgpQW3qGz8QVNHfHA= Subject key identifier: 62:5C:C2:71:55:CB:6E:B5:50:CD:CA:EC:96:68:6B:2B:8D:64:41:D8 Authority key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 Certificate issuer: /CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Certificate serial: 0731 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft Manifest number: 0727 Signing time: Mon 16 Jun 2025 19:27:18 +0000 Manifest this update: Mon 16 Jun 2025 19:27:17 +0000 Manifest next update: Mon 23 Jun 2025 19:27:17 +0000 Files and hashes: 1: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl (hash: Fv8bYSLtUjvf52Eyi9VyCzac8qUEgAcFpoMcyRbcrMg=) 2: 510308503E8211EBA910FF57C4F9AE02.roa (hash: PjHH406K/ka7XNZ7a0h9GqbdKh0e4+H0cJO6YTJYTgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 19:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1841 (0x731) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Validity Not Before: Jun 16 19:27:17 2025 GMT Not After : Jun 23 19:27:17 2025 GMT Subject: CN=68507015-704b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8b:c0:f7:88:fd:a4:2c:66:8e:c6:9f:d4:ff: ae:6c:4a:61:40:28:6a:d8:95:75:be:4b:df:72:e0: a4:fd:83:ff:b4:ec:08:fa:11:5c:5d:af:97:15:04: 8b:11:d3:c0:78:45:18:2e:9c:5c:d1:57:4a:60:0c: d8:09:02:aa:a0:50:9a:94:4c:10:a1:51:e8:be:ea: e4:77:61:5a:46:a8:0e:79:e9:de:05:76:2d:3a:a0: d1:86:58:33:b4:0e:a0:0a:56:1f:9d:65:4e:c0:aa: a6:e2:bd:3a:9d:ab:19:94:2f:67:12:a7:50:59:b8: ca:cd:a4:3e:41:b8:e6:72:de:ff:c9:0b:7a:92:8e: 09:72:83:e8:42:0d:08:11:a3:7e:5a:92:75:83:4c: 64:45:39:22:be:4a:9d:26:02:19:67:ac:51:4b:f6: 80:49:06:79:2d:f2:34:01:87:4a:48:bb:5e:46:b0: 70:2e:5f:2c:b9:e3:de:0d:55:86:48:af:e7:75:df: d9:23:39:c5:ad:c9:bb:42:d3:fa:72:56:3b:af:c2: 5c:10:76:bc:db:8a:41:5e:f1:ea:3c:7b:74:0a:75: 68:99:8f:b4:d3:62:f1:3e:e3:22:b8:f4:c7:51:9f: a7:b5:52:a1:c7:28:22:ce:04:27:d3:52:43:d2:36: ea:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5C:C2:71:55:CB:6E:B5:50:CD:CA:EC:96:68:6B:2B:8D:64:41:D8 X509v3 Authority Key Identifier: keyid:42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:e8:7a:cd:a0:7a:bf:d0:1e:22:e8:5a:fa:a7:ce:6e:ff:7e: 8a:22:a3:ae:d9:77:d3:b9:56:3a:23:db:37:49:6c:a1:2f:41: a5:ba:69:ba:c1:ca:5c:69:a1:c3:ae:59:11:6a:60:74:f3:04: 6d:e4:8a:6d:24:83:4d:78:f6:c2:af:f1:69:73:34:39:02:9a: 06:42:ba:ed:0e:f7:30:9d:e3:3f:78:11:12:f3:b7:88:99:79: 58:6f:4c:2d:f1:3a:06:f4:fd:e1:8a:1f:01:0b:d3:99:72:f0: 57:20:6d:8a:29:59:b5:64:bc:4f:9e:3b:37:39:dc:32:04:ef: 64:b3:cb:83:66:30:e2:9c:b4:59:a8:93:41:50:70:81:15:66: 59:2d:30:d8:94:b6:b3:03:2f:c1:75:5f:e7:c7:bb:d9:7e:e2: f3:20:3a:05:ca:16:6e:ad:a3:aa:6c:b6:77:dc:59:40:17:93: 85:39:fc:dd:52:17:a0:ce:e3:fd:c7:4a:ef:07:a9:65:fb:ef: 51:3e:a6:94:46:9e:ab:cd:48:24:e3:35:38:39:14:c9:59:6d: 4e:87:69:e6:bb:cb:f8:25:75:78:31:83:2d:23:58:f6:f5:20: a6:3f:4c:8f:23:89:6d:c1:66:8a:5d:e1:43:1f:ee:e1:e2:13: 67:9d:5a:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDQyNEUwQTM4NDNGM0ZBMUY0NEI2QUYyRUYzRUUxMTgx NUM0QjUyMDkwHhcNMjUwNjE2MTkyNzE3WhcNMjUwNjIzMTkyNzE3WjAYMRYwFAYD VQQDEw02ODUwNzAxNS03MDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoovA94j9pCxmjsaf1P+ubEphQChq2JV1vkvfcuCk/YP/tOwI+hFcXa+XFQSL EdPAeEUYLpxc0VdKYAzYCQKqoFCalEwQoVHovurkd2FaRqgOeeneBXYtOqDRhlgz tA6gClYfnWVOwKqm4r06nasZlC9nEqdQWbjKzaQ+Qbjmct7/yQt6ko4JcoPoQg0I EaN+WpJ1g0xkRTkivkqdJgIZZ6xRS/aASQZ5LfI0AYdKSLteRrBwLl8suePeDVWG SK/ndd/ZIznFrcm7QtP6clY7r8JcEHa824pBXvHqPHt0CnVomY+002LxPuMiuPTH UZ+ntVKhxygizgQn01JD0jbqaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJcwnFV y261UM3K7JZoayuNZEHYMB8GA1UdIwQYMBaAFEJOCjhD8/ofRLavLvPuEYFcS1IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9FRTBBRUVDQTNF ODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1oOUV0cTh1OC00UmdWeExV Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FrNEtPRVB6LWg5RXRxOHU4LTRSZ1Z4TFVnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9FRTBBRUVDQTNFODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1o OUV0cTh1OC00UmdWeExVZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi6HrNoHq/0B4i6Fr6p85u/36KIqOu2XfTuVY6I9s3SWyhL0Glumm6 wcpcaaHDrlkRamB08wRt5IptJINNePbCr/FpczQ5ApoGQrrtDvcwneM/eBES87eI mXlYb0wt8ToG9P3hih8BC9OZcvBXIG2KKVm1ZLxPnjs3OdwyBO9ks8uDZjDinLRZ qJNBUHCBFWZZLTDYlLazAy/BdV/nx7vZfuLzIDoFyhZuraOqbLZ33FlAF5OFOfzd UhegzuP9x0rvB6ll++9RPqaURp6rzUgk4zU4ORTJWW1Oh2nmu8v4JXV4MYMtI1j2 9SCmP0yPI4ltwWaKXeFDH+7h4hNnnVq4 -----END CERTIFICATE-----Generated at Wed Jun 18 16:37:50 2025 by rpki-client