$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: uutqjQ2EmCNth62FQFxK32ZezVrTUTtJ6p8YLbtpUgs= Subject key identifier: 05:8D:0C:D0:3E:88:18:E4:3D:DB:28:B9:82:2C:8C:F3:BB:05:47:A6 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BD0 Signing time: Sat 14 Jun 2025 18:42:37 +0000 Manifest this update: Sat 14 Jun 2025 18:42:37 +0000 Manifest next update: Sat 21 Jun 2025 18:42:37 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: W0G73xiCuHxv/NcAo+V3EfVVZt7D2Frrn70MS8+5vmY=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3031 (0xbd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Jun 14 18:42:37 2025 GMT Not After : Jun 21 18:42:37 2025 GMT Subject: CN=684dc29d-14f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:e2:f9:ff:2a:e2:d6:eb:b0:00:8f:cf:2b: b9:b9:0f:9d:22:e2:79:06:5e:ed:76:8b:75:7f:b1: 39:b4:82:c6:af:56:45:4b:ed:1b:48:b8:aa:d9:b4: 78:11:a5:01:b9:04:05:a3:d6:7b:62:37:45:8f:1e: 10:7a:5b:c7:a7:4d:6c:f1:a1:cb:c6:7d:c4:59:b8: d8:9e:ed:90:38:a7:62:e8:e7:d6:98:e3:d3:e8:87: d5:f0:f3:13:c5:fe:5f:27:fb:8c:c0:af:1b:6b:0f: c5:84:a8:c5:d5:26:37:6c:68:d8:a4:0c:7d:2e:fa: 76:5d:21:80:0d:6e:cf:bf:07:de:fd:28:4b:82:bc: e8:78:10:c2:69:de:7d:f7:19:c6:e9:9b:20:9b:c6: 7d:01:42:aa:ae:e1:29:93:58:59:ff:71:66:8d:10: 44:27:6e:c0:a9:2c:4b:02:e7:0e:c3:1f:cd:f0:02: ff:66:56:d1:bc:a3:63:40:b4:56:3c:ca:56:cb:32: c3:df:d5:4f:05:9f:4a:01:19:d1:0d:39:31:cf:dd: 18:58:c8:91:81:ae:e7:f8:5a:0f:9e:20:11:6a:76: 16:87:b3:7a:5c:07:34:1b:7c:0e:06:44:38:99:ac: 29:38:b3:ab:44:70:b6:8e:30:21:99:51:97:a5:33: d4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8D:0C:D0:3E:88:18:E4:3D:DB:28:B9:82:2C:8C:F3:BB:05:47:A6 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c3:8f:3b:32:fd:94:40:4f:6a:78:f0:ad:a4:3d:e8:e8:d9: 6d:fa:85:21:de:c0:04:6c:35:9a:78:1a:fc:6e:3c:72:e7:1f: 96:9b:c1:b3:79:31:66:5c:66:c1:fe:59:8b:78:3f:9f:77:01: 25:4b:b5:04:e3:79:89:f2:d0:84:f8:00:53:f7:ce:02:45:83: 4b:9e:f0:ba:18:23:bf:ea:90:7d:dc:1d:0f:f0:ae:f2:4b:37: aa:c4:e0:5c:81:e3:46:d7:61:ee:f8:a9:69:b9:24:ee:11:65: f3:71:bb:08:7f:d6:34:1e:21:e1:5a:9e:68:db:64:71:ad:03: 6b:13:ef:51:58:84:f2:4e:96:10:93:6f:a8:13:d5:6f:9b:64: 5c:55:6e:64:3b:ca:0a:cc:6f:ee:3e:3a:a6:f4:4d:f3:f0:b3: e7:98:2c:cd:b5:d5:eb:44:88:f8:a7:87:a1:7a:6b:52:64:f2: 83:b6:51:60:bd:fc:e9:f5:8a:8e:03:80:33:35:ec:35:6a:a9: 50:48:8b:bc:30:fd:0f:59:d8:88:4a:d2:36:7e:ec:35:32:0b: fa:b0:0b:19:14:28:1d:1c:e8:7c:22:a9:35:08:67:ea:28:a1: 9d:1f:e7:de:5b:53:21:ef:0b:69:3c:47:4c:4e:c5:ec:63:c3: 8f:73:58:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwNjE0MTg0MjM3WhcNMjUwNjIxMTg0MjM3WjAYMRYwFAYD VQQDEw02ODRkYzI5ZC0xNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrLi+f8q4tbrsACPzyu5uQ+dIuJ5Bl7tdot1f7E5tILGr1ZFS+0bSLiq2bR4 EaUBuQQFo9Z7YjdFjx4QelvHp01s8aHLxn3EWbjYnu2QOKdi6OfWmOPT6IfV8PMT xf5fJ/uMwK8baw/FhKjF1SY3bGjYpAx9Lvp2XSGADW7Pvwfe/ShLgrzoeBDCad59 9xnG6Zsgm8Z9AUKqruEpk1hZ/3FmjRBEJ27AqSxLAucOwx/N8AL/ZlbRvKNjQLRW PMpWyzLD39VPBZ9KARnRDTkxz90YWMiRga7n+FoPniARanYWh7N6XAc0G3wOBkQ4 mawpOLOrRHC2jjAhmVGXpTPUSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWNDNA+ iBjkPdsouYIsjPO7BUemMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVw487Mv2UQE9qePCtpD3o6Nlt+oUh3sAEbDWaeBr8bjxy5x+Wm8Gz eTFmXGbB/lmLeD+fdwElS7UE43mJ8tCE+ABT984CRYNLnvC6GCO/6pB93B0P8K7y SzeqxOBcgeNG12Hu+KlpuSTuEWXzcbsIf9Y0HiHhWp5o22RxrQNrE+9RWITyTpYQ k2+oE9Vvm2RcVW5kO8oKzG/uPjqm9E3z8LPnmCzNtdXrRIj4p4ehemtSZPKDtlFg vfzp9YqOA4AzNew1aqlQSIu8MP0PWdiIStI2fuw1Mgv6sAsZFCgdHOh8Iqk1CGfq KKGdH+feW1Mh7wtpPEdMTsXsY8OPc1iW -----END CERTIFICATE-----Generated at Sun Jun 15 10:24:05 2025 by rpki-client