$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: W5+rgBrLQhrwuVPpu8JNpGDJrs+YmQMLu6fs9jTo4U8= Subject key identifier: C4:87:4B:E1:F4:29:82:B6:E2:07:C5:F5:D1:36:60:4B:97:E4:FA:F7 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 07D6 Signing time: Wed 18 Jun 2025 20:53:59 +0000 Manifest this update: Wed 18 Jun 2025 20:53:58 +0000 Manifest next update: Wed 25 Jun 2025 20:53:58 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: FPg8qQas4fRTnXv1RWAGchp7x+nxnRLsvHtwnCe+sb8=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: Xm1qupXC//oXbz29OwYv/8QXpHuz3gLyZUWmRlVaUYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Jun 18 20:53:58 2025 GMT Not After : Jun 25 20:53:58 2025 GMT Subject: CN=68532767-6b02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9d:45:df:be:f9:9e:7b:04:36:5d:00:87:d4: 58:38:f3:38:d6:23:38:89:03:e7:29:8c:e1:a5:f8: cb:96:75:3e:4a:b6:b0:fd:5f:41:d3:3c:c1:36:b2: b1:f2:ae:bf:66:2d:e6:f3:cd:e4:23:fc:52:7a:f8: 1a:87:6e:c7:44:c9:d1:e1:6b:02:0b:9c:c9:af:64: 96:5e:ca:f1:97:93:19:d0:ac:51:51:0d:b5:b8:1e: 94:21:1a:3d:ea:7b:c0:54:39:c9:3e:91:78:96:b1: 3b:00:1d:01:54:58:2a:48:c6:5e:32:8c:73:7c:38: 3b:22:dc:8f:b6:fa:4c:2c:3d:bf:89:b8:be:2f:7d: a6:ed:12:32:65:b5:c6:ff:d9:5e:4f:97:bb:42:8d: 6e:6c:1e:1a:42:ec:62:3c:ea:ee:d2:52:9e:a3:2e: f4:fd:c4:05:aa:78:d1:e2:e4:88:4d:aa:5c:9f:3a: 07:da:49:54:8d:a4:c1:11:35:f4:7e:d6:37:9b:e1: d1:d8:95:90:c1:8e:d9:aa:c1:a5:47:ab:50:09:9e: 25:48:08:b4:40:c1:99:b7:54:b4:d5:45:9d:7d:08: 83:20:ac:80:a7:bc:1d:93:1f:75:73:25:83:53:9e: 9a:05:56:71:29:f3:df:6a:e1:39:25:37:23:51:9f: 76:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:87:4B:E1:F4:29:82:B6:E2:07:C5:F5:D1:36:60:4B:97:E4:FA:F7 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:a2:fe:5f:6d:f1:2b:64:7f:3b:52:37:a4:09:5f:6e:0e:73: da:fb:66:d7:0e:f8:94:7b:ba:cc:09:7a:f3:f4:76:c9:06:0a: fe:c6:23:8a:fc:d5:89:0c:29:c7:62:05:ff:6d:34:3e:4e:b7: 71:48:de:11:e3:d6:86:6a:d9:68:fe:0a:c4:3b:0c:a8:d2:59: 1e:a0:2b:ba:8f:60:15:55:6a:ac:53:98:eb:da:de:55:06:5f: 4b:37:17:d7:18:f3:4e:ec:3c:de:ac:38:05:26:9b:4a:9f:a0: 39:63:af:21:dd:45:25:ec:10:21:80:03:ae:b8:ef:b9:c2:de: c1:5a:05:7d:f8:eb:9a:a4:57:fe:58:f6:f6:6f:09:92:e1:af: 91:f7:c6:7e:2d:1f:9a:58:6b:0d:8d:dc:8f:2c:83:47:e5:eb: 9d:73:b6:1a:b4:1c:09:55:de:10:13:c7:9b:ac:3e:d0:92:ec: a7:3a:95:04:7e:20:81:6b:f2:65:8d:80:80:6c:1b:ea:6c:b7: 9d:1b:ba:0f:df:d1:ec:69:f6:c7:e3:68:bc:66:de:c0:ac:a0: 76:f0:1a:dd:ec:b7:e2:65:60:c8:37:17:4c:2e:ab:77:3f:3d: 9e:f4:5e:80:c6:e6:49:7e:0d:9d:ea:be:c5:8a:5f:84:f3:7e: bc:e4:1d:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjUwNjE4MjA1MzU4WhcNMjUwNjI1MjA1MzU4WjAYMRYwFAYD VQQDEw02ODUzMjc2Ny02YjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA351F3775nnsENl0Ah9RYOPM41iM4iQPnKYzhpfjLlnU+Sraw/V9B0zzBNrKx 8q6/Zi3m883kI/xSevgah27HRMnR4WsCC5zJr2SWXsrxl5MZ0KxRUQ21uB6UIRo9 6nvAVDnJPpF4lrE7AB0BVFgqSMZeMoxzfDg7ItyPtvpMLD2/ibi+L32m7RIyZbXG /9leT5e7Qo1ubB4aQuxiPOru0lKeoy70/cQFqnjR4uSITapcnzoH2klUjaTBETX0 ftY3m+HR2JWQwY7ZqsGlR6tQCZ4lSAi0QMGZt1S01UWdfQiDIKyAp7wdkx91cyWD U56aBVZxKfPfauE5JTcjUZ92KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSHS+H0 KYK24gfF9dE2YEuX5Pr3MB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaov5fbfErZH87UjekCV9uDnPa+2bXDviUe7rMCXrz9HbJBgr+xiOK /NWJDCnHYgX/bTQ+TrdxSN4R49aGatlo/grEOwyo0lkeoCu6j2AVVWqsU5jr2t5V Bl9LNxfXGPNO7DzerDgFJptKn6A5Y68h3UUl7BAhgAOuuO+5wt7BWgV9+OuapFf+ WPb2bwmS4a+R98Z+LR+aWGsNjdyPLINH5eudc7YatBwJVd4QE8ebrD7QkuynOpUE fiCBa/JljYCAbBvqbLedG7oP39HsafbH42i8Zt7ArKB28Brd7LfiZWDINxdMLqt3 Pz2e9F6AxuZJfg2d6r7Fil+E83685B2o -----END CERTIFICATE-----Generated at Fri Jun 20 20:50:55 2025 by rpki-client