$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: 91KGfPhGGkFlwnttNwNntaVGQddNxdBOcPxwsB/MJD4= Subject key identifier: ED:47:8C:3E:2D:DE:93:67:9C:5C:E0:CD:D8:83:78:44:90:EC:ED:BE Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: BD Signing time: Tue 17 Jun 2025 04:49:33 +0000 Manifest this update: Tue 17 Jun 2025 04:49:33 +0000 Manifest next update: Tue 24 Jun 2025 04:49:32 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: vhNj4nmKpyPVTXZST7gvbqi9VL9LUqGywYBGEZ8AJYc=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Jun 17 04:49:33 2025 GMT Not After : Jun 24 04:49:32 2025 GMT Subject: CN=6850f3dd-1210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f9:dc:39:1f:c8:2e:60:07:a2:96:33:4d:b6: e3:d3:47:b0:1e:2f:38:f7:2b:09:29:a1:ac:c9:34: 71:1e:37:98:41:5a:71:90:19:fa:1b:11:d2:58:ac: 54:e8:21:e5:31:9e:51:77:59:93:f6:67:1c:90:68: e3:50:2c:33:b1:87:0a:0c:10:a3:de:24:48:c8:c1: 89:a5:f6:9c:7e:c6:94:36:52:12:c1:9f:fe:32:1a: ad:0e:62:74:3b:01:cb:f7:2e:c5:1d:3b:fd:81:6a: 8e:43:a8:c3:c8:a1:bd:db:13:f5:5f:ff:8e:cc:86: cd:7a:51:18:78:f8:3e:6b:30:a8:30:67:6b:15:ac: fd:94:ea:d0:69:58:36:31:11:9f:fd:92:da:3d:3c: 9d:0f:14:25:ce:4d:13:88:11:7a:b7:3a:ac:82:38: 5b:82:62:53:ab:69:7a:d0:20:f1:ee:63:10:79:e7: f9:63:30:e1:96:b8:5b:bf:20:46:e6:ec:e6:d9:0a: 88:64:8e:b0:62:49:18:62:57:67:60:ec:26:34:39: 7e:9c:74:ff:82:2e:4a:a7:03:6e:47:b3:d7:1b:f8: 97:50:ea:d9:d6:0b:bb:bd:ba:69:15:80:1f:89:52: 37:25:37:cd:86:e8:a4:a9:57:60:a7:12:4f:c7:b0: 07:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:47:8C:3E:2D:DE:93:67:9C:5C:E0:CD:D8:83:78:44:90:EC:ED:BE X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:8a:1a:7f:bd:bd:1a:7e:b5:43:b4:9c:cf:ea:32:35:12:73: 63:7b:da:77:03:98:ee:e2:bc:f7:82:0c:1f:44:6b:b6:7f:79: 9c:4a:e2:46:81:bb:82:5e:7f:15:44:7e:86:ae:91:e4:96:d6: c4:12:9a:b5:31:b6:32:27:b0:94:8e:6e:d2:f6:69:5a:e0:6c: 41:7f:e4:6d:86:66:48:bb:fd:87:df:26:15:6f:43:e4:85:02: a4:62:80:c2:25:0f:97:a5:7f:39:70:04:34:0d:77:9f:4d:6a: f6:c3:81:e1:79:36:32:7e:9e:ab:56:fc:10:11:99:3a:88:d5: 95:77:40:91:95:ad:0e:70:40:0b:00:1f:6d:6b:8e:dd:f6:73: 47:f1:f8:fb:67:51:ad:a0:22:4e:66:27:56:62:7a:e4:a7:df: 9e:bf:d3:92:e1:c0:ea:06:46:8a:22:90:99:8b:5c:63:52:ca: 37:57:51:2b:53:43:06:7a:3c:2c:21:02:2c:a6:67:88:dc:c3: d5:05:13:e8:78:d3:57:44:34:86:bc:bd:9c:c0:74:e3:37:1f: b1:ac:6f:e2:6e:2e:ef:18:a0:45:fa:b5:c5:7f:ee:fa:f0:6d: 7e:85:0a:7e:25:82:08:e8:20:3d:e5:da:67:d1:bd:ad:f0:d4: 86:e4:37:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwNjE3MDQ0OTMzWhcNMjUwNjI0MDQ0OTMyWjAYMRYwFAYD VQQDEw02ODUwZjNkZC0xMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfncOR/ILmAHopYzTbbj00ewHi849ysJKaGsyTRxHjeYQVpxkBn6GxHSWKxU 6CHlMZ5Rd1mT9mcckGjjUCwzsYcKDBCj3iRIyMGJpfacfsaUNlISwZ/+MhqtDmJ0 OwHL9y7FHTv9gWqOQ6jDyKG92xP1X/+OzIbNelEYePg+azCoMGdrFaz9lOrQaVg2 MRGf/ZLaPTydDxQlzk0TiBF6tzqsgjhbgmJTq2l60CDx7mMQeef5YzDhlrhbvyBG 5uzm2QqIZI6wYkkYYldnYOwmNDl+nHT/gi5KpwNuR7PXG/iXUOrZ1gu7vbppFYAf iVI3JTfNhuikqVdgpxJPx7AHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1HjD4t 3pNnnFzgzdiDeESQ7O2+MB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ihp/vb0afrVDtJzP6jI1EnNje9p3A5ju4rz3ggwfRGu2f3mcSuJG gbuCXn8VRH6GrpHkltbEEpq1MbYyJ7CUjm7S9mla4GxBf+RthmZIu/2H3yYVb0Pk hQKkYoDCJQ+XpX85cAQ0DXefTWr2w4HheTYyfp6rVvwQEZk6iNWVd0CRla0OcEAL AB9ta47d9nNH8fj7Z1GtoCJOZidWYnrkp9+ev9OS4cDqBkaKIpCZi1xjUso3V1Er U0MGejwsIQIspmeI3MPVBRPoeNNXRDSGvL2cwHTjNx+xrG/ibi7vGKBF+rXFf+76 8G1+hQp+JYII6CA95dpn0b2t8NSG5DeW -----END CERTIFICATE-----Generated at Wed Jun 18 11:49:47 2025 by rpki-client