$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: r0UsdNL8Rkk8ORANLE36NzcTiJOANsCH/Cc79sO9pGI= Subject key identifier: 34:19:E8:8C:8E:48:9B:1B:B7:7C:AC:E8:86:98:33:29:8E:4E:3A:69 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: CA Signing time: Sat 21 Jun 2025 04:51:31 +0000 Manifest this update: Sat 21 Jun 2025 04:51:31 +0000 Manifest next update: Sat 28 Jun 2025 04:51:31 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: 61hHTtKF5FC9yYTmLkaFFJJ9cPq8lZGi9TllE3Xc4v4=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 04:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Jun 21 04:51:31 2025 GMT Not After : Jun 28 04:51:31 2025 GMT Subject: CN=68563a53-8a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:18:94:a7:db:28:8d:eb:ac:3f:f7:f8:d3:5e: 83:f2:b9:de:da:07:48:0b:c6:50:39:ba:a9:b9:24: 6a:19:05:fb:c5:8c:6e:f8:6f:5f:f1:a3:e4:6c:e4: 76:b1:a6:52:20:88:6e:74:ab:8f:17:eb:c4:64:91: e6:c5:95:ca:18:fd:38:78:e7:d3:cc:06:2f:a1:82: aa:c3:54:c1:c1:1c:5c:3f:44:35:ff:2e:28:12:4d: b8:3d:14:61:7c:eb:23:82:4b:5d:8c:cd:a6:73:c4: 7f:09:17:fc:80:da:26:76:6a:3b:f9:00:14:a6:d0: ea:34:e0:42:ad:5f:60:33:33:9f:27:43:72:8b:6c: dc:e5:29:5a:b6:71:3b:da:62:bf:d2:15:3b:30:d1: 54:b2:36:96:22:7c:1e:a4:0f:0b:2d:49:e3:41:6a: c6:13:ef:fe:8e:38:16:fe:4a:15:2e:4e:67:bb:4e: 05:36:41:63:63:57:ef:1d:86:f5:92:0b:c3:98:d7: f7:44:71:d1:6a:3a:20:b8:66:33:4e:dd:1d:a4:9e: f8:7d:a1:e2:03:c2:e9:a6:f2:61:c9:ed:c0:6f:98: 9c:d0:24:bb:99:51:b5:96:a9:91:10:72:7a:e6:e5: cd:3a:aa:a5:ed:e9:a3:57:b7:0e:de:f6:f8:56:dd: 02:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:19:E8:8C:8E:48:9B:1B:B7:7C:AC:E8:86:98:33:29:8E:4E:3A:69 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:74:6e:ad:f9:44:33:5a:d7:6e:3f:16:31:98:7b:32:ac:00: 65:e2:62:03:de:96:8f:ee:57:7e:88:6d:c8:36:21:b8:0f:1f: 9e:f5:e9:9f:49:21:02:b4:c3:8d:bc:00:11:f1:a7:6c:54:75: e2:28:d9:89:ba:6e:90:50:3f:2c:d0:05:8f:64:2c:64:a1:02: d1:6f:67:c8:4e:c9:56:c7:f3:73:1b:a8:82:58:99:e5:0a:d2: fb:b3:eb:d5:aa:68:c5:bd:81:e1:00:9d:8a:92:90:20:0b:f2: b8:4c:87:8e:a1:02:7a:76:77:4d:c3:86:75:4c:b8:6a:1e:48: 58:4a:00:ed:e2:73:68:3d:f5:21:d0:7c:68:1f:c4:c7:e9:96: 09:03:3c:05:19:0a:e8:2d:99:eb:23:0d:20:af:f3:14:eb:93: 99:63:65:4a:24:af:bf:bc:2f:39:c3:b9:96:3c:15:f6:c7:68: 46:e8:29:e8:de:83:ed:88:56:e0:96:df:20:af:d9:a3:23:43: c8:2f:d4:ae:4f:cb:0b:d6:e5:13:05:55:66:16:a3:b8:5f:b9: 98:fd:11:02:ff:d0:0c:0c:af:77:ec:84:ec:4c:c9:0d:47:1f: 7f:de:ed:c9:ba:7c:58:93:36:1d:a6:cb:e9:8c:fd:29:e3:0c: 13:03:df:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwNjIxMDQ1MTMxWhcNMjUwNjI4MDQ1MTMxWjAYMRYwFAYD VQQDEw02ODU2M2E1My04YTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhiUp9sojeusP/f4016D8rne2gdIC8ZQObqpuSRqGQX7xYxu+G9f8aPkbOR2 saZSIIhudKuPF+vEZJHmxZXKGP04eOfTzAYvoYKqw1TBwRxcP0Q1/y4oEk24PRRh fOsjgktdjM2mc8R/CRf8gNomdmo7+QAUptDqNOBCrV9gMzOfJ0Nyi2zc5SlatnE7 2mK/0hU7MNFUsjaWInwepA8LLUnjQWrGE+/+jjgW/koVLk5nu04FNkFjY1fvHYb1 kgvDmNf3RHHRajoguGYzTt0dpJ74faHiA8LppvJhye3Ab5ic0CS7mVG1lqmREHJ6 5uXNOqql7emjV7cO3vb4Vt0CZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQZ6IyO SJsbt3ys6IaYMymOTjppMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEdG6t+UQzWtduPxYxmHsyrABl4mID3paP7ld+iG3INiG4Dx+e9emf SSECtMONvAAR8adsVHXiKNmJum6QUD8s0AWPZCxkoQLRb2fITslWx/NzG6iCWJnl CtL7s+vVqmjFvYHhAJ2KkpAgC/K4TIeOoQJ6dndNw4Z1TLhqHkhYSgDt4nNoPfUh 0HxoH8TH6ZYJAzwFGQroLZnrIw0gr/MU65OZY2VKJK+/vC85w7mWPBX2x2hG6Cno 3oPtiFbglt8gr9mjI0PIL9SuT8sL1uUTBVVmFqO4X7mY/REC/9AMDK937ITsTMkN Rx9/3u3JunxYkzYdpsvpjP0p4wwTA9/h -----END CERTIFICATE-----Generated at Sat Jun 21 14:41:40 2025 by rpki-client