$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft File: QVO6SZpE5-wQQcYO9_NprGI1eqg.mft (raw, json) Hash identifier: 67ZdBo1/yy19OkHNYGKpX6+30oTaeiwft8Y6Q/1rnws= Subject key identifier: 6E:B2:5B:99:22:F3:6B:22:BB:45:B3:48:FB:DC:BB:5C:7F:53:77:BC Authority key identifier: 41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 Certificate issuer: /CN=A91423C1/serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft Manifest number: 0132 Signing time: Sun 15 Jun 2025 03:52:18 +0000 Manifest this update: Sun 15 Jun 2025 03:52:18 +0000 Manifest next update: Sun 22 Jun 2025 03:52:18 +0000 Files and hashes: 1: QVO6SZpE5-wQQcYO9_NprGI1eqg.crl (hash: aV2+yG8/VoGs2/qp+pMJZHzuEJ7RKBUynxwdaRFMYJM=) 2: 3B83B2F4E30611EFA4B67C52C4F9AE02.roa (hash: FYt2RufvdZwSZ5zQDPicr3Fxe0XZIP7npmhW3SH2a8Y=) 3: 5A5E75E2E30611EFAD52D552C4F9AE02.roa (hash: nu5dbwOLlZ13YTkUDnySdOEtRFAsDLmzMv0XGB5W4wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Validity Not Before: Jun 15 03:52:18 2025 GMT Not After : Jun 22 03:52:18 2025 GMT Subject: CN=684e4372-899c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:42:c8:30:62:81:e5:cb:f6:cd:3e:5b:45:e9: 22:7a:5d:47:3d:68:e5:cb:c3:58:89:bc:1a:1f:1b: d3:8b:70:59:31:be:14:f9:68:e4:78:fb:0c:42:a6: 46:9a:5c:78:68:1c:50:f4:88:b6:2e:62:cf:1f:e3: ce:2f:7f:45:1a:ba:38:50:d2:e3:1a:26:02:69:10: 8a:9b:00:3e:d8:2a:bc:67:e8:62:89:98:20:cb:a7: 6f:19:8f:cc:c7:2b:ac:59:0f:d7:e7:ee:b6:b0:00: f0:7e:eb:a8:29:87:a4:62:ba:a2:3b:5d:39:b3:67: 5b:24:11:94:81:bd:33:e6:35:67:81:d3:0b:22:7c: d4:a9:72:fe:40:ca:59:c0:ac:5d:01:f2:96:48:8e: b4:85:ba:40:f7:c5:3a:eb:fa:32:c3:78:d3:5a:68: e0:0f:eb:cb:12:e8:b3:c8:f2:a3:f1:c9:25:c5:35: 99:bc:3c:db:f6:6e:df:8e:f9:8b:4a:6f:88:b1:c8: e2:eb:82:0c:bd:ab:de:c3:37:5d:c0:41:30:e0:04: 01:b2:29:3a:60:1c:98:c9:de:c1:22:85:73:aa:31: 5e:d8:8c:c8:92:44:a3:56:c2:3c:97:bb:4e:46:66: 76:0a:bb:3d:25:23:eb:69:0c:7a:69:4b:be:5e:33: 5d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B2:5B:99:22:F3:6B:22:BB:45:B3:48:FB:DC:BB:5C:7F:53:77:BC X509v3 Authority Key Identifier: keyid:41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:08:46:32:9e:ca:73:6f:e7:93:5a:f3:41:f7:1a:6e:86:b7: 84:67:13:85:e9:ab:2a:21:c0:15:64:7b:87:9a:c3:7e:4a:de: 45:c3:ea:0d:b5:16:18:9f:f6:a2:a0:ee:f6:d5:c7:c7:8f:68: 37:7f:d4:92:59:d1:3c:60:44:0a:8c:2e:23:e6:78:23:8a:3d: 43:b4:fd:7e:fd:20:82:15:99:43:f1:a5:4e:c2:0f:d4:fb:ae: 67:7e:80:e7:2d:64:d3:8e:ae:05:5c:6f:90:8b:ee:bf:fc:8e: 65:78:31:9d:08:37:16:f0:f6:ea:51:00:68:d6:c6:c2:e7:a6: 77:71:3e:55:76:fe:07:9d:8a:ef:ca:e4:34:e2:6f:6a:6f:ca: 29:fb:e4:e3:cf:02:ba:af:48:b4:df:48:ae:b5:14:39:f8:91: 23:49:1a:f2:04:92:ff:c2:4a:64:79:47:2b:c6:22:cd:42:86: 15:2e:0d:98:ad:0d:e2:5d:14:1f:fc:7d:e0:53:ca:25:ba:61: 9b:1a:2b:e3:88:96:6d:3c:90:a4:e5:d1:d2:e7:58:d2:eb:30: fb:52:d9:c3:a1:7d:ef:66:d0:69:24:a1:c7:27:f3:08:6b:09: fc:cc:e2:a5:cd:92:8a:76:df:38:de:4e:e1:bd:6f:93:5c:77: d1:b7:da:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDQxNTNCQTQ5OUE0NEU3RUMxMDQxQzYwRUY3RjM2OUFD NjIzNTdBQTgwHhcNMjUwNjE1MDM1MjE4WhcNMjUwNjIyMDM1MjE4WjAYMRYwFAYD VQQDEw02ODRlNDM3Mi04OTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kLIMGKB5cv2zT5bRekiel1HPWjly8NYibwaHxvTi3BZMb4U+WjkePsMQqZG mlx4aBxQ9Ii2LmLPH+POL39FGro4UNLjGiYCaRCKmwA+2Cq8Z+hiiZggy6dvGY/M xyusWQ/X5+62sADwfuuoKYekYrqiO105s2dbJBGUgb0z5jVngdMLInzUqXL+QMpZ wKxdAfKWSI60hbpA98U66/oyw3jTWmjgD+vLEuizyPKj8cklxTWZvDzb9m7fjvmL Sm+Iscji64IMvavewzddwEEw4AQBsik6YByYyd7BIoVzqjFe2IzIkkSjVsI8l7tO RmZ2Crs9JSPraQx6aUu+XjNd9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6yW5ki 82siu0WzSPvcu1x/U3e8MB8GA1UdIwQYMBaAFEFTukmaROfsEEHGDvfzaaxiNXqo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS8wRTBERkE5ODhD Q0YxMUVFOTZGNEU2NUFDNEY5QUUwMi9RVk82U1pwRTUtd1FRY1lPOV9OcHJHSTFl cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWTzZTWnBFNS13UVFjWU85X05wckdJMWVxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS8wRTBERkE5ODhDQ0YxMUVFOTZGNEU2NUFDNEY5QUUwMi9RVk82U1pwRTUt d1FRY1lPOV9OcHJHSTFlcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQCEYynspzb+eTWvNB9xpuhreEZxOF6asqIcAVZHuHmsN+St5Fw+oN tRYYn/aioO721cfHj2g3f9SSWdE8YEQKjC4j5ngjij1DtP1+/SCCFZlD8aVOwg/U +65nfoDnLWTTjq4FXG+Qi+6//I5leDGdCDcW8PbqUQBo1sbC56Z3cT5Vdv4HnYrv yuQ04m9qb8op++TjzwK6r0i030iutRQ5+JEjSRryBJL/wkpkeUcrxiLNQoYVLg2Y rQ3iXRQf/H3gU8olumGbGivjiJZtPJCk5dHS51jS6zD7UtnDoX3vZtBpJKHHJ/MI awn8zOKlzZKKdt843k7hvW+TXHfRt9ra -----END CERTIFICATE-----Generated at Sun Jun 15 10:11:01 2025 by rpki-client