$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: +zJq5OaIXLY947/Q2OXZkYe2luGv7QatuTsaVpVW4Tg= Subject key identifier: F4:A4:74:92:42:63:32:E1:0D:F7:FD:87:03:C2:37:17:70:14:F8:00 Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 344D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 344D Signing time: Sat 14 Jun 2025 15:19:04 +0000 Manifest this update: Sat 14 Jun 2025 15:19:04 +0000 Manifest next update: Sat 21 Jun 2025 15:19:04 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: FaOEKNvqIhItEtX0Li9lHBAzZ6afz7rdGOT9mSD3BN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13389 (0x344d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Jun 14 15:19:04 2025 GMT Not After : Jun 21 15:19:04 2025 GMT Subject: CN=684d92e8-582b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:18:35:32:d1:03:3d:9e:ff:d8:78:df:e3:f9: 9e:ac:e7:3d:e9:a0:c7:09:82:6f:0d:50:ae:ae:48: 0d:6b:e4:b4:bb:74:61:93:78:e0:c0:02:1d:39:f9: 99:8b:7a:67:cf:21:fc:f4:d6:e3:1e:0c:a8:3d:00: e7:55:71:07:c1:b0:46:5f:68:4e:51:00:e2:b6:ac: 84:4b:6d:b8:db:ef:e6:86:5b:ab:9e:29:67:a2:45: f9:a7:87:dc:fd:9e:6c:67:f0:c1:ed:4d:f3:fa:89: 59:52:33:3d:3a:50:fe:5d:58:3a:73:17:29:68:f4: e2:ea:11:f5:5a:64:69:da:2a:1f:34:a5:b9:38:d9: 87:19:52:a0:3a:37:bc:d6:70:69:bf:64:4a:98:a2: 05:d5:67:98:95:d5:d1:10:76:03:3c:dd:87:bf:5f: f8:9c:f3:2c:c2:ff:8a:37:54:93:d9:56:23:0d:0a: 7b:de:a9:49:9e:65:2a:f4:0a:ad:a6:2b:20:fe:cf: 8e:66:40:f8:8e:e3:61:07:96:a4:aa:1f:5f:c9:c6: 58:ad:7c:48:04:cd:d9:23:10:4f:9c:e6:70:fe:26: 57:73:a6:69:65:57:77:72:11:aa:2e:c8:ce:a8:f9: 55:1c:03:59:86:a5:01:36:06:82:55:3a:87:c6:24: 06:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A4:74:92:42:63:32:E1:0D:F7:FD:87:03:C2:37:17:70:14:F8:00 X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:34:fa:c9:0b:dc:0a:e6:9e:b8:89:23:b1:3c:b2:90:9c:3a: 8c:0e:36:1b:ae:14:b2:60:5a:51:4c:f0:36:d1:e6:2b:96:0b: 9d:7b:89:5a:90:ef:5c:05:c6:d9:ec:ba:ca:d1:3b:c1:c6:a7: 86:8e:74:cf:f5:a9:c8:59:ac:1d:95:9c:bb:98:b2:d0:20:81: a5:9c:f0:a0:27:d5:e6:25:ad:bf:f7:09:bb:e3:08:3e:df:bf: 54:db:3b:b3:d0:84:d8:7a:07:54:13:56:f4:99:45:c8:18:12: 9b:38:dd:a3:06:7c:fc:5b:0f:7b:1f:23:76:4e:e6:51:ad:24: 88:17:69:5b:33:77:33:8c:1c:68:01:c5:5a:62:42:e9:e1:70: c0:97:e2:c3:b3:37:ef:e7:77:2f:ce:00:e9:63:9d:f7:b4:ad: bb:72:59:70:fd:c1:be:ce:06:77:5c:c9:23:4e:09:a9:2c:5c: 4a:5d:fd:e4:a7:fa:1b:a2:8d:11:14:05:da:cf:c4:a6:19:3c: d2:c2:3f:a5:b9:c1:4f:d7:e9:15:95:ca:5c:bc:71:de:55:e5: db:07:54:94:b4:d9:5c:df:5a:03:64:c2:b8:30:ba:42:06:01: 71:df:59:86:96:6a:3e:6c:2e:20:86:7f:90:a3:fe:57:ec:73: 92:06:d9:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjUwNjE0MTUxOTA0WhcNMjUwNjIxMTUxOTA0WjAYMRYwFAYD VQQDEw02ODRkOTJlOC01ODJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8hg1MtEDPZ7/2Hjf4/merOc96aDHCYJvDVCurkgNa+S0u3Rhk3jgwAIdOfmZ i3pnzyH89NbjHgyoPQDnVXEHwbBGX2hOUQDitqyES2242+/mhlurnilnokX5p4fc /Z5sZ/DB7U3z+olZUjM9OlD+XVg6cxcpaPTi6hH1WmRp2iofNKW5ONmHGVKgOje8 1nBpv2RKmKIF1WeYldXREHYDPN2Hv1/4nPMswv+KN1ST2VYjDQp73qlJnmUq9Aqt pisg/s+OZkD4juNhB5akqh9fycZYrXxIBM3ZIxBPnOZw/iZXc6ZpZVd3chGqLsjO qPlVHANZhqUBNgaCVTqHxiQGSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSkdJJC YzLhDff9hwPCNxdwFPgAMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGNPrJC9wK5p64iSOxPLKQnDqMDjYbrhSyYFpRTPA20eYrlgude4la kO9cBcbZ7LrK0TvBxqeGjnTP9anIWawdlZy7mLLQIIGlnPCgJ9XmJa2/9wm74wg+ 379U2zuz0ITYegdUE1b0mUXIGBKbON2jBnz8Ww97HyN2TuZRrSSIF2lbM3czjBxo AcVaYkLp4XDAl+LDszfv53cvzgDpY533tK27cllw/cG+zgZ3XMkjTgmpLFxKXf3k p/oboo0RFAXaz8SmGTzSwj+lucFP1+kVlcpcvHHeVeXbB1SUtNlc31oDZMK4MLpC BgFx31mGlmo+bC4ghn+Qo/5X7HOSBtmh -----END CERTIFICATE-----Generated at Sun Jun 15 08:43:00 2025 by rpki-client