$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: XJ4J/J8Gr4HK5XQM7TseB/otU/I0IKrxURBu6fHBKmI= Subject key identifier: 15:43:EA:AF:FE:CD:84:F4:2F:74:BB:9B:99:DE:DD:7F:BF:9E:45:4B Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 023B Signing time: Fri 13 Jun 2025 01:23:40 +0000 Manifest this update: Fri 13 Jun 2025 01:23:40 +0000 Manifest next update: Fri 20 Jun 2025 01:23:40 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: wDOAMvDodpASm/h5diqgt9D8sT9qDm2gCXC/DPzp0GI=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Jun 13 01:23:40 2025 GMT Not After : Jun 20 01:23:40 2025 GMT Subject: CN=684b7d9c-2394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:60:4c:b2:94:b3:dd:fb:ff:38:5e:9f:a9:a8: 83:3b:96:47:ab:99:3f:47:98:0b:65:9d:39:8f:42: d5:b7:9f:b8:c4:38:b6:e3:a1:ee:ac:63:11:72:44: d7:f0:a1:7d:00:78:5e:c6:ca:48:c0:7c:a7:ae:da: 52:c2:27:e4:e4:3a:0b:e2:34:7b:19:f2:e5:91:d0: f8:b6:8e:76:f7:8e:60:cf:8b:63:c0:8e:e6:d9:63: 0d:d5:d6:15:81:1f:f0:8c:43:36:d8:72:cb:b0:74: dd:a0:60:d8:43:51:a5:77:ae:21:89:d5:ef:5d:6b: 47:7c:4e:5e:ed:66:40:d6:ab:17:b5:99:9a:bd:7f: 57:5d:c3:e1:63:7b:2d:83:2d:98:4f:2e:04:aa:9c: cf:fa:73:54:0b:c4:50:3b:66:b8:be:21:3e:e9:8f: 2a:d8:48:0b:3e:62:35:5d:10:b4:60:74:e4:e0:1d: ed:31:6d:06:f3:33:01:34:a0:d4:40:46:8f:b2:2e: 2b:88:f0:c3:82:ac:6c:d9:59:55:34:c1:81:bb:e5: c8:dd:a8:e9:e4:99:69:26:3c:31:6d:c3:c3:53:40: d4:53:8d:03:28:51:3c:c1:2d:96:21:ee:02:7e:06: 1a:4d:96:c8:dc:0d:13:d5:29:f7:d7:3f:c4:20:f5: 71:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:43:EA:AF:FE:CD:84:F4:2F:74:BB:9B:99:DE:DD:7F:BF:9E:45:4B X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:06:bd:ab:f9:a8:03:67:ea:0c:a9:c0:fe:c3:c0:81:ed:2b: 74:5c:44:98:86:f9:e5:22:3c:97:c1:92:b6:b7:1b:c6:34:19: 9c:fb:c2:15:c4:e8:df:bb:a0:24:96:62:38:b8:66:76:f6:f7: 64:ce:7b:30:13:39:a3:f5:c7:36:02:57:99:c8:87:aa:88:6d: 23:8c:6b:f8:20:ec:f8:cb:c9:0a:9d:e7:4b:49:20:64:33:a7: 29:2f:bc:97:9d:ae:80:4f:39:96:7a:b2:1c:a6:8c:4d:1d:da: e4:1b:c5:93:04:d6:68:92:ee:44:80:25:f3:6f:aa:d0:d1:db: 7c:c2:d2:fc:1a:fd:a6:25:28:e0:25:3c:2c:e7:e7:91:21:c0: 99:93:2b:ba:71:c9:32:15:8c:eb:49:ad:4c:74:69:29:40:d2: cb:c6:0e:35:98:b8:6e:3d:ae:1b:c6:fd:d3:14:24:04:39:65: a8:47:c9:e1:4b:a1:40:f1:fa:bd:e5:c9:8f:a6:5b:8f:ec:46: c2:81:a5:ee:07:b8:4c:28:d4:ff:8d:c2:58:53:b3:ab:8b:85: 5b:e6:f9:93:9b:f9:28:46:4b:bb:39:63:f6:b6:b7:81:55:2b: f5:29:98:9c:b6:2a:1e:be:5b:b3:2e:54:52:b4:97:92:a2:1c: 18:3b:06:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUwNjEzMDEyMzQwWhcNMjUwNjIwMDEyMzQwWjAYMRYwFAYD VQQDEw02ODRiN2Q5Yy0yMzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmBMspSz3fv/OF6fqaiDO5ZHq5k/R5gLZZ05j0LVt5+4xDi246HurGMRckTX 8KF9AHhexspIwHynrtpSwifk5DoL4jR7GfLlkdD4to52945gz4tjwI7m2WMN1dYV gR/wjEM22HLLsHTdoGDYQ1Gld64hidXvXWtHfE5e7WZA1qsXtZmavX9XXcPhY3st gy2YTy4EqpzP+nNUC8RQO2a4viE+6Y8q2EgLPmI1XRC0YHTk4B3tMW0G8zMBNKDU QEaPsi4riPDDgqxs2VlVNMGBu+XI3ajp5JlpJjwxbcPDU0DUU40DKFE8wS2WIe4C fgYaTZbI3A0T1Sn31z/EIPVxOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVD6q/+ zYT0L3S7m5ne3X+/nkVLMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2Br2r+agDZ+oMqcD+w8CB7St0XESYhvnlIjyXwZK2txvGNBmc+8IV xOjfu6AklmI4uGZ29vdkznswEzmj9cc2AleZyIeqiG0jjGv4IOz4y8kKnedLSSBk M6cpL7yXna6ATzmWerIcpoxNHdrkG8WTBNZoku5EgCXzb6rQ0dt8wtL8Gv2mJSjg JTws5+eRIcCZkyu6cckyFYzrSa1MdGkpQNLLxg41mLhuPa4bxv3TFCQEOWWoR8nh S6FA8fq95cmPpluP7EbCgaXuB7hMKNT/jcJYU7Ori4Vb5vmTm/koRku7OWP2treB VSv1KZictioevluzLlRStJeSohwYOwZG -----END CERTIFICATE-----Generated at Sat Jun 14 19:31:32 2025 by rpki-client