$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft File: qXEsy37uAkrriHZ7di4Qk7FA_24.mft (raw, json) Hash identifier: fOSpUpM6jJsjfTgTJvcDmQVBtp6AL+isU6Qyu77yxd0= Subject key identifier: 11:52:A6:12:43:ED:6E:E3:00:0D:9C:80:BC:57:3E:FB:0F:36:82:B1 Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 1010 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft Manifest number: 0FFE Signing time: Sat 14 Jun 2025 17:23:14 +0000 Manifest this update: Sat 14 Jun 2025 17:23:14 +0000 Manifest next update: Sat 21 Jun 2025 17:23:14 +0000 Files and hashes: 1: qXEsy37uAkrriHZ7di4Qk7FA_24.crl (hash: M37Nuc42kEsrfG1vV5UxE6EqdEFtqIDU7ZDbz/NbwXM=) 2: 07FF4ABC5A1011EAA8B1B456C4F9AE02.roa (hash: /71nbSiWt0RVe5ogZCQfFYyxEZ4Mr3Z7iCfhqhLbM+k=) 3: 1BCA5982656311ECA4E81323C4F9AE02.roa (hash: JhAWbCAMrXKEKj1b3MlbXCTMtcBsS+XKDtYcGnLBqlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4112 (0x1010) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A, serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Validity Not Before: Jun 14 17:23:14 2025 GMT Not After : Jun 21 17:23:14 2025 GMT Subject: CN=684db002-f78b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:06:80:5d:53:c3:c7:4e:f3:8b:f2:d0:36:2e: e5:bf:87:c6:39:1f:93:d9:c3:13:0b:4f:31:9d:42: 7b:ac:6b:ce:53:16:f3:04:b7:71:aa:52:5b:ec:3c: c6:50:03:c2:2c:31:7f:36:96:2e:f0:f2:d7:f4:74: b0:10:2b:58:77:c9:1f:6b:c7:07:6c:87:82:2e:f1: 9e:d4:d0:d3:2e:4e:76:a3:41:8c:6f:73:1d:94:cd: d8:69:3b:d4:f6:f9:58:f4:b8:e3:f1:d0:7f:8e:9a: f8:f0:e1:8e:ff:80:a6:ff:f1:d3:c3:18:d7:96:14: 11:02:dc:06:e5:d4:e7:29:a4:5a:3a:be:d4:4f:42: 9a:5a:f2:f4:58:c5:2e:e7:ef:5e:c7:e3:e4:79:fe: 87:e3:c5:68:dc:bc:7e:28:66:fd:8e:3e:bf:0a:9a: 7f:58:6e:9e:3c:9f:91:77:8f:54:5d:96:20:6d:d5: 12:dc:18:09:86:02:06:2a:d9:09:d0:52:17:6b:29: 6b:f5:f2:c1:d8:3c:68:99:6a:f0:5c:bf:7a:fd:f5: 61:8e:db:53:da:e4:ba:8f:1f:d8:60:38:63:60:e7: 94:10:84:8b:21:51:4f:36:b4:6f:a0:7f:74:82:8e: f6:4a:a9:80:1e:04:ec:2a:6c:74:91:09:3c:9a:c2: 0c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:52:A6:12:43:ED:6E:E3:00:0D:9C:80:BC:57:3E:FB:0F:36:82:B1 X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:40:da:7d:24:a3:54:8c:1f:97:1d:f6:44:77:58:38:bb:c0: 1e:e7:11:51:54:bc:a1:43:71:18:bf:bb:26:70:f0:1b:a9:1b: df:96:03:c9:e5:39:b4:47:72:29:a8:49:99:04:38:45:da:12: 89:dc:e6:54:04:fd:f4:38:3e:13:d6:8d:c0:7f:44:f2:7b:b4: 01:48:23:d6:ca:bb:25:92:1b:46:63:62:49:e3:ac:76:03:cf: 15:2a:be:ee:7f:e6:81:5e:14:ca:1b:46:73:0b:b5:af:08:80: e3:df:e3:55:20:82:95:46:35:dd:af:ca:d9:6b:b3:d5:9a:df: dd:2f:4c:0e:89:7e:22:c3:6e:be:41:ed:2c:71:0d:27:04:62: 8a:f8:8a:9b:fb:26:aa:1f:51:5d:cf:0f:f9:02:75:8e:c0:f5: 5f:f5:79:36:63:db:5b:3b:18:d9:e5:3e:1d:18:88:74:4c:5d: 87:17:e2:e2:e4:87:4a:2a:9d:84:e3:3b:e6:37:0f:0c:23:e5: f0:a1:9f:00:45:cf:70:2b:5b:dd:0f:df:06:d9:0d:92:db:82: 33:95:9e:97:17:58:60:0e:06:e1:78:b6:3a:50:be:99:c2:2b: 90:03:09:2f:93:9f:b7:bd:41:ab:13:94:01:2a:ed:4e:04:dd: 00:0b:c6:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjUwNjE0MTcyMzE0WhcNMjUwNjIxMTcyMzE0WjAYMRYwFAYD VQQDEw02ODRkYjAwMi1mNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QaAXVPDx07zi/LQNi7lv4fGOR+T2cMTC08xnUJ7rGvOUxbzBLdxqlJb7DzG UAPCLDF/NpYu8PLX9HSwECtYd8kfa8cHbIeCLvGe1NDTLk52o0GMb3MdlM3YaTvU 9vlY9Ljj8dB/jpr48OGO/4Cm//HTwxjXlhQRAtwG5dTnKaRaOr7UT0KaWvL0WMUu 5+9ex+Pkef6H48Vo3Lx+KGb9jj6/Cpp/WG6ePJ+Rd49UXZYgbdUS3BgJhgIGKtkJ 0FIXaylr9fLB2DxomWrwXL96/fVhjttT2uS6jx/YYDhjYOeUEISLIVFPNrRvoH90 go72SqmAHgTsKmx0kQk8msIMGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFSphJD 7W7jAA2cgLxXPvsPNoKxMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI2QS8wODc1RjQ5NjRDNzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFr cnJpSFo3ZGk0UWs3RkFfMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuQNp9JKNUjB+XHfZEd1g4u8Ae5xFRVLyhQ3EYv7smcPAbqRvflgPJ 5Tm0R3IpqEmZBDhF2hKJ3OZUBP30OD4T1o3Af0Tye7QBSCPWyrslkhtGY2JJ46x2 A88VKr7uf+aBXhTKG0ZzC7WvCIDj3+NVIIKVRjXdr8rZa7PVmt/dL0wOiX4iw26+ Qe0scQ0nBGKK+Iqb+yaqH1Fdzw/5AnWOwPVf9Xk2Y9tbOxjZ5T4dGIh0TF2HF+Li 5IdKKp2E4zvmNw8MI+XwoZ8ARc9wK1vdD98G2Q2S24IzlZ6XF1hgDgbheLY6UL6Z wiuQAwkvk5+3vUGrE5QBKu1OBN0AC8Y9 -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:03 2025 by rpki-client