$ rpki-client -vvf rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft File: qWaisn_hSTe-NtJ9tfTXaICEfdc.mft (raw, json) Hash identifier: BZf7X6YYvHCNIZ3yagQeMWVHFYGAXYuAnRyYk5qgoU8= Subject key identifier: 6E:2F:41:9F:26:DB:E6:91:16:9F:11:2B:91:8F:D4:FF:7A:33:7B:E7 Authority key identifier: A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 Certificate issuer: /CN=A91536E1/serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Certificate serial: 0794 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft Manifest number: 078E Signing time: Sat 14 Jun 2025 21:08:53 +0000 Manifest this update: Sat 14 Jun 2025 21:08:53 +0000 Manifest next update: Sat 21 Jun 2025 21:08:53 +0000 Files and hashes: 1: qWaisn_hSTe-NtJ9tfTXaICEfdc.crl (hash: k2XgBPh4FF2h2bsxNzP7CADTHFhh75c3+cxjp9U4Ykk=) 2: 41C97D600EA811EB8E9A770CC4F9AE02.roa (hash: o8ES5sVXjZZWJ8HjjyGv8mKYMdzoHknglpOG5+B569s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1940 (0x794) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536E1, serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Validity Not Before: Jun 14 21:08:53 2025 GMT Not After : Jun 21 21:08:53 2025 GMT Subject: CN=684de4e5-d923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:17:eb:e0:f8:75:e3:fc:6e:aa:17:d2:f8:fc: 90:15:64:d9:e0:33:00:44:df:cd:e7:8a:bc:c9:f9: 05:9f:7d:cc:c2:80:af:56:c1:97:49:3a:ab:b2:71: b7:1a:38:5e:6a:bf:7f:a2:21:8f:d1:89:2f:0f:a8: 6c:4a:46:0f:d6:e4:37:10:9f:e4:05:bc:65:06:77: 9c:19:a6:c0:fe:c9:11:be:2e:4e:69:40:95:3e:03: cd:14:d4:53:c8:76:1d:fa:87:9b:49:d5:66:23:0d: 01:e6:a1:26:c2:a4:05:a5:0c:df:26:7e:b5:93:20: fe:3e:ae:3c:d2:ef:83:db:68:72:76:e2:c0:cd:9b: be:52:bd:f6:f3:a0:60:11:a5:45:78:a3:97:00:f4: 53:44:c2:95:a8:2e:0e:54:83:c8:5a:a8:15:9f:e9: 38:88:de:59:71:66:57:ce:e1:ca:17:df:f5:df:e0: a7:43:ea:af:25:f8:27:f0:ea:70:3e:73:15:d3:08: 33:71:88:49:10:66:96:c8:0e:aa:d1:15:29:cc:77: 7b:4c:e4:84:ed:4b:f9:b7:a2:57:de:2a:fa:47:d7: 90:9e:69:0d:07:9b:7d:c9:c9:6a:67:27:b9:d5:e0: d6:e2:65:ff:d6:aa:5b:6f:59:f2:b7:28:2c:ec:69: 99:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:2F:41:9F:26:DB:E6:91:16:9F:11:2B:91:8F:D4:FF:7A:33:7B:E7 X509v3 Authority Key Identifier: keyid:A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:22:a3:81:35:30:dc:66:fc:f3:9f:09:2a:c9:02:a6:61:3c: 03:7f:a5:9b:21:5c:de:cb:fa:d0:8d:54:c8:8f:1a:54:37:62: ec:2e:b6:8e:51:57:34:8d:78:85:52:e9:34:da:ac:f6:64:16: 48:e2:49:96:7d:64:ad:7b:5e:b1:fd:ab:7a:b8:a3:2f:e2:d2: 16:24:0c:80:d4:d9:cb:4f:fd:53:bd:ba:82:5b:65:e5:87:fb: ed:71:19:86:3c:c2:2a:c9:6a:ae:61:4c:1c:dc:dc:86:43:3d: 42:de:85:a0:b1:06:d1:f6:ec:66:f1:29:fe:6b:fc:e1:0f:b2: fa:d5:6a:f3:13:cf:fa:8f:4e:7a:65:35:fa:b2:c6:c8:74:1c: 03:90:f5:5d:34:dd:64:6c:0e:ac:3a:f7:b9:4c:82:c0:fe:7f: 9a:cb:87:0c:24:fb:86:b7:b9:ae:0f:ab:86:a3:2c:a9:e5:fd: 90:64:ff:42:e9:e4:62:47:be:c7:15:e1:be:d5:fa:d1:72:08: 23:96:a8:c8:59:74:5f:55:f4:be:83:db:46:47:e0:1f:02:c4: 5a:a1:b5:a4:c3:29:f5:6f:5b:e2:4e:9c:19:a8:17:e8:db:8c: 6a:00:f8:6a:de:81:a4:24:b5:a6:e4:63:db:e1:50:a9:b5:67: 05:6b:1f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2RTExMTAvBgNVBAUTKEE5NjZBMkIyN0ZFMTQ5MzdCRTM2RDI3REI1RjRENzY4 ODA4NDdERDcwHhcNMjUwNjE0MjEwODUzWhcNMjUwNjIxMjEwODUzWjAYMRYwFAYD VQQDEw02ODRkZTRlNS1kOTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRfr4Ph14/xuqhfS+PyQFWTZ4DMARN/N54q8yfkFn33MwoCvVsGXSTqrsnG3 Gjhear9/oiGP0YkvD6hsSkYP1uQ3EJ/kBbxlBnecGabA/skRvi5OaUCVPgPNFNRT yHYd+oebSdVmIw0B5qEmwqQFpQzfJn61kyD+Pq480u+D22hyduLAzZu+Ur3286Bg EaVFeKOXAPRTRMKVqC4OVIPIWqgVn+k4iN5ZcWZXzuHKF9/13+CnQ+qvJfgn8Opw PnMV0wgzcYhJEGaWyA6q0RUpzHd7TOSE7Uv5t6JX3ir6R9eQnmkNB5t9yclqZye5 1eDW4mX/1qpbb1nytygs7GmZtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4vQZ8m 2+aRFp8RK5GP1P96M3vnMB8GA1UdIwQYMBaAFKlmorJ/4Uk3vjbSfbX012iAhH3X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZFMS85ODlGM0EwQTBF QTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNUZS1OdEo5dGZUWGFJQ0Vm ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FXYWlzbl9oU1RlLU50Sjl0ZlRYYUlDRWZkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZFMS85ODlGM0EwQTBFQTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNU ZS1OdEo5dGZUWGFJQ0VmZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuIqOBNTDcZvzznwkqyQKmYTwDf6WbIVzey/rQjVTIjxpUN2LsLraO UVc0jXiFUuk02qz2ZBZI4kmWfWSte16x/at6uKMv4tIWJAyA1NnLT/1TvbqCW2Xl h/vtcRmGPMIqyWquYUwc3NyGQz1C3oWgsQbR9uxm8Sn+a/zhD7L61WrzE8/6j056 ZTX6ssbIdBwDkPVdNN1kbA6sOve5TILA/n+ay4cMJPuGt7muD6uGoyyp5f2QZP9C 6eRiR77HFeG+1frRcggjlqjIWXRfVfS+g9tGR+AfAsRaobWkwyn1b1viTpwZqBfo 24xqAPhq3oGkJLWm5GPb4VCptWcFax+2 -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:32 2025 by rpki-client