$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: 5dRvHbm1xygCOjhBzS3cNkHzFd7mEIcjcmPwuLS4eSQ= Subject key identifier: D1:69:C9:27:E1:F6:2F:B3:8F:2C:C6:DB:8E:BC:4C:99:27:F3:A9:19 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 349A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 3494 Signing time: Mon 16 Jun 2025 14:46:20 +0000 Manifest this update: Mon 16 Jun 2025 14:46:19 +0000 Manifest next update: Mon 23 Jun 2025 14:46:19 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: HXg+CL7zh74mPCvIkfI+i4cs3vXtDy2BYlRKKDLzIGc=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: 4eibZFZxCBojQ0XF3++/6D4cGjzEkC+cfaewXmXRSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 14:46:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13466 (0x349a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Jun 16 14:46:19 2025 GMT Not After : Jun 23 14:46:19 2025 GMT Subject: CN=68502e3c-4da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e7:10:2f:13:e6:2b:fb:a8:7a:02:45:4b:7b: fc:29:1c:e2:e6:20:c7:6d:77:c9:e8:a8:1b:5e:d0: d1:b4:d2:48:57:01:8e:55:cf:04:87:2b:b5:ed:25: c3:2c:e7:4e:ea:6e:08:86:1e:2c:87:22:6c:30:59: 8f:06:97:09:22:4b:43:6f:aa:68:a2:68:db:7d:b0: 2a:01:8e:31:da:2f:3d:0f:5c:9c:14:fc:0c:18:e7: 0b:06:3f:2f:6e:2a:60:d2:f1:ee:73:79:85:94:9e: db:39:9f:8d:92:ee:cf:e7:d0:f1:7c:89:49:7f:54: 07:05:af:c4:33:1f:9e:7f:b9:a3:07:3a:1d:bc:93: 85:d3:38:21:dc:15:e9:70:f6:b9:66:12:90:06:85: 44:93:98:14:65:22:3e:78:e0:1a:73:40:4a:d1:c8: d8:00:70:0a:1d:cd:32:b8:e1:ca:59:59:b4:30:32: 59:d5:78:1f:27:a8:91:65:76:78:2e:f2:ab:5e:25: 69:54:2e:e4:68:69:07:9b:33:d1:e3:5a:c7:01:7e: 33:05:d6:b5:a3:f6:1e:c4:e8:4d:f1:9c:b0:4b:f4: 4b:55:d6:2f:f3:28:dc:e6:86:ee:98:4a:42:a9:1b: 1b:cf:96:e6:d0:16:ca:39:7a:8b:b7:22:b0:33:e0: 95:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:69:C9:27:E1:F6:2F:B3:8F:2C:C6:DB:8E:BC:4C:99:27:F3:A9:19 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:25:c4:d0:28:f9:f4:59:28:46:47:1a:58:6f:12:96:a2:d9: 1c:99:95:9c:0b:ed:55:11:e0:3b:a8:88:6f:3d:e1:44:1e:3a: eb:b0:30:ef:1f:fc:fa:72:24:03:68:ee:f4:d3:13:c3:44:8e: 2d:b2:1e:fc:25:2b:59:fc:2b:f8:fd:3d:5e:31:de:59:77:7c: 22:6a:01:2c:a1:3e:a6:c8:17:a9:3a:1a:ab:ba:b6:d6:6d:22: 23:c5:ab:5b:52:8a:36:c7:b0:a2:a3:52:c7:0f:35:b9:cc:1c: 0a:36:59:f8:30:18:9f:5a:d3:af:b4:68:cc:6c:10:1c:01:3f: c2:b1:0f:df:a3:0c:9f:93:b7:32:80:f7:b8:b7:7b:8c:e3:e4: e3:64:38:d0:83:de:ae:9c:13:87:0a:0d:fa:f5:88:fa:0c:ef: 16:df:47:d4:20:28:8f:5c:3c:ce:72:64:db:b7:9e:29:81:cb: 59:96:d6:6e:e7:b2:cc:8f:7d:3c:be:b9:75:27:30:c1:74:9d: bf:90:88:b0:94:68:f7:f8:65:7e:ca:c8:52:ce:3b:29:5c:6a: e9:b4:e9:18:ca:2f:49:36:f0:d7:d0:6e:7c:6f:5e:78:b2:99: 93:bb:b2:b6:d5:bc:57:8a:b4:80:6e:f2:7c:66:d8:a6:ce:e2: 22:6c:41:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUwNjE2MTQ0NjE5WhcNMjUwNjIzMTQ0NjE5WjAYMRYwFAYD VQQDEw02ODUwMmUzYy00ZGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvecQLxPmK/uoegJFS3v8KRzi5iDHbXfJ6KgbXtDRtNJIVwGOVc8Ehyu17SXD LOdO6m4Ihh4shyJsMFmPBpcJIktDb6poomjbfbAqAY4x2i89D1ycFPwMGOcLBj8v bipg0vHuc3mFlJ7bOZ+Nku7P59DxfIlJf1QHBa/EMx+ef7mjBzodvJOF0zgh3BXp cPa5ZhKQBoVEk5gUZSI+eOAac0BK0cjYAHAKHc0yuOHKWVm0MDJZ1XgfJ6iRZXZ4 LvKrXiVpVC7kaGkHmzPR41rHAX4zBda1o/YexOhN8ZywS/RLVdYv8yjc5obumEpC qRsbz5bm0BbKOXqLtyKwM+CVcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFpySfh 9i+zjyzG2468TJkn86kZMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiJcTQKPn0WShGRxpYbxKWotkcmZWcC+1VEeA7qIhvPeFEHjrrsDDv H/z6ciQDaO700xPDRI4tsh78JStZ/Cv4/T1eMd5Zd3wiagEsoT6myBepOhqrurbW bSIjxatbUoo2x7Cio1LHDzW5zBwKNln4MBifWtOvtGjMbBAcAT/CsQ/fowyfk7cy gPe4t3uM4+TjZDjQg96unBOHCg369Yj6DO8W30fUICiPXDzOcmTbt54pgctZltZu 57LMj308vrl1JzDBdJ2/kIiwlGj3+GV+yshSzjspXGrptOkYyi9JNvDX0G58b154 spmTu7K21bxXirSAbvJ8ZtimzuIibEH6 -----END CERTIFICATE-----Generated at Wed Jun 18 03:01:12 2025 by rpki-client