$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft File: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft (raw, json) Hash identifier: fA/wDEVExWg26PrAvMGMqMYhYyk0OzJzd3qMTqgDmNQ= Subject key identifier: A3:D4:77:BB:18:C8:84:9A:CE:7A:F2:C2:09:FC:65:71:2D:AD:54:32 Authority key identifier: A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D Certificate issuer: /CN=A9164164/serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft Manifest number: 70 Signing time: Thu 19 Jun 2025 06:13:09 +0000 Manifest this update: Thu 19 Jun 2025 06:13:09 +0000 Manifest next update: Thu 26 Jun 2025 06:13:09 +0000 Files and hashes: 1: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl (hash: QVPa/rsjFrN7hsNTg8keZldqOjhca74A6b7z7nqTtbk=) 2: F1487C2AA18211EFA2B7E923C4F9AE02.roa (hash: ow0JlSSKtHwrzhAKotnC4Hb7SPL+BmK/kbudjjYhQGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164, serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Validity Not Before: Jun 19 06:13:09 2025 GMT Not After : Jun 26 06:13:09 2025 GMT Subject: CN=6853aa75-949f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:9f:21:2b:66:ce:f6:2f:f9:fd:ce:a4:ff:da: fa:aa:31:96:73:61:97:6a:19:0d:b5:26:ba:34:bd: af:a1:26:3d:82:ba:a0:2b:57:56:e7:04:f5:08:80: 69:fc:06:8f:3e:33:fa:dc:ce:9a:58:6a:ce:35:cc: 1e:f9:c4:9f:3c:62:cc:d4:9d:3c:c6:c6:ce:17:d6: a4:0d:e8:fa:9a:ad:05:57:8a:1c:a3:5d:b2:b0:af: 44:d3:d1:ae:d3:4d:c7:b0:e6:4c:dc:af:aa:38:5f: 1d:ff:b2:b6:c8:2b:1a:b8:43:60:8f:ea:e6:bb:23: 54:7d:7f:95:aa:42:47:2e:e1:c5:2b:dd:e8:d6:96: a7:a1:5d:e5:28:7c:c2:e4:43:f3:8c:19:1d:40:21: eb:bf:eb:08:56:23:38:f7:81:1f:7e:9c:1d:a7:e5: 51:24:17:bd:c8:18:d6:93:f6:ed:5b:7a:f1:06:c9: 51:b5:1d:16:bf:ec:ef:80:78:40:31:2d:6f:1e:ea: 68:21:b3:14:e2:13:8c:19:e1:10:69:7c:3c:7a:01: 0e:a9:17:5b:51:e9:a2:94:6d:5a:91:df:ca:1c:aa: b4:a0:94:9c:cb:59:76:3a:8f:73:f6:cd:8b:6f:0f: 65:9a:60:3b:ae:85:bb:64:f8:f3:bc:18:a9:9f:5a: 96:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D4:77:BB:18:C8:84:9A:CE:7A:F2:C2:09:FC:65:71:2D:AD:54:32 X509v3 Authority Key Identifier: keyid:A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:74:97:20:c0:d2:d3:7d:f5:b9:74:94:bc:d1:4c:f7:9e:f0: 52:fb:1f:e5:47:05:10:45:9d:53:83:b6:62:86:3b:f6:26:0d: 09:9e:fc:0c:d9:80:97:b4:ee:37:6d:ca:75:3d:cd:f5:48:a7: 0f:b5:bd:f3:9a:c8:4f:ee:67:fc:4c:6b:93:30:73:31:f3:fe: be:61:53:01:7e:45:59:64:63:9a:8a:64:79:8e:b8:79:8a:74: f4:8d:9d:09:34:85:4f:28:af:c1:8e:15:11:28:d3:91:a4:d7: ec:ee:35:13:4b:c7:bf:65:e1:9c:53:ab:06:db:51:96:c7:94: 51:0c:1e:e9:cc:12:a9:1f:2e:ad:1d:25:d7:37:a8:ff:6d:76: e9:35:29:7c:6a:c3:c9:98:cf:cc:09:c0:94:63:58:b4:df:18: 02:48:34:45:a3:e2:7c:11:8b:0c:81:d7:3a:34:5e:85:13:41: 6d:fb:b3:c0:8d:e8:97:c0:90:d8:44:0e:fc:15:73:04:38:fb: 69:ca:25:6b:1f:c0:30:f4:35:62:9f:05:2e:ed:2f:3c:33:26: 2b:6f:ed:43:c9:5b:73:3c:4c:d5:20:6e:cb:fd:e9:b3:74:9f: 80:13:c4:21:95:52:ca:a6:34:5b:80:58:7b:ae:77:4c:06:d5: da:dd:46:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDE2NDExMC8GA1UEBRMoQTg3MzcyMDFGQTRDNjRGQTAwNTY0MDIyREIwNkY2MEU3 RUUyQ0QwRDAeFw0yNTA2MTkwNjEzMDlaFw0yNTA2MjYwNjEzMDlaMBgxFjAUBgNV BAMTDTY4NTNhYTc1LTk0OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDznyErZs72L/n9zqT/2vqqMZZzYZdqGQ21Jro0va+hJj2CuqArV1bnBPUIgGn8 Bo8+M/rczppYas41zB75xJ88YszUnTzGxs4X1qQN6PqarQVXihyjXbKwr0TT0a7T Tcew5kzcr6o4Xx3/srbIKxq4Q2CP6ua7I1R9f5WqQkcu4cUr3ejWlqehXeUofMLk Q/OMGR1AIeu/6whWIzj3gR9+nB2n5VEkF73IGNaT9u1bevEGyVG1HRa/7O+AeEAx LW8e6mghsxTiE4wZ4RBpfDx6AQ6pF1tR6aKUbVqR38ocqrSglJzLWXY6j3P2zYtv D2WaYDuuhbtk+PO8GKmfWpYLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo9R3uxjI hJrOevLCCfxlcS2tVDIwHwYDVR0jBBgwFoAUqHNyAfpMZPoAVkAi2wb2Dn7izQ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0MTY0L0E2OEUyNjRFQTE4 MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBvQVZrQWkyd2IyRG43aXpR MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUhOeUFmcE1aUG9BVmtBaTJ3YjJEbjdpelEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 MTY0L0E2OEUyNjRFQTE4MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBv QVZrQWkyd2IyRG43aXpRMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI10lyDA0tN99bl0lLzRTPee8FL7H+VHBRBFnVODtmKGO/YmDQme/AzZ gJe07jdtynU9zfVIpw+1vfOayE/uZ/xMa5MwczHz/r5hUwF+RVlkY5qKZHmOuHmK dPSNnQk0hU8or8GOFREo05Gk1+zuNRNLx79l4ZxTqwbbUZbHlFEMHunMEqkfLq0d Jdc3qP9tduk1KXxqw8mYz8wJwJRjWLTfGAJINEWj4nwRiwyB1zo0XoUTQW37s8CN 6JfAkNhEDvwVcwQ4+2nKJWsfwDD0NWKfBS7tLzwzJitv7UPJW3M8TNUgbsv96bN0 n4ATxCGVUsqmNFuAWHuud0wG1drdRlc= -----END CERTIFICATE-----Generated at Thu Jun 19 12:05:06 2025 by rpki-client