$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: odYG0CH+LkgSPxAg1htG/aOlWIOVk+ZFjtzJhG5UQbk= Subject key identifier: 85:31:30:81:B2:8F:3A:76:01:5A:3F:D9:44:82:4B:60:28:56:CA:9E Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0C7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0C71 Signing time: Sat 14 Jun 2025 18:10:15 +0000 Manifest this update: Sat 14 Jun 2025 18:10:15 +0000 Manifest next update: Sat 21 Jun 2025 18:10:15 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: 9ydGjphuqSncEHPCcJakEeygHKGFzcECnF2zICox5SU=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: NrdZbVMd1dHy2FEEAMNxWeknBO6BNRI5lNG3a+z4IPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Jun 14 18:10:15 2025 GMT Not After : Jun 21 18:10:15 2025 GMT Subject: CN=684dbb07-455e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:17:70:ed:e8:82:aa:41:c5:35:bb:63:d6:7f: 14:8d:67:5e:76:a4:8c:de:51:b2:73:9d:87:5b:44: 52:a3:92:c7:80:44:62:d8:90:7e:9a:72:97:c9:54: ca:60:16:0e:1d:c3:22:60:30:0f:0d:14:7f:2f:8e: 9b:d9:2c:57:b4:94:06:39:57:05:16:83:45:eb:bd: d1:f8:83:69:0b:8d:c2:a0:19:41:a9:25:ae:55:f8: 31:f4:98:3e:32:bc:20:26:08:5b:f3:1d:9e:9d:f5: 18:a6:13:d4:fc:1e:57:84:7f:c3:2f:09:80:9b:ed: 9a:5d:42:d2:b6:aa:ca:69:29:9c:a3:9b:5d:a8:da: 2d:c5:60:39:83:38:8b:5e:3d:0d:b1:a5:2c:27:aa: 02:a6:6e:90:42:de:66:60:e5:ca:89:c8:31:4a:26: 72:1e:0b:13:c3:a2:48:1b:d3:28:28:78:d5:e5:bf: 8e:be:02:69:c5:60:a9:22:06:03:50:49:b7:40:57: 66:83:8f:4e:df:58:3e:d5:e1:3d:8a:23:70:66:0f: 48:a8:1f:6f:67:ea:6d:00:18:4b:86:3e:64:e2:47: 10:d4:f4:26:d0:82:99:9a:f7:87:10:6c:e5:e9:5c: 51:b9:3e:5f:d2:1c:06:25:3c:7f:8d:3a:52:7e:4f: c5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:31:30:81:B2:8F:3A:76:01:5A:3F:D9:44:82:4B:60:28:56:CA:9E X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:0d:cc:18:f8:b2:c6:e7:2a:50:c0:bf:52:b1:7c:08:63:ed: d4:0d:f4:f0:f6:85:d9:ba:e0:4e:39:1c:21:91:f0:3c:b0:af: 14:46:a6:b1:d7:9e:e0:98:89:fc:82:24:96:09:31:f6:25:2a: 50:f4:f7:30:e4:52:c1:4f:c9:6d:7d:a3:cd:4f:d0:cd:7a:61: 3e:b1:7b:df:e2:45:6a:ea:fe:60:41:49:bf:b6:ec:52:04:a0: 8f:19:73:1d:6a:18:b5:18:a7:58:0e:8a:6f:5e:38:fe:3d:99: 4e:e8:35:82:3b:f0:b6:ca:01:f7:69:e1:dd:47:aa:ce:5a:ff: af:68:b3:3d:59:84:ce:8d:bb:e4:c2:ba:41:3b:06:4d:19:aa: 92:54:a9:5a:c0:6d:01:17:11:c9:03:e8:34:c1:f0:33:eb:95: b3:38:78:46:b1:85:d6:72:78:bb:5f:5e:f9:17:f5:6e:a9:09: 5c:6e:52:c3:44:39:58:93:be:19:3e:32:11:3d:a5:a7:91:42: 18:bf:17:89:eb:2f:5a:a7:a0:55:4a:fa:8b:2e:0a:8b:6a:53: 5d:1f:69:70:41:ff:33:ca:31:88:aa:f8:2d:60:df:07:3d:51: 59:69:37:f4:b0:38:7d:58:19:e9:d4:61:91:c6:4b:84:17:14: 24:53:ae:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwNjE0MTgxMDE1WhcNMjUwNjIxMTgxMDE1WjAYMRYwFAYD VQQDEw02ODRkYmIwNy00NTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Bdw7eiCqkHFNbtj1n8UjWdedqSM3lGyc52HW0RSo5LHgERi2JB+mnKXyVTK YBYOHcMiYDAPDRR/L46b2SxXtJQGOVcFFoNF673R+INpC43CoBlBqSWuVfgx9Jg+ MrwgJghb8x2enfUYphPU/B5XhH/DLwmAm+2aXULStqrKaSmco5tdqNotxWA5gziL Xj0NsaUsJ6oCpm6QQt5mYOXKicgxSiZyHgsTw6JIG9MoKHjV5b+OvgJpxWCpIgYD UEm3QFdmg49O31g+1eE9iiNwZg9IqB9vZ+ptABhLhj5k4kcQ1PQm0IKZmveHEGzl 6VxRuT5f0hwGJTx/jTpSfk/FvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUxMIGy jzp2AVo/2USCS2AoVsqeMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3DcwY+LLG5ypQwL9SsXwIY+3UDfTw9oXZuuBOORwhkfA8sK8URqax 157gmIn8giSWCTH2JSpQ9Pcw5FLBT8ltfaPNT9DNemE+sXvf4kVq6v5gQUm/tuxS BKCPGXMdahi1GKdYDopvXjj+PZlO6DWCO/C2ygH3aeHdR6rOWv+vaLM9WYTOjbvk wrpBOwZNGaqSVKlawG0BFxHJA+g0wfAz65WzOHhGsYXWcni7X175F/VuqQlcblLD RDlYk74ZPjIRPaWnkUIYvxeJ6y9ap6BVSvqLLgqLalNdH2lwQf8zyjGIqvgtYN8H PVFZaTf0sDh9WBnp1GGRxkuEFxQkU67j -----END CERTIFICATE-----Generated at Sun Jun 15 09:43:00 2025 by rpki-client