$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: +EQSJvzyim8L3fnl7Q/+LaLSHpjJmRusiIv0EXGhsDw= Subject key identifier: 33:90:F7:AC:C6:09:88:31:78:3A:6C:07:0C:17:36:D7:71:7B:D9:E0 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 0FD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 25F9 Signing time: Mon 16 Jun 2025 16:46:01 +0000 Manifest this update: Mon 16 Jun 2025 16:46:01 +0000 Manifest next update: Mon 23 Jun 2025 16:46:01 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: G7PmU85004Y7zmlvoZdOk4305HyYooU4D7fJqZPl1mE=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: gR4VIke3wzcLlwcHX1MfRQDB5DCCZYAeVJopuxrfT0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4052 (0xfd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Jun 16 16:46:01 2025 GMT Not After : Jun 23 16:46:01 2025 GMT Subject: CN=68504a49-daf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ab:88:f5:db:23:76:bd:bc:c9:1c:22:60:e4: 29:6f:06:38:dc:bf:67:82:67:73:6e:7a:bd:68:68: ae:71:f1:b2:a4:d5:55:f5:e2:53:67:a7:23:ec:f6: b0:13:85:6a:09:08:d8:5c:b5:ec:20:29:e1:89:98: 04:f0:e8:d6:6f:34:3a:29:fb:6a:80:6f:c5:e7:a9: c4:c0:15:94:be:72:49:1c:61:a2:95:00:7c:84:36: d2:df:35:32:c2:0e:ff:2a:8f:85:5d:b3:28:63:f1: e9:50:ae:15:ee:59:31:e0:c7:7b:f1:cc:7f:55:0c: 7d:de:ef:10:42:f9:e5:da:b5:56:02:cf:a6:36:f5: 77:f4:3c:71:41:7c:39:07:40:46:82:00:68:80:bd: 23:5d:ff:a1:c2:84:68:75:e5:01:b5:d1:ef:e6:41: 16:d5:a0:27:bd:de:05:3b:c9:43:fd:8f:3b:6d:86: 14:2f:dc:a7:27:94:77:bb:69:5a:5b:11:88:9e:b9: 00:ae:e2:cf:e3:19:18:f4:b5:68:cb:a4:e7:2a:1c: 13:bf:07:48:96:97:b2:eb:58:c4:32:c1:00:69:56: 0f:9a:3d:a9:a6:7c:c4:58:03:da:2d:c7:0d:65:d7: ec:55:32:58:0e:27:9c:77:18:30:30:0b:0b:a7:96: 7f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:90:F7:AC:C6:09:88:31:78:3A:6C:07:0C:17:36:D7:71:7B:D9:E0 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:7d:19:0b:84:f2:dc:74:6a:9a:64:12:59:56:d4:d0:e5:82: 6c:22:06:68:a0:5d:88:56:7e:e6:91:b8:6d:8f:6e:13:ab:b6: 58:32:c4:bc:f5:34:f7:72:42:10:61:a8:3f:d2:c1:3e:d0:c5: ca:39:2e:79:50:eb:8f:fb:4b:cf:fd:8f:64:74:be:31:da:3c: 32:b5:07:61:a7:85:60:b1:6b:1c:b9:11:3c:a5:78:32:03:c4: ec:ec:73:c5:77:ed:3e:0f:78:94:2d:37:cd:b6:4c:e7:59:86: c2:4f:7b:43:2c:e4:6f:22:59:6b:2e:23:2d:6b:dd:17:8f:08: e9:22:79:a9:a9:77:5e:3a:e5:5f:ad:08:97:2b:82:90:22:91: 4c:68:de:f1:2d:27:18:58:f7:74:15:09:aa:1b:5b:16:77:ed: 9a:3b:f9:e8:0d:c2:81:f7:4c:6e:b5:c6:e7:4e:d2:65:09:3e: b1:98:73:7e:ce:56:b1:07:c4:ec:fd:59:d5:bd:c6:a7:ad:63: 38:17:a4:a6:a0:94:fe:4a:44:76:c4:a1:44:45:c9:a2:6f:9e: 80:cb:eb:7e:fb:ee:56:a6:1b:90:e7:ff:fd:2c:79:0a:52:25: 87:5d:7d:9b:0a:c2:7f:22:0c:46:68:f2:c1:00:41:de:35:b0: b0:40:70:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUwNjE2MTY0NjAxWhcNMjUwNjIzMTY0NjAxWjAYMRYwFAYD VQQDEw02ODUwNGE0OS1kYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0quI9dsjdr28yRwiYOQpbwY43L9ngmdzbnq9aGiucfGypNVV9eJTZ6cj7Paw E4VqCQjYXLXsICnhiZgE8OjWbzQ6KftqgG/F56nEwBWUvnJJHGGilQB8hDbS3zUy wg7/Ko+FXbMoY/HpUK4V7lkx4Md78cx/VQx93u8QQvnl2rVWAs+mNvV39DxxQXw5 B0BGggBogL0jXf+hwoRodeUBtdHv5kEW1aAnvd4FO8lD/Y87bYYUL9ynJ5R3u2la WxGInrkAruLP4xkY9LVoy6TnKhwTvwdIlpey61jEMsEAaVYPmj2ppnzEWAPaLccN ZdfsVTJYDiecdxgwMAsLp5Z/QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOQ96zG CYgxeDpsBwwXNtdxe9ngMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGfRkLhPLcdGqaZBJZVtTQ5YJsIgZooF2IVn7mkbhtj24Tq7ZYMsS8 9TT3ckIQYag/0sE+0MXKOS55UOuP+0vP/Y9kdL4x2jwytQdhp4VgsWscuRE8pXgy A8Ts7HPFd+0+D3iULTfNtkznWYbCT3tDLORvIllrLiMta90XjwjpInmpqXdeOuVf rQiXK4KQIpFMaN7xLScYWPd0FQmqG1sWd+2aO/noDcKB90xutcbnTtJlCT6xmHN+ zlaxB8Ts/VnVvcanrWM4F6SmoJT+SkR2xKFERcmib56Ay+t+++5WphuQ5//9LHkK UiWHXX2bCsJ/IgxGaPLBAEHeNbCwQHAo -----END CERTIFICATE-----Generated at Wed Jun 18 06:43:18 2025 by rpki-client