$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: 1xYKrSNf/t4qeek58xevvqk+J2b9ShgVydgvCieasxM= Subject key identifier: 51:A5:91:5D:E4:8D:B5:2C:7F:3A:9D:9E:B1:56:5E:27:95:FC:C2:DB Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 93 Signing time: Tue 17 Jun 2025 05:22:26 +0000 Manifest this update: Tue 17 Jun 2025 05:22:25 +0000 Manifest next update: Tue 24 Jun 2025 05:22:25 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: BWf3OaxfX8Ymo0z2kMHesKqmdnzik+pDRQliM5k4BfE=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Jun 17 05:22:25 2025 GMT Not After : Jun 24 05:22:25 2025 GMT Subject: CN=6850fb91-4225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e6:24:be:48:cf:00:6f:1f:2e:65:3b:cc:69: 41:9c:87:de:09:32:50:c1:3d:d9:06:ee:ca:8b:94: c4:db:61:a4:b3:f3:58:98:08:24:1a:38:58:56:05: f8:ea:01:68:eb:bd:e2:1a:74:83:62:6f:f1:c5:76: 65:f0:14:bd:2d:51:ea:07:da:d3:de:8d:19:d0:4e: cc:48:3f:0a:e2:7d:d6:00:09:e2:06:49:62:5a:46: 58:1e:65:24:a6:62:8c:0d:a2:5b:7c:64:64:ae:59: e8:61:55:ce:5e:3e:ba:7e:ba:c9:7e:95:f0:62:c6: f3:c0:e1:02:0f:06:ec:87:0a:bb:72:09:12:18:99: 5d:3d:a7:e2:7e:b7:4c:42:66:f9:96:c5:78:82:b2: 94:43:c5:ff:2e:31:8d:4a:d3:6e:e0:ec:dc:f6:46: 4e:e0:cd:14:78:80:be:1b:97:43:60:08:bf:cd:84: c7:58:2e:1d:46:00:8d:a0:53:1e:41:d6:a5:b5:ec: cb:8b:00:bc:bd:ef:6e:65:cd:d0:2f:fb:eb:97:55: 66:50:6b:c9:fa:07:92:cb:d2:84:62:fd:90:9b:67: 4f:a0:b7:21:68:9f:72:9c:c8:7f:89:47:3d:ef:32: 71:50:d8:26:05:b8:a3:4c:22:e9:89:c1:10:3b:2e: 79:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A5:91:5D:E4:8D:B5:2C:7F:3A:9D:9E:B1:56:5E:27:95:FC:C2:DB X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:2e:30:a1:1b:06:30:ff:b1:c9:06:3d:5b:d8:dd:59:07:28: 55:18:74:24:ff:15:90:f6:ed:00:d0:50:f0:58:1c:dd:dd:dc: 30:09:72:e1:38:be:5f:98:7f:1d:ea:9b:7a:f8:d8:9a:e7:17: 80:59:ef:c3:41:ce:8d:bb:7d:83:74:e5:a2:9c:c2:2f:b8:35: 81:c9:e3:b7:dc:59:e3:44:24:8e:e5:de:69:0d:b0:e0:5d:6f: c8:d6:22:94:8f:d6:37:0a:9c:4d:87:93:d0:c8:ce:6d:98:ad: 4e:5d:f0:d9:ea:f2:db:0b:96:6b:a7:fd:f6:9c:c8:9d:b8:89: da:d4:bf:ed:8b:f3:47:a1:13:78:1b:5c:8c:86:26:e5:0a:aa: d1:53:b2:3f:82:a1:a8:e0:7e:80:19:34:5a:43:7a:28:05:12: f0:38:09:3b:7f:d4:53:46:f1:39:1b:bc:a4:14:85:aa:68:60: b8:40:f7:02:54:85:c0:b7:52:97:ea:ed:4d:7d:76:ed:fe:98: b3:92:69:73:78:fd:1a:c5:d5:63:59:2d:df:d1:ae:c1:56:12: a0:1e:04:dd:cf:2d:36:b6:a0:29:73:24:f0:91:76:9f:fe:9a: 8b:c2:d5:99:2b:72:71:9c:5a:c4:a8:83:84:23:5e:a3:44:c6: 20:94:dd:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjUwNjE3MDUyMjI1WhcNMjUwNjI0MDUyMjI1WjAYMRYwFAYD VQQDEw02ODUwZmI5MS00MjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eYkvkjPAG8fLmU7zGlBnIfeCTJQwT3ZBu7Ki5TE22Gks/NYmAgkGjhYVgX4 6gFo673iGnSDYm/xxXZl8BS9LVHqB9rT3o0Z0E7MSD8K4n3WAAniBkliWkZYHmUk pmKMDaJbfGRkrlnoYVXOXj66frrJfpXwYsbzwOECDwbshwq7cgkSGJldPafifrdM Qmb5lsV4grKUQ8X/LjGNStNu4Ozc9kZO4M0UeIC+G5dDYAi/zYTHWC4dRgCNoFMe QdaltezLiwC8ve9uZc3QL/vrl1VmUGvJ+geSy9KEYv2Qm2dPoLchaJ9ynMh/iUc9 7zJxUNgmBbijTCLpicEQOy557wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGlkV3k jbUsfzqdnrFWXieV/MLbMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAELjChGwYw/7HJBj1b2N1ZByhVGHQk/xWQ9u0A0FDwWBzd3dwwCXLh OL5fmH8d6pt6+Nia5xeAWe/DQc6Nu32DdOWinMIvuDWByeO33FnjRCSO5d5pDbDg XW/I1iKUj9Y3CpxNh5PQyM5tmK1OXfDZ6vLbC5Zrp/32nMiduIna1L/ti/NHoRN4 G1yMhiblCqrRU7I/gqGo4H6AGTRaQ3ooBRLwOAk7f9RTRvE5G7ykFIWqaGC4QPcC VIXAt1KX6u1NfXbt/pizkmlzeP0axdVjWS3f0a7BVhKgHgTdzy02tqApcyTwkXaf /pqLwtWZK3JxnFrEqIOEI16jRMYglN23 -----END CERTIFICATE-----Generated at Thu Jun 19 04:14:24 2025 by rpki-client