$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft File: qgt4LbmTLiL93vDD91WW7glF4S0.mft (raw, json) Hash identifier: AwxCS2u8SHYuIl8aczk5pPDEe/vCKJk+mfRzuCgPLgQ= Subject key identifier: 8A:E6:C6:C2:C0:B0:8C:04:08:84:D1:55:73:C4:A3:C6:F9:E4:66:31 Authority key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D Certificate issuer: /CN=A917C909/serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft Manifest number: 61 Signing time: Thu 19 Jun 2025 06:29:21 +0000 Manifest this update: Thu 19 Jun 2025 06:29:20 +0000 Manifest next update: Thu 26 Jun 2025 06:29:20 +0000 Files and hashes: 1: qgt4LbmTLiL93vDD91WW7glF4S0.crl (hash: 8E6fwyY074b9O80j62+RY0R0Zoa7zjAl/bBqJk0d2s0=) 2: 3A0E0B1CD47511EF91EA0832C4F9AE02.roa (hash: pAj7NdDmToipkIAovmtOfynK/RP/8C5/+xzCsvCxUC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909, serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Validity Not Before: Jun 19 06:29:20 2025 GMT Not After : Jun 26 06:29:20 2025 GMT Subject: CN=6853ae40-1664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e5:39:75:53:9f:fa:a1:8b:8b:06:97:6e:8c: 0c:c0:8b:5d:f2:fc:bc:89:e5:e4:c3:fc:1a:b2:75: 75:04:15:92:84:c9:0e:17:b1:f4:7f:a0:98:e1:f4: f0:7f:c3:f0:17:49:8a:10:a1:54:28:09:88:a6:7c: 06:50:d4:71:57:47:81:3c:1e:3e:77:9f:94:e5:2a: 37:4a:80:94:be:47:3c:a2:0d:0e:4e:46:4a:cb:01: 26:f9:2b:e4:4a:20:d2:56:4e:9a:70:02:6b:e4:8c: 7f:c1:11:dd:2f:82:75:15:9e:76:eb:b7:0d:22:6c: 9f:93:5c:70:71:1e:b1:e6:c8:75:e2:7d:98:4e:eb: bf:a3:88:b5:1c:ab:d4:8b:66:52:1b:a0:f0:a9:97: e9:f3:4a:29:14:ab:ab:42:77:eb:86:97:23:71:65: 04:58:bd:b7:3f:3b:00:92:d9:55:0f:ab:3d:ee:02: 2a:42:4c:fb:e1:2d:4d:46:5e:57:0c:c5:3b:7c:05: 22:bf:af:c1:cc:48:3e:24:9e:62:10:51:55:d2:17: cc:d2:11:72:9c:58:97:09:b5:f7:d4:49:40:7d:0d: c2:99:75:4a:01:c4:6d:82:0b:40:5f:5b:31:a4:94: 56:4d:91:d0:e9:75:df:ea:02:09:f7:fb:a6:ce:e6: 80:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E6:C6:C2:C0:B0:8C:04:08:84:D1:55:73:C4:A3:C6:F9:E4:66:31 X509v3 Authority Key Identifier: keyid:AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:4f:02:37:96:8b:cc:5e:3b:01:1c:46:3b:fc:3e:09:d8:7c: f6:b9:e0:e0:03:a8:0a:55:b0:4a:ac:12:4d:bb:9b:79:c5:fb: ed:48:39:62:c0:aa:ed:a8:95:4a:2b:78:88:6e:31:90:57:72: 5c:c6:61:78:da:70:9d:76:a2:ad:1a:86:b4:27:f3:13:22:67: a5:02:35:f9:14:55:7b:83:a9:36:92:ec:23:c4:f8:22:ef:22: 4b:16:69:71:86:a3:40:ca:62:04:3e:a2:b1:c3:ec:ed:2a:48: 66:54:04:8b:0d:65:f9:c8:4f:da:f1:5f:93:83:cc:87:01:1a: 74:a4:9e:8c:f1:f1:2f:ca:9b:01:84:05:bc:8c:b1:a4:a4:e2: c4:f1:4e:a1:17:ce:c7:1f:57:e4:20:ee:23:b2:38:b1:88:00: 48:ad:80:12:13:d1:31:6a:51:0a:6a:79:49:18:6b:bc:8a:26: a2:52:a6:4e:65:3d:89:4b:ff:79:08:5d:0a:41:8d:06:91:02: f2:31:59:0b:c9:6c:1c:71:9a:6c:41:03:88:10:ad:b8:74:52: 3c:95:38:32:fd:8f:dc:12:42:07:d0:a0:16:b0:04:6e:79:d1: 6b:1e:68:81:37:be:54:c5:0c:62:3f:1f:02:b7:53:00:a6:12: 16:d0:1d:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzkwOTExMC8GA1UEBRMoQUEwQjc4MkRCOTkzMkUyMkZEREVGMEMzRjc1NTk2RUUw OTQ1RTEyRDAeFw0yNTA2MTkwNjI5MjBaFw0yNTA2MjYwNjI5MjBaMBgxFjAUBgNV BAMTDTY4NTNhZTQwLTE2NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC55Tl1U5/6oYuLBpdujAzAi13y/LyJ5eTD/BqydXUEFZKEyQ4XsfR/oJjh9PB/ w/AXSYoQoVQoCYimfAZQ1HFXR4E8Hj53n5TlKjdKgJS+RzyiDQ5ORkrLASb5K+RK INJWTppwAmvkjH/BEd0vgnUVnnbrtw0ibJ+TXHBxHrHmyHXifZhO67+jiLUcq9SL ZlIboPCpl+nzSikUq6tCd+uGlyNxZQRYvbc/OwCS2VUPqz3uAipCTPvhLU1GXlcM xTt8BSK/r8HMSD4knmIQUVXSF8zSEXKcWJcJtffUSUB9DcKZdUoBxG2CC0BfWzGk lFZNkdDpdd/qAgn3+6bO5oAHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiubGwsCw jAQIhNFVc8SjxvnkZjEwHwYDVR0jBBgwFoAUqgt4LbmTLiL93vDD91WW7glF4S0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDOTA5LzA3Nzk3RkU0QzBE QzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlMOTN2REQ5MVdXN2dsRjRT MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWd0NExibVRMaUw5M3ZERDkxV1c3Z2xGNFMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD OTA5LzA3Nzk3RkU0QzBEQzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlM OTN2REQ5MVdXN2dsRjRTMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALFPAjeWi8xeOwEcRjv8PgnYfPa54OADqApVsEqsEk27m3nF++1IOWLA qu2olUoreIhuMZBXclzGYXjacJ12oq0ahrQn8xMiZ6UCNfkUVXuDqTaS7CPE+CLv IksWaXGGo0DKYgQ+orHD7O0qSGZUBIsNZfnIT9rxX5ODzIcBGnSknozx8S/KmwGE BbyMsaSk4sTxTqEXzscfV+Qg7iOyOLGIAEitgBIT0TFqUQpqeUkYa7yKJqJSpk5l PYlL/3kIXQpBjQaRAvIxWQvJbBxxmmxBA4gQrbh0UjyVODL9j9wSQgfQoBawBG55 0WseaIE3vlTFDGI/HwK3UwCmEhbQHfk= -----END CERTIFICATE-----Generated at Thu Jun 19 19:18:58 2025 by rpki-client