$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: /qYYXkP9dWZPGUnhDFNup1HB/+wvQtu7cVn+voFNHvY= Subject key identifier: 83:0F:2C:36:A5:2D:01:DB:BF:1B:0B:86:D7:E5:E1:15:2A:9B:05:D1 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0ADA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0ACC Signing time: Thu 12 Jun 2025 19:17:53 +0000 Manifest this update: Thu 12 Jun 2025 19:17:52 +0000 Manifest next update: Thu 19 Jun 2025 19:17:52 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: dw3tkp08QdTUEv22ORAy9CMuXiiYX+HGilZaiHGWPFk=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Jun 12 19:17:52 2025 GMT Not After : Jun 19 19:17:52 2025 GMT Subject: CN=684b27e1-3cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e4:07:69:fa:73:61:c0:c0:fe:3b:fe:4c:6e: ba:dd:b7:0e:39:37:7f:f2:df:d6:7b:9c:36:10:1a: b8:42:fc:c4:a8:95:63:48:b1:a2:8c:42:73:f1:fe: 15:a4:9c:9b:ce:ce:1b:0f:7e:2f:d1:fd:e1:ca:c9: 19:0c:bd:5b:ed:05:f7:57:0f:dc:36:75:48:a8:b2: a2:c9:3b:79:66:a7:2c:93:3b:75:55:f7:85:41:bd: a3:32:9c:87:1b:fe:f9:61:ae:95:d6:4b:18:08:c0: f3:50:4f:53:42:de:29:c6:9e:3b:1e:53:7e:df:9b: e8:fe:fb:4f:59:d2:ff:80:d2:5e:a5:d4:57:27:2c: 1c:f5:82:56:b7:d6:34:c0:97:9c:79:2d:48:6b:0d: 1d:a5:77:bb:35:49:17:8d:b2:a5:b8:2b:35:03:68: 52:30:21:e0:49:99:39:b5:d4:13:40:53:0b:3b:85: d6:16:e7:0d:f7:1f:a0:ab:bf:9a:0e:ff:4a:fd:e0: 37:a0:09:9a:9e:bf:28:93:35:53:01:db:0a:a4:96: 11:39:7c:d1:cd:3d:4d:bd:e7:b3:e9:54:b3:37:a7: 9e:86:e6:7d:66:72:24:85:88:ea:6a:69:74:cf:8a: c1:30:65:e6:eb:e3:72:ae:26:1c:49:28:39:39:a0: 2f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:0F:2C:36:A5:2D:01:DB:BF:1B:0B:86:D7:E5:E1:15:2A:9B:05:D1 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:b3:2f:b5:a6:39:a6:bb:09:b6:7b:55:71:c7:c8:75:1b:a0: 0d:8e:36:b8:3b:bc:1f:e3:06:bf:72:0e:56:32:c6:96:6d:a9: fb:3c:ff:d8:75:e5:94:d9:68:43:ff:e7:3a:85:a8:0a:99:59: 03:b9:57:a1:4e:e2:9f:3a:91:d8:6b:ab:18:4f:8d:7b:7a:94: 9d:21:81:27:7e:22:8a:55:f0:9b:d3:5a:4a:02:e9:a1:de:93: 83:74:dd:21:b3:8c:14:2b:d3:1d:4a:b0:21:fc:39:33:50:42: d2:23:de:0e:18:03:7e:76:1c:eb:cd:64:7f:af:2e:97:8f:b7: 24:37:0b:e2:f0:11:a7:cb:f9:51:48:b9:af:d9:3d:b4:ab:e2: 85:cd:ce:a1:77:30:91:b2:d8:c5:1c:1e:9c:e4:6b:08:f9:f4: b8:39:0f:e7:2f:43:21:4a:36:dc:2c:7a:a9:b5:32:a8:ce:d1: d9:aa:e6:85:f3:63:f8:94:e6:b1:3f:16:c7:be:5f:ce:d1:0c: f1:2b:ee:bf:21:82:00:57:3e:bb:1d:c8:22:54:21:8c:01:4c: 93:f5:6e:71:5a:24:3a:dc:72:4a:59:da:ff:2c:8d:88:e6:38: 47:0e:f4:d4:9c:a5:45:9f:cf:be:31:f0:74:91:98:e9:62:24: 12:79:18:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUwNjEyMTkxNzUyWhcNMjUwNjE5MTkxNzUyWjAYMRYwFAYD VQQDEw02ODRiMjdlMS0zY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOQHafpzYcDA/jv+TG663bcOOTd/8t/We5w2EBq4QvzEqJVjSLGijEJz8f4V pJybzs4bD34v0f3hyskZDL1b7QX3Vw/cNnVIqLKiyTt5Zqcskzt1VfeFQb2jMpyH G/75Ya6V1ksYCMDzUE9TQt4pxp47HlN+35vo/vtPWdL/gNJepdRXJywc9YJWt9Y0 wJeceS1Iaw0dpXe7NUkXjbKluCs1A2hSMCHgSZk5tdQTQFMLO4XWFucN9x+gq7+a Dv9K/eA3oAmanr8okzVTAdsKpJYROXzRzT1Nveez6VSzN6eehuZ9ZnIkhYjqaml0 z4rBMGXm6+NyriYcSSg5OaAvpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMPLDal LQHbvxsLhtfl4RUqmwXRMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbsy+1pjmmuwm2e1Vxx8h1G6ANjja4O7wf4wa/cg5WMsaWban7PP/Y deWU2WhD/+c6hagKmVkDuVehTuKfOpHYa6sYT417epSdIYEnfiKKVfCb01pKAumh 3pODdN0hs4wUK9MdSrAh/DkzUELSI94OGAN+dhzrzWR/ry6Xj7ckNwvi8BGny/lR SLmv2T20q+KFzc6hdzCRstjFHB6c5GsI+fS4OQ/nL0MhSjbcLHqptTKoztHZquaF 82P4lOaxPxbHvl/O0QzxK+6/IYIAVz67HcgiVCGMAUyT9W5xWiQ63HJKWdr/LI2I 5jhHDvTUnKVFn8++MfB0kZjpYiQSeRjw -----END CERTIFICATE-----Generated at Sat Jun 14 19:14:36 2025 by rpki-client