$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft File: qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json) Hash identifier: h7AJyCkfIBLtoSpzmItETwQ9UwA9PO5UNpg175/qTyM= Subject key identifier: 6D:C4:57:99:37:76:3A:78:97:75:81:9B:5C:0B:85:C9:A0:7B:53:3C Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B Certificate issuer: /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft Manifest number: 0432 Signing time: Thu 19 Jun 2025 00:11:56 +0000 Manifest this update: Thu 19 Jun 2025 00:11:56 +0000 Manifest next update: Thu 26 Jun 2025 00:11:56 +0000 Files and hashes: 1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: /S9Uw0KLwXjh45Yeabfq8XZuNoY5tfF0syj4za3LQOc=) 2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: jsVFzS1V8/4nPs0LiSJz70mLYAraQYwRrwx0A1zMdZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:11:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F49, serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Validity Not Before: Jun 19 00:11:56 2025 GMT Not After : Jun 26 00:11:56 2025 GMT Subject: CN=685355cc-ead8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:29:d7:96:06:31:66:38:67:f0:b1:33:9e:89: 01:64:cf:a9:a3:b7:bd:fb:68:89:17:41:7f:30:05: cb:1d:70:2e:4e:83:33:86:69:16:b0:c6:f8:f1:01: 2c:d1:4c:49:09:67:14:e8:35:85:35:ca:f2:9e:3d: 26:3b:d2:b7:97:66:29:53:3c:f2:d9:2c:54:ab:40: a3:55:b3:45:69:72:aa:a5:ec:83:a9:dd:c2:ff:a3: 6e:5b:95:ae:9c:c7:e3:71:6f:b3:91:e8:ba:4f:a2: 1b:e1:d8:77:8f:1f:16:ee:63:d1:b5:78:86:df:df: 50:c8:d1:6b:98:72:02:ae:a3:d3:96:43:52:46:39: 3f:95:78:5f:db:20:54:cb:46:ff:6f:15:81:db:eb: 67:85:02:44:7c:2b:f4:a8:96:cf:8e:26:20:ee:fd: d5:10:58:3c:c7:8d:9f:90:ae:bc:af:ea:09:74:32: 28:44:bb:88:de:ff:d9:40:5b:9d:72:15:34:46:1a: 08:95:53:14:b1:64:df:e1:35:1d:43:0f:b3:83:f4: 47:80:63:70:98:28:79:1b:df:7c:43:7e:57:a1:84: 7d:b3:4f:d7:6e:9f:01:f5:2a:52:6b:3a:29:cb:1f: f4:fe:4f:33:72:48:e5:73:d0:91:37:f0:25:f0:db: 51:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C4:57:99:37:76:3A:78:97:75:81:9B:5C:0B:85:C9:A0:7B:53:3C X509v3 Authority Key Identifier: keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ac:95:53:4d:c2:38:70:49:ac:1f:5b:a3:ee:88:47:d7:17: 8c:10:5d:cd:5f:5a:ac:8f:3d:91:a8:ba:4b:fd:fa:ae:2f:f9: e2:31:71:f8:ca:ff:ea:11:d1:d6:c5:87:a9:74:c6:1b:ea:96: cd:5d:5c:3e:63:fb:99:65:03:57:19:87:15:a2:69:13:67:97: 02:b3:97:c6:58:41:f6:d2:ca:13:b7:65:5a:78:df:eb:af:9f: 00:8d:70:8f:c6:b8:45:2d:74:20:1c:32:59:be:d9:97:84:b9: 14:7c:42:b3:a8:ad:72:8e:7b:3d:59:e2:b2:79:81:86:76:0d: f0:5f:72:27:6e:14:b4:73:fc:fc:9d:67:12:ac:cc:bb:f2:8a: 1f:93:4f:6e:fd:a2:98:8f:47:21:32:ef:96:d4:b4:5a:4c:17: 16:9a:5e:d3:6c:ed:ca:70:76:09:9e:83:23:d4:36:27:09:ec: 1c:41:81:bb:f4:ba:8a:07:4c:0b:f2:0e:66:03:62:66:e9:9d: 7c:69:50:a1:1e:9d:e5:97:a9:a7:c8:e8:eb:0c:a6:8d:97:a3: 4b:09:86:8c:e8:2d:6d:36:f4:89:f4:06:f8:1f:92:0f:af:59: 29:b8:dc:df:03:24:c3:94:ff:61:f6:e7:64:26:66:07:69:30: 84:14:27:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGNDkxMTAvBgNVBAUTKEE4NzFGNEU2QzM3MkRCMTBCNjRERjM5OTVGQTE1MUVG QjM5Rjk5OEIwHhcNMjUwNjE5MDAxMTU2WhcNMjUwNjI2MDAxMTU2WjAYMRYwFAYD VQQDEw02ODUzNTVjYy1lYWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvynXlgYxZjhn8LEznokBZM+po7e9+2iJF0F/MAXLHXAuToMzhmkWsMb48QEs 0UxJCWcU6DWFNcrynj0mO9K3l2YpUzzy2SxUq0CjVbNFaXKqpeyDqd3C/6NuW5Wu nMfjcW+zkei6T6Ib4dh3jx8W7mPRtXiG399QyNFrmHICrqPTlkNSRjk/lXhf2yBU y0b/bxWB2+tnhQJEfCv0qJbPjiYg7v3VEFg8x42fkK68r+oJdDIoRLuI3v/ZQFud chU0RhoIlVMUsWTf4TUdQw+zg/RHgGNwmCh5G998Q35XoYR9s0/Xbp8B9SpSazop yx/0/k8zckjlc9CRN/Al8NtR0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3EV5k3 djp4l3WBm1wLhcmge1M8MB8GA1UdIwQYMBaAFKhx9ObDctsQtk3zmV+hUe+zn5mL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY0OS85RDNDNzQ5MjY2 QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4QzJUZk9aWDZGUjc3T2Zt WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISDA1c055MnhDMlRmT1pYNkZSNzdPZm1Zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY0OS85RDNDNzQ5MjY2QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4 QzJUZk9aWDZGUjc3T2ZtWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCrJVTTcI4cEmsH1uj7ohH1xeMEF3NX1qsjz2RqLpL/fquL/niMXH4 yv/qEdHWxYepdMYb6pbNXVw+Y/uZZQNXGYcVomkTZ5cCs5fGWEH20soTt2VaeN/r r58AjXCPxrhFLXQgHDJZvtmXhLkUfEKzqK1yjns9WeKyeYGGdg3wX3InbhS0c/z8 nWcSrMy78oofk09u/aKYj0chMu+W1LRaTBcWml7TbO3KcHYJnoMj1DYnCewcQYG7 9LqKB0wL8g5mA2Jm6Z18aVChHp3ll6mnyOjrDKaNl6NLCYaM6C1tNvSJ9Ab4H5IP r1kpuNzfAyTDlP9h9udkJmYHaTCEFCdY -----END CERTIFICATE-----Generated at Thu Jun 19 05:12:33 2025 by rpki-client