$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: OiywWzT9WqiPhpCZam9EeH14k3wN1GTu4g7XyVzJbOc= Subject key identifier: 89:87:D0:B6:30:27:CA:C0:A8:21:FE:06:E2:12:3F:40:83:E3:B6:61 Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 023D Signing time: Sun 15 Jun 2025 01:34:25 +0000 Manifest this update: Sun 15 Jun 2025 01:34:25 +0000 Manifest next update: Sun 22 Jun 2025 01:34:25 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: Q3zu1H4+aTzDXL2x6DEgCL0o/dqldaJoZIa0hEBzMnI=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9, serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Jun 15 01:34:25 2025 GMT Not After : Jun 22 01:34:25 2025 GMT Subject: CN=684e2321-5b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f1:36:09:11:24:4e:6c:e8:e8:1c:a7:0c:e4: c9:d7:b8:f5:c7:70:c3:8d:4a:6d:eb:93:bd:e5:50: 12:c1:dd:e2:da:c8:2a:1d:fa:89:f8:fd:2b:21:ba: b5:6b:0a:5f:25:c4:6b:41:22:84:9a:c1:ea:67:0c: 62:e9:5b:a1:05:12:e2:48:8e:08:04:11:0f:d0:45: 77:fc:d4:13:b9:a1:84:59:d8:97:1a:f7:26:7a:a9: 10:ab:40:61:bd:9d:fa:b3:a9:b9:84:2e:80:7e:cc: 50:f5:51:18:a6:5e:84:51:24:49:a0:9a:ed:4a:28: 70:bd:dd:4b:19:64:b6:c5:fa:47:51:46:05:e2:cf: 45:ad:dd:06:4c:1f:4e:ab:d3:a3:a6:20:55:65:f2: 8d:cf:bb:83:eb:0d:b6:72:37:af:02:e5:5f:99:a2: 0d:14:78:54:a4:4d:cb:46:cd:57:a2:62:34:0f:85: b4:60:99:4f:0b:6f:a2:89:f8:1e:05:7b:cf:d1:76: 2f:c6:e0:01:93:3e:cd:81:2a:d4:8a:fb:96:65:d9: 5f:07:15:0d:5d:46:38:17:f8:06:6d:e8:9d:3e:b7: d7:bc:0d:d8:57:c5:b2:a4:47:1d:2e:6d:46:73:37: 52:65:a1:2c:9c:87:8b:b3:5d:0b:32:d9:f3:1c:6f: c1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:87:D0:B6:30:27:CA:C0:A8:21:FE:06:E2:12:3F:40:83:E3:B6:61 X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:2b:53:80:2c:48:a2:0b:10:cb:7b:64:2c:b5:4c:de:4d:6d: a3:fe:a1:ef:09:43:1a:ce:b5:f3:82:01:70:0c:d9:6d:70:54: 48:b4:40:ae:a2:b3:5e:ed:f3:61:79:73:b9:77:dc:62:5a:57: 90:f8:a3:97:89:67:e0:43:7d:6e:00:4b:a6:f6:d5:f5:56:dd: a2:bd:9f:36:0c:58:ae:ae:5a:9a:9f:1e:b0:fd:84:46:ad:51: 4b:f4:5a:2b:87:72:8a:68:a6:7d:93:81:e0:6c:69:c4:fa:d5: 78:29:64:df:e7:4d:79:56:9b:c0:cd:19:91:f1:74:97:1c:58: 45:8d:e1:7c:fc:32:71:b4:0d:a3:4c:7f:36:de:d0:b2:2c:86: 59:95:24:bd:86:f0:99:68:3d:a3:88:c0:2d:ab:ed:9b:2a:12: 25:65:1d:d4:70:02:64:aa:d2:3c:d8:70:88:d9:e3:f4:85:bb: 3c:cc:32:a9:52:55:2f:11:ca:6f:2d:05:82:1a:69:59:bc:21: 3b:29:70:3a:3c:aa:aa:20:fa:ba:57:a8:5e:56:41:58:e7:2c: 59:ae:fd:e6:3b:89:2d:0a:4d:85:68:2c:6d:65:fe:03:27:19: b6:4d:3a:e5:8d:cf:a7:36:03:18:16:08:ba:03:11:56:84:fa: ac:ae:24:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjUwNjE1MDEzNDI1WhcNMjUwNjIyMDEzNDI1WjAYMRYwFAYD VQQDEw02ODRlMjMyMS01Yjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPE2CREkTmzo6BynDOTJ17j1x3DDjUpt65O95VASwd3i2sgqHfqJ+P0rIbq1 awpfJcRrQSKEmsHqZwxi6VuhBRLiSI4IBBEP0EV3/NQTuaGEWdiXGvcmeqkQq0Bh vZ36s6m5hC6AfsxQ9VEYpl6EUSRJoJrtSihwvd1LGWS2xfpHUUYF4s9Frd0GTB9O q9OjpiBVZfKNz7uD6w22cjevAuVfmaINFHhUpE3LRs1XomI0D4W0YJlPC2+iifge BXvP0XYvxuABkz7NgSrUivuWZdlfBxUNXUY4F/gGbeidPrfXvA3YV8WypEcdLm1G czdSZaEsnIeLs10LMtnzHG/BQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImH0LYw J8rAqCH+BuISP0CD47ZhMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASK1OALEiiCxDLe2QstUzeTW2j/qHvCUMazrXzggFwDNltcFRItECu orNe7fNheXO5d9xiWleQ+KOXiWfgQ31uAEum9tX1Vt2ivZ82DFiurlqanx6w/YRG rVFL9Forh3KKaKZ9k4HgbGnE+tV4KWTf5015VpvAzRmR8XSXHFhFjeF8/DJxtA2j TH823tCyLIZZlSS9hvCZaD2jiMAtq+2bKhIlZR3UcAJkqtI82HCI2eP0hbs8zDKp UlUvEcpvLQWCGmlZvCE7KXA6PKqqIPq6V6heVkFY5yxZrv3mO4ktCk2FaCxtZf4D Jxm2TTrljc+nNgMYFgi6AxFWhPqsriR2 -----END CERTIFICATE-----Generated at Tue Jun 17 01:24:04 2025 by rpki-client