$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft File: qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft (raw, json) Hash identifier: qJ7qrF82HD/fjHJcfKypXCM2w8boQy0D9XAapL2Bq8w= Subject key identifier: CC:6A:08:3F:CD:9A:0D:C0:A5:BF:1D:F9:A1:C6:EB:63:18:85:D0:5F Authority key identifier: A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A Certificate issuer: /CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft Manifest number: 01A8 Signing time: Thu 19 Jun 2025 02:41:22 +0000 Manifest this update: Thu 19 Jun 2025 02:41:21 +0000 Manifest next update: Thu 26 Jun 2025 02:41:21 +0000 Files and hashes: 1: qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl (hash: +kp4pKhwNNLSRBH21rK43fIHOsLN+3Pzn44HBVx8cjA=) 2: A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa (hash: qTpurh8+bWpZzwTVZxTLGeJXujwiEOMw1H0kXdqpaC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:41:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C52, serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Validity Not Before: Jun 19 02:41:21 2025 GMT Not After : Jun 26 02:41:21 2025 GMT Subject: CN=685378d1-57bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2a:81:9a:9e:4e:4f:ee:da:25:35:5e:ef:5f: d1:1a:4a:22:f2:78:59:22:f8:71:b0:74:2b:cd:0b: 57:73:8e:9d:47:ab:49:9a:61:1b:5b:a2:88:f4:1a: 3b:da:dc:5f:26:50:8a:91:c4:5b:07:54:28:64:64: 9b:8c:5c:b1:70:5a:f7:6e:d7:7d:0b:90:ed:8b:51: 82:85:f3:60:8c:03:e0:51:8f:a6:eb:06:00:88:b9: 4c:96:ca:50:23:5b:9c:1c:e7:4d:c6:b5:be:21:4c: aa:10:03:6a:0a:a8:48:39:4e:49:81:41:61:da:c7: 2b:90:42:85:c2:05:a5:9a:fc:c5:68:ba:de:19:27: 17:ad:24:c2:c1:96:89:8d:5c:af:b6:94:fa:75:84: 2d:f5:0b:53:9c:e2:45:33:68:0b:68:ac:8e:aa:9f: aa:c2:53:48:00:40:26:be:3d:cc:13:72:0c:f8:39: ec:cf:d7:e9:18:6e:40:3f:86:ef:5f:da:19:ce:5d: d1:9c:f5:6b:1d:f4:8d:42:0c:eb:25:13:f0:11:7d: 46:78:df:f9:46:c1:45:70:4c:4f:86:6a:49:e2:c2: ae:3b:47:ad:e7:f4:13:a9:bd:24:d7:df:3c:d6:00: ff:1d:0a:dd:d9:57:f2:81:45:42:2f:a5:25:9c:f4: ad:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:6A:08:3F:CD:9A:0D:C0:A5:BF:1D:F9:A1:C6:EB:63:18:85:D0:5F X509v3 Authority Key Identifier: keyid:A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:ef:9a:b9:69:93:0d:fb:38:09:f8:06:7c:22:fa:ec:5f:4d: 7f:a8:7e:14:02:5a:63:6b:31:31:36:d7:62:35:37:1a:06:12: 8b:c6:63:63:c7:5b:d6:11:2f:10:76:4e:a9:c9:ec:b2:8e:6c: 33:35:e7:82:c3:e8:dc:67:f6:03:ff:32:7c:0c:1c:c1:5c:be: 14:38:96:0c:a9:67:65:37:9e:60:d6:77:1c:fd:83:28:51:f0: 68:61:40:b8:71:24:d7:0d:c6:cd:0e:8e:9a:1c:b0:a6:09:98: 7f:77:c3:1d:97:88:23:a1:21:bb:9f:04:01:6a:8c:9d:d8:b5: 02:be:59:5d:af:8b:22:7b:3e:f1:a5:2c:ad:4d:5e:6b:59:9e: a6:27:5a:c5:8c:c7:4f:47:63:3a:f6:71:86:2b:6b:c9:22:e3: 95:03:83:52:9a:44:7e:6d:d0:fb:89:ec:13:35:54:ec:d8:dc: 56:42:79:0d:3a:07:ab:33:a2:06:18:0a:e3:4b:ec:af:3c:cc: fb:51:cc:aa:f6:a4:9e:7c:c5:b9:c8:35:53:ca:ef:54:16:82: 7d:6b:77:04:01:65:fa:8b:7d:99:cb:9f:c4:90:a6:cc:eb:26: 66:92:58:10:ef:20:41:5d:cd:59:74:2a:ab:e9:cf:93:af:1e: 4d:16:6b:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDNTIxMTAvBgNVBAUTKEE5OTBEQTI1Q0Y0RTAxQkNFQjdFQzc1QzE3ODYwRkI5 NDdCRTA5MkEwHhcNMjUwNjE5MDI0MTIxWhcNMjUwNjI2MDI0MTIxWjAYMRYwFAYD VQQDEw02ODUzNzhkMS01N2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CqBmp5OT+7aJTVe71/RGkoi8nhZIvhxsHQrzQtXc46dR6tJmmEbW6KI9Bo7 2txfJlCKkcRbB1QoZGSbjFyxcFr3btd9C5Dti1GChfNgjAPgUY+m6wYAiLlMlspQ I1ucHOdNxrW+IUyqEANqCqhIOU5JgUFh2scrkEKFwgWlmvzFaLreGScXrSTCwZaJ jVyvtpT6dYQt9QtTnOJFM2gLaKyOqp+qwlNIAEAmvj3ME3IM+Dnsz9fpGG5AP4bv X9oZzl3RnPVrHfSNQgzrJRPwEX1GeN/5RsFFcExPhmpJ4sKuO0et5/QTqb0k1988 1gD/HQrd2VfygUVCL6UlnPSt4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxqCD/N mg3Apb8d+aHG62MYhdBfMB8GA1UdIwQYMBaAFKmQ2iXPTgG8637HXBeGD7lHvgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUM1Mi8wRTVEQkZCNEM0 QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0FienJmc2RjRjRZUHVVZS1D U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaRGFKYzlPQWJ6cmZzZGNGNFlQdVVlLUNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUM1Mi8wRTVEQkZCNEM0QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0Fi enJmc2RjRjRZUHVVZS1DU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh75q5aZMN+zgJ+AZ8IvrsX01/qH4UAlpjazExNtdiNTcaBhKLxmNj x1vWES8Qdk6pyeyyjmwzNeeCw+jcZ/YD/zJ8DBzBXL4UOJYMqWdlN55g1ncc/YMo UfBoYUC4cSTXDcbNDo6aHLCmCZh/d8Mdl4gjoSG7nwQBaoyd2LUCvlldr4siez7x pSytTV5rWZ6mJ1rFjMdPR2M69nGGK2vJIuOVA4NSmkR+bdD7iewTNVTs2NxWQnkN OgerM6IGGArjS+yvPMz7Ucyq9qSefMW5yDVTyu9UFoJ9a3cEAWX6i32Zy5/EkKbM 6yZmklgQ7yBBXc1ZdCqr6c+Trx5NFmsC -----END CERTIFICATE-----Generated at Thu Jun 19 11:08:39 2025 by rpki-client