$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft File: QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft (raw, json) Hash identifier: Ca2yF7OSRaXCgSLIKuLLfFfE+Q+OEVdU+S2Q3D1CcTo= Subject key identifier: 02:55:97:31:39:7B:98:C6:67:99:B6:FA:20:98:82:F8:17:7A:89:71 Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft Manifest number: D3 Signing time: Tue 17 Jun 2025 04:39:36 +0000 Manifest this update: Tue 17 Jun 2025 04:39:36 +0000 Manifest next update: Tue 24 Jun 2025 04:39:36 +0000 Files and hashes: 1: QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl (hash: u3fVXcKCX9tne1jKbM8wacOcaplkWhFY1hgbxlcsS9w=) 2: F5AF6608370411F0B2A2B987C4F9AE02.roa (hash: sKL7GxR/Osz7bpKAC1OAVJi+UAvdGvi+MQo+/LHB5R8=) 3: D5A80432370411F0A5919873C4F9AE02.roa (hash: jhleaFnetRilP8PuvxdvCqw9xChQP0YqjbFI4VC52yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Jun 17 04:39:36 2025 GMT Not After : Jun 24 04:39:36 2025 GMT Subject: CN=6850f188-41e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:93:45:c6:47:ed:f9:aa:0c:c0:2a:cf:34:fc: 91:ea:53:0f:0c:25:d8:42:32:aa:48:f6:e6:52:32: e0:7b:52:bb:08:c6:f8:3a:e1:86:bb:08:ad:2c:cb: 75:1a:cc:99:3f:f3:05:98:95:80:4f:e0:70:1b:52: 55:4e:21:2f:4b:c7:e0:58:8e:34:db:d5:c4:bf:e0: 6d:fe:bf:c7:ee:b8:7a:c3:e4:e8:51:92:fd:96:5a: 4c:17:0d:6b:ea:09:cf:12:fd:5a:a6:6f:a6:02:d5: 97:f0:c0:87:c9:58:2e:93:f4:c6:94:ba:8b:59:16: cb:54:5a:01:13:dc:01:4d:89:81:53:f4:5a:05:38: 36:e0:ad:f2:2c:d4:9d:9b:9c:24:31:71:02:f3:0b: 0c:3a:99:45:e7:ed:b1:78:07:f8:6c:c6:de:78:11: 53:5f:f8:ca:c9:bf:e5:2b:59:1a:e2:b6:a2:cc:9e: 66:2d:d2:7f:04:cc:81:56:9e:e7:15:0b:5a:e6:d2: f0:8f:27:86:41:b3:d3:84:42:09:c6:5b:9c:1a:fe: 74:2f:68:d8:75:ee:c9:3f:65:1f:97:00:85:7c:a6: d1:b0:5f:5a:fa:ff:cf:05:b6:17:bc:82:c7:8e:7d: 0b:54:2d:02:f7:60:4a:61:b3:11:b2:b8:ba:68:09: e5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:55:97:31:39:7B:98:C6:67:99:B6:FA:20:98:82:F8:17:7A:89:71 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:98:79:bc:f2:ca:13:03:f7:3f:bc:38:fb:84:d3:5f:af:18: 27:cb:e6:c4:67:90:0f:4d:90:ed:7b:25:b8:fa:02:0a:4a:8b: 38:d6:59:b9:0a:c5:06:c4:c1:ba:d0:24:ea:f7:85:6a:d9:77: c5:11:8d:c8:8f:6f:d6:0a:f7:6d:ee:8a:78:2e:83:19:fe:8e: b9:c1:58:e6:1c:53:61:8d:f0:38:c1:3d:f7:46:07:d6:85:24: a8:73:df:21:c7:2a:a6:5c:f9:2d:5a:0e:30:27:74:64:f0:08: 54:f7:7e:06:38:9d:43:e7:67:b8:54:5e:32:99:21:a9:62:22: f0:3e:b2:6d:61:dd:2c:3c:fa:6e:fc:2a:7a:88:68:58:81:c3: 08:e5:c0:f9:4d:c5:cc:00:62:2f:9f:ac:75:e0:9a:be:eb:c7: 1d:fb:41:51:0a:2a:69:d3:67:ee:f5:99:d5:29:76:31:d2:78: 6c:be:36:83:12:9b:5d:64:dd:e3:bc:ab:41:1f:22:62:40:0e: 86:7c:2f:47:89:61:98:5d:e9:02:ed:8c:95:26:1a:2b:d5:75: 9d:d1:ee:2e:2f:a3:e4:cc:6e:25:93:4f:2b:4d:e8:85:e2:d5: f8:f5:ee:97:3f:3a:6a:86:ac:ec:91:79:8d:51:19:15:ca:21: 7a:26:07:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUwNjE3MDQzOTM2WhcNMjUwNjI0MDQzOTM2WjAYMRYwFAYD VQQDEw02ODUwZjE4OC00MWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pNFxkft+aoMwCrPNPyR6lMPDCXYQjKqSPbmUjLge1K7CMb4OuGGuwitLMt1 GsyZP/MFmJWAT+BwG1JVTiEvS8fgWI4029XEv+Bt/r/H7rh6w+ToUZL9llpMFw1r 6gnPEv1apm+mAtWX8MCHyVguk/TGlLqLWRbLVFoBE9wBTYmBU/RaBTg24K3yLNSd m5wkMXEC8wsMOplF5+2xeAf4bMbeeBFTX/jKyb/lK1ka4raizJ5mLdJ/BMyBVp7n FQta5tLwjyeGQbPThEIJxlucGv50L2jYde7JP2UflwCFfKbRsF9a+v/PBbYXvILH jn0LVC0C92BKYbMRsri6aAnlAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJVlzE5 e5jGZ5m2+iCYgvgXeolxMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC81ODQwQTA3QzEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRN QmZGM1k2bWJ1eU9KdlM2cjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZmHm88soTA/c/vDj7hNNfrxgny+bEZ5APTZDteyW4+gIKSos41lm5 CsUGxMG60CTq94Vq2XfFEY3Ij2/WCvdt7op4LoMZ/o65wVjmHFNhjfA4wT33RgfW hSSoc98hxyqmXPktWg4wJ3Rk8AhU934GOJ1D52e4VF4ymSGpYiLwPrJtYd0sPPpu /Cp6iGhYgcMI5cD5TcXMAGIvn6x14Jq+68cd+0FRCipp02fu9ZnVKXYx0nhsvjaD EptdZN3jvKtBHyJiQA6GfC9HiWGYXekC7YyVJhor1XWd0e4uL6PkzG4lk08rTeiF 4tX49e6XPzpqhqzskXmNURkVyiF6Jgf2 -----END CERTIFICATE-----Generated at Wed Jun 18 16:37:30 2025 by rpki-client