$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft File: QpCYAlfGdws2CulWLaWJPGDa2nc.mft (raw, json) Hash identifier: UWlYaccc2ZpbHa+n0LiLW4lnH2a3ZbinPU2prT3/BHk= Subject key identifier: 0B:24:18:48:CD:7B:03:C0:C4:06:F7:1D:87:86:84:69:3A:23:F7:FB Authority key identifier: 42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 Certificate issuer: /CN=A91C3B89/serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Certificate serial: 08D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft Manifest number: 08D5 Signing time: Sat 14 Jun 2025 20:13:49 +0000 Manifest this update: Sat 14 Jun 2025 20:13:49 +0000 Manifest next update: Sat 21 Jun 2025 20:13:49 +0000 Files and hashes: 1: QpCYAlfGdws2CulWLaWJPGDa2nc.crl (hash: JbnbACs+7RtgfZyBK1OJ4v4xeVoNbC/CwZiPk766z3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2261 (0x8d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B89, serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Validity Not Before: Jun 14 20:13:49 2025 GMT Not After : Jun 21 20:13:49 2025 GMT Subject: CN=684dd7fd-8672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:64:7c:42:f1:cd:2a:8f:9e:56:45:2d:0b:50: cf:b0:b6:a0:65:eb:7b:45:30:d8:61:8a:54:72:b8: fe:4a:9d:74:ee:64:be:07:65:43:19:d8:a0:68:40: f9:e9:3c:2c:95:e6:92:a3:7b:58:67:1b:6a:34:13: fc:d7:81:ad:da:15:9e:99:05:36:33:1e:7f:97:b8: 5d:a7:cf:a7:d4:a1:3b:ff:e7:a8:bd:c3:cc:62:d9: 7c:af:94:aa:d9:66:e6:70:a8:2f:a0:70:0b:26:34: 12:9a:e9:5d:8a:a2:c3:a8:3b:8a:9e:f5:3e:46:d3: 34:ff:1c:94:78:70:8d:37:90:60:d1:42:52:6f:92: 7d:d3:a7:10:98:ef:e3:84:b9:f9:0a:14:6b:a0:bd: 50:8d:e5:09:04:ca:6a:de:5e:d7:98:ab:56:03:e0: ab:f8:28:ae:84:41:f5:a4:65:81:14:a0:62:92:e6: 5f:1e:38:e6:5d:75:ec:99:52:ce:68:1b:21:6b:4f: 92:df:b4:48:8a:d0:02:e1:57:a8:31:16:b0:58:dc: 79:28:64:72:72:9c:66:f4:70:bb:40:e8:96:f9:f1: 74:de:d0:10:e0:7f:79:40:d5:d5:73:71:56:a7:ad: ff:50:03:69:21:74:eb:57:c5:06:54:74:3b:b8:cd: 57:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:24:18:48:CD:7B:03:C0:C4:06:F7:1D:87:86:84:69:3A:23:F7:FB X509v3 Authority Key Identifier: keyid:42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:83:e5:e7:cd:a0:a7:e3:ae:26:ae:9a:37:57:3e:bb:09:51: 7e:9a:5b:7e:0d:b5:f5:8b:e2:83:1e:5d:e9:0c:85:30:65:01: 12:f2:62:74:93:40:35:26:ce:78:7e:59:9a:57:5d:c1:54:dd: 48:ad:38:92:2a:f8:b1:1c:78:4f:12:bf:11:b4:9b:8b:42:9b: 4b:8d:a9:36:e1:69:b1:4a:35:e3:14:6a:b8:6f:08:50:43:f0: 84:1a:06:40:b2:b9:14:b8:1d:b6:63:ac:df:70:f7:d9:27:34: 23:7e:66:6d:55:d4:ae:05:64:cd:78:0c:34:66:6e:45:3b:d3: 2e:ab:20:cf:ec:64:b1:b1:14:76:72:96:10:a2:b3:a9:ff:75: 19:46:12:8c:0b:73:cc:89:82:ac:fd:72:84:32:e4:1b:27:5f: 4b:b0:27:72:e1:81:17:bd:a5:95:f4:1c:6e:8a:1c:37:cb:7b: 60:67:3d:50:70:96:bf:ed:ad:23:57:b9:94:9d:54:be:19:e9: f3:82:df:ea:53:cf:c1:54:8a:46:25:02:35:da:41:b1:06:89: 31:6c:1d:12:7e:fb:71:12:87:40:9b:27:cb:e5:7d:73:97:fd: ba:33:cb:91:03:a5:46:bd:cb:7f:88:15:52:a9:d3:06:c2:48: 52:10:5c:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCODkxMTAvBgNVBAUTKDQyOTA5ODAyNTdDNjc3MEIzNjBBRTk1NjJEQTU4OTND NjBEQURBNzcwHhcNMjUwNjE0MjAxMzQ5WhcNMjUwNjIxMjAxMzQ5WjAYMRYwFAYD VQQDEw02ODRkZDdmZC04NjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlGR8QvHNKo+eVkUtC1DPsLagZet7RTDYYYpUcrj+Sp107mS+B2VDGdigaED5 6TwsleaSo3tYZxtqNBP814Gt2hWemQU2Mx5/l7hdp8+n1KE7/+eovcPMYtl8r5Sq 2WbmcKgvoHALJjQSmuldiqLDqDuKnvU+RtM0/xyUeHCNN5Bg0UJSb5J906cQmO/j hLn5ChRroL1QjeUJBMpq3l7XmKtWA+Cr+CiuhEH1pGWBFKBikuZfHjjmXXXsmVLO aBsha0+S37RIitAC4VeoMRawWNx5KGRycpxm9HC7QOiW+fF03tAQ4H95QNXVc3FW p63/UANpIXTrV8UGVHQ7uM1X8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAskGEjN ewPAxAb3HYeGhGk6I/f7MB8GA1UdIwQYMBaAFEKQmAJXxncLNgrpVi2liTxg2tp3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4OS9EODM1NkJBQ0Iw NzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3czJDdWxXTGFXSlBHRGEy bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwQ1lBbGZHZHdzMkN1bFdMYVdKUEdEYTJuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0I4OS9EODM1NkJBQ0IwNzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3 czJDdWxXTGFXSlBHRGEybmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByg+XnzaCn464mrpo3Vz67CVF+mlt+DbX1i+KDHl3pDIUwZQES8mJ0 k0A1Js54flmaV13BVN1IrTiSKvixHHhPEr8RtJuLQptLjak24WmxSjXjFGq4bwhQ Q/CEGgZAsrkUuB22Y6zfcPfZJzQjfmZtVdSuBWTNeAw0Zm5FO9MuqyDP7GSxsRR2 cpYQorOp/3UZRhKMC3PMiYKs/XKEMuQbJ19LsCdy4YEXvaWV9Bxuihw3y3tgZz1Q cJa/7a0jV7mUnVS+Genzgt/qU8/BVIpGJQI12kGxBokxbB0SfvtxEodAmyfL5X1z l/26M8uRA6VGvct/iBVSqdMGwkhSEFzW -----END CERTIFICATE-----Generated at Sun Jun 15 10:26:10 2025 by rpki-client