$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: qSf7REiIVP/1YV2nO78BeZjKwxGCWvKeNqQNI74n6g8= Subject key identifier: 59:59:D0:CB:79:A3:41:6E:21:EE:69:38:7B:43:CD:F8:CE:CF:C4:DC Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 0543 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 053B Signing time: Thu 12 Jun 2025 23:05:06 +0000 Manifest this update: Thu 12 Jun 2025 23:05:05 +0000 Manifest next update: Thu 19 Jun 2025 23:05:05 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: A5O35FAihLc4ExCszo7lGR8R5QjW0lsUZY+xph2rnM0=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: /ckEG51NBhBYEZtZSbLBPmavN3UuTjHbEpYTSHsiIm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1347 (0x543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Jun 12 23:05:05 2025 GMT Not After : Jun 19 23:05:05 2025 GMT Subject: CN=684b5d22-da87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:be:05:75:4e:82:b3:8a:30:4c:70:a8:5e: 80:64:09:ff:c1:ef:06:f4:54:48:57:bf:1e:8e:3f: 11:c2:f6:94:7f:a5:ee:bd:b9:ba:02:34:f7:aa:a1: 37:fb:ab:b6:39:0a:02:ab:57:3c:9b:26:48:62:e7: ca:ac:38:f0:b4:ec:c0:03:f9:c9:a6:5b:28:11:86: bf:3d:a3:57:d5:be:16:9a:56:4d:f6:1f:51:9b:e9: 7f:be:fb:18:a6:91:94:00:5b:70:ea:c6:48:44:cc: b9:50:a4:1b:46:3f:dd:7a:68:61:25:79:22:c4:e7: a7:65:5c:dd:04:95:e0:98:44:94:d6:d9:0e:da:1f: 83:c3:6a:1d:5b:8d:d1:b7:f9:9a:8b:4f:b9:0c:08: b2:66:ac:4f:ae:a0:ba:86:56:24:bc:ae:45:3a:77: 47:dc:de:73:94:3e:53:69:98:af:e1:f0:75:44:47: 93:ac:c0:dd:e3:64:f5:1d:68:3c:54:28:9e:30:ee: 87:2e:2f:94:6d:f9:40:ac:ea:3b:08:d2:fe:84:89: 2d:a1:3d:f5:80:b4:da:58:e3:82:42:51:66:dc:52: 41:f1:3e:9a:e8:10:aa:47:ee:f5:67:b0:0c:c5:5b: 99:64:11:e0:0d:0f:35:c9:89:e9:32:f2:05:ff:ae: 31:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:59:D0:CB:79:A3:41:6E:21:EE:69:38:7B:43:CD:F8:CE:CF:C4:DC X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:95:31:63:fc:4a:20:c5:c5:b1:5c:0e:1b:49:75:10:93:cb: 5a:c8:b4:79:60:47:31:9a:90:12:51:8e:ac:80:34:5b:c3:5d: 7c:0b:c2:7e:0c:1b:c5:35:a9:03:7a:9c:12:69:a3:a1:14:bf: 8e:14:bf:4a:c2:f2:31:49:1f:75:5a:cf:1f:cc:86:6a:70:49: 58:da:d4:9f:b3:57:8c:16:2c:58:40:b2:89:e3:d1:87:fc:e1: 4e:37:11:e1:92:36:fb:44:32:d5:13:e8:75:4e:1a:70:9c:96: 2f:fe:87:60:04:12:e0:c1:45:9c:9e:61:2b:8c:e3:1a:59:e3: f8:9c:17:35:d5:20:95:c7:89:19:75:40:60:f6:d7:0e:cb:22: dd:7b:ce:35:f0:cd:b2:f8:f8:74:3b:08:58:eb:cf:c3:f4:eb: af:b8:f3:ce:f3:6f:75:b7:af:b2:9f:54:ea:d1:b6:47:eb:45: 8d:92:8a:40:0e:38:3f:cd:95:1d:db:e0:02:67:3f:79:d6:83: be:94:fd:7f:7a:c0:59:af:66:62:1f:15:fc:0f:ac:f9:61:f2: f9:53:e4:ab:3a:eb:4b:bd:9c:13:21:79:89:0e:d8:80:68:bb: ef:bd:5e:f7:a4:a3:66:36:48:a6:f0:54:ed:8f:27:0b:d6:93: 9e:82:ee:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUwNjEyMjMwNTA1WhcNMjUwNjE5MjMwNTA1WjAYMRYwFAYD VQQDEw02ODRiNWQyMi1kYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8i+BXVOgrOKMExwqF6AZAn/we8G9FRIV78ejj8RwvaUf6Xuvbm6AjT3qqE3 +6u2OQoCq1c8myZIYufKrDjwtOzAA/nJplsoEYa/PaNX1b4WmlZN9h9Rm+l/vvsY ppGUAFtw6sZIRMy5UKQbRj/demhhJXkixOenZVzdBJXgmESU1tkO2h+Dw2odW43R t/mai0+5DAiyZqxPrqC6hlYkvK5FOndH3N5zlD5TaZiv4fB1REeTrMDd42T1HWg8 VCieMO6HLi+UbflArOo7CNL+hIktoT31gLTaWOOCQlFm3FJB8T6a6BCqR+71Z7AM xVuZZBHgDQ81yYnpMvIF/64xhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlZ0Mt5 o0FuIe5pOHtDzfjOz8TcMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCylTFj/EogxcWxXA4bSXUQk8tayLR5YEcxmpASUY6sgDRbw118C8J+ DBvFNakDepwSaaOhFL+OFL9KwvIxSR91Ws8fzIZqcElY2tSfs1eMFixYQLKJ49GH /OFONxHhkjb7RDLVE+h1ThpwnJYv/odgBBLgwUWcnmErjOMaWeP4nBc11SCVx4kZ dUBg9tcOyyLde8418M2y+Ph0OwhY68/D9OuvuPPO8291t6+yn1Tq0bZH60WNkopA Djg/zZUd2+ACZz951oO+lP1/esBZr2ZiHxX8D6z5YfL5U+SrOutLvZwTIXmJDtiA aLvvvV73pKNmNkim8FTtjycL1pOegu7f -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:58 2025 by rpki-client