$ rpki-client -vvf rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft File: QLjSLvI7N7C55T88ThDWrj64qZ8.mft (raw, json) Hash identifier: rDinFF1rTlHW7+Cfr9BbYCjkq7+MdtkKe06qoB0P3mY= Subject key identifier: 33:BE:C8:55:11:58:38:28:75:13:27:CB:7A:11:22:68:4E:92:25:1D Authority key identifier: 40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F Certificate issuer: /CN=A91E689D/serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft Manifest number: 348F Signing time: Sat 14 Jun 2025 15:00:44 +0000 Manifest this update: Sat 14 Jun 2025 15:00:43 +0000 Manifest next update: Sat 21 Jun 2025 15:00:43 +0000 Files and hashes: 1: QLjSLvI7N7C55T88ThDWrj64qZ8.crl (hash: Nu2MB3YqZod3umdjeI1oMBwEAEn5W5fyzDSGELBh8Wg=) 2: 3773AC0C8B6111EFA3A49037C4F9AE02.roa (hash: wrgTGY4Zg1HcHZCDO+hkBCrj/kSRgwBrHyd97B10p9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E689D, serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Validity Not Before: Jun 14 15:00:43 2025 GMT Not After : Jun 21 15:00:43 2025 GMT Subject: CN=684d8e9b-f203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6b:e8:1b:34:65:b5:10:bc:e9:c5:08:0b:20: 75:3b:7a:7e:0e:b4:62:cc:bb:04:09:3e:0a:cd:61: 4e:33:42:5e:0f:6b:9a:62:67:bd:82:ad:bb:88:0a: 9d:09:60:89:d2:73:fc:1d:55:fd:25:b7:00:5b:81: 39:6e:a0:3f:90:f7:4c:09:14:69:8f:e8:23:4d:e4: c5:f1:af:eb:8e:d1:5f:7a:84:b3:09:78:fc:53:b2: ca:9a:61:b7:5d:af:4d:c5:62:28:11:cd:fb:22:12: a7:db:81:20:ef:42:5d:7f:68:43:dc:57:50:5b:15: ab:d3:2a:d0:13:13:83:b6:c5:14:0d:4c:8d:d9:83: 3c:d0:46:f9:0d:3a:5f:49:45:71:bd:bd:a2:bd:67: 2f:24:07:df:dc:37:c7:68:4b:7c:8d:0e:36:94:cb: ed:83:12:35:c0:cf:23:bb:c2:57:c5:cc:e5:50:03: f3:57:66:14:4e:31:fc:b3:5f:ce:58:88:1d:81:d1: 5f:a2:22:3d:0f:46:f3:13:bc:26:47:5a:f7:7a:f7: 8b:79:76:bd:b9:21:8d:4c:70:ed:ae:71:37:49:7a: f1:7a:4f:2b:11:d3:91:67:a1:7a:b6:27:86:d1:e4: 5f:b7:f5:cc:93:21:65:b2:f0:31:0d:b3:02:c1:e8: d8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BE:C8:55:11:58:38:28:75:13:27:CB:7A:11:22:68:4E:92:25:1D X509v3 Authority Key Identifier: keyid:40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:0f:98:e7:7a:2e:aa:13:1f:ff:40:78:88:a0:7c:f2:75:6c: 53:85:f4:f4:e0:98:30:85:ef:a0:7a:95:13:d2:98:8f:40:2a: af:de:c8:e8:a9:a5:15:87:dd:65:84:f6:8e:26:a6:a6:07:04: 1e:72:e0:16:de:96:64:fd:b5:0f:8e:6a:3b:c5:29:c3:3d:25: 08:a2:96:07:16:05:66:48:da:d2:c0:6a:8c:bc:45:84:6e:da: f0:39:8b:46:55:be:0a:dc:9a:63:64:4c:70:1c:b3:c0:da:f8: 24:51:b0:33:95:68:83:60:a6:9e:15:3a:4a:d7:c7:04:49:9c: 74:b6:20:a9:98:70:5d:12:f5:1d:d3:5c:c0:23:2e:7c:b3:f6: 84:e5:d7:53:55:1a:db:8c:9f:3d:c4:30:a2:fc:59:ef:02:a5: 40:57:0a:12:ca:d3:b2:fc:44:3c:93:65:71:a0:fa:57:75:f5: 79:ba:14:a2:70:5f:ca:f5:9c:3b:10:a7:2a:22:fb:20:a1:31: fe:ee:d7:b8:64:91:e0:ef:a7:46:e0:b2:c0:ca:34:a6:e8:d2: 46:ec:32:6d:8d:db:d6:fa:31:52:b2:39:7e:54:4d:8d:37:94: 0e:08:7f:cd:2c:5b:6d:e7:c2:4f:fc:7a:b0:8f:cd:b7:6a:9a: 9a:84:fb:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4OUQxMTAvBgNVBAUTKDQwQjhEMjJFRjIzQjM3QjBCOUU1M0YzQzRFMTBENkFF M0VCOEE5OUYwHhcNMjUwNjE0MTUwMDQzWhcNMjUwNjIxMTUwMDQzWjAYMRYwFAYD VQQDEw02ODRkOGU5Yi1mMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGvoGzRltRC86cUICyB1O3p+DrRizLsECT4KzWFOM0JeD2uaYme9gq27iAqd CWCJ0nP8HVX9JbcAW4E5bqA/kPdMCRRpj+gjTeTF8a/rjtFfeoSzCXj8U7LKmmG3 Xa9NxWIoEc37IhKn24Eg70Jdf2hD3FdQWxWr0yrQExODtsUUDUyN2YM80Eb5DTpf SUVxvb2ivWcvJAff3DfHaEt8jQ42lMvtgxI1wM8ju8JXxczlUAPzV2YUTjH8s1/O WIgdgdFfoiI9D0bzE7wmR1r3eveLeXa9uSGNTHDtrnE3SXrxek8rEdORZ6F6tieG 0eRft/XMkyFlsvAxDbMCwejYOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDO+yFUR WDgodRMny3oRImhOkiUdMB8GA1UdIwQYMBaAFEC40i7yOzewueU/PE4Q1q4+uKmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg5RC9DN0M2M0RBODFE OUUxMUUyODNDRUZBOEUwOEIwMkNEMi9RTGpTTHZJN043QzU1VDg4VGhEV3JqNjRx WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMalNMdkk3TjdDNTVUODhUaERXcmo2NHFaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg5RC9DN0M2M0RBODFEOUUxMUUyODNDRUZBOEUwOEIwMkNEMi9RTGpTTHZJN043 QzU1VDg4VGhEV3JqNjRxWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLD5jnei6qEx//QHiIoHzydWxThfT04Jgwhe+gepUT0piPQCqv3sjo qaUVh91lhPaOJqamBwQecuAW3pZk/bUPjmo7xSnDPSUIopYHFgVmSNrSwGqMvEWE btrwOYtGVb4K3JpjZExwHLPA2vgkUbAzlWiDYKaeFTpK18cESZx0tiCpmHBdEvUd 01zAIy58s/aE5ddTVRrbjJ89xDCi/FnvAqVAVwoSytOy/EQ8k2VxoPpXdfV5uhSi cF/K9Zw7EKcqIvsgoTH+7te4ZJHg76dG4LLAyjSm6NJG7DJtjdvW+jFSsjl+VE2N N5QOCH/NLFtt58JP/Hqwj823apqahPtb -----END CERTIFICATE-----Generated at Sat Jun 14 19:08:01 2025 by rpki-client