$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: MZRP+HMEytyyxCYr2eMk0VLQ+CycuG0MF5KaxzZSBIw= Subject key identifier: 81:40:55:D1:9E:32:FE:80:F3:20:55:12:55:7E:1B:EE:6E:B2:DF:93 Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 18EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 18C4 Signing time: Sat 14 Jun 2025 16:26:48 +0000 Manifest this update: Sat 14 Jun 2025 16:26:48 +0000 Manifest next update: Sat 21 Jun 2025 16:26:48 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: rHjzYa6IoIbgBFx73Q5Fl8q4TrFYHxl0spBwwenAR1U=) 2: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=) 3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6382 (0x18ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Jun 14 16:26:48 2025 GMT Not After : Jun 21 16:26:48 2025 GMT Subject: CN=684da2c8-d7f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:50:91:09:4f:8d:0c:e1:34:ef:54:eb:d3:3d: 9e:f8:2f:34:4e:93:df:b7:bf:a2:58:3a:82:c4:30: c0:a6:00:ba:96:4e:a7:e0:e2:ee:d0:70:e9:ec:62: 29:61:4b:38:92:94:2f:10:72:a3:91:79:ee:db:3a: 18:9e:7c:3b:f8:93:b3:a5:29:f5:4d:f1:35:02:ea: 75:44:11:9b:4a:b9:bf:17:3e:3a:ac:5b:5d:98:a3: bf:f6:9b:4b:bf:d8:b6:19:32:bc:dd:79:bb:56:3c: f3:14:cd:2b:2c:81:a8:0e:c5:bc:81:84:68:a6:42: 92:f9:30:10:27:20:35:2b:c9:be:b7:9d:bd:c7:b8: 27:c0:a0:ab:d8:e1:59:98:b4:69:7a:66:9f:e2:a3: 51:51:d8:84:aa:9d:ce:87:2b:2d:40:8f:ed:01:0f: 95:c6:b4:d5:7e:74:b5:f9:9f:40:7d:0a:8f:26:46: 0a:29:cd:54:ad:32:5c:fb:53:d3:f7:d2:b5:e8:20: c8:59:e2:0c:f5:09:a1:6f:6f:50:43:07:3b:2a:38: bc:6e:45:7f:e4:c4:aa:4a:32:1c:c1:82:71:3f:06: bd:8b:dd:70:de:3e:28:ab:26:66:90:4d:3d:ce:1c: 52:61:77:48:41:cf:f6:50:90:4f:c9:da:e0:62:95: f5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:40:55:D1:9E:32:FE:80:F3:20:55:12:55:7E:1B:EE:6E:B2:DF:93 X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:b0:22:34:66:11:50:c3:05:03:9f:d4:b7:14:10:00:18:14: c7:0b:32:02:e1:74:fe:75:ad:16:2f:b7:9b:10:0a:2a:10:66: 3a:71:08:3c:94:09:ea:3e:23:94:fa:41:13:df:96:bc:cb:05: 70:5f:a4:1d:f3:01:80:95:29:a7:8a:82:e8:22:ab:3d:ae:80: d8:a7:b0:9e:a0:56:0e:f3:d5:c1:3d:ca:3b:15:5a:77:11:16: a7:9f:64:07:93:b3:63:cf:b4:40:ea:76:9f:1b:81:5e:19:cb: 71:86:c2:f5:e7:11:a0:b5:c0:70:26:a7:84:bc:02:34:83:f6: a4:42:5f:ba:89:a7:d4:c7:b7:f7:e4:67:80:7a:37:ae:e2:a3: 05:2f:23:84:ed:c2:30:6d:af:79:8a:49:bb:6f:81:57:1d:93: cb:91:69:4e:92:46:2a:12:60:4b:ef:ac:f3:bd:02:1a:57:74: d6:bb:19:35:b7:66:df:f8:f5:8d:ff:9e:7d:da:11:ad:0c:e1: e0:67:84:6f:74:0b:30:1e:43:ff:a7:ef:14:59:33:12:57:bb: 48:5f:7d:da:be:e9:9d:11:04:c4:25:cf:49:c1:7b:61:18:27: c7:54:a7:bb:75:a4:9f:bb:5b:8c:7e:19:56:57:75:30:31:73: 60:87:ca:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUwNjE0MTYyNjQ4WhcNMjUwNjIxMTYyNjQ4WjAYMRYwFAYD VQQDEw02ODRkYTJjOC1kN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VCRCU+NDOE071Tr0z2e+C80TpPft7+iWDqCxDDApgC6lk6n4OLu0HDp7GIp YUs4kpQvEHKjkXnu2zoYnnw7+JOzpSn1TfE1Aup1RBGbSrm/Fz46rFtdmKO/9ptL v9i2GTK83Xm7VjzzFM0rLIGoDsW8gYRopkKS+TAQJyA1K8m+t529x7gnwKCr2OFZ mLRpemaf4qNRUdiEqp3OhystQI/tAQ+VxrTVfnS1+Z9AfQqPJkYKKc1UrTJc+1PT 99K16CDIWeIM9Qmhb29QQwc7Kji8bkV/5MSqSjIcwYJxPwa9i91w3j4oqyZmkE09 zhxSYXdIQc/2UJBPydrgYpX1uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFAVdGe Mv6A8yBVElV+G+5ust+TMB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlsCI0ZhFQwwUDn9S3FBAAGBTHCzIC4XT+da0WL7ebEAoqEGY6cQg8 lAnqPiOU+kET35a8ywVwX6Qd8wGAlSmnioLoIqs9roDYp7CeoFYO89XBPco7FVp3 ERann2QHk7Njz7RA6nafG4FeGctxhsL15xGgtcBwJqeEvAI0g/akQl+6iafUx7f3 5GeAejeu4qMFLyOE7cIwba95ikm7b4FXHZPLkWlOkkYqEmBL76zzvQIaV3TWuxk1 t2bf+PWN/5592hGtDOHgZ4RvdAswHkP/p+8UWTMSV7tIX33avumdEQTEJc9JwXth GCfHVKe7daSfu1uMfhlWV3UwMXNgh8qM -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:21 2025 by rpki-client