$ rpki-client -vvf rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft File: qSHPiNjIngus1O4YU4wzsnipWSw.mft (raw, json) Hash identifier: /1zqfTJ/3SvD48GftMqm40v4+PYillN/FepRO5TV7wk= Subject key identifier: B4:DB:71:0F:5C:24:31:C6:EC:DD:1B:DB:4C:3B:94:90:56:68:6C:6B Authority key identifier: A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C Certificate issuer: /CN=A91127A2/serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Certificate serial: 05E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft Manifest number: 05DD Signing time: Sun 04 May 2025 22:37:59 +0000 Manifest this update: Sun 04 May 2025 22:37:58 +0000 Manifest next update: Sun 11 May 2025 22:37:58 +0000 Files and hashes: 1: qSHPiNjIngus1O4YU4wzsnipWSw.crl (hash: rolLpGxefWXp3j5+J3eAncHMERavddjO+vlftP6f3OI=) 2: 07332486B1D111EBA956F96AC4F9AE02.roa (hash: QK+G6fNVeQvRNDArbOTnNoOHNeXa2RP5xEy26aJHwS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127A2, serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Validity Not Before: May 4 22:37:58 2025 GMT Not After : May 11 22:37:58 2025 GMT Subject: CN=6817ec46-cf21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:20:32:fd:64:0f:dc:9c:24:22:05:4a:46: e7:d5:97:13:26:84:a3:2b:79:59:54:1f:bc:32:04: 79:e2:70:0a:67:17:19:8f:b7:01:57:93:69:c9:5f: 9f:0d:e3:d9:d2:bb:a0:f5:21:4b:49:dd:f0:d3:b7: f5:bf:d9:2a:24:58:b2:ce:37:43:a0:77:24:c7:70: f2:9e:a4:6a:f9:10:40:7a:4b:0d:3a:f9:5f:c2:99: 49:f5:d6:f4:bf:eb:e7:9a:92:d3:b3:a9:ca:a6:c3: 84:7b:49:9a:17:c9:dc:ad:f1:d1:9e:89:03:59:4b: a6:f8:4a:86:4f:30:a4:67:31:42:0c:49:42:1c:7c: eb:8c:f2:b9:2e:1a:d6:dc:04:29:40:11:6c:3f:ac: e7:fe:3d:be:64:b2:3d:36:aa:9f:2e:bb:0f:ec:c3: 13:bd:14:80:53:34:be:f9:39:da:1d:33:22:89:ed: 76:5f:67:a6:16:a0:ee:d6:61:d5:8a:4f:cd:1a:98: cb:45:88:94:bc:72:ef:dc:b5:ce:36:8f:1c:61:d5: c8:b2:a3:ec:5e:15:4d:df:d1:2f:9e:07:b9:a2:8f: 20:1f:68:54:61:86:f0:35:1e:2f:b4:63:90:85:02: de:7f:3a:b0:ce:ea:04:8e:60:b5:72:24:df:e9:44: 80:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:DB:71:0F:5C:24:31:C6:EC:DD:1B:DB:4C:3B:94:90:56:68:6C:6B X509v3 Authority Key Identifier: keyid:A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:65:c9:bd:92:c9:18:e3:3c:6e:e3:8a:e7:b2:75:54:4a:bf: 6f:ee:73:5c:4f:02:96:7d:dd:5c:e3:3a:a6:3d:dd:6e:24:41: 5d:ea:6a:93:92:ad:08:29:78:2e:9b:17:73:df:4f:f4:ed:22: 41:1a:a8:e3:a0:1d:cb:16:61:a6:ff:50:68:77:33:dc:aa:1e: d6:10:ad:fd:b9:46:62:0f:71:77:aa:47:1a:2b:f0:25:f0:0c: 75:28:ff:cf:78:10:c9:ac:e7:64:fb:b6:91:3d:93:4f:e4:db: e1:8c:91:3d:0d:c4:96:b1:5a:39:58:88:e4:8b:9d:47:f7:8e: 83:87:08:41:dd:b6:a6:2a:22:b2:76:f1:c6:39:8d:79:91:c5: 6d:46:59:02:fb:08:24:87:f4:17:0d:7a:e6:a5:1c:9c:7e:2e: e6:36:a8:2e:c6:ad:df:32:4a:73:3e:b5:4b:94:87:28:27:e0: 4a:80:a4:90:04:6e:88:df:cb:68:54:b2:cd:90:09:1d:be:dd: 9d:b9:56:55:16:6a:00:96:81:bf:57:32:48:61:b6:d0:22:30: 14:dc:48:58:27:35:34:b9:eb:75:16:b4:3e:45:64:47:6c:0c: ee:1a:b5:c6:5e:82:72:e1:96:aa:d4:40:53:a3:f1:f2:29:6a: cf:bb:6c:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QTIxMTAvBgNVBAUTKEE5MjFDRjg4RDhDODlFMEJBQ0Q0RUUxODUzOEMzM0Iy NzhBOTU5MkMwHhcNMjUwNTA0MjIzNzU4WhcNMjUwNTExMjIzNzU4WjAYMRYwFAYD VQQDEw02ODE3ZWM0Ni1jZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwsgMv1kD9ycJCIFSkbn1ZcTJoSjK3lZVB+8MgR54nAKZxcZj7cBV5NpyV+f DePZ0rug9SFLSd3w07f1v9kqJFiyzjdDoHckx3DynqRq+RBAeksNOvlfwplJ9db0 v+vnmpLTs6nKpsOEe0maF8ncrfHRnokDWUum+EqGTzCkZzFCDElCHHzrjPK5LhrW 3AQpQBFsP6zn/j2+ZLI9NqqfLrsP7MMTvRSAUzS++TnaHTMiie12X2emFqDu1mHV ik/NGpjLRYiUvHLv3LXONo8cYdXIsqPsXhVN39Evnge5oo8gH2hUYYbwNR4vtGOQ hQLefzqwzuoEjmC1ciTf6USASwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTbcQ9c JDHG7N0b20w7lJBWaGxrMB8GA1UdIwQYMBaAFKkhz4jYyJ4LrNTuGFOMM7J4qVks MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdBMi9EMUNENTQ1OEIx Q0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5ndXMxTzRZVTR3enNuaXBX U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTSFBpTmpJbmd1czFPNFlVNHd6c25pcFdTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdBMi9EMUNENTQ1OEIxQ0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5n dXMxTzRZVTR3enNuaXBXU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Zcm9kskY4zxu44rnsnVUSr9v7nNcTwKWfd1c4zqmPd1uJEFd6mqT kq0IKXgumxdz30/07SJBGqjjoB3LFmGm/1BodzPcqh7WEK39uUZiD3F3qkcaK/Al 8Ax1KP/PeBDJrOdk+7aRPZNP5NvhjJE9DcSWsVo5WIjki51H946DhwhB3bamKiKy dvHGOY15kcVtRlkC+wgkh/QXDXrmpRycfi7mNqguxq3fMkpzPrVLlIcoJ+BKgKSQ BG6I38toVLLNkAkdvt2duVZVFmoAloG/VzJIYbbQIjAU3EhYJzU0uet1FrQ+RWRH bAzuGrXGXoJy4Zaq1EBTo/HyKWrPu2zQ -----END CERTIFICATE-----Generated at Mon May 5 14:20:00 2025 by rpki-client