$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft File: QoezMyF220hqLLxCVAL6nIa23Eg.mft (raw, json) Hash identifier: P+3SPMVShqp6q2al3NiV0uo0PcYMiwVfN0kDXCoX96A= Subject key identifier: 50:21:C5:2B:C1:E2:E6:8C:D0:87:67:FB:07:03:D8:6E:44:F7:86:9C Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1E23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft Manifest number: 3297 Signing time: Mon 12 May 2025 15:39:07 +0000 Manifest this update: Mon 12 May 2025 15:39:07 +0000 Manifest next update: Mon 19 May 2025 15:39:07 +0000 Files and hashes: 1: QoezMyF220hqLLxCVAL6nIa23Eg.crl (hash: h758q8EEwBf8crLjku2iys5GfrN7CUcvEqTfa6QHnfY=) 2: 4FA6792A8F6711E6A509C92DC4F9AE02.roa (hash: zBYE/5fRTCQSO3jWk1oOmSo/Ul1q1Praa4fc7ng9+AE=) 3: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (hash: X2qav5EFr+Ua635VH9BvI7EhV1owUod2CiDjBop2am4=) 4: 4BDAE70EB7A911EF9D4E880CC4F9AE02.roa (hash: LAARyCxmzy516MHC0uw5Kfkv56HjOBgenKPezXUQvg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7715 (0x1e23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD, serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: May 12 15:39:07 2025 GMT Not After : May 19 15:39:07 2025 GMT Subject: CN=6822161b-c183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ec:eb:dc:c6:46:ca:fa:39:90:52:dd:48:8e: 75:55:5d:6b:e9:e5:d2:3b:af:28:90:04:fd:c5:ab: 2b:1b:f7:39:b4:1f:71:d1:e4:05:61:c6:f5:59:28: fd:4a:29:fb:e4:08:aa:e7:e7:fa:77:c0:21:17:e9: 7d:32:0a:56:83:d3:fd:8e:79:1e:3b:46:00:fd:c8: 05:d9:4e:1c:ff:fb:97:9b:64:54:b5:b6:8c:d5:1b: 88:49:fc:da:f9:4b:9d:aa:71:85:3b:d4:20:e1:8c: 48:87:9e:b0:c9:f8:e9:f9:e8:fe:31:13:4e:76:d9: b4:a0:1f:e9:b8:79:90:c3:70:50:57:ef:ad:96:4e: 96:8e:d7:ce:b7:19:51:f6:ac:23:70:31:aa:22:a9: 9f:c7:da:49:31:e1:24:74:57:35:48:f4:cd:85:72: 87:4a:e9:d7:4b:26:ec:73:94:ac:30:31:67:39:11: bf:1a:72:3d:a4:fb:fc:2d:e7:02:13:8e:4d:9a:e6: f3:2f:bd:c7:8b:b1:39:3e:81:06:68:3a:4c:91:95: 3e:92:1c:be:6e:7b:cc:79:68:7f:74:b9:92:57:7a: d7:03:5c:ae:c2:db:d3:1f:2e:90:fd:2f:a8:2b:84: 32:3d:46:93:d6:97:28:39:48:18:51:c6:b0:0b:1b: 36:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:21:C5:2B:C1:E2:E6:8C:D0:87:67:FB:07:03:D8:6E:44:F7:86:9C X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:c4:fd:2a:dd:37:a0:12:fd:7b:05:cc:75:b7:4b:41:e0:6b: 21:9b:ef:69:a6:73:3a:39:59:a0:b9:7b:ce:1b:41:b0:ce:d9: ba:d6:1e:a8:f7:0c:8b:49:b6:df:db:67:f2:1d:06:cf:d3:72: 6d:94:66:c3:10:bc:96:0b:68:61:74:c5:a3:cd:20:7c:92:81: 49:fe:d1:7c:61:69:f5:86:d5:28:ea:c8:9b:b5:99:13:2e:91: 7d:80:92:53:07:2f:0a:57:55:d2:b2:ab:f0:97:71:65:0d:6b: 82:77:7d:20:db:4d:11:e3:c5:3c:8e:ba:02:5e:72:e0:61:ce: 2e:d5:7c:fc:6d:7c:a8:d0:1a:66:a6:a6:c3:28:56:df:07:12: ca:3a:e2:2c:13:3e:6b:ef:a8:a6:a9:82:fb:97:25:e4:92:44: 9f:f2:c2:81:3a:a8:b1:69:d8:7f:51:9a:70:68:e5:86:c9:f8: 6b:b3:58:04:15:a5:28:9a:ec:8a:80:5f:55:55:f1:f7:02:de: 6e:ac:81:36:9a:eb:37:5e:e6:1a:59:98:ce:b6:32:e9:4d:e1: 49:15:3d:12:44:e2:40:3e:e4:aa:5e:79:91:06:a7:1c:de:c4: 35:0b:f8:3c:37:00:fe:de:d8:da:09:45:81:89:64:c7:85:b2: b6:79:58:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjUwNTEyMTUzOTA3WhcNMjUwNTE5MTUzOTA3WjAYMRYwFAYD VQQDEw02ODIyMTYxYi1jMTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArezr3MZGyvo5kFLdSI51VV1r6eXSO68okAT9xasrG/c5tB9x0eQFYcb1WSj9 Sin75Aiq5+f6d8AhF+l9MgpWg9P9jnkeO0YA/cgF2U4c//uXm2RUtbaM1RuISfza +UudqnGFO9Qg4YxIh56wyfjp+ej+MRNOdtm0oB/puHmQw3BQV++tlk6WjtfOtxlR 9qwjcDGqIqmfx9pJMeEkdFc1SPTNhXKHSunXSybsc5SsMDFnORG/GnI9pPv8LecC E45NmubzL73Hi7E5PoEGaDpMkZU+khy+bnvMeWh/dLmSV3rXA1yuwtvTHy6Q/S+o K4QyPUaT1pcoOUgYUcawCxs2jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAhxSvB 4uaM0Idn+wcD2G5E94acMB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJERC8zQUUwMDRCNEQ3NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIw aHFMTHhDVkFMNm5JYTIzRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkxP0q3TegEv17Bcx1t0tB4Gshm+9ppnM6OVmguXvOG0Gwztm61h6o 9wyLSbbf22fyHQbP03JtlGbDELyWC2hhdMWjzSB8koFJ/tF8YWn1htUo6sibtZkT LpF9gJJTBy8KV1XSsqvwl3FlDWuCd30g200R48U8jroCXnLgYc4u1Xz8bXyo0Bpm pqbDKFbfBxLKOuIsEz5r76imqYL7lyXkkkSf8sKBOqixadh/UZpwaOWGyfhrs1gE FaUomuyKgF9VVfH3At5urIE2mus3XuYaWZjOtjLpTeFJFT0SROJAPuSqXnmRBqcc 3sQ1C/g8NwD+3tjaCUWBiWTHhbK2eVhS -----END CERTIFICATE-----Generated at Tue May 13 12:15:20 2025 by rpki-client