$ rpki-client -vvf rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft File: QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft (raw, json) Hash identifier: VtY5zSinGMMuCMcisk/F5lRs4bfswYUu9ZNPVtiXqrY= Subject key identifier: 43:F6:E7:9D:1E:CD:D8:5E:59:76:91:BA:F3:AB:F2:BC:7D:D9:11:9C Authority key identifier: 42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE Certificate issuer: /CN=A912087D/serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft Manifest number: 0228 Signing time: Tue 13 May 2025 01:44:39 +0000 Manifest this update: Tue 13 May 2025 01:44:39 +0000 Manifest next update: Tue 20 May 2025 01:44:39 +0000 Files and hashes: 1: QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl (hash: +6kpphIngMn3rHDyAGdwIxIJelZlQ9LdKEMDE8Wz8To=) 2: 07E789A228F011ED94BE9345C4F9AE02.roa (hash: jWdCBukfmwdIx7AmCNNn8IWevCXBAGWSyySXEJZ9MpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912087D, serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Validity Not Before: May 13 01:44:39 2025 GMT Not After : May 20 01:44:39 2025 GMT Subject: CN=6822a407-5d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1a:9f:95:bf:68:7f:88:f9:66:55:29:1c:e9: 9f:e0:b8:e4:44:c9:6d:08:c0:f7:83:50:4f:15:c8: 04:86:ed:56:71:df:45:c3:65:33:91:25:a0:72:99: eb:f9:f3:bc:2a:dd:02:33:a1:17:0c:dc:b6:22:0a: ee:16:d1:e8:f0:40:81:08:44:c0:e5:50:e2:51:f7: 8d:38:5b:18:c9:de:f3:8f:bb:b8:e0:27:90:44:9f: 9e:36:e9:a0:58:cb:6b:2d:67:66:9d:3b:f7:3c:15: 25:08:fb:a1:93:2f:98:30:ed:fa:5f:51:9d:6c:b0: 34:73:a5:c4:77:fb:6a:af:09:26:fd:e0:1e:00:49: 54:a8:d3:9c:42:c1:f8:e5:0b:62:3a:3a:64:c3:cf: 3f:35:9a:fe:af:59:1d:ea:64:60:6d:a8:5f:d0:d6: 07:12:02:a1:da:0e:85:e3:38:46:42:d9:a4:10:f4: 05:d7:07:11:54:a3:0b:05:71:a3:42:2e:30:a8:8e: 0c:71:1a:0e:b3:9e:15:a3:b2:88:8b:e6:9a:1d:19: fe:ab:01:3b:b5:aa:e0:45:50:72:97:66:c6:76:74: 54:49:1a:45:74:58:4b:fb:df:3c:d2:bc:19:58:c2: f8:5f:5a:5a:0e:ee:06:18:7c:da:71:e0:5d:06:d7: 11:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F6:E7:9D:1E:CD:D8:5E:59:76:91:BA:F3:AB:F2:BC:7D:D9:11:9C X509v3 Authority Key Identifier: keyid:42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:90:4a:e6:35:cd:e2:97:01:f2:2e:11:b8:19:8d:2e:09:60: 21:f3:e5:e3:73:90:dd:ea:c7:66:9c:c0:37:45:9e:e3:d7:cb: 51:c6:ec:67:41:1d:6b:fc:0d:ca:68:37:d3:b7:27:22:d6:dc: d5:1d:18:a0:ab:a1:9b:a2:07:42:30:fd:2c:f5:21:45:00:f3: 7c:c5:1d:88:95:a9:a3:fa:62:38:0c:96:39:75:0a:d9:9e:6b: ab:f1:d0:4e:4e:0f:62:41:3f:7b:cf:c5:00:96:c3:76:42:02: 81:b3:1f:43:aa:35:bf:67:77:4c:9c:48:bb:79:0f:0d:ae:06: fd:13:18:01:7c:52:b9:48:23:a2:65:c5:81:09:1b:71:f4:e6: 93:36:c2:a5:d9:c7:ce:e1:8f:c9:32:be:19:c9:13:8c:d8:00: e0:e0:2b:b8:9c:21:bc:f6:d2:c8:aa:b4:7b:5b:f6:af:a7:25: e1:74:8b:9e:3a:2c:1c:e5:db:6b:a1:93:4a:ee:c8:4b:4a:1a: 9c:ff:0d:61:f4:38:6c:ea:8d:2c:39:f5:df:ff:9f:54:54:94: 47:db:bc:2f:f1:2b:c6:51:15:f8:5b:f4:06:2e:60:11:af:2c: e4:65:fa:1a:f2:c0:c5:b4:a2:03:1a:15:10:87:80:50:b9:f7: 9f:cb:40:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA4N0QxMTAvBgNVBAUTKDQyQTg0RDhDMDg4OUFEQzU1ODYwNjYzOTkzQkNDQTgz NjEyNzFCRkUwHhcNMjUwNTEzMDE0NDM5WhcNMjUwNTIwMDE0NDM5WjAYMRYwFAYD VQQDEw02ODIyYTQwNy01ZDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBqflb9of4j5ZlUpHOmf4LjkRMltCMD3g1BPFcgEhu1Wcd9Fw2UzkSWgcpnr +fO8Kt0CM6EXDNy2IgruFtHo8ECBCETA5VDiUfeNOFsYyd7zj7u44CeQRJ+eNumg WMtrLWdmnTv3PBUlCPuhky+YMO36X1GdbLA0c6XEd/tqrwkm/eAeAElUqNOcQsH4 5QtiOjpkw88/NZr+r1kd6mRgbahf0NYHEgKh2g6F4zhGQtmkEPQF1wcRVKMLBXGj Qi4wqI4McRoOs54Vo7KIi+aaHRn+qwE7targRVByl2bGdnRUSRpFdFhL+9880rwZ WML4X1paDu4GGHzaceBdBtcR6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP2550e zdheWXaRuvOr8rx92RGcMB8GA1UdIwQYMBaAFEKoTYwIia3FWGBmOZO8yoNhJxv+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDg3RC80QzE1ODU4QzI4 RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJjVllZR1k1azd6S2cyRW5H XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxaE5qQWlKcmNWWVlHWTVrN3pLZzJFbkdfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDg3RC80QzE1ODU4QzI4RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJj VllZR1k1azd6S2cyRW5HXzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLkErmNc3ilwHyLhG4GY0uCWAh8+Xjc5Dd6sdmnMA3RZ7j18tRxuxn QR1r/A3KaDfTtyci1tzVHRigq6GbogdCMP0s9SFFAPN8xR2Ilamj+mI4DJY5dQrZ nmur8dBOTg9iQT97z8UAlsN2QgKBsx9DqjW/Z3dMnEi7eQ8Nrgb9ExgBfFK5SCOi ZcWBCRtx9OaTNsKl2cfO4Y/JMr4ZyROM2ADg4Cu4nCG89tLIqrR7W/avpyXhdIue Oiwc5dtroZNK7shLShqc/w1h9Dhs6o0sOfXf/59UVJRH27wv8SvGURX4W/QGLmAR ryzkZfoa8sDFtKIDGhUQh4BQufefy0BY -----END CERTIFICATE-----Generated at Wed May 14 20:50:50 2025 by rpki-client