$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: mGLsoIlnSMo+FaeoAoWG+g6CMRX7c8DDW52UllrCVek= Subject key identifier: BF:B7:EB:17:5B:83:E8:2F:5F:DD:59:88:FB:9D:72:23:46:97:E9:8D Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BC1 Signing time: Wed 14 May 2025 19:00:27 +0000 Manifest this update: Wed 14 May 2025 19:00:26 +0000 Manifest next update: Wed 21 May 2025 19:00:26 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: L8iWosxctjtUbLqOgRX6aIwCJw1tkl61PlH4+TTrYgo=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: May 14 19:00:26 2025 GMT Not After : May 21 19:00:26 2025 GMT Subject: CN=6824e84b-74b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:2e:b3:e9:3a:c7:19:a9:54:78:20:59:e1: 73:f2:7b:a5:a0:2e:17:76:b2:67:ac:e9:f9:28:c5: e8:34:38:3b:00:a6:9b:74:26:42:89:85:eb:9b:15: 73:59:15:d5:92:e6:3b:92:98:7c:fd:9a:fa:04:59: 8d:18:3b:a5:e6:4c:5d:64:98:d9:e3:9b:04:c0:00: 75:a9:d4:b7:30:95:03:67:9b:2e:e6:23:49:e9:29: ab:ab:8c:79:51:d7:fc:da:51:5b:3a:96:69:4b:6b: 78:94:32:1c:e6:61:4c:6b:cb:be:eb:ac:74:d5:1d: 35:d7:c4:46:d7:3e:1b:0e:70:76:73:4c:4a:51:4c: 33:7b:1b:75:21:f4:f3:32:03:75:9b:9a:08:7d:bf: 8d:36:e1:91:80:f4:ec:18:fe:cf:06:6e:28:94:99: d6:a3:cb:1b:ee:35:98:f6:1d:71:20:66:17:7c:29: 11:a0:4a:5b:8d:1b:2d:32:49:48:7e:d2:26:d5:27: 84:82:5e:ca:3c:2a:3b:c0:2f:61:1d:62:83:3c:a2: 3a:bf:61:de:5b:0c:ce:f6:26:f1:01:7c:eb:73:2d: c0:65:4b:d0:6f:29:bc:50:d7:f0:5d:ee:52:f6:fe: 04:d3:3b:8f:94:56:3b:8f:96:eb:a2:e9:a1:04:f6: 7b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B7:EB:17:5B:83:E8:2F:5F:DD:59:88:FB:9D:72:23:46:97:E9:8D X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:f1:8c:d1:11:86:cc:54:6a:08:a0:9a:f5:3e:c1:b6:96:4b: d4:a8:da:60:ea:8b:e8:69:f9:a5:94:af:fa:b5:f8:cc:33:6e: 84:8f:5a:36:d0:08:62:10:d4:6b:0a:6e:da:3b:4e:b6:40:94: e9:99:40:7f:f5:dc:e5:58:63:fa:82:e9:2c:ee:5b:af:c7:6a: 43:50:f3:d4:dc:e9:12:34:ca:d0:b2:b7:90:0d:ea:ea:b6:26: b3:57:0d:f2:7c:52:31:6f:59:6d:3a:5a:fd:6f:99:27:c1:da: 2f:4f:fa:b3:8f:9d:ce:2c:17:f7:82:1d:b1:60:c7:b4:3c:e0: 25:60:68:8d:ad:83:02:ad:ee:e9:3a:b8:e5:02:0e:07:f5:15: 82:dc:33:32:25:7b:e0:80:a1:30:1b:66:1e:7e:0d:fc:9d:60: 2e:51:ff:a9:ea:ff:cc:e0:fa:54:1e:f9:58:82:64:fb:68:4d: 54:c1:ad:60:8f:4f:08:c9:90:52:ac:bf:70:d3:92:fb:23:c3: d1:17:2b:12:b0:23:88:a4:87:74:98:ec:fd:4f:83:29:34:0c: 31:65:ab:c4:5f:3f:0c:79:aa:f9:c5:96:68:00:c2:5d:b8:cf: 8f:7c:3f:5f:6b:b2:7a:5b:8f:24:43:c7:d0:85:10:36:2c:65: e9:07:2a:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwNTE0MTkwMDI2WhcNMjUwNTIxMTkwMDI2WjAYMRYwFAYD VQQDEw02ODI0ZTg0Yi03NGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1Mus+k6xxmpVHggWeFz8nuloC4XdrJnrOn5KMXoNDg7AKabdCZCiYXrmxVz WRXVkuY7kph8/Zr6BFmNGDul5kxdZJjZ45sEwAB1qdS3MJUDZ5su5iNJ6Smrq4x5 Udf82lFbOpZpS2t4lDIc5mFMa8u+66x01R0118RG1z4bDnB2c0xKUUwzext1IfTz MgN1m5oIfb+NNuGRgPTsGP7PBm4olJnWo8sb7jWY9h1xIGYXfCkRoEpbjRstMklI ftIm1SeEgl7KPCo7wC9hHWKDPKI6v2HeWwzO9ibxAXzrcy3AZUvQbym8UNfwXe5S 9v4E0zuPlFY7j5broumhBPZ7pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+36xdb g+gvX91ZiPudciNGl+mNMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi8YzREYbMVGoIoJr1PsG2lkvUqNpg6ovoafmllK/6tfjMM26Ej1o2 0AhiENRrCm7aO062QJTpmUB/9dzlWGP6guks7luvx2pDUPPU3OkSNMrQsreQDerq tiazVw3yfFIxb1ltOlr9b5knwdovT/qzj53OLBf3gh2xYMe0POAlYGiNrYMCre7p OrjlAg4H9RWC3DMyJXvggKEwG2Yefg38nWAuUf+p6v/M4PpUHvlYgmT7aE1Uwa1g j08IyZBSrL9w05L7I8PRFysSsCOIpId0mOz9T4MpNAwxZavEXz8Mear5xZZoAMJd uM+PfD9fa7J6W48kQ8fQhRA2LGXpByqo -----END CERTIFICATE-----Generated at Thu May 15 22:34:17 2025 by rpki-client