$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft File: QeLjUgZMov-eIcSENVrALkQHJY0.mft (raw, json) Hash identifier: zw9ykxx7mGhC4gSde7ISlJRw8+Ri6bN9MaP8R1Osx4I= Subject key identifier: A0:BE:DD:31:AF:23:CF:3B:BD:C4:A3:0E:0A:0D:3C:0A:C7:37:70:2F Authority key identifier: 41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D Certificate issuer: /CN=A9131D5E/serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Certificate serial: 0585 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft Manifest number: 057E Signing time: Thu 08 May 2025 23:06:20 +0000 Manifest this update: Thu 08 May 2025 23:06:20 +0000 Manifest next update: Thu 15 May 2025 23:06:20 +0000 Files and hashes: 1: QeLjUgZMov-eIcSENVrALkQHJY0.crl (hash: Jfwf7oJYRz1K5VM8P8+NoYNZpNHsMELPn0I+m12cZvk=) 2: 9B41336A9ABB11EC9D11861FC4F9AE02.roa (hash: JjNvo6+sKFXJO5jB79ObwXmzISqdgMEQqhlFwLrXnJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 23:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D5E, serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Validity Not Before: May 8 23:06:20 2025 GMT Not After : May 15 23:06:20 2025 GMT Subject: CN=681d38ec-6194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e2:08:54:4f:06:12:a9:ae:04:bd:c0:82:8a: 5e:d1:2e:38:22:24:ed:d0:05:d8:19:88:35:11:ee: d3:00:3c:02:bf:ca:fb:9d:b7:73:99:6d:a9:2a:a3: f6:f9:6e:03:5a:9a:ae:2e:55:fa:77:0d:ff:2c:d9: d6:2d:05:cd:82:a2:f3:32:0b:2e:47:33:37:e4:b4: 52:05:d1:2c:41:62:2a:e4:44:41:ad:89:07:ef:cb: d1:4d:48:c0:0c:94:76:c3:f0:46:af:64:2d:e8:66: f1:bc:03:d6:65:7a:0c:69:c3:ea:9c:11:60:87:d7: 10:b1:1d:78:02:e1:4a:f7:7a:a2:88:03:38:67:ae: c5:69:70:a6:37:c2:98:c1:58:1f:40:64:95:f9:6e: 8e:29:d9:eb:52:32:fb:af:40:56:24:32:00:65:cc: 17:1c:e6:4e:fb:b2:94:7c:66:15:25:95:e7:4b:9e: bf:bb:53:da:d5:3f:cb:e3:9e:09:2b:ea:6d:87:5f: 7b:1a:08:14:63:98:b1:fc:a5:a9:30:9c:de:03:18: 87:ce:39:e5:49:28:54:9e:38:11:4f:85:d5:be:3b: da:7e:e8:3b:5a:6f:2b:bf:ac:71:33:dc:75:28:f2: 96:f6:ef:a7:64:9f:cb:06:b2:9e:34:76:0c:44:41: 9c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:BE:DD:31:AF:23:CF:3B:BD:C4:A3:0E:0A:0D:3C:0A:C7:37:70:2F X509v3 Authority Key Identifier: keyid:41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:24:47:d6:91:34:2e:cf:45:ab:87:e5:bc:2e:47:ae:1c:e6: d4:c0:5d:0c:24:21:0d:b5:5a:db:94:7e:e4:ab:07:3e:f4:45: c8:6a:d2:8a:53:77:4a:0a:65:16:03:31:ac:da:7e:b4:b9:27: c4:35:b7:bd:df:06:d6:a4:88:f5:21:c4:f3:eb:63:4b:63:63: b9:d5:0f:60:bb:30:e2:4c:88:86:fc:38:45:9e:0e:56:70:b7: 6f:db:9f:8b:77:02:1f:71:31:55:8a:d9:2a:25:68:67:52:32: bc:a5:f2:a7:3a:27:eb:ed:10:62:0c:f2:83:06:76:64:2a:28: 11:94:df:e6:40:f4:f4:49:c4:31:fc:70:6b:41:49:72:f2:09: 31:c8:ad:88:56:55:ff:3e:d8:06:80:ed:6c:b7:76:7f:85:bb: 32:2a:95:67:fb:b7:f0:7e:8f:33:34:30:cd:7b:5b:2f:f4:1d: 05:2d:09:c2:ad:a0:80:af:66:5e:0f:a6:ba:7c:15:92:bf:95: b9:f3:d1:4f:8d:13:85:de:c0:9e:03:b5:aa:8b:e4:e8:56:58: df:bc:8b:ce:0b:b4:a0:03:52:2b:c7:de:02:f7:41:d7:3d:04: 8c:5b:0c:de:9a:66:79:59:3f:ee:fb:c3:f3:5a:80:f2:40:49: ac:87:fc:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFENUUxMTAvBgNVBAUTKDQxRTJFMzUyMDY0Q0EyRkY5RTIxQzQ4NDM1NUFDMDJF NDQwNzI1OEQwHhcNMjUwNTA4MjMwNjIwWhcNMjUwNTE1MjMwNjIwWjAYMRYwFAYD VQQDEw02ODFkMzhlYy02MTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uIIVE8GEqmuBL3Agope0S44IiTt0AXYGYg1Ee7TADwCv8r7nbdzmW2pKqP2 +W4DWpquLlX6dw3/LNnWLQXNgqLzMgsuRzM35LRSBdEsQWIq5ERBrYkH78vRTUjA DJR2w/BGr2Qt6GbxvAPWZXoMacPqnBFgh9cQsR14AuFK93qiiAM4Z67FaXCmN8KY wVgfQGSV+W6OKdnrUjL7r0BWJDIAZcwXHOZO+7KUfGYVJZXnS56/u1Pa1T/L454J K+pth197GggUY5ix/KWpMJzeAxiHzjnlSShUnjgRT4XVvjvafug7Wm8rv6xxM9x1 KPKW9u+nZJ/LBrKeNHYMREGcQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKC+3TGv I887vcSjDgoNPArHN3AvMB8GA1UdIwQYMBaAFEHi41IGTKL/niHEhDVawC5EByWN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQ1RS81NkRENDhERUQ5 NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92LWVJY1NFTlZyQUxrUUhK WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlTGpVZ1pNb3YtZUljU0VOVnJBTGtRSEpZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQ1RS81NkRENDhERUQ5NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92 LWVJY1NFTlZyQUxrUUhKWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpJEfWkTQuz0Wrh+W8LkeuHObUwF0MJCENtVrblH7kqwc+9EXIatKK U3dKCmUWAzGs2n60uSfENbe93wbWpIj1IcTz62NLY2O51Q9guzDiTIiG/DhFng5W cLdv25+LdwIfcTFVitkqJWhnUjK8pfKnOifr7RBiDPKDBnZkKigRlN/mQPT0ScQx /HBrQUly8gkxyK2IVlX/PtgGgO1st3Z/hbsyKpVn+7fwfo8zNDDNe1sv9B0FLQnC raCAr2ZeD6a6fBWSv5W589FPjROF3sCeA7Wqi+ToVljfvIvOC7SgA1Irx94C90HX PQSMWwzemmZ5WT/u+8PzWoDyQEmsh/yP -----END CERTIFICATE-----Generated at Sat May 10 13:11:16 2025 by rpki-client