$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: V+sveHDzFbMzTYZ3tgJH8f4KHxyEfsNfPoaUKI9HsDA= Subject key identifier: 6B:5E:B2:80:F1:08:81:13:3F:EF:39:31:33:69:58:14:B8:16:54:E5 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: AB Signing time: Sun 11 May 2025 04:52:38 +0000 Manifest this update: Sun 11 May 2025 04:52:38 +0000 Manifest next update: Sun 18 May 2025 04:52:38 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: mBKSmovWMfe53mAK5AkQ/HERKorcRMutYJTtcinifKk=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: May 11 04:52:38 2025 GMT Not After : May 18 04:52:38 2025 GMT Subject: CN=68202d16-3b7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bb:59:42:3d:b1:f9:de:95:02:12:ac:c5:61: bf:65:15:ca:72:15:f7:6a:c1:03:96:74:13:71:a8: 75:28:30:0a:34:90:4f:79:5e:32:a6:cd:68:2f:4e: 15:1d:fa:80:c1:3c:b7:20:3b:6c:2c:3d:b4:e0:dd: 2b:40:5f:0d:2e:96:bf:a6:a1:95:6b:eb:73:e2:80: b8:87:51:bb:70:ca:02:75:60:26:54:b4:91:21:0a: d7:b5:02:90:d5:2e:06:bc:86:6c:a3:0e:5c:1c:e6: b2:f2:2c:c0:cf:ce:73:92:e0:cb:95:f9:7e:7b:c3: 41:a4:66:a0:80:38:54:17:c0:61:41:c1:b0:22:c3: 62:27:99:40:8a:87:28:c2:50:69:bc:54:7e:0a:d1: c5:65:35:5f:91:fc:6a:1d:26:d8:72:da:6d:7e:ad: a7:8d:6e:93:79:1d:f2:27:2a:08:41:22:70:12:7e: 13:b7:81:bc:30:48:f9:22:07:f6:15:42:0a:e4:89: 84:2e:fe:ab:af:47:ec:99:98:e2:ea:44:83:ed:97: ee:d5:a2:8f:3e:cb:0c:f1:a2:b6:d4:99:2f:2b:4d: 59:3e:d5:f4:a5:a8:68:47:c3:74:2a:62:37:81:41: 8f:50:07:98:87:15:a8:3d:37:bd:70:27:06:fa:a6: 62:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:5E:B2:80:F1:08:81:13:3F:EF:39:31:33:69:58:14:B8:16:54:E5 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ed:42:be:6e:02:fe:59:fa:e3:6d:84:5b:3a:71:2c:cb:dc: 30:3c:e1:8d:b9:95:ec:c5:65:6a:69:b7:da:6e:94:7c:08:d2: 9d:b7:9e:7f:3f:c0:77:f4:49:cf:54:4a:69:26:69:22:1d:f5: b7:b3:56:b2:ce:b9:12:b6:1f:f6:2c:b5:91:10:24:ef:64:8d: 2d:75:be:47:84:0d:ea:28:c0:33:93:51:19:8c:c5:17:11:64: a0:14:a2:12:db:12:d8:93:a6:23:ba:e8:30:ae:99:18:c3:51: a9:08:eb:31:3c:c1:4b:cd:16:b2:31:52:11:e9:8a:cc:ae:6a: d3:af:f3:0c:e7:07:54:5e:5c:f4:f6:c4:0e:ae:3b:1c:df:35: 5b:d3:5a:82:75:7a:43:35:e1:08:31:2a:c5:48:d5:ea:09:6e: e3:cc:80:05:51:b1:cd:0f:e4:82:e8:59:5c:dd:0b:8e:49:1a: 4c:cb:48:12:e4:2a:22:24:bf:ff:1b:8f:07:7c:c9:07:8e:b3: 7f:29:d0:af:9a:dd:1e:96:89:96:8d:8f:8e:d2:1e:fa:5c:66: 1f:7c:45:dd:84:24:b5:fa:8a:05:e5:c9:da:10:70:c5:a2:cd: c5:48:02:13:3c:1f:4e:ba:f3:5e:aa:4e:3f:21:b6:f4:45:dd: 45:b3:97:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwNTExMDQ1MjM4WhcNMjUwNTE4MDQ1MjM4WjAYMRYwFAYD VQQDEw02ODIwMmQxNi0zYjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rtZQj2x+d6VAhKsxWG/ZRXKchX3asEDlnQTcah1KDAKNJBPeV4yps1oL04V HfqAwTy3IDtsLD204N0rQF8NLpa/pqGVa+tz4oC4h1G7cMoCdWAmVLSRIQrXtQKQ 1S4GvIZsow5cHOay8izAz85zkuDLlfl+e8NBpGaggDhUF8BhQcGwIsNiJ5lAioco wlBpvFR+CtHFZTVfkfxqHSbYctptfq2njW6TeR3yJyoIQSJwEn4Tt4G8MEj5Igf2 FUIK5ImELv6rr0fsmZji6kSD7Zfu1aKPPssM8aK21JkvK01ZPtX0pahoR8N0KmI3 gUGPUAeYhxWoPTe9cCcG+qZihwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtesoDx CIETP+85MTNpWBS4FlTlMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ7UK+bgL+WfrjbYRbOnEsy9wwPOGNuZXsxWVqabfabpR8CNKdt55/ P8B39EnPVEppJmkiHfW3s1ayzrkSth/2LLWRECTvZI0tdb5HhA3qKMAzk1EZjMUX EWSgFKIS2xLYk6YjuugwrpkYw1GpCOsxPMFLzRayMVIR6YrMrmrTr/MM5wdUXlz0 9sQOrjsc3zVb01qCdXpDNeEIMSrFSNXqCW7jzIAFUbHND+SC6Flc3QuOSRpMy0gS 5CoiJL//G48HfMkHjrN/KdCvmt0elomWjY+O0h76XGYffEXdhCS1+ooF5cnaEHDF os3FSAITPB9OuvNeqk4/Ibb0Rd1Fs5dg -----END CERTIFICATE-----Generated at Mon May 12 19:31:20 2025 by rpki-client