$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: gQVNcqJEksLAUs1D/41FCg/GywsBMA1MMBAUCcolU6M= Subject key identifier: 7A:F0:2B:3B:27:22:AD:69:E6:68:EC:77:E3:79:95:37:1C:86:E1:14 Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 3481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 3481 Signing time: Wed 14 May 2025 14:39:01 +0000 Manifest this update: Wed 14 May 2025 14:39:00 +0000 Manifest next update: Wed 21 May 2025 14:39:00 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: eZwyWfL+m6cqkaSxZSNtPSn8ZjR/MhWvL8+dG5lCt6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13441 (0x3481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: May 14 14:39:00 2025 GMT Not After : May 21 14:39:00 2025 GMT Subject: CN=6824ab04-abc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1f:8e:96:9b:41:15:ba:7f:a2:4b:05:37:9c: 48:d1:1b:5a:98:71:0a:64:81:38:85:43:62:73:f8: 36:9a:6b:ce:16:2f:93:b0:e2:7f:42:0d:db:6b:d3: 21:09:66:e5:a6:de:1c:b5:83:db:67:4a:e2:3d:48: 4d:e1:4b:67:fb:61:01:aa:07:ff:55:e1:44:f5:e4: 0d:07:3f:9a:0e:82:46:0c:55:b5:73:59:36:de:8e: 2d:8a:44:42:06:35:c9:f8:29:12:3c:40:f0:66:f8: 46:80:07:72:a1:68:bb:79:d3:ff:8f:18:7e:f8:7e: 29:c3:c0:e8:c4:81:67:e2:f3:56:92:f2:87:7f:d8: 63:25:19:8b:d9:df:34:a5:6a:92:6c:e7:1c:95:5a: f6:21:29:67:7b:8b:6c:4d:44:66:f4:65:4f:af:fa: 46:98:4c:37:f1:38:72:f6:33:c0:79:12:81:17:ab: 55:a5:21:ba:2c:09:bd:39:d2:3e:3d:ef:14:91:51: ae:95:ae:1f:3c:8e:64:77:93:8b:ab:77:65:91:dc: 6a:f4:0b:3e:cb:18:9c:1c:3b:25:b2:67:c6:63:04: 01:7b:c2:b8:c5:d8:80:bb:16:1b:fe:7c:34:0b:6f: 0e:52:86:70:bd:80:0d:58:d7:ef:f7:dd:45:2f:38: 6b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F0:2B:3B:27:22:AD:69:E6:68:EC:77:E3:79:95:37:1C:86:E1:14 X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:27:d2:d3:3d:f5:3a:5f:5a:c5:08:f0:3b:3e:dd:a6:79:a2: f1:42:6b:1c:85:b9:b4:7c:bb:cb:bb:a8:b7:ef:7b:0f:c6:c0: 4d:0a:4b:73:8d:dc:26:2e:9f:3e:70:fd:12:66:2d:6c:94:84: 07:e8:ed:53:2b:11:b6:2b:cd:77:e3:f7:f3:ea:86:28:8c:da: 24:be:aa:5f:23:37:b8:13:a1:bd:e8:2a:be:5c:fd:9f:b6:d7: 5a:0e:d2:91:bd:00:6f:e8:f0:c0:10:b9:62:61:7b:dd:ca:65: 2e:30:6e:7c:ac:94:35:c5:ef:9c:5b:7f:57:84:68:9d:b1:d4: 43:8c:ab:22:a7:67:11:03:ee:4c:12:a1:f5:ac:b2:be:f7:00: a6:7a:0f:92:13:41:b4:79:e7:ff:7d:5f:0f:25:16:01:5b:62: bb:d1:76:60:02:05:60:ef:d8:94:fa:7e:f0:81:91:37:93:3c: 47:0b:3e:c2:78:e3:f9:a4:b2:43:80:79:8a:16:f1:83:b0:2a: 85:f8:5f:90:9e:07:e3:fd:25:b3:d2:80:06:89:9b:4e:f3:8a: 2f:ef:12:dd:06:2d:fd:33:a7:c0:cf:b5:92:b1:a3:d7:24:03: 67:f1:ad:e3:2a:02:e0:2f:d2:42:bd:70:cb:5a:21:11:42:55: da:3d:03:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjUwNTE0MTQzOTAwWhcNMjUwNTIxMTQzOTAwWjAYMRYwFAYD VQQDEw02ODI0YWIwNC1hYmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2R+OlptBFbp/oksFN5xI0RtamHEKZIE4hUNic/g2mmvOFi+TsOJ/Qg3ba9Mh CWblpt4ctYPbZ0riPUhN4Utn+2EBqgf/VeFE9eQNBz+aDoJGDFW1c1k23o4tikRC BjXJ+CkSPEDwZvhGgAdyoWi7edP/jxh++H4pw8DoxIFn4vNWkvKHf9hjJRmL2d80 pWqSbOcclVr2ISlne4tsTURm9GVPr/pGmEw38Thy9jPAeRKBF6tVpSG6LAm9OdI+ Pe8UkVGula4fPI5kd5OLq3dlkdxq9As+yxicHDslsmfGYwQBe8K4xdiAuxYb/nw0 C28OUoZwvYANWNfv991FLzhrkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrwKzsn Iq1p5mjsd+N5lTcchuEUMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0J9LTPfU6X1rFCPA7Pt2meaLxQmschbm0fLvLu6i373sPxsBNCktz jdwmLp8+cP0SZi1slIQH6O1TKxG2K8134/fz6oYojNokvqpfIze4E6G96Cq+XP2f ttdaDtKRvQBv6PDAELliYXvdymUuMG58rJQ1xe+cW39XhGidsdRDjKsip2cRA+5M EqH1rLK+9wCmeg+SE0G0eef/fV8PJRYBW2K70XZgAgVg79iU+n7wgZE3kzxHCz7C eOP5pLJDgHmKFvGDsCqF+F+Qngfj/SWz0oAGiZtO84ov7xLdBi39M6fAz7WSsaPX JANn8a3jKgLgL9JCvXDLWiERQlXaPQMz -----END CERTIFICATE-----Generated at Wed May 14 22:50:36 2025 by rpki-client