$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: nzsCKV5H8fI0tXfYbsAULW6cjwRpuZkwjxVlK70aQ5A= Subject key identifier: 7A:6F:C2:3F:56:1F:BA:5C:D8:37:43:2F:8A:5E:24:CC:D7:8D:F7:88 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 022D Signing time: Thu 15 May 2025 01:56:09 +0000 Manifest this update: Thu 15 May 2025 01:56:08 +0000 Manifest next update: Thu 22 May 2025 01:56:08 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: 47jrOZJ2hQGJN3LjKmsIjnBte81nt1+UQmQuAFE/XQs=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: May 15 01:56:08 2025 GMT Not After : May 22 01:56:08 2025 GMT Subject: CN=682549b9-3d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:70:5c:0a:8e:8a:23:e7:58:04:06:7e:78:8f: ea:ff:1b:d2:96:cb:7b:8e:1d:4a:6c:73:2b:44:3d: 0c:0d:8c:a7:f5:7c:18:37:48:5d:df:2f:e3:71:50: cf:9f:e5:da:30:f4:1e:b7:f9:5a:f0:62:f7:7c:48: b4:e1:b4:3d:2f:f4:a6:2f:cd:54:90:ca:c9:52:8c: c3:ae:33:e5:af:33:41:83:15:df:be:e5:2e:95:f3: 01:b0:ca:e2:34:f1:6b:90:e2:d2:01:87:db:c7:84: 36:ee:eb:fe:3f:d1:5c:32:14:de:93:37:9a:24:e6: 26:d4:bb:af:ce:05:90:d9:69:dc:98:fd:0c:30:9e: 3a:88:93:48:57:9d:f0:84:2c:ac:53:f2:99:29:a6: ec:c2:99:a6:ce:5b:fd:57:a8:d3:65:40:53:3e:9c: b7:eb:ae:87:9f:8a:ba:0b:21:f5:cd:5a:75:7e:96: f2:e8:ec:c8:d1:6b:56:57:14:18:f6:2b:4f:e1:d4: 46:dd:cd:af:59:8c:dc:b8:75:75:01:a4:0f:ff:86: 3d:73:ca:21:50:27:dd:3a:61:41:7c:e3:23:4e:05: 11:91:e0:1c:cc:9f:16:00:19:95:bc:70:7f:36:ab: aa:c8:4d:fa:9a:9f:35:e4:8e:56:0f:e8:bc:93:72: a7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:6F:C2:3F:56:1F:BA:5C:D8:37:43:2F:8A:5E:24:CC:D7:8D:F7:88 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:83:52:53:5f:e7:b3:a7:f5:99:bb:ea:9d:b0:d8:22:ee:6b: 9a:19:8b:a7:89:ad:eb:72:1a:2d:01:e8:6a:57:7d:da:3b:a4: a9:72:53:04:91:2b:22:d8:8e:de:20:aa:46:1f:be:38:ae:cc: a7:98:09:d5:c4:13:4d:a1:b5:93:b5:6e:a9:95:1a:d1:82:6c: 80:d7:9b:55:49:da:ab:ff:9c:0d:b2:75:35:5e:6c:29:bf:d4: 24:28:14:6f:03:41:a8:26:01:b7:91:4f:ca:e9:d2:a3:bb:a9: e6:7a:8e:5f:d1:e5:da:6f:f1:91:04:60:32:8f:37:d6:19:fe: 5d:18:5d:78:81:98:1a:06:03:5c:6f:e0:f0:32:89:61:00:fa: 1f:e7:93:25:bd:a9:02:18:d3:e9:07:87:1b:d3:ea:20:70:27: db:a3:19:d2:dc:f1:e6:69:21:12:c7:8a:4b:c1:7e:99:10:30: 3e:16:91:4e:f8:ca:c0:23:8f:ef:5b:c3:66:06:d3:e3:25:aa: 26:d2:32:4d:40:f5:ae:4f:91:6c:b5:ec:a2:34:c1:bc:c0:8e: 96:c8:0e:7f:28:f7:6b:86:50:ca:fb:2d:28:4f:86:2f:92:98: c8:7d:47:fa:04:04:37:3b:ba:4a:50:66:3a:6b:96:75:42:0c: d2:c2:8e:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUwNTE1MDE1NjA4WhcNMjUwNTIyMDE1NjA4WjAYMRYwFAYD VQQDEw02ODI1NDliOS0zZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXBcCo6KI+dYBAZ+eI/q/xvSlst7jh1KbHMrRD0MDYyn9XwYN0hd3y/jcVDP n+XaMPQet/la8GL3fEi04bQ9L/SmL81UkMrJUozDrjPlrzNBgxXfvuUulfMBsMri NPFrkOLSAYfbx4Q27uv+P9FcMhTekzeaJOYm1LuvzgWQ2WncmP0MMJ46iJNIV53w hCysU/KZKabswpmmzlv9V6jTZUBTPpy3666Hn4q6CyH1zVp1fpby6OzI0WtWVxQY 9itP4dRG3c2vWYzcuHV1AaQP/4Y9c8ohUCfdOmFBfOMjTgURkeAczJ8WABmVvHB/ NquqyE36mp815I5WD+i8k3KnswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpvwj9W H7pc2DdDL4peJMzXjfeIMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKg1JTX+ezp/WZu+qdsNgi7muaGYunia3rchotAehqV33aO6SpclME kSsi2I7eIKpGH744rsynmAnVxBNNobWTtW6plRrRgmyA15tVSdqr/5wNsnU1Xmwp v9QkKBRvA0GoJgG3kU/K6dKju6nmeo5f0eXab/GRBGAyjzfWGf5dGF14gZgaBgNc b+DwMolhAPof55MlvakCGNPpB4cb0+ogcCfboxnS3PHmaSESx4pLwX6ZEDA+FpFO +MrAI4/vW8NmBtPjJaom0jJNQPWuT5FsteyiNMG8wI6WyA5/KPdrhlDK+y0oT4Yv kpjIfUf6BAQ3O7pKUGY6a5Z1QgzSwo4y -----END CERTIFICATE-----Generated at Fri May 16 14:34:56 2025 by rpki-client