$ rpki-client -vvf rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft File: QuOGLXRTXCypqrN6cZW1keruIeU.mft (raw, json) Hash identifier: TPrsbxyUVxUIiHqKU4uZsZZ5T1ed5qp/+HLWcmLyYtU= Subject key identifier: 3B:99:54:A5:57:F1:5D:3E:1E:80:82:4F:C5:FC:9F:79:3D:25:ED:F2 Authority key identifier: 42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 Certificate issuer: /CN=A91580E4/serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft Manifest number: 1A Signing time: Sun 11 May 2025 06:40:45 +0000 Manifest this update: Sun 11 May 2025 06:40:44 +0000 Manifest next update: Sun 18 May 2025 06:40:44 +0000 Files and hashes: 1: QuOGLXRTXCypqrN6cZW1keruIeU.crl (hash: OL7Z1t6NYeMBSJDocTCHlg45gWFYK7XF6/q5JSNWPnA=) 2: E78F55A408BC11F09C4FB471C4F9AE02.roa (hash: voOUCH7zRGxksu2fNV8QOYiL4kmVMcLs8S+aobdc9H8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580E4, serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Validity Not Before: May 11 06:40:44 2025 GMT Not After : May 18 06:40:44 2025 GMT Subject: CN=6820466c-71e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cd:18:07:70:28:94:53:d7:93:fa:e8:48:68: 62:21:32:ef:7e:b0:d8:88:ae:e9:28:64:73:fb:64: 30:f5:7c:b0:6e:ee:17:15:c4:6d:70:3f:70:bc:60: 40:d0:c8:d8:7f:8b:3e:a0:26:9e:6f:56:81:45:12: 1c:4f:8f:a0:8e:b8:a2:46:a3:38:b5:d3:d6:69:1f: bb:f9:63:54:fd:76:d4:b1:6b:b8:0b:fa:f0:dd:14: 9f:63:8f:b2:b0:12:7d:97:eb:05:32:48:1c:9e:cb: f7:54:45:17:d0:81:a7:5e:62:1f:cc:13:cd:29:59: 24:ea:29:2e:eb:ce:aa:06:90:87:3f:fe:21:4d:b6: e7:eb:fb:c3:cd:41:f1:18:c5:ba:20:71:a0:3e:62: 1a:a7:99:75:8b:9d:39:c6:5a:61:93:28:e4:6c:5e: b9:2f:dc:e9:69:e1:9a:ea:4c:d8:11:77:eb:fc:ad: cf:84:7b:fb:d1:bc:f8:fd:96:11:58:74:82:1a:bc: e7:2a:7c:b0:a7:42:16:b9:a6:fe:5d:01:1e:6a:e1: a1:cc:49:eb:b9:7f:d7:e7:e3:08:6f:e5:af:c3:7f: 96:fd:6d:c6:b6:79:c5:87:81:c4:1e:f8:1b:66:7d: 22:3b:e4:be:b5:e9:fd:02:c9:fd:db:e4:58:c4:6b: aa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:99:54:A5:57:F1:5D:3E:1E:80:82:4F:C5:FC:9F:79:3D:25:ED:F2 X509v3 Authority Key Identifier: keyid:42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:f8:f3:27:6a:1d:0a:85:ae:ef:dd:3a:f3:52:95:ef:ec:e0: 84:aa:ed:c2:bc:76:43:22:e6:ec:aa:dd:1e:50:72:63:a4:4d: 2d:18:c1:66:9e:65:44:67:d6:d8:de:5d:7b:71:41:01:c2:09: d0:01:81:0e:c3:78:ad:d8:9b:2a:0c:9a:8c:cb:f9:8a:5a:2f: d1:0e:23:84:64:80:88:7c:2a:f7:ee:12:23:a7:c6:b7:4c:29: e3:4f:f8:d5:04:1a:f4:44:18:79:07:6d:72:65:b0:d0:6e:ab: 79:94:4a:ac:59:98:4f:61:aa:a1:e0:85:b0:7a:86:85:bd:8f: c7:12:9a:9e:49:55:b7:d9:61:19:28:28:1b:e8:e0:30:d1:7c: ff:4a:9d:a9:84:6c:89:1f:f3:fe:b4:62:bc:e6:3e:d9:e7:25: 61:85:f9:98:26:0a:82:97:e0:b3:23:a6:19:65:2a:78:80:8c: c8:c3:3b:c1:bb:76:dd:77:73:86:0e:c2:6a:17:eb:7f:43:09: 46:53:e5:ea:77:25:dd:39:c6:8a:af:a6:2b:cb:ec:71:ba:10: 2f:21:c9:cf:08:c7:5f:53:b8:87:ef:08:1a:d8:4e:60:dc:d2: ca:a0:87:49:85:f8:56:c7:92:c6:dc:13:a3:a3:1a:9f:68:c6: 00:97:39:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODBFNDExMC8GA1UEBRMoNDJFMzg2MkQ3NDUzNUMyQ0E5QUFCMzdBNzE5NUI1OTFF QUVFMjFFNTAeFw0yNTA1MTEwNjQwNDRaFw0yNTA1MTgwNjQwNDRaMBgxFjAUBgNV BAMTDTY4MjA0NjZjLTcxZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTzRgHcCiUU9eT+uhIaGIhMu9+sNiIrukoZHP7ZDD1fLBu7hcVxG1wP3C8YEDQ yNh/iz6gJp5vVoFFEhxPj6COuKJGozi109ZpH7v5Y1T9dtSxa7gL+vDdFJ9jj7Kw En2X6wUySByey/dURRfQgadeYh/ME80pWSTqKS7rzqoGkIc//iFNtufr+8PNQfEY xbogcaA+YhqnmXWLnTnGWmGTKORsXrkv3Olp4ZrqTNgRd+v8rc+Ee/vRvPj9lhFY dIIavOcqfLCnQha5pv5dAR5q4aHMSeu5f9fn4whv5a/Df5b9bca2ecWHgcQe+Btm fSI75L616f0Cyf3b5FjEa6pxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO5lUpVfx XT4egIJPxfyfeT0l7fIwHwYDVR0jBBgwFoAUQuOGLXRTXCypqrN6cZW1keruIeUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MEU0LzVDMEM5NTUwMDhC QzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5cHFyTjZjWlcxa2VydUll VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXVPR0xYUlRYQ3lwcXJONmNaVzFrZXJ1SWVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MEU0LzVDMEM5NTUwMDhCQzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5 cHFyTjZjWlcxa2VydUllVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC348ydqHQqFru/dOvNSle/s4ISq7cK8dkMi5uyq3R5QcmOkTS0YwWae ZURn1tjeXXtxQQHCCdABgQ7DeK3YmyoMmozL+YpaL9EOI4RkgIh8KvfuEiOnxrdM KeNP+NUEGvREGHkHbXJlsNBuq3mUSqxZmE9hqqHghbB6hoW9j8cSmp5JVbfZYRko KBvo4DDRfP9KnamEbIkf8/60YrzmPtnnJWGF+ZgmCoKX4LMjphllKniAjMjDO8G7 dt13c4YOwmoX639DCUZT5ep3Jd05xoqvpivL7HG6EC8hyc8Ix19TuIfvCBrYTmDc 0sqgh0mF+FbHksbcE6OjGp9oxgCXOfM= -----END CERTIFICATE-----Generated at Mon May 12 04:40:16 2025 by rpki-client