$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: Gh4I7Ld1G12p3y8lI7hhLFTedAqRAK9Gm/+kMH2dg8Y= Subject key identifier: 16:CF:46:2E:E2:BB:F7:9D:5D:C5:F5:EF:38:CC:CB:4F:98:CB:FC:A1 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0C68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0C5E Signing time: Mon 12 May 2025 18:10:49 +0000 Manifest this update: Mon 12 May 2025 18:10:48 +0000 Manifest next update: Mon 19 May 2025 18:10:48 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: kPzK2JrAfRADs4Gl65BVOOxDw8/8yDttpgUDp4iYYfw=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: NrdZbVMd1dHy2FEEAMNxWeknBO6BNRI5lNG3a+z4IPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3176 (0xc68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: May 12 18:10:48 2025 GMT Not After : May 19 18:10:48 2025 GMT Subject: CN=682239a9-94d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:22:79:57:a2:a8:0c:e6:a9:3b:10:9c:a2: 70:23:17:cc:74:fd:68:50:eb:52:4d:e0:84:a5:5f: b1:aa:70:ea:6e:39:0f:8d:40:23:35:bc:de:23:ae: 0d:7c:13:7c:86:ef:bd:ed:c5:03:8c:01:4e:71:46: 4a:01:6c:31:55:7f:b5:10:9a:87:d8:22:70:10:51: 3c:d9:c7:42:74:05:f7:7b:39:7e:2b:ac:d7:c9:65: 8d:e8:55:43:5e:89:c2:1a:bd:e3:0b:3a:eb:67:18: 81:42:36:b0:47:fa:57:d1:53:b0:ff:c6:15:23:b6: e6:49:0c:9a:36:f8:73:e9:68:ad:dd:e4:30:5a:1f: 77:8f:db:ae:f4:36:aa:cf:09:86:68:68:e3:2a:c8: 15:bd:19:f4:69:09:2d:2c:55:b9:86:5e:64:5a:5e: fe:24:1d:81:5f:79:da:3f:ad:22:bf:e5:6c:5f:61: 22:db:b2:a6:b1:5c:96:20:70:1e:f5:73:c3:45:e8: c3:da:36:6e:ca:f3:42:dd:37:cd:4f:75:b7:42:c4: ff:28:8c:3e:ff:d7:32:d3:9e:d4:bc:33:95:6b:fd: e6:16:0f:5c:c8:ad:88:99:5f:2c:bb:60:82:90:b9: 98:1f:60:90:72:06:1d:8e:bd:54:15:5e:8b:a2:d0: 06:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:CF:46:2E:E2:BB:F7:9D:5D:C5:F5:EF:38:CC:CB:4F:98:CB:FC:A1 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:2a:d8:aa:2d:f1:15:d6:cf:01:50:57:60:36:83:5a:c5:f5: fa:82:48:b4:eb:69:05:26:af:50:39:0b:73:06:e6:57:27:1d: 26:76:2d:c8:28:55:b3:3d:19:93:e3:3e:d7:f4:64:52:47:94: 20:bf:a7:84:8f:a4:54:64:32:10:e4:2e:06:b8:bd:f2:99:49: 4f:5b:64:b1:5a:a8:a6:48:b0:e8:d7:2f:17:35:07:f8:b8:e8: 72:a7:2c:5a:42:74:33:c5:f9:3b:e6:c7:a0:5e:c0:7e:64:e7: 47:30:3f:eb:4e:6e:66:05:52:eb:ac:05:d3:6c:c6:fb:7b:8a: 32:39:86:14:d8:be:39:df:31:e1:4a:b8:c6:78:76:38:a7:db: 09:e1:33:3e:81:a9:14:83:43:32:16:7c:0f:9d:06:f5:9c:ee: 83:0a:80:df:9e:91:24:e2:2d:2d:90:91:16:b7:79:70:ce:14: 8c:92:9d:37:80:3d:43:c0:fd:1e:6f:2d:52:40:e3:6a:cf:36: 7d:ba:29:63:f3:52:75:63:a5:f2:34:9a:2c:a6:c8:7d:80:63: 99:2e:3a:b0:5c:de:8c:59:75:02:b1:10:25:59:db:5d:65:d7: 6d:d1:2c:c7:ad:e2:7e:a5:9e:24:a9:da:e2:03:5a:13:0b:83: ea:f3:f5:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwNTEyMTgxMDQ4WhcNMjUwNTE5MTgxMDQ4WjAYMRYwFAYD VQQDEw02ODIyMzlhOS05NGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGkieVeiqAzmqTsQnKJwIxfMdP1oUOtSTeCEpV+xqnDqbjkPjUAjNbzeI64N fBN8hu+97cUDjAFOcUZKAWwxVX+1EJqH2CJwEFE82cdCdAX3ezl+K6zXyWWN6FVD XonCGr3jCzrrZxiBQjawR/pX0VOw/8YVI7bmSQyaNvhz6Wit3eQwWh93j9uu9Daq zwmGaGjjKsgVvRn0aQktLFW5hl5kWl7+JB2BX3naP60iv+VsX2Ei27KmsVyWIHAe 9XPDRejD2jZuyvNC3TfNT3W3QsT/KIw+/9cy057UvDOVa/3mFg9cyK2ImV8su2CC kLmYH2CQcgYdjr1UFV6LotAGyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbPRi7i u/edXcX17zjMy0+Yy/yhMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIKtiqLfEV1s8BUFdgNoNaxfX6gki062kFJq9QOQtzBuZXJx0mdi3I KFWzPRmT4z7X9GRSR5Qgv6eEj6RUZDIQ5C4GuL3ymUlPW2SxWqimSLDo1y8XNQf4 uOhypyxaQnQzxfk75segXsB+ZOdHMD/rTm5mBVLrrAXTbMb7e4oyOYYU2L453zHh SrjGeHY4p9sJ4TM+gakUg0MyFnwPnQb1nO6DCoDfnpEk4i0tkJEWt3lwzhSMkp03 gD1DwP0eby1SQONqzzZ9uilj81J1Y6XyNJospsh9gGOZLjqwXN6MWXUCsRAlWdtd Zddt0SzHreJ+pZ4kqdriA1oTC4Pq8/VK -----END CERTIFICATE-----Generated at Wed May 14 10:15:59 2025 by rpki-client