$ rpki-client -vvf rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft File: qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft (raw, json) Hash identifier: J/blX6Ry8Yp6L90ROto4VOwdK/N3hPCcX1lfpHSbzgg= Subject key identifier: EF:13:AD:5A:1C:38:82:93:E1:5A:81:B2:25:8A:70:62:90:78:B2:8A Authority key identifier: AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 Certificate issuer: /CN=A91705D7/serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft Manifest number: C4 Signing time: Thu 15 May 2025 05:13:23 +0000 Manifest this update: Thu 15 May 2025 05:13:23 +0000 Manifest next update: Thu 22 May 2025 05:13:22 +0000 Files and hashes: 1: qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl (hash: QmuEJjDGxuIaDNyHGIjBKdaSlwy2BjA93cNvPEfY0Bg=) 2: 01935FDC35F911EFBF29CF70C4F9AE02.roa (hash: IfjKXBSjqSuFJaVoDqP6oYZ3wH/2zlYfGaCM0ODem/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91705D7, serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Validity Not Before: May 15 05:13:23 2025 GMT Not After : May 22 05:13:22 2025 GMT Subject: CN=682577f3-995f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:10:4f:96:52:7b:17:c9:29:17:d3:e4:4f:cb: fc:16:c0:fc:55:ef:18:7c:5a:12:3f:f7:75:07:a2: d6:1b:2e:41:1e:31:6a:85:4b:51:09:ed:85:dc:14: 24:e7:1b:b0:87:97:3f:88:69:b8:c9:a4:39:c5:31: 00:76:87:5d:f9:df:7b:72:cf:e4:fd:99:a9:e7:49: f2:97:64:ea:18:73:42:f9:b2:ba:b6:6a:a8:5b:51: 06:e0:d9:48:4e:b7:76:e7:09:48:2b:42:b5:31:6b: 11:f4:31:35:f8:59:da:c7:b2:49:b1:e6:34:37:0a: 50:af:08:bd:fd:c0:bb:71:9b:a9:f7:b9:92:6c:c4: 32:1e:3d:87:e3:63:09:0d:ec:f2:a9:10:9e:97:bf: 99:55:39:41:da:cf:43:fa:8f:02:ee:62:e0:5e:94: 3f:87:7d:ae:2b:31:fe:20:98:09:18:05:8e:5a:d7: a6:20:fa:9d:eb:96:c2:5a:e3:b7:7f:ee:f5:66:10: 9e:99:70:e5:c6:b9:89:28:c9:ae:17:7d:3b:a7:a4: 44:6b:70:8b:b4:b6:d4:76:06:0a:9e:5c:1e:17:16: c6:f3:eb:d9:67:7e:8b:2d:f3:06:7b:b6:7a:be:17: cf:3c:19:fe:f5:46:cc:99:69:30:7d:7b:77:17:d2: f8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:13:AD:5A:1C:38:82:93:E1:5A:81:B2:25:8A:70:62:90:78:B2:8A X509v3 Authority Key Identifier: keyid:AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f2:cb:2a:34:fb:d2:94:9e:77:bb:9b:89:7b:e1:f2:20:bc: 35:bc:b9:55:81:a4:19:f9:e7:87:42:c2:f0:41:d4:af:27:b0: d5:2b:24:22:55:d6:aa:ac:b8:16:e7:81:f8:ec:b2:f5:ba:d6: 48:4f:03:1e:6d:89:8e:bb:18:bd:7b:bc:4c:ea:eb:d4:3a:bd: 66:46:04:b3:44:12:57:8d:40:fa:b8:ce:05:cb:24:56:7c:0b: 1d:02:47:29:6f:01:aa:1c:4e:07:df:8c:54:a3:18:49:53:5b: 9e:ea:f8:ef:3b:b7:f7:3d:2d:ba:85:73:80:af:14:20:56:7b: 7d:41:1e:e3:b9:9e:3e:4c:0d:2b:c8:72:98:43:4d:13:53:98: a1:fc:52:f7:89:94:ad:e0:d5:ad:95:bb:91:66:82:9b:49:97: 0b:42:ed:7b:20:6d:db:2a:50:4a:c8:15:81:7c:14:c6:dc:53: 05:59:8a:42:03:9c:91:e4:fb:69:ae:95:8b:a8:64:69:b6:b0: 29:a0:6a:53:4a:16:07:7c:7c:d3:de:11:b3:64:bc:fa:93:ba: 5c:7b:9c:84:4b:77:97:dd:cf:9f:04:b2:d1:74:45:ed:0e:27: cc:1b:3c:12:c8:f3:10:72:ef:99:e9:1f:6b:aa:2f:6d:41:5f: c0:15:0f:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1RDcxMTAvBgNVBAUTKEFBNDQwNUIxQkZBOTZDOUM2OUIwMjkwMzNFRjQ4MUQ4 RjU4QTc3RTUwHhcNMjUwNTE1MDUxMzIzWhcNMjUwNTIyMDUxMzIyWjAYMRYwFAYD VQQDEw02ODI1NzdmMy05OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhBPllJ7F8kpF9PkT8v8FsD8Ve8YfFoSP/d1B6LWGy5BHjFqhUtRCe2F3BQk 5xuwh5c/iGm4yaQ5xTEAdodd+d97cs/k/Zmp50nyl2TqGHNC+bK6tmqoW1EG4NlI Trd25wlIK0K1MWsR9DE1+Fnax7JJseY0NwpQrwi9/cC7cZup97mSbMQyHj2H42MJ DezyqRCel7+ZVTlB2s9D+o8C7mLgXpQ/h32uKzH+IJgJGAWOWtemIPqd65bCWuO3 f+71ZhCemXDlxrmJKMmuF307p6REa3CLtLbUdgYKnlweFxbG8+vZZ36LLfMGe7Z6 vhfPPBn+9UbMmWkwfXt3F9L4BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8TrVoc OIKT4VqBsiWKcGKQeLKKMB8GA1UdIwQYMBaAFKpEBbG/qWycabApAz70gdj1infl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDVENy85NkEzNkFBODE2 RDgxMUVGQkY5MDFFNUZDNEY5QUUwMi9xa1FGc2ItcGJKeHBzQ2tEUHZTQjJQV0tk LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FrUUZzYi1wYkp4cHNDa0RQdlNCMlBXS2QtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDVENy85NkEzNkFBODE2RDgxMUVGQkY5MDFFNUZDNEY5QUUwMi9xa1FGc2ItcGJK eHBzQ2tEUHZTQjJQV0tkLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa8ssqNPvSlJ53u5uJe+HyILw1vLlVgaQZ+eeHQsLwQdSvJ7DVKyQi VdaqrLgW54H47LL1utZITwMebYmOuxi9e7xM6uvUOr1mRgSzRBJXjUD6uM4FyyRW fAsdAkcpbwGqHE4H34xUoxhJU1ue6vjvO7f3PS26hXOArxQgVnt9QR7juZ4+TA0r yHKYQ00TU5ih/FL3iZSt4NWtlbuRZoKbSZcLQu17IG3bKlBKyBWBfBTG3FMFWYpC A5yR5PtprpWLqGRptrApoGpTShYHfHzT3hGzZLz6k7pce5yES3eX3c+fBLLRdEXt DifMGzwSyPMQcu+Z6R9rqi9tQV/AFQ/l -----END CERTIFICATE-----Generated at Thu May 15 18:26:13 2025 by rpki-client