$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: biEwW6pQYUDUuvuoD9X0FQXy2YnTrSkqDmHb62urBIU= Subject key identifier: 82:DD:11:C8:A3:7F:7B:04:48:3D:C3:61:49:F1:44:F5:A5:45:80:22 Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 81 Signing time: Sun 11 May 2025 05:25:57 +0000 Manifest this update: Sun 11 May 2025 05:25:57 +0000 Manifest next update: Sun 18 May 2025 05:25:57 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: MrHJYC8oxYeFYbOLIoytlQssSkuHMbMU0jFSF4bQnlM=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: May 11 05:25:57 2025 GMT Not After : May 18 05:25:57 2025 GMT Subject: CN=682034e5-69ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6c:6c:e6:09:fb:8e:8a:90:9a:19:68:04:74: 7a:a3:bf:98:d0:53:b9:7b:f1:92:8c:a0:8c:06:a9: 04:ab:bd:49:5d:74:48:66:6f:97:54:3f:96:38:5c: 4e:d4:65:8f:e3:15:70:82:6e:47:78:aa:db:67:99: 27:1d:42:bb:19:b3:3f:38:99:a0:79:a3:fa:49:0a: f3:09:5d:9e:47:a6:0b:36:3a:7b:41:58:bd:64:82: dc:ac:44:d2:17:a0:1e:dc:1a:64:58:35:f8:77:be: d9:83:45:43:c6:e4:a8:45:b9:80:9d:22:7e:3b:ad: 54:3c:c3:76:43:50:0f:c3:c7:8e:54:ac:ef:2c:e5: d8:3a:41:f7:1c:39:10:61:81:09:d9:26:ca:bb:b5: 8d:c8:e3:22:ac:91:35:1a:b2:45:fb:ec:7f:92:84: 9e:1e:c6:98:cf:d5:9d:ca:72:6f:29:b6:c1:d7:c6: 98:df:05:f2:49:39:08:84:8d:8d:03:ec:78:41:ae: b0:00:12:be:5f:9b:b5:55:23:e4:6d:89:c1:f9:cc: c3:5e:5b:94:e6:18:d4:8d:38:b3:08:f3:55:35:d7: ca:12:08:38:9d:1d:4d:ac:4a:3f:8d:2c:4e:f3:48: ce:e9:f2:96:b6:f9:c0:d6:4b:37:d7:19:a0:a7:7d: ff:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:DD:11:C8:A3:7F:7B:04:48:3D:C3:61:49:F1:44:F5:A5:45:80:22 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a7:53:69:b2:66:91:e3:eb:7b:c9:2e:d6:c8:ac:3e:68:5d: 51:99:b3:d5:4c:25:56:c7:93:e6:6e:5e:50:88:1e:73:b9:83: aa:6b:c1:41:58:0a:18:b2:8c:f3:59:38:c9:d3:4d:2c:48:d4: 93:58:89:73:ba:f0:18:ff:30:b6:76:a7:11:89:42:57:e1:5c: 2b:77:d7:45:04:69:71:52:3b:23:e2:ec:26:93:a3:9f:c5:4c: 83:87:6b:e3:29:b6:b1:7e:11:57:c7:9e:0b:38:c6:c7:c4:cc: 30:ff:76:84:ba:a1:cd:bd:34:07:8b:d5:16:23:fa:f3:02:9c: 8f:22:ce:98:91:e5:9c:b8:6c:e0:67:8f:91:3a:3a:89:9b:cf: 93:04:14:bc:c5:88:a7:ba:ea:d8:8e:a0:7b:f3:ed:09:c1:9a: 8a:40:cd:a2:3e:3d:2c:64:99:b1:cd:a3:12:0d:95:62:80:58: aa:b0:e7:7b:ca:e6:b5:8b:5a:41:10:95:3f:c6:c4:26:62:45: 81:f3:69:1b:b5:e5:05:73:55:de:b5:19:44:8c:0f:cb:62:02: a7:c4:81:c4:da:58:cc:21:3f:49:78:03:c1:dd:f8:70:ce:54: b5:cf:e9:a0:6d:7e:3c:58:2b:bc:a0:4a:45:e6:02:84:89:2c: fe:1a:dd:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjUwNTExMDUyNTU3WhcNMjUwNTE4MDUyNTU3WjAYMRYwFAYD VQQDEw02ODIwMzRlNS02OWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmxs5gn7joqQmhloBHR6o7+Y0FO5e/GSjKCMBqkEq71JXXRIZm+XVD+WOFxO 1GWP4xVwgm5HeKrbZ5knHUK7GbM/OJmgeaP6SQrzCV2eR6YLNjp7QVi9ZILcrETS F6Ae3BpkWDX4d77Zg0VDxuSoRbmAnSJ+O61UPMN2Q1APw8eOVKzvLOXYOkH3HDkQ YYEJ2SbKu7WNyOMirJE1GrJF++x/koSeHsaYz9WdynJvKbbB18aY3wXySTkIhI2N A+x4Qa6wABK+X5u1VSPkbYnB+czDXluU5hjUjTizCPNVNdfKEgg4nR1NrEo/jSxO 80jO6fKWtvnA1ks31xmgp33/5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILdEcij f3sESD3DYUnxRPWlRYAiMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgp1NpsmaR4+t7yS7WyKw+aF1RmbPVTCVWx5Pmbl5QiB5zuYOqa8FB WAoYsozzWTjJ000sSNSTWIlzuvAY/zC2dqcRiUJX4Vwrd9dFBGlxUjsj4uwmk6Of xUyDh2vjKbaxfhFXx54LOMbHxMww/3aEuqHNvTQHi9UWI/rzApyPIs6YkeWcuGzg Z4+ROjqJm8+TBBS8xYinuurYjqB78+0JwZqKQM2iPj0sZJmxzaMSDZVigFiqsOd7 yua1i1pBEJU/xsQmYkWB82kbteUFc1XetRlEjA/LYgKnxIHE2ljMIT9JeAPB3fhw zlS1z+mgbX48WCu8oEpF5gKEiSz+Gt1A -----END CERTIFICATE-----Generated at Mon May 12 15:58:21 2025 by rpki-client