$ rpki-client -vvf rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft File: qz22NdhTYB5LpVUAZxIB2Jb-za0.mft (raw, json) Hash identifier: TOzMSUSjn/hK0afdCc+BtUreAdTNU7WcFg9DhGM+GqU= Subject key identifier: 71:A0:AF:8A:4E:35:9B:2F:A3:99:B1:E3:A9:18:62:87:2A:B2:C0:F2 Authority key identifier: AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD Certificate issuer: /CN=A917FDF3/serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Certificate serial: 08B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft Manifest number: 08B1 Signing time: Wed 14 May 2025 20:37:58 +0000 Manifest this update: Wed 14 May 2025 20:37:57 +0000 Manifest next update: Wed 21 May 2025 20:37:57 +0000 Files and hashes: 1: qz22NdhTYB5LpVUAZxIB2Jb-za0.crl (hash: hlK32wMJUP/JjeSyZJqFG8l+PVdlmTMjOuZgjEM/4+Y=) 2: 0FE0AF42B5DB11EA9DA12556C4F9AE02.roa (hash: Fs5lIXhoeLDLVgaGXIOh275fjXBBfxZsCamTtOxAxUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FDF3, serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Validity Not Before: May 14 20:37:57 2025 GMT Not After : May 21 20:37:57 2025 GMT Subject: CN=6824ff25-c49b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:81:15:ab:4b:e4:d6:fc:ad:78:2d:d8:dd: ff:8f:52:10:1d:b1:1a:2d:ae:36:2c:bc:2c:36:4d: 21:fa:83:69:13:04:0c:0b:41:37:1e:c2:29:6d:4a: 72:f1:11:3e:98:36:c3:e5:d7:f9:5a:d9:6e:a9:be: 1a:25:fe:56:c2:d9:ea:a2:50:e3:8d:f9:38:15:17: e5:1d:a7:8c:61:5b:0e:ad:00:9b:34:e0:00:57:24: 00:2b:88:af:1f:50:99:c4:6f:9f:25:44:71:a4:08: 4b:bb:c0:f9:05:45:ff:6a:aa:91:47:a6:af:fb:40: ae:db:ad:c8:ca:be:7c:98:cf:e5:9a:da:ed:99:78: 7f:78:f8:43:9e:77:1c:51:fc:1b:78:87:9b:7a:d6: d6:5d:ba:9f:2b:89:34:15:76:ee:b1:7c:87:6a:17: 7b:7a:68:56:57:fd:cc:1d:18:49:7e:41:36:5c:19: 28:2b:92:9e:7e:29:04:d7:3c:33:7c:d7:ae:f7:c1: ab:98:1c:9b:c2:b6:7c:dc:e2:b8:02:d1:86:d6:b7: c2:63:db:d2:62:c9:e2:6e:75:95:56:25:56:51:0f: 51:fb:f9:f0:75:40:19:2f:3b:d5:51:81:3c:f6:30: c0:2f:d6:e4:39:56:af:42:04:67:6d:07:39:d7:0e: 99:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A0:AF:8A:4E:35:9B:2F:A3:99:B1:E3:A9:18:62:87:2A:B2:C0:F2 X509v3 Authority Key Identifier: keyid:AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:50:b3:07:28:b6:63:91:42:82:1f:bc:5e:d9:32:8e:be:08: 33:41:48:f9:18:cb:bb:bd:63:cd:ad:c8:7e:50:3f:bf:03:7c: e0:ba:4d:ba:37:5d:50:ec:fc:e9:09:97:d7:86:98:98:e0:e1: 80:90:0d:31:dd:60:12:bf:15:5d:d9:4b:9e:b8:bd:2a:ba:f1: f8:20:a9:c4:f2:86:d7:be:7e:dc:ad:28:7f:37:b9:c0:47:14: 47:84:0d:20:53:04:86:60:f6:c9:05:5b:dc:53:d2:81:cc:a2: 24:a6:60:f5:36:f4:f3:fc:96:e1:75:be:4e:4e:81:d1:58:11: 8e:76:04:64:00:79:f5:42:e0:15:24:d7:9a:8d:71:49:dd:de: aa:d4:3f:b7:2e:86:d5:9d:ef:49:a7:66:95:e3:07:15:00:88: f3:06:04:f7:ee:3c:00:28:be:53:4f:87:80:2c:06:6e:ba:67: 1d:d5:aa:be:29:83:18:28:cb:1e:c9:dc:f8:6a:38:56:d7:24: 49:7a:c9:50:17:9e:3f:5b:2f:84:9e:2f:cc:03:74:c2:e3:57: e7:8a:56:42:3b:1a:21:dd:ab:d2:5a:65:5c:03:32:19:aa:c8: 6c:5c:52:f1:7f:bd:af:9a:12:37:bb:5f:8d:15:f8:6e:ee:44: ea:b2:73:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZERjMxMTAvBgNVBAUTKEFCM0RCNjM1RDg1MzYwMUU0QkE1NTUwMDY3MTIwMUQ4 OTZGRUNEQUQwHhcNMjUwNTE0MjAzNzU3WhcNMjUwNTIxMjAzNzU3WjAYMRYwFAYD VQQDEw02ODI0ZmYyNS1jNDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxqBFatL5Nb8rXgt2N3/j1IQHbEaLa42LLwsNk0h+oNpEwQMC0E3HsIpbUpy 8RE+mDbD5df5Wtluqb4aJf5WwtnqolDjjfk4FRflHaeMYVsOrQCbNOAAVyQAK4iv H1CZxG+fJURxpAhLu8D5BUX/aqqRR6av+0Cu263Iyr58mM/lmtrtmXh/ePhDnncc UfwbeIebetbWXbqfK4k0FXbusXyHahd7emhWV/3MHRhJfkE2XBkoK5KefikE1zwz fNeu98GrmBybwrZ83OK4AtGG1rfCY9vSYsnibnWVViVWUQ9R+/nwdUAZLzvVUYE8 9jDAL9bkOVavQgRnbQc51w6ZwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGgr4pO NZsvo5mx46kYYocqssDyMB8GA1UdIwQYMBaAFKs9tjXYU2AeS6VVAGcSAdiW/s2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkRGMy9CM0E4NTJCMkI1 RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlCNUxwVlVBWnhJQjJKYi16 YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F6MjJOZGhUWUI1THBWVUFaeElCMkpiLXphMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkRGMy9CM0E4NTJCMkI1RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlC NUxwVlVBWnhJQjJKYi16YTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXULMHKLZjkUKCH7xe2TKOvggzQUj5GMu7vWPNrch+UD+/A3zguk26 N11Q7PzpCZfXhpiY4OGAkA0x3WASvxVd2UueuL0quvH4IKnE8obXvn7crSh/N7nA RxRHhA0gUwSGYPbJBVvcU9KBzKIkpmD1NvTz/Jbhdb5OToHRWBGOdgRkAHn1QuAV JNeajXFJ3d6q1D+3LobVne9Jp2aV4wcVAIjzBgT37jwAKL5TT4eALAZuumcd1aq+ KYMYKMseydz4ajhW1yRJeslQF54/Wy+Eni/MA3TC41fnilZCOxoh3avSWmVcAzIZ qshsXFLxf72vmhI3u1+NFfhu7kTqsnM4 -----END CERTIFICATE-----Generated at Thu May 15 17:00:40 2025 by rpki-client