$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: 3C0a23VLEoIOoxg4zDvQcPzHnGd4EwlEaseQcItHL9o= Subject key identifier: 0B:06:D0:71:61:40:5E:A7:61:36:C1:0D:82:71:56:D8:34:5D:F5:71 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 03E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 03E0 Signing time: Thu 15 May 2025 00:34:38 +0000 Manifest this update: Thu 15 May 2025 00:34:38 +0000 Manifest next update: Thu 22 May 2025 00:34:38 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: pK5VUXvYGcM+aacR5QsEGp6EOpYBAmvEj8QpZhNQ5NQ=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: OijvdKYC8DjMphaEyFQ4TM5tLnVnkQ/IOeHSMr/fpgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: May 15 00:34:38 2025 GMT Not After : May 22 00:34:38 2025 GMT Subject: CN=6825369e-95e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:21:c8:25:71:fb:93:f1:82:cd:19:1e:af:e9: d9:e7:77:2e:dd:93:0e:2c:1e:9a:5f:82:4f:b6:90: ee:34:8a:5a:9a:91:90:2b:6d:64:36:b5:ed:ab:2e: d8:2b:e7:74:a7:17:a2:1f:4e:20:f0:7b:b2:93:3e: 47:cd:e7:4a:f4:10:66:57:ad:99:c2:b7:95:71:0f: 8c:a9:ca:dc:8e:8b:13:26:10:99:88:eb:ef:f9:4e: fe:63:49:c1:32:21:b3:61:1c:81:2c:69:00:18:44: da:70:07:c4:02:cd:fb:66:60:74:66:12:1a:16:6b: b0:f6:a4:38:dd:1a:f9:e5:bb:d8:bd:2d:60:87:b5: cb:7e:9c:da:22:ed:96:5d:da:95:d2:33:98:ab:4a: ef:43:6e:b4:5b:8d:1d:f1:f5:e3:75:d9:d4:77:6c: 4d:06:40:93:ed:eb:80:3d:cb:be:ed:0a:ec:91:92: 46:5e:ac:09:6c:e9:56:c4:d5:65:a2:58:eb:17:ca: 2b:13:a7:2b:af:5d:cc:e1:58:f4:41:00:41:7f:6f: 95:43:4c:5e:01:a3:76:51:2a:cb:13:26:52:f3:c7: 0a:be:f8:95:9b:a8:4f:a3:30:72:08:13:8a:65:b1: 41:c6:70:f0:76:93:db:34:34:5c:fa:9b:48:65:ca: 6f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:06:D0:71:61:40:5E:A7:61:36:C1:0D:82:71:56:D8:34:5D:F5:71 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:41:61:ac:98:54:93:40:22:b0:f7:ba:8d:7f:d4:a1:18:fa: e2:fe:34:dc:7c:3c:e8:bb:be:4c:d6:31:b2:fb:53:ff:44:18: 22:5d:20:b2:42:8e:46:63:ae:84:f6:e7:e2:c9:fb:d3:54:62: a7:98:c2:c4:24:f1:b5:59:75:18:05:98:eb:7b:02:8e:66:b9: cb:26:04:c4:e9:d2:aa:03:66:90:39:ba:40:df:f4:f8:e8:71: ea:8b:e2:6b:2b:2e:7e:f5:5b:8d:93:f1:cb:4b:9b:9e:23:34: f8:dc:39:23:7a:d4:6e:bd:ee:76:e8:f2:55:a7:55:a5:a1:1b: 93:f7:01:4c:b6:3a:fe:39:26:1f:07:e7:70:a8:21:d0:4d:c8: a5:74:f8:de:e5:0e:61:65:c0:8b:df:13:b4:c5:69:8b:94:e4: e0:d2:26:99:39:97:d7:0c:84:05:56:0a:fd:ca:58:24:46:17: 7e:f6:6b:bd:4b:21:85:a1:20:74:c0:d4:06:6c:95:5a:49:70: d4:64:f4:44:76:ba:46:3b:b5:a0:b4:8e:2a:91:d3:32:da:b6: 5d:38:3a:57:f8:d7:8a:99:b8:1a:42:0b:b9:29:df:aa:4a:15: 4e:f0:4e:74:04:94:57:7a:bd:19:ab:74:a2:3e:57:cb:d5:c9: c3:e0:b7:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUwNTE1MDAzNDM4WhcNMjUwNTIyMDAzNDM4WjAYMRYwFAYD VQQDEw02ODI1MzY5ZS05NWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CHIJXH7k/GCzRker+nZ53cu3ZMOLB6aX4JPtpDuNIpampGQK21kNrXtqy7Y K+d0pxeiH04g8Huykz5HzedK9BBmV62ZwreVcQ+MqcrcjosTJhCZiOvv+U7+Y0nB MiGzYRyBLGkAGETacAfEAs37ZmB0ZhIaFmuw9qQ43Rr55bvYvS1gh7XLfpzaIu2W XdqV0jOYq0rvQ260W40d8fXjddnUd2xNBkCT7euAPcu+7QrskZJGXqwJbOlWxNVl oljrF8orE6crr13M4Vj0QQBBf2+VQ0xeAaN2USrLEyZS88cKvviVm6hPozByCBOK ZbFBxnDwdpPbNDRc+ptIZcpvbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsG0HFh QF6nYTbBDYJxVtg0XfVxMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyQWGsmFSTQCKw97qNf9ShGPri/jTcfDzou75M1jGy+1P/RBgiXSCy Qo5GY66E9ufiyfvTVGKnmMLEJPG1WXUYBZjrewKOZrnLJgTE6dKqA2aQObpA3/T4 6HHqi+JrKy5+9VuNk/HLS5ueIzT43DkjetRuve526PJVp1WloRuT9wFMtjr+OSYf B+dwqCHQTcildPje5Q5hZcCL3xO0xWmLlOTg0iaZOZfXDIQFVgr9ylgkRhd+9mu9 SyGFoSB0wNQGbJVaSXDUZPREdrpGO7WgtI4qkdMy2rZdODpX+NeKmbgaQgu5Kd+q ShVO8E50BJRXer0Zq3SiPlfL1cnD4LeR -----END CERTIFICATE-----Generated at Fri May 16 09:56:18 2025 by rpki-client