$ rpki-client -vvf rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft File: q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft (raw, json) Hash identifier: Uv9f4GfhQJiQhzfnACAWMarYR7M57HJgJqhrelQG0LQ= Subject key identifier: F3:47:73:F5:54:90:BB:13:5A:FC:EC:A6:C7:79:BB:60:B7:91:70:FD Authority key identifier: AB:EA:91:94:88:86:77:92:7C:50:90:3F:BB:F1:DD:E3:74:D0:62:C9 Certificate issuer: /CN=A9182A08/serialNumber=ABEA9194888677927C50903FBBF1DDE374D062C9 Certificate serial: 0883 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft Manifest number: 087E Signing time: Mon 12 May 2025 20:27:02 +0000 Manifest this update: Mon 12 May 2025 20:27:01 +0000 Manifest next update: Mon 19 May 2025 20:27:01 +0000 Files and hashes: 1: q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl (hash: boz+CB2QN7PWaba4vDJ4RjgUkomdkFeoBGHBbs4vBz4=) 2: AAA8232C123411ED90E8CA59C4F9AE02.roa (hash: +d1wvy8yQ3YoFLntNLyk9Fck1IbhN/uojUrTCK6EF5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2179 (0x883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182A08, serialNumber=ABEA9194888677927C50903FBBF1DDE374D062C9 Validity Not Before: May 12 20:27:01 2025 GMT Not After : May 19 20:27:01 2025 GMT Subject: CN=68225995-900c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cd:2b:82:4a:48:9e:12:bc:d3:08:e0:96:de: 51:83:e6:6c:ca:15:50:bc:40:ef:fa:16:31:87:f3: 5c:7a:39:9c:1e:1b:c6:48:08:29:78:34:69:36:d4: fb:d1:a4:63:d3:95:ee:34:19:21:b0:5b:5c:e8:49: af:38:f8:90:37:04:19:82:79:83:74:3f:14:9e:80: e8:ea:f3:f7:47:a1:b4:49:cb:6a:07:8a:4f:e5:4c: cd:79:7c:28:69:af:71:76:a7:f7:08:b2:11:cc:b0: 62:85:5b:db:9d:c6:1c:7a:d2:10:e9:dc:a3:6e:79: be:10:ff:28:60:fa:ac:f1:e5:63:2d:a9:94:f0:20: bd:6c:5d:51:df:b4:e1:53:99:75:8e:fe:09:2e:79: 1c:4a:66:cd:bd:86:77:31:17:c7:7b:9b:e7:69:3d: 70:8c:d3:9d:60:6f:a3:b9:12:db:91:09:64:a3:20: 7b:99:cf:88:d0:e1:b8:55:65:93:0f:7a:ea:03:02: 4b:0d:95:4a:84:76:ea:f7:15:d9:8d:e4:07:6a:ee: 2a:ce:b8:0f:20:5e:2d:7a:28:a6:a6:17:b8:c3:87: 61:5a:a2:fc:aa:b6:91:8e:7a:db:f2:2d:c8:32:71: 73:72:9b:8f:db:45:bb:9e:e0:2e:1c:04:a5:48:44: af:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:47:73:F5:54:90:BB:13:5A:FC:EC:A6:C7:79:BB:60:B7:91:70:FD X509v3 Authority Key Identifier: keyid:AB:EA:91:94:88:86:77:92:7C:50:90:3F:BB:F1:DD:E3:74:D0:62:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e7:80:3f:b3:7f:05:95:94:24:ad:5a:36:4d:32:0f:c9:46: 20:bc:03:a0:8a:c4:33:12:32:4e:c9:b1:6d:d6:86:e8:bc:1d: b1:f0:94:df:78:43:cd:1f:0e:83:ef:9c:9c:95:5d:2c:a5:31: 29:1f:6e:78:8f:b5:d8:4e:df:ef:ae:da:7b:40:89:59:32:ba: 53:3f:85:8f:2c:48:49:bf:31:db:85:02:b2:98:18:31:58:69: 62:84:14:93:04:28:83:2f:76:07:be:66:c3:2e:fb:dc:6d:f9: 98:57:b7:ea:75:10:03:40:46:17:94:fe:0b:23:91:86:6b:2c: 53:38:a6:f4:88:3b:79:11:32:62:c6:1d:dc:52:b6:1c:05:75: 60:58:1a:5b:5c:0a:37:98:d2:a0:f5:23:85:c7:a1:ae:47:68: df:34:1b:17:dd:86:5f:39:4d:b5:78:33:55:b1:46:50:f0:69: d9:a5:26:48:da:0f:57:9f:27:08:d4:f3:12:83:d8:0f:90:0c: 34:92:e1:18:35:43:52:cf:44:29:12:1d:d6:6c:81:1e:51:ce: 4b:00:ac:de:95:5d:28:39:b7:09:c5:2c:6b:49:a1:c5:5f:29: 1c:b0:fa:dd:4b:f9:18:e3:79:41:1e:ec:a7:20:df:a8:da:a9: c0:90:a6:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJBMDgxMTAvBgNVBAUTKEFCRUE5MTk0ODg4Njc3OTI3QzUwOTAzRkJCRjFEREUz NzREMDYyQzkwHhcNMjUwNTEyMjAyNzAxWhcNMjUwNTE5MjAyNzAxWjAYMRYwFAYD VQQDEw02ODIyNTk5NS05MDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzc0rgkpInhK80wjglt5Rg+ZsyhVQvEDv+hYxh/NcejmcHhvGSAgpeDRpNtT7 0aRj05XuNBkhsFtc6EmvOPiQNwQZgnmDdD8UnoDo6vP3R6G0SctqB4pP5UzNeXwo aa9xdqf3CLIRzLBihVvbncYcetIQ6dyjbnm+EP8oYPqs8eVjLamU8CC9bF1R37Th U5l1jv4JLnkcSmbNvYZ3MRfHe5vnaT1wjNOdYG+juRLbkQlkoyB7mc+I0OG4VWWT D3rqAwJLDZVKhHbq9xXZjeQHau4qzrgPIF4teiimphe4w4dhWqL8qraRjnrb8i3I MnFzcpuP20W7nuAuHASlSESvGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNHc/VU kLsTWvzspsd5u2C3kXD9MB8GA1UdIwQYMBaAFKvqkZSIhneSfFCQP7vx3eN00GLJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkEwOC9EMTlENThGMEJG NTAxMUVBOTI3NzdFNDZDNEY5QUUwMi9xLXFSbElpR2Q1SjhVSkFfdV9IZDQzVFFZ c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EtcVJsSWlHZDVKOFVKQV91X0hkNDNUUVlzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkEwOC9EMTlENThGMEJGNTAxMUVBOTI3NzdFNDZDNEY5QUUwMi9xLXFSbElpR2Q1 SjhVSkFfdV9IZDQzVFFZc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb54A/s38FlZQkrVo2TTIPyUYgvAOgisQzEjJOybFt1obovB2x8JTf eEPNHw6D75yclV0spTEpH254j7XYTt/vrtp7QIlZMrpTP4WPLEhJvzHbhQKymBgx WGlihBSTBCiDL3YHvmbDLvvcbfmYV7fqdRADQEYXlP4LI5GGayxTOKb0iDt5ETJi xh3cUrYcBXVgWBpbXAo3mNKg9SOFx6GuR2jfNBsX3YZfOU21eDNVsUZQ8GnZpSZI 2g9XnycI1PMSg9gPkAw0kuEYNUNSz0QpEh3WbIEeUc5LAKzelV0oObcJxSxrSaHF XykcsPrdS/kY43lBHuynIN+o2qnAkKZu -----END CERTIFICATE-----Generated at Wed May 14 07:16:56 2025 by rpki-client