$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft File: QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json) Hash identifier: E4vH7rAOs41Xsz93UlgsLlRK42tn16ZLrGGDu0s5tYg= Subject key identifier: D5:1D:3D:2A:EF:4D:77:4F:81:E9:48:93:BE:7A:42:8F:27:60:27:90 Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft Manifest number: 5C Signing time: Wed 07 May 2025 06:18:19 +0000 Manifest this update: Wed 07 May 2025 06:18:19 +0000 Manifest next update: Wed 14 May 2025 06:18:19 +0000 Files and hashes: 1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: PGRzzXPKFUxNyK7dd456s+oWoaIqZQg2POgdvZyCJxY=) 2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 06:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: May 7 06:18:19 2025 GMT Not After : May 14 06:18:19 2025 GMT Subject: CN=681afb2b-11a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:78:b2:01:fe:08:5d:6d:47:6d:43:99:b0: 4c:ed:5a:4b:16:8b:85:b7:97:fc:41:ad:96:76:dd: e7:fd:69:a1:ee:ba:b7:d2:fa:08:39:c4:90:d1:3c: d3:f4:a6:d9:3b:4a:56:f2:c7:02:d9:b9:95:78:37: 57:b5:e8:ee:8a:22:74:c7:e3:30:30:a3:b6:35:87: 61:d8:71:94:73:5b:1d:b6:59:5d:aa:03:f3:d6:13: e9:a5:18:fd:7e:6a:f3:92:7c:32:cd:7f:4d:c3:11: d5:d8:44:12:2a:8f:52:f5:f8:71:a5:37:53:db:b9: 76:31:cd:10:70:30:fd:5e:04:ba:13:ee:94:2d:8e: c3:43:e7:fe:94:a8:57:17:83:24:a9:a6:e8:e3:12: ef:c1:85:17:88:1f:5f:8d:03:d4:87:6e:95:b4:b1: 06:e4:33:d2:ec:16:f4:5a:14:e6:e3:30:9c:15:11: 7e:5f:cb:91:67:da:30:48:5a:85:62:1b:0f:60:c1: d9:ce:6e:ba:5e:b7:fa:9e:a8:ce:af:b4:b3:de:5b: ff:6f:00:a5:29:f0:83:be:bd:9a:9f:68:bc:64:52: 01:a9:17:8f:cb:2d:93:17:93:22:e9:b6:69:94:21: 79:cc:29:75:2b:d8:ca:27:5d:b3:cd:d8:db:47:55: 99:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:1D:3D:2A:EF:4D:77:4F:81:E9:48:93:BE:7A:42:8F:27:60:27:90 X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:32:10:11:50:f7:54:a9:29:a3:d0:35:ed:71:8b:48:b9:bd: dc:9c:83:0d:03:9f:8c:9e:21:95:8d:55:c9:f0:dc:1e:a8:10: 5e:64:a5:6a:fe:3f:07:c1:c2:9a:4c:be:70:9b:a2:8d:4a:a4: 45:1d:7b:9a:c9:22:db:86:0a:30:5f:08:55:bb:7c:90:28:91: 16:99:64:9f:d5:04:3f:10:08:5c:b6:db:f1:a7:e9:42:f4:dc: 2c:37:53:d8:39:73:9d:58:82:a6:98:e4:c4:5c:50:08:56:bf: 2b:9a:be:1d:63:f2:2d:a6:70:81:42:16:bf:29:da:d5:bf:60: 15:10:5c:e4:93:cb:35:cf:2c:08:f0:f8:5c:b7:85:f2:7d:10: 48:53:1d:76:b0:d3:2f:de:b1:c2:2c:76:a4:c0:6b:de:b9:ad: 52:86:4d:b5:da:8f:5c:56:84:94:e8:33:61:1f:27:b4:30:da: 25:95:cb:3c:2c:50:a1:fb:0b:99:29:f3:36:bb:a0:5e:4e:fd: 52:55:7d:09:be:41:c6:db:ff:f4:27:5c:9b:15:9c:fd:96:12: eb:cd:7f:4b:5e:78:6a:db:bd:1b:35:5d:c1:5a:2f:fd:da:21: 4e:49:d6:52:6e:4a:3f:8c:ce:56:63:14:35:45:9a:a8:c1:e5: 61:20:27:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzMxQzExMC8GA1UEBRMoNDBGQUE3MEY4QTIzQTAzRDE2QTExMDg2REJFNTAyRTg2 MjE2NDk2NzAeFw0yNTA1MDcwNjE4MTlaFw0yNTA1MTQwNjE4MTlaMBgxFjAUBgNV BAMTDTY4MWFmYjJiLTExYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA7HiyAf4IXW1HbUOZsEztWksWi4W3l/xBrZZ23ef9aaHuurfS+gg5xJDRPNP0 ptk7SlbyxwLZuZV4N1e16O6KInTH4zAwo7Y1h2HYcZRzWx22WV2qA/PWE+mlGP1+ avOSfDLNf03DEdXYRBIqj1L1+HGlN1PbuXYxzRBwMP1eBLoT7pQtjsND5/6UqFcX gySppujjEu/BhReIH1+NA9SHbpW0sQbkM9LsFvRaFObjMJwVEX5fy5Fn2jBIWoVi Gw9gwdnObrpet/qeqM6vtLPeW/9vAKUp8IO+vZqfaLxkUgGpF4/LLZMXkyLptmmU IXnMKXUr2MonXbPN2NtHVZkVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1R09Ku9N d0+B6UiTvnpCjydgJ5AwHwYDVR0jBBgwFoAUQPqnD4ojoD0WoRCG2+UC6GIWSWcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMzFDL0YxMDdEQTEwQTZD RjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NX Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVBxbkQ0b2pvRDBXb1JDRzItVUM2R0lXU1djLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD MzFDL0YxMDdEQTEwQTZDRjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0Qw V29SQ0cyLVVDNkdJV1NXYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG4yEBFQ91SpKaPQNe1xi0i5vdycgw0Dn4yeIZWNVcnw3B6oEF5kpWr+ PwfBwppMvnCboo1KpEUde5rJItuGCjBfCFW7fJAokRaZZJ/VBD8QCFy22/Gn6UL0 3Cw3U9g5c51YgqaY5MRcUAhWvyuavh1j8i2mcIFCFr8p2tW/YBUQXOSTyzXPLAjw +Fy3hfJ9EEhTHXaw0y/escIsdqTAa965rVKGTbXaj1xWhJToM2EfJ7Qw2iWVyzws UKH7C5kp8za7oF5O/VJVfQm+Qcbb//QnXJsVnP2WEuvNf0teeGrbvRs1XcFaL/3a IU5J1lJuSj+MzlZjFDVFmqjB5WEgJ0Q= -----END CERTIFICATE-----Generated at Fri May 9 07:18:30 2025 by rpki-client