$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: Xj2sRKxucMtJ4k17vbULOcjTuhqhvNIIIsV6OcA8Aek= Subject key identifier: 97:21:29:2E:9F:5E:5B:A0:69:9F:B0:54:10:8B:39:FC:E9:91:47:A6 Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 1835 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 182A Signing time: Mon 12 May 2025 16:27:50 +0000 Manifest this update: Mon 12 May 2025 16:27:49 +0000 Manifest next update: Mon 19 May 2025 16:27:49 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: AWWTsTCvM12sb49YVg+guujfiWjP40Ka5Zpw5ccr3Ew=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: WFmZvmOIKNk0az+zKPBYrOXakumFbE34A1nRoyLlGgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6197 (0x1835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58, serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: May 12 16:27:49 2025 GMT Not After : May 19 16:27:49 2025 GMT Subject: CN=68222186-f2c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:12:65:67:58:c9:f9:5c:48:cf:b8:ce:da:69: ed:85:6b:f8:35:bf:48:41:25:03:8e:58:19:82:9e: 85:75:ec:90:ba:e4:05:19:d9:29:72:ab:be:21:2d: 00:85:e5:00:84:a9:6f:bd:41:b8:19:63:69:98:80: 08:04:af:81:2b:a4:df:e7:59:33:d0:1b:f4:99:22: c8:54:08:d6:70:82:b8:5c:6f:9e:bc:e2:62:a0:f7: bc:7a:d6:de:dd:b5:f6:b0:86:68:7a:2b:67:22:e7: fc:32:d6:4d:ac:ae:df:38:c0:97:a4:6b:3d:88:89: b0:1e:a3:99:16:19:c0:ab:a2:54:db:1d:b2:cf:f0: b0:8f:37:6f:61:3a:04:b3:40:be:5d:88:a1:76:07: a5:41:05:95:40:58:95:e3:22:85:a7:a0:81:d7:6c: 56:dc:60:37:82:0a:55:6c:23:98:7a:48:af:6b:2d: 12:dd:d2:c0:04:8b:dc:dc:e3:47:a5:2b:b4:e4:e9: e1:ca:08:b2:e2:a2:b7:98:c6:42:ff:d3:78:dd:dc: 6e:97:ca:ce:f3:7f:e1:17:4c:2d:dd:16:9e:07:bf: a1:e2:7e:ea:7e:15:1f:84:f3:a8:bf:2e:28:dd:64: ca:68:ed:ea:46:f7:c3:f6:07:80:24:eb:17:9e:83: 4b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:21:29:2E:9F:5E:5B:A0:69:9F:B0:54:10:8B:39:FC:E9:91:47:A6 X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:32:c0:e7:6a:3b:2d:ed:67:89:55:30:3d:a0:98:2d:21:5f: a5:4c:e1:a4:67:c0:49:d0:c5:a0:23:2b:71:9a:3d:5b:6a:56: 83:c1:8f:ab:68:15:6c:13:63:2c:fc:90:3f:92:08:2f:77:f5: b4:76:86:b9:73:cf:54:4c:14:3a:c2:90:cb:2e:47:33:09:1d: e4:9e:1b:4a:2a:12:ba:64:9f:63:a6:a3:fb:af:6b:f5:ac:15: 23:c2:57:61:4b:b8:79:bf:5b:04:9f:6a:07:ff:2c:f2:b0:6e: 18:0d:37:d6:ce:4d:91:c4:ba:79:20:4f:50:61:cb:ca:5c:a8: 9b:4c:f7:0f:c9:b9:01:2d:15:37:4e:00:86:bc:77:70:c1:3a: e2:62:77:6b:be:3b:3b:ee:1b:5d:f6:11:3a:e4:b5:3f:df:74: c3:7a:de:26:c1:6a:45:d5:d0:a2:57:7f:c0:3f:90:7c:34:84: c5:a2:c1:6f:61:fc:b3:70:67:a7:86:75:9c:aa:54:3d:46:c5: ac:3e:3d:1d:27:71:b9:d8:19:94:e6:2f:ec:d9:86:a8:d0:2f: e8:46:cd:5a:49:0e:76:37:af:72:d3:c2:50:e7:cb:0a:0d:8e: 02:55:65:c2:45:5b:f5:91:80:dd:63:d1:15:a7:59:2b:bd:f8: 87:f7:26:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjUwNTEyMTYyNzQ5WhcNMjUwNTE5MTYyNzQ5WjAYMRYwFAYD VQQDEw02ODIyMjE4Ni1mMmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BJlZ1jJ+VxIz7jO2mnthWv4Nb9IQSUDjlgZgp6FdeyQuuQFGdkpcqu+IS0A heUAhKlvvUG4GWNpmIAIBK+BK6Tf51kz0Bv0mSLIVAjWcIK4XG+evOJioPe8etbe 3bX2sIZoeitnIuf8MtZNrK7fOMCXpGs9iImwHqOZFhnAq6JU2x2yz/CwjzdvYToE s0C+XYihdgelQQWVQFiV4yKFp6CB12xW3GA3ggpVbCOYekivay0S3dLABIvc3ONH pSu05Onhygiy4qK3mMZC/9N43dxul8rO83/hF0wt3RaeB7+h4n7qfhUfhPOovy4o 3WTKaO3qRvfD9geAJOsXnoNLWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJchKS6f XlugaZ+wVBCLOfzpkUemMB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrMsDnajst7WeJVTA9oJgtIV+lTOGkZ8BJ0MWgIytxmj1balaDwY+r aBVsE2Ms/JA/kggvd/W0doa5c89UTBQ6wpDLLkczCR3knhtKKhK6ZJ9jpqP7r2v1 rBUjwldhS7h5v1sEn2oH/yzysG4YDTfWzk2RxLp5IE9QYcvKXKibTPcPybkBLRU3 TgCGvHdwwTriYndrvjs77htd9hE65LU/33TDet4mwWpF1dCiV3/AP5B8NITFosFv YfyzcGenhnWcqlQ9RsWsPj0dJ3G52BmU5i/s2Yao0C/oRs1aSQ52N69y08JQ58sK DY4CVWXCRVv1kYDdY9EVp1krvfiH9yar -----END CERTIFICATE-----Generated at Wed May 14 03:22:23 2025 by rpki-client