$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft File: QBwaNjT5h86fnlzvVAncG9D_K6o.mft (raw, json) Hash identifier: YdhryxfNet17/GP7Z7FN4AR8DfKZVvcawep077Mew8Y= Subject key identifier: 14:A3:D0:41:4B:04:C8:D3:41:97:48:C9:9A:82:03:55:EA:25:09:43 Authority key identifier: 40:1C:1A:36:34:F9:87:CE:9F:9E:5C:EF:54:09:DC:1B:D0:FF:2B:AA Certificate issuer: /CN=A91A5A57/serialNumber=401C1A3634F987CE9F9E5CEF5409DC1BD0FF2BAA Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBwaNjT5h86fnlzvVAncG9D_K6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft Manifest number: 8F Signing time: Tue 13 May 2025 05:35:35 +0000 Manifest this update: Tue 13 May 2025 05:35:35 +0000 Manifest next update: Tue 20 May 2025 05:35:35 +0000 Files and hashes: 1: QBwaNjT5h86fnlzvVAncG9D_K6o.crl (hash: phvSJcqu3ufRsKYOvKP1c6yZXAqmpvK7fDziKOKE4TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.crl rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBwaNjT5h86fnlzvVAncG9D_K6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57, serialNumber=401C1A3634F987CE9F9E5CEF5409DC1BD0FF2BAA Validity Not Before: May 13 05:35:35 2025 GMT Not After : May 20 05:35:35 2025 GMT Subject: CN=6822da27-7e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:70:d9:a7:7d:bd:5e:13:de:0b:d0:e9:f7:db: 68:df:8b:cc:a0:ae:3b:61:83:9a:49:22:8d:08:9f: 97:87:12:1a:b3:30:7c:cc:4e:e8:8e:a2:71:09:0b: 78:15:16:2e:0c:ff:ba:7c:a1:c0:b2:ea:22:71:71: 5e:e1:0e:6c:5e:ee:df:a3:a3:80:f2:d7:d0:9b:23: eb:eb:08:9f:84:93:12:6e:61:31:60:71:87:7f:d9: 3d:13:27:ea:e9:57:15:92:d7:33:77:24:31:3b:ef: 35:36:b3:40:56:17:71:2a:ae:86:a3:fe:e3:c3:8b: d0:65:c6:d1:a4:e7:5d:6b:d7:69:f9:e7:b6:73:a4: 73:a1:77:61:67:1f:18:f9:31:fd:71:7e:f8:1b:ab: 16:69:ae:a1:78:ef:32:03:46:a3:5d:a8:40:cc:93: 91:d6:47:ae:47:60:a5:52:4c:e0:2f:62:ba:1f:49: 30:bf:0d:b9:2f:6e:c1:09:6e:14:a8:df:61:68:bd: 85:93:3d:98:ff:1e:ad:78:a8:f0:b1:bd:65:4b:1a: 6c:9d:42:4c:12:45:95:af:f5:b0:9d:b1:b3:ff:5e: 0a:58:74:c7:21:fb:6d:ac:74:0a:64:07:11:12:22: 48:69:10:41:1d:c9:d8:10:3d:e8:ff:2c:2a:55:89: 38:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A3:D0:41:4B:04:C8:D3:41:97:48:C9:9A:82:03:55:EA:25:09:43 X509v3 Authority Key Identifier: keyid:40:1C:1A:36:34:F9:87:CE:9F:9E:5C:EF:54:09:DC:1B:D0:FF:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBwaNjT5h86fnlzvVAncG9D_K6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/76F267FA56EC11EF8A0CB24FC4F9AE02/QBwaNjT5h86fnlzvVAncG9D_K6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5c:a1:d5:52:e4:02:5e:69:0b:67:ae:ef:33:dc:05:6a:45: a4:ef:6e:3a:93:19:7c:4b:9a:0d:2f:4d:66:4e:93:3a:70:93: 9f:8b:00:e3:c8:b7:39:bf:24:69:1e:29:02:1a:99:2a:5c:e5: c2:fe:ef:a6:c4:b9:8b:38:9c:31:56:83:73:d7:27:ae:58:00: fc:0d:10:e4:06:c9:75:a4:66:e0:41:37:7c:a3:87:1e:75:45: 7c:1e:82:2b:4f:7c:5d:36:5e:2c:c5:2f:17:0d:cf:d1:3c:a3: 8d:bf:13:f5:f0:b2:9c:e9:c8:95:6a:3b:3b:d6:7b:93:cd:d0: 38:08:81:56:b9:06:f4:8e:d3:60:02:95:2e:82:d7:4b:f2:80: b2:10:9e:90:37:c2:27:56:14:22:52:33:0a:58:d6:db:4e:61: 41:91:2e:af:34:40:8e:a6:08:95:33:53:1b:f2:09:8b:2a:40: 11:77:bc:bd:9d:82:3d:ba:c1:4f:84:0a:67:1e:ae:bd:ef:3c: 03:94:2b:87:e8:ca:9c:5a:ef:a2:52:76:9c:5c:29:da:ee:3f: 0f:dd:3f:d8:35:d6:2a:6f:55:79:be:f6:e6:b2:15:25:d3:e0: 53:b2:d7:6b:f6:6a:b7:79:fe:d2:04:cc:45:95:fa:da:f6:e8: 83:ca:58:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBNTcxMTAvBgNVBAUTKDQwMUMxQTM2MzRGOTg3Q0U5RjlFNUNFRjU0MDlEQzFC RDBGRjJCQUEwHhcNMjUwNTEzMDUzNTM1WhcNMjUwNTIwMDUzNTM1WjAYMRYwFAYD VQQDEw02ODIyZGEyNy03ZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23DZp329XhPeC9Dp99to34vMoK47YYOaSSKNCJ+XhxIaszB8zE7ojqJxCQt4 FRYuDP+6fKHAsuoicXFe4Q5sXu7fo6OA8tfQmyPr6wifhJMSbmExYHGHf9k9Eyfq 6VcVktczdyQxO+81NrNAVhdxKq6Go/7jw4vQZcbRpOdda9dp+ee2c6RzoXdhZx8Y +TH9cX74G6sWaa6heO8yA0ajXahAzJOR1keuR2ClUkzgL2K6H0kwvw25L27BCW4U qN9haL2Fkz2Y/x6teKjwsb1lSxpsnUJMEkWVr/WwnbGz/14KWHTHIfttrHQKZAcR EiJIaRBBHcnYED3o/ywqVYk4BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSj0EFL BMjTQZdIyZqCA1XqJQlDMB8GA1UdIwQYMBaAFEAcGjY0+YfOn55c71QJ3BvQ/yuq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny83NkYyNjdGQTU2 RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi9RQndhTmpUNWg4NmZubHp2VkFuY0c5RF9L Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCd2FOalQ1aDg2Zm5senZWQW5jRzlEX0s2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE1Ny83NkYyNjdGQTU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi9RQndhTmpUNWg4 NmZubHp2VkFuY0c5RF9LNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeXKHVUuQCXmkLZ67vM9wFakWk7246kxl8S5oNL01mTpM6cJOfiwDj yLc5vyRpHikCGpkqXOXC/u+mxLmLOJwxVoNz1yeuWAD8DRDkBsl1pGbgQTd8o4ce dUV8HoIrT3xdNl4sxS8XDc/RPKONvxP18LKc6ciVajs71nuTzdA4CIFWuQb0jtNg ApUugtdL8oCyEJ6QN8InVhQiUjMKWNbbTmFBkS6vNECOpgiVM1Mb8gmLKkARd7y9 nYI9usFPhApnHq697zwDlCuH6MqcWu+iUnacXCna7j8P3T/YNdYqb1V5vvbmshUl 0+BTstdr9mq3ef7SBMxFlfra9uiDyli4 -----END CERTIFICATE-----Generated at Wed May 14 11:28:32 2025 by rpki-client