$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft File: QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft (raw, json) Hash identifier: 7Y+xY9cQGyV2KSzzyaarCUE6TRQarxzA14PnCIwhAHY= Subject key identifier: 3C:4A:BD:C4:F2:85:AD:C3:1B:7E:8D:E3:99:EE:1E:11:C8:DF:2F:68 Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft Manifest number: BB Signing time: Tue 13 May 2025 05:05:39 +0000 Manifest this update: Tue 13 May 2025 05:05:38 +0000 Manifest next update: Tue 20 May 2025 05:05:38 +0000 Files and hashes: 1: QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl (hash: MwwgpiVtCqIlBraKdJuEuO9vT1UVoNzpJfT7VEx44dI=) 2: 691C2F48169211EFBBB5BD6CC4F9AE02.roa (hash: JFnoGlMQvx0rfghWguqYEQOafVm5KcUTywblwtb1T0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: May 13 05:05:38 2025 GMT Not After : May 20 05:05:38 2025 GMT Subject: CN=6822d322-07c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:37:f3:6b:cf:cc:37:e2:e2:71:f7:e7:bd:72: 9c:a6:60:89:61:09:4c:b5:50:89:df:56:30:39:4a: 8d:a6:02:89:da:79:fc:38:ea:d3:ab:09:37:70:5b: 59:de:ae:ac:27:32:6a:90:c4:77:ec:77:61:2e:0e: 0c:23:1d:62:37:c4:ee:06:28:32:ad:e3:38:5b:be: 05:e1:11:0b:c4:73:3e:2d:d2:bd:11:73:73:9e:75: 7a:66:b2:69:b8:b5:6e:63:7c:26:67:8a:e8:42:de: 75:58:64:5e:6c:7e:45:98:05:a2:6e:0e:a8:e7:1e: 67:16:96:0b:c5:8c:71:e8:f6:21:90:8d:42:22:02: 4e:39:27:fc:85:fe:b9:5a:9a:7f:b2:e4:6c:8a:6b: 5a:54:05:21:c5:f6:f9:b8:b4:90:6e:0b:1d:35:3c: e1:b5:4f:40:e4:46:68:12:3b:11:a3:f7:1d:90:95: 0b:e5:17:57:9f:2a:02:ed:f6:6f:70:9b:75:8d:ad: 84:50:c5:ca:2b:54:85:2c:2d:ec:d2:68:d8:9b:93: f5:5e:53:46:18:d8:73:e8:10:c8:7e:d1:3c:e6:ad: ae:49:1f:fe:0a:18:44:89:0f:1e:7c:cc:81:51:c2: ec:aa:60:9e:37:20:f1:b0:09:f6:02:d1:bb:0d:72: 84:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:4A:BD:C4:F2:85:AD:C3:1B:7E:8D:E3:99:EE:1E:11:C8:DF:2F:68 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f2:57:73:ee:63:96:77:a3:16:ac:91:ce:ea:0d:d5:09:47: ec:65:91:ad:a2:e3:f7:12:f2:7d:7e:ab:d1:ca:cc:5f:bc:79: c1:88:5b:e9:69:d4:1f:81:9d:05:9d:7e:58:f1:e5:9f:fe:8c: 6f:ad:b7:33:75:dc:4f:05:0e:2e:d1:99:db:df:d6:03:4f:00: 32:92:01:05:d5:48:ed:d5:8d:13:90:be:33:ff:2c:90:1f:18: ac:42:45:c6:48:f2:30:23:d4:b7:86:ec:31:de:7f:41:67:6f: 40:50:7a:b6:58:23:25:3d:dd:1c:3c:d7:08:2d:52:f5:ca:ed: 7d:2d:dc:fe:69:db:4c:e3:44:31:cd:44:d5:6a:51:6d:94:84: 57:bc:27:33:f6:12:65:77:77:86:f3:05:23:e4:3c:8a:22:74: 12:90:f9:d2:cc:df:73:2f:21:99:4d:ea:b2:56:7e:7c:9a:15: 5f:66:32:ad:49:09:a5:ba:db:e8:54:5c:eb:d3:48:aa:96:52: f8:c7:53:89:44:e0:85:a0:b5:5a:27:b3:e3:80:e3:24:f2:2b: 5b:0f:42:be:17:f7:a7:87:89:b9:d0:3a:4e:23:78:46:ab:a9: 7c:f4:ce:24:78:57:0c:6d:8d:a2:79:63:95:7f:53:97:9d:6f: 70:da:ff:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUwNTEzMDUwNTM4WhcNMjUwNTIwMDUwNTM4WjAYMRYwFAYD VQQDEw02ODIyZDMyMi0wN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDfza8/MN+LicffnvXKcpmCJYQlMtVCJ31YwOUqNpgKJ2nn8OOrTqwk3cFtZ 3q6sJzJqkMR37HdhLg4MIx1iN8TuBigyreM4W74F4RELxHM+LdK9EXNznnV6ZrJp uLVuY3wmZ4roQt51WGRebH5FmAWibg6o5x5nFpYLxYxx6PYhkI1CIgJOOSf8hf65 Wpp/suRsimtaVAUhxfb5uLSQbgsdNTzhtU9A5EZoEjsRo/cdkJUL5RdXnyoC7fZv cJt1ja2EUMXKK1SFLC3s0mjYm5P1XlNGGNhz6BDIftE85q2uSR/+ChhEiQ8efMyB UcLsqmCeNyDxsAn2AtG7DXKEcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxKvcTy ha3DG36N45nuHhHI3y9oMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC81ODQwQTA3QzEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRN QmZGM1k2bWJ1eU9KdlM2cjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB28ldz7mOWd6MWrJHO6g3VCUfsZZGtouP3EvJ9fqvRysxfvHnBiFvp adQfgZ0FnX5Y8eWf/oxvrbczddxPBQ4u0Znb39YDTwAykgEF1Ujt1Y0TkL4z/yyQ HxisQkXGSPIwI9S3huwx3n9BZ29AUHq2WCMlPd0cPNcILVL1yu19Ldz+adtM40Qx zUTValFtlIRXvCcz9hJld3eG8wUj5DyKInQSkPnSzN9zLyGZTeqyVn58mhVfZjKt SQmlutvoVFzr00iqllL4x1OJROCFoLVaJ7PjgOMk8itbD0K+F/enh4m50DpOI3hG q6l89M4keFcMbY2ieWOVf1OXnW9w2v8z -----END CERTIFICATE-----Generated at Wed May 14 22:30:56 2025 by rpki-client