$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: HM3mXFsYt4Zl45mRG1heUFlS7Dgo9AOYk6SVzBPAgPo= Subject key identifier: 8A:78:3F:78:02:10:BC:B8:AD:01:37:3E:AD:58:67:73:69:1C:D3:7A Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 1A Signing time: Sun 11 May 2025 06:41:11 +0000 Manifest this update: Sun 11 May 2025 06:41:10 +0000 Manifest next update: Sun 18 May 2025 06:41:10 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: sMk80/IqPw9X/TJWR08Y4CaJzIQTJ1dc5oqfHp68jx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:41:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: May 11 06:41:10 2025 GMT Not After : May 18 06:41:10 2025 GMT Subject: CN=68204687-a79f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:60:3f:7e:69:1e:a1:08:13:2e:6e:a1:4c:ea: 5c:9d:70:e4:7e:11:16:d8:30:32:b1:01:06:03:ab: 84:30:76:fa:5b:a5:8e:09:1c:e5:48:de:75:f1:02: 6d:f8:52:57:ff:53:4e:60:fc:3a:5f:ee:93:72:ee: 6f:ff:d1:55:71:3a:31:cd:e3:61:d0:8f:28:79:dc: 2f:07:2b:6d:73:2e:85:f7:1e:e7:14:51:d2:a0:25: 21:73:25:a6:68:79:e2:66:9e:8a:00:f8:a9:6e:63: c3:58:69:78:a4:8f:a1:a8:b3:64:67:06:65:bf:58: 79:e2:14:58:eb:ca:ce:fc:a4:e9:7f:f1:e4:2b:f5: f3:50:37:de:00:48:d9:90:c3:bd:99:23:62:39:17: 11:25:ed:05:e9:76:64:de:e7:2e:de:be:00:2a:e8: d3:eb:56:01:63:2e:3b:3f:a9:71:ac:76:4b:45:09: 89:21:64:6d:90:92:c6:56:b4:18:63:37:89:66:43: ae:4c:33:7a:f9:4b:ac:fa:85:19:99:f2:69:fc:70: 6c:c2:be:3c:87:df:10:2f:8c:4b:56:54:45:5a:42: cc:38:d6:96:4f:55:1e:e9:2a:d4:65:d4:e1:e4:65: 6e:b5:ba:06:21:b3:db:80:e8:57:22:81:d8:b2:bc: 8a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:78:3F:78:02:10:BC:B8:AD:01:37:3E:AD:58:67:73:69:1C:D3:7A X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:ba:9c:e0:93:17:b7:c7:ea:30:55:a0:0b:9a:bf:ba:3a:85: 6d:99:33:ce:cb:a0:1d:de:8f:b6:1c:b0:b0:b6:69:4e:12:95: 04:90:a8:00:9e:fc:9c:83:09:4d:5e:a0:cd:01:dc:b7:0a:2d: 0e:0b:64:30:06:2c:90:21:fa:45:84:72:03:b1:09:07:fe:52: fc:20:fd:b3:08:5a:b8:3f:c1:c6:0e:f4:77:3d:49:c8:a1:27: d0:2e:24:54:4b:e3:5e:cd:2c:93:fe:d7:07:9a:c6:48:99:a0: 8d:e3:f8:3e:1f:7f:0e:84:14:9e:28:36:f9:56:da:fb:5a:02: 5e:f7:84:33:d2:03:5b:f3:b6:96:e3:cc:54:ac:57:8d:b6:fb: af:2b:7b:e6:b8:9c:a4:13:b1:18:9e:70:9c:5b:25:b5:fd:9c: 2d:da:68:36:85:69:6c:29:86:d3:d9:85:f1:07:7c:68:a7:32: 00:4d:b3:ec:90:1f:cd:93:33:e5:73:a5:85:d7:23:34:8f:f4: 46:db:bb:b9:1f:d0:ad:4a:21:b1:c7:8d:bd:86:a0:53:4f:83: 63:79:a5:a7:95:f2:79:00:c4:97:d8:c3:37:25:ed:d9:c9:04: 55:51:5d:bc:a7:f9:a3:a4:0f:3c:27:a8:c8:17:2c:44:74:c3: d9:7a:63:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjQ5MjExMC8GA1UEBRMoNDBFNEJEMzZBRTE1MDc3RkU1OTk4NUQxMzcwRDVENjQ2 NzBBODhEOTAeFw0yNTA1MTEwNjQxMTBaFw0yNTA1MTgwNjQxMTBaMBgxFjAUBgNV BAMTDTY4MjA0Njg3LWE3OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiYD9+aR6hCBMubqFM6lydcOR+ERbYMDKxAQYDq4QwdvpbpY4JHOVI3nXxAm34 Ulf/U05g/Dpf7pNy7m//0VVxOjHN42HQjyh53C8HK21zLoX3HucUUdKgJSFzJaZo eeJmnooA+KluY8NYaXikj6Gos2RnBmW/WHniFFjrys78pOl/8eQr9fNQN94ASNmQ w72ZI2I5FxEl7QXpdmTe5y7evgAq6NPrVgFjLjs/qXGsdktFCYkhZG2QksZWtBhj N4lmQ65MM3r5S6z6hRmZ8mn8cGzCvjyH3xAvjEtWVEVaQsw41pZPVR7pKtRl1OHk ZW61ugYhs9uA6FcigdiyvIqPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUing/eAIQ vLitATc+rVhnc2kc03owHwYDVR0jBBgwFoAUQOS9Nq4VB3/lmYXRNw1dZGcKiNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNDkyLzJDMEIzMkQ4MDkz NjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUU9TOU5xNFZCM19sbVlYUk53MWRaR2NLaU5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NDkyLzJDMEIzMkQ4MDkzNjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNf bG1ZWFJOdzFkWkdjS2lOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHe6nOCTF7fH6jBVoAuav7o6hW2ZM87LoB3ej7YcsLC2aU4SlQSQqACe /JyDCU1eoM0B3LcKLQ4LZDAGLJAh+kWEcgOxCQf+Uvwg/bMIWrg/wcYO9Hc9Scih J9AuJFRL417NLJP+1weaxkiZoI3j+D4ffw6EFJ4oNvlW2vtaAl73hDPSA1vztpbj zFSsV422+68re+a4nKQTsRiecJxbJbX9nC3aaDaFaWwphtPZhfEHfGinMgBNs+yQ H82TM+VzpYXXIzSP9Ebbu7kf0K1KIbHHjb2GoFNPg2N5paeV8nkAxJfYwzcl7dnJ BFVRXbyn+aOkDzwnqMgXLER0w9l6Y3U= -----END CERTIFICATE-----Generated at Tue May 13 03:51:58 2025 by rpki-client