$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: uhtd8RhZReZTOWGHj2+GEtv0WB0m+H/MHd61V7uQsUs= Subject key identifier: 3F:98:92:22:04:86:39:E9:00:60:C8:87:96:CD:BE:FF:24:08:84:55 Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: 71 Signing time: Thu 15 May 2025 06:06:06 +0000 Manifest this update: Thu 15 May 2025 06:06:06 +0000 Manifest next update: Thu 22 May 2025 06:06:06 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: 2fGQcn0fKzBoZigtp1SF/Dj0pFW/lxTRFsq0JvHKqbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: May 15 06:06:06 2025 GMT Not After : May 22 06:06:06 2025 GMT Subject: CN=6825844e-0a8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fd:76:98:f9:ee:c1:2f:8b:c5:db:15:61:87: 10:d7:fc:49:9f:3d:cf:18:b3:32:ab:f6:38:a3:00: a3:25:10:d5:3d:22:0a:10:cf:eb:bf:3e:e0:00:48: fb:c2:1a:3d:31:a0:16:75:c6:e0:5b:06:28:b6:5f: f5:86:1a:e1:18:f7:b6:34:28:d3:cf:b4:b7:68:45: a8:2c:1f:d2:00:87:00:fe:23:40:2a:2b:4d:de:16: bf:6e:2e:fd:5c:7c:5f:a8:5e:9e:df:22:23:29:b7: 55:f3:48:70:94:d9:6e:46:9b:bf:3f:32:ac:5d:f7: 8d:7f:aa:09:3c:31:95:4f:29:7e:eb:01:eb:a1:38: cb:18:4c:cc:ce:0a:58:3a:5f:27:ae:13:95:51:0c: 40:7f:6a:8b:28:32:18:9f:72:ef:6a:d4:46:9b:b1: d7:7b:4a:1c:17:76:80:64:66:8b:ca:43:29:3f:9e: b6:c8:93:9f:85:ad:85:39:b4:cd:9d:77:6f:5c:32: c6:da:b5:06:65:5b:f6:69:0b:f2:8d:3f:2b:62:f0: ee:7f:b2:f1:a3:bb:fc:50:f7:a3:bc:88:6a:c2:ca: d2:07:67:21:0a:a4:25:8a:a1:93:0a:8f:02:e9:45: b8:b0:97:e2:ea:c9:07:5b:fe:1b:a1:50:95:af:01: 59:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:98:92:22:04:86:39:E9:00:60:C8:87:96:CD:BE:FF:24:08:84:55 X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:b4:4e:76:48:30:3a:a7:1c:36:90:1f:d6:b0:0a:62:b4:28: b6:53:f1:4d:06:0a:35:3f:3d:33:57:7a:9a:09:c9:93:52:a5: fd:6c:1f:c0:96:07:60:4f:f0:7d:1a:65:e9:92:60:71:f0:27: b2:1b:a1:f7:07:c2:d8:6b:1c:b2:d9:5a:d8:4f:32:b9:51:aa: ac:c0:04:19:3f:f8:2d:2b:0d:e4:05:01:b8:d9:00:07:ef:be: eb:de:57:1f:f1:2a:6c:69:d9:5a:ca:a6:15:ac:58:64:32:13: 5b:a8:e4:41:32:95:d0:29:ad:97:33:cb:c3:cf:e9:38:de:de: 10:e3:1e:af:87:56:aa:0e:a0:91:a9:69:7a:e5:58:50:e3:d3: e7:51:48:9f:06:fc:f3:26:8a:07:ec:f2:c9:4f:ba:02:8a:69: 4b:cb:a6:00:68:03:c5:cc:81:c8:c2:b8:ea:9e:ec:df:1b:8e: cd:ef:d3:83:ba:b6:6e:01:70:7a:a0:cb:4e:54:de:b1:ad:14: 85:53:eb:ea:e6:b6:8b:6c:42:b0:c7:38:1e:34:1a:d8:2f:1b: fc:d6:5f:a4:20:7f:f4:43:74:04:4a:b6:3f:da:6d:21:6f:26: ec:ef:f5:05:be:d5:24:17:20:a8:42:5c:37:5d:6a:7e:d1:31: 6e:cc:ff:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjhBRDExMC8GA1UEBRMoRDEwQzIwOTZGQjVEQjMwNEFCRDJGOTlGNDVBMjk0ODgy OTJEMzcyMTAeFw0yNTA1MTUwNjA2MDZaFw0yNTA1MjIwNjA2MDZaMBgxFjAUBgNV BAMTDTY4MjU4NDRlLTBhOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM/XaY+e7BL4vF2xVhhxDX/EmfPc8YszKr9jijAKMlENU9IgoQz+u/PuAASPvC Gj0xoBZ1xuBbBii2X/WGGuEY97Y0KNPPtLdoRagsH9IAhwD+I0AqK03eFr9uLv1c fF+oXp7fIiMpt1XzSHCU2W5Gm78/Mqxd941/qgk8MZVPKX7rAeuhOMsYTMzOClg6 XyeuE5VRDEB/aosoMhifcu9q1Eabsdd7ShwXdoBkZovKQyk/nrbIk5+FrYU5tM2d d29cMsbatQZlW/ZpC/KNPyti8O5/svGju/xQ96O8iGrCytIHZyEKpCWKoZMKjwLp Rbiwl+LqyQdb/huhUJWvAVknAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUP5iSIgSG OekAYMiHls2+/yQIhFUwHwYDVR0jBBgwFoAU0QwglvtdswSr0vmfRaKUiCktNyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2OEFEL0RFQkEyMzgwODZB MDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFF3Z2x2dGRzd1NyMHZtZlJhS1VpQ2t0TnlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 OEFEL0RFQkEyMzgwODZBMDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dT cjB2bWZSYUtVaUNrdE55RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIa0TnZIMDqnHDaQH9awCmK0KLZT8U0GCjU/PTNXepoJyZNSpf1sH8CW B2BP8H0aZemSYHHwJ7IbofcHwthrHLLZWthPMrlRqqzABBk/+C0rDeQFAbjZAAfv vuveVx/xKmxp2VrKphWsWGQyE1uo5EEyldAprZczy8PP6Tje3hDjHq+HVqoOoJGp aXrlWFDj0+dRSJ8G/PMmigfs8slPugKKaUvLpgBoA8XMgcjCuOqe7N8bjs3v04O6 tm4BcHqgy05U3rGtFIVT6+rmtotsQrDHOB40GtgvG/zWX6Qgf/RDdARKtj/abSFv Juzv9QW+1SQXIKhCXDddan7RMW7M/wg= -----END CERTIFICATE-----Generated at Fri May 16 02:48:49 2025 by rpki-client