$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: nafjRb5wZT9udNU8ANPFMbMtixpMoT2kJ2mVg73fOpY= Subject key identifier: EB:51:0D:19:09:46:3B:72:19:AC:38:77:18:C9:2D:5C:D1:AD:AD:47 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0420 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 0417 Signing time: Tue 13 May 2025 00:13:36 +0000 Manifest this update: Tue 13 May 2025 00:13:35 +0000 Manifest next update: Tue 20 May 2025 00:13:35 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: 17vSvHMpX+S+IFrX8f24CRPMdoZ94deFPDISTlKqhRY=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1056 (0x420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: May 13 00:13:35 2025 GMT Not After : May 20 00:13:35 2025 GMT Subject: CN=68228eb0-5992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f1:33:ac:48:77:1f:6a:96:cb:8d:65:c6:15: b5:4a:31:cc:28:d0:dc:10:2e:3e:12:f1:6b:63:70: 29:0b:b2:73:aa:72:31:00:fe:11:e5:f4:93:0c:29: da:29:3e:d7:ff:0f:67:eb:6f:84:47:e0:5d:bf:47: 6a:d0:f7:b5:02:72:4b:52:c7:80:f1:3f:5f:8e:c6: 96:fc:ef:5b:ac:66:4c:4c:0d:0d:3d:71:4b:bb:1d: 4f:e9:c9:d5:96:5f:d2:54:33:1d:76:a1:97:6f:1d: 01:eb:d3:89:b8:33:30:ab:c7:8f:fa:e8:7d:e3:be: c8:d5:f8:73:61:33:f5:6c:18:4e:51:34:d7:93:be: ed:c4:c0:5a:2b:2c:5f:dd:18:4a:4c:ce:92:57:f6: ab:b3:5e:77:c2:47:74:c6:bf:cf:bc:7d:5a:9a:0b: 72:8f:a7:1f:1a:5c:88:29:a1:9f:cc:81:a6:48:4b: fa:1e:31:a7:ce:db:9e:96:10:2b:3b:ec:86:8e:85: 1b:c1:24:cd:55:40:f3:5c:b8:4f:32:c8:d6:76:f3: 65:33:d0:a8:fe:d5:07:29:ca:a8:6c:57:9f:a9:25: f0:5c:83:9b:13:f9:24:b6:8a:8b:f9:e7:4d:c6:f7: c4:dc:07:12:99:41:0a:0b:70:1c:f5:ca:20:a7:49: ec:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:51:0D:19:09:46:3B:72:19:AC:38:77:18:C9:2D:5C:D1:AD:AD:47 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:18:f3:77:08:b1:1b:88:5f:c5:9d:65:90:1d:b7:70:34:bb: 30:9b:9c:39:91:c6:0a:4d:ab:ed:82:4f:29:80:3a:77:bb:dc: da:39:f0:69:f5:73:b9:c7:73:d2:ff:b6:2b:39:10:a5:f0:d4: 74:fc:f8:59:10:ed:f5:cb:77:93:2c:e1:e4:8b:6f:0c:5a:c6: 38:0b:f7:87:de:4f:28:3d:69:00:41:cc:f2:e6:c9:50:fa:c6: 23:e5:fb:fe:d1:59:8a:32:c3:07:f6:96:57:d5:0e:22:5a:62: d1:b6:f5:30:1b:cf:44:77:da:f3:ae:94:0e:f1:b6:7c:e3:69: 19:80:1f:bc:14:d7:df:3c:14:fe:41:13:e1:7d:6f:a3:28:c4: fe:db:6d:cc:5d:90:f1:a9:a2:0e:47:77:94:eb:26:05:f9:9c: 48:4b:bc:0c:b2:84:32:a4:5f:d5:cf:07:f3:6c:3f:47:ee:3f: f6:da:60:e4:25:17:19:98:77:48:d8:92:00:de:93:e7:0b:c7: 63:13:c9:2f:17:de:41:b0:fa:bf:c8:e9:e6:bc:e5:ae:1c:e4: 96:ac:95:3a:52:d3:c9:4e:cd:f1:e6:cf:d8:73:ee:44:0f:fb: 97:b3:e0:8b:3b:36:1a:1a:b9:6b:f6:3b:fd:51:8d:a5:10:94: 79:dd:40:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUwNTEzMDAxMzM1WhcNMjUwNTIwMDAxMzM1WjAYMRYwFAYD VQQDEw02ODIyOGViMC01OTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/EzrEh3H2qWy41lxhW1SjHMKNDcEC4+EvFrY3ApC7JzqnIxAP4R5fSTDCna KT7X/w9n62+ER+Bdv0dq0Pe1AnJLUseA8T9fjsaW/O9brGZMTA0NPXFLux1P6cnV ll/SVDMddqGXbx0B69OJuDMwq8eP+uh9477I1fhzYTP1bBhOUTTXk77txMBaKyxf 3RhKTM6SV/ars153wkd0xr/PvH1amgtyj6cfGlyIKaGfzIGmSEv6HjGnztuelhAr O+yGjoUbwSTNVUDzXLhPMsjWdvNlM9Co/tUHKcqobFefqSXwXIObE/kktoqL+edN xvfE3AcSmUEKC3Ac9cogp0ns9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtRDRkJ RjtyGaw4dxjJLVzRra1HMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiGPN3CLEbiF/FnWWQHbdwNLswm5w5kcYKTavtgk8pgDp3u9zaOfBp 9XO5x3PS/7YrORCl8NR0/PhZEO31y3eTLOHki28MWsY4C/eH3k8oPWkAQczy5slQ +sYj5fv+0VmKMsMH9pZX1Q4iWmLRtvUwG89Ed9rzrpQO8bZ842kZgB+8FNffPBT+ QRPhfW+jKMT+223MXZDxqaIOR3eU6yYF+ZxIS7wMsoQypF/VzwfzbD9H7j/22mDk JRcZmHdI2JIA3pPnC8djE8kvF95BsPq/yOnmvOWuHOSWrJU6UtPJTs3x5s/Yc+5E D/uXs+CLOzYaGrlr9jv9UY2lEJR53UCR -----END CERTIFICATE-----Generated at Wed May 14 01:22:28 2025 by rpki-client