$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: jsXh7r66Ybw17/l40CkKbOVpviSwmD5czXOBNjgEcVc= Subject key identifier: 13:32:4A:B9:49:73:15:42:7B:8C:5B:C0:92:42:ED:FA:95:8E:41:02 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 0532 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 052B Signing time: Wed 14 May 2025 23:34:00 +0000 Manifest this update: Wed 14 May 2025 23:34:00 +0000 Manifest next update: Wed 21 May 2025 23:34:00 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: 6UqWuUdQ8H2rGHYuEpm4Qzm027VGfDJ+7mDF0yb1WuY=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: hZNj0hXIhx7iHvLN1BguzuArYcQdXQGnTsHHjJIXTSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1330 (0x532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: May 14 23:34:00 2025 GMT Not After : May 21 23:34:00 2025 GMT Subject: CN=68252868-6587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:02:b2:41:b4:58:d6:07:59:27:3a:4d:70:cc: 24:75:87:90:1f:68:01:b4:9c:84:8c:b5:c2:f6:48: ce:3e:53:26:79:2f:65:a6:f3:0e:3f:de:a3:0d:f2: e2:62:62:25:c1:59:98:92:a2:07:e4:6e:49:cb:64: 4e:e1:22:b7:83:db:d8:42:7e:28:73:88:09:5c:52: b5:77:13:cb:a7:70:38:57:ae:15:47:29:c2:cc:48: f4:10:b3:7a:6c:ca:64:9a:09:9f:67:bd:7a:58:bb: bb:48:ea:b9:8b:a5:78:bf:04:3b:70:ab:26:10:36: 52:f6:83:b3:1f:f8:bb:49:c8:d1:b4:6d:30:ae:52: 66:f2:7c:f0:d0:e1:33:dc:ae:41:00:0e:2f:ed:3d: 00:08:94:fe:8c:a4:61:79:ef:a3:21:70:d7:b0:b8: 01:86:63:02:15:78:40:2a:6f:7d:06:4b:03:bf:c5: b2:06:44:13:57:34:8c:c9:47:6e:c0:6a:cd:2e:55: 75:54:63:21:a3:c9:05:16:68:b6:81:fb:7a:68:4a: 95:59:ef:40:a8:14:b5:61:50:bc:43:03:13:35:a2: 55:90:1b:ae:3c:3f:6a:9e:52:c3:39:43:a8:c6:b8: b4:46:52:43:e2:59:f6:4a:0b:fd:07:88:2a:91:47: 9b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:32:4A:B9:49:73:15:42:7B:8C:5B:C0:92:42:ED:FA:95:8E:41:02 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:72:a8:ab:25:e9:5a:4e:bf:b7:d8:ab:82:76:1a:78:b9:41: 67:c1:96:a5:25:3b:06:ef:f2:aa:97:08:3b:42:d8:84:0c:c5: a2:0f:c9:03:95:3d:8a:ca:cc:55:aa:5f:21:c4:4f:a0:b7:0d: 0b:c7:63:ea:4d:35:77:72:20:e7:5e:a6:d4:22:08:b9:81:92: 20:e1:2a:58:83:ab:58:c1:fc:8e:c8:c6:80:a1:78:48:7b:18: 75:ae:ed:36:91:a4:03:93:8b:18:55:33:ba:d4:4d:04:a1:4e: c0:1c:4c:7c:40:0c:b8:85:06:dc:d2:c4:95:ca:27:85:eb:89: 7c:59:5f:45:8c:2c:c0:45:9e:b4:91:0d:70:65:a7:dd:f0:ad: 4b:68:44:23:3f:97:f6:76:ec:ff:9d:3d:af:75:4e:be:61:6a: de:70:1a:db:ab:f1:e4:72:a1:23:aa:dd:9e:4d:8c:28:64:e9: c4:47:2d:65:38:83:9c:10:b8:85:b0:e0:19:c1:b9:97:36:be: 81:8e:c6:a8:66:a5:eb:e4:c6:20:67:88:09:05:bf:37:52:16: 3f:e2:81:04:f7:89:f1:24:05:0e:27:ad:23:6f:16:fd:83:bf: ad:4a:fe:94:28:22:c8:2d:ca:da:5b:42:93:1b:2f:6b:f2:b7: 36:f5:ab:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUwNTE0MjMzNDAwWhcNMjUwNTIxMjMzNDAwWjAYMRYwFAYD VQQDEw02ODI1Mjg2OC02NTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQKyQbRY1gdZJzpNcMwkdYeQH2gBtJyEjLXC9kjOPlMmeS9lpvMOP96jDfLi YmIlwVmYkqIH5G5Jy2RO4SK3g9vYQn4oc4gJXFK1dxPLp3A4V64VRynCzEj0ELN6 bMpkmgmfZ716WLu7SOq5i6V4vwQ7cKsmEDZS9oOzH/i7ScjRtG0wrlJm8nzw0OEz 3K5BAA4v7T0ACJT+jKRhee+jIXDXsLgBhmMCFXhAKm99BksDv8WyBkQTVzSMyUdu wGrNLlV1VGMho8kFFmi2gft6aEqVWe9AqBS1YVC8QwMTNaJVkBuuPD9qnlLDOUOo xri0RlJD4ln2Sgv9B4gqkUeb7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMySrlJ cxVCe4xbwJJC7fqVjkECMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxcqirJelaTr+32KuCdhp4uUFnwZalJTsG7/Kqlwg7QtiEDMWiD8kD lT2KysxVql8hxE+gtw0Lx2PqTTV3ciDnXqbUIgi5gZIg4SpYg6tYwfyOyMaAoXhI exh1ru02kaQDk4sYVTO61E0EoU7AHEx8QAy4hQbc0sSVyieF64l8WV9FjCzARZ60 kQ1wZafd8K1LaEQjP5f2duz/nT2vdU6+YWrecBrbq/HkcqEjqt2eTYwoZOnERy1l OIOcELiFsOAZwbmXNr6BjsaoZqXr5MYgZ4gJBb83UhY/4oEE94nxJAUOJ60jbxb9 g7+tSv6UKCLILcraW0KTGy9r8rc29auh -----END CERTIFICATE-----Generated at Fri May 16 02:56:30 2025 by rpki-client