$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft File: QyiNyelBKGI4XB6D3TeGNYMyDRg.mft (raw, json) Hash identifier: n7Pbz/tNHFfJX2AddJ9i+5Dnz2CSYb5gJMAJDUwHpSM= Subject key identifier: 98:E6:EF:19:67:A3:DC:49:CC:90:64:5F:E7:B5:4A:66:C2:CD:4E:8E Authority key identifier: 43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 Certificate issuer: /CN=A91D8A55/serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft Manifest number: 0168 Signing time: Sun 11 May 2025 02:51:53 +0000 Manifest this update: Sun 11 May 2025 02:51:52 +0000 Manifest next update: Sun 18 May 2025 02:51:52 +0000 Files and hashes: 1: QyiNyelBKGI4XB6D3TeGNYMyDRg.crl (hash: 1C2gcKezC17ouOeVAlh2z/K7ZFnl9sjh64Smu76Xfec=) 2: D1596F0E0BCF11EE8FB8EE16C4F9AE02.roa (hash: JnZnYwDPY6T9KAqalaHmfpI6/yYUrsg6tF5XISERaGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8A55, serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Validity Not Before: May 11 02:51:52 2025 GMT Not After : May 18 02:51:52 2025 GMT Subject: CN=682010c9-74a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:eb:a1:cb:92:08:98:c2:f9:9e:a4:2b:53:53: af:a4:c3:63:86:bc:fc:66:37:42:12:ab:19:d4:6a: bf:57:8e:0f:05:4d:ca:0f:82:62:4b:30:7d:c8:de: 25:2f:35:ec:d2:06:68:2b:6e:1f:12:c1:36:6e:a2: 01:1b:64:4a:93:a8:f4:3d:dc:c0:57:e5:eb:e3:0a: 32:77:f3:f4:e2:c8:a4:a9:4d:98:db:bb:72:06:bd: 25:0b:b8:ee:d9:0b:4d:9a:83:88:92:60:11:f0:ac: 2c:a1:05:5a:b5:9d:20:a0:39:35:e0:15:cb:86:13: 9c:f1:56:9b:bb:32:d1:bd:12:c2:22:6b:a4:e7:04: 6f:e8:f3:a3:17:27:62:8e:0b:1a:2f:e3:62:ec:55: 57:ac:7c:d9:bd:6e:7f:56:2d:1e:7b:b1:1d:ca:b6: 5c:f4:db:54:41:b7:e7:08:b3:c8:c5:81:bf:f7:37: 91:f1:73:bc:2f:b8:e4:8b:3b:50:81:17:79:b2:ef: 14:60:92:60:04:dc:91:5c:b8:e2:e3:43:2c:d2:55: 34:08:64:35:20:e6:e6:b1:ef:fa:80:05:af:e3:6d: 04:92:72:28:cf:b0:a1:19:59:f3:91:ad:27:d4:2f: c4:31:75:74:24:fc:79:e4:f0:4d:78:03:98:1f:a3: ac:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E6:EF:19:67:A3:DC:49:CC:90:64:5F:E7:B5:4A:66:C2:CD:4E:8E X509v3 Authority Key Identifier: keyid:43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:43:06:b8:92:35:06:c7:d4:19:f6:6e:ce:2f:f1:b1:f6:6e: 69:bb:b7:4b:9b:19:92:df:f7:4b:ac:08:35:22:09:95:fa:89: bd:ff:eb:e7:55:b8:76:d1:05:3c:e7:cd:59:ec:6c:d1:b9:1c: 06:9c:39:11:fc:74:b1:9b:42:c1:f8:4c:4d:34:35:d1:01:bb: e2:8f:27:5f:87:2c:a0:e0:7f:06:98:be:ef:b2:65:9f:dc:cc: 19:d9:e2:8b:20:d6:f7:87:08:74:a7:64:f5:7e:c6:4c:62:65: 70:da:e3:91:9c:c6:a4:24:4e:95:05:a5:91:1e:8a:7e:9c:ea: f8:20:ab:b8:b5:7e:ee:85:fb:46:29:72:9c:a9:4f:2c:03:fc: 9a:67:41:55:0d:e6:ec:6e:f4:96:f2:d6:29:59:21:1d:fa:e4: 2d:02:b1:0b:aa:96:ac:fd:f5:40:0c:fd:50:de:da:15:fd:31: 3b:cc:0e:d8:df:77:12:54:89:01:0f:d5:4c:10:de:68:5c:2b: 6c:93:2d:5e:83:20:da:38:90:f3:c2:9f:f4:22:63:56:11:f2: 9e:1a:7b:1b:43:f7:2e:4c:8d:16:11:e5:b5:71:c4:63:2a:28: c2:0a:0c:d7:62:99:00:d1:06:57:20:fe:61:6d:53:62:97:a0: 97:9a:f5:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhBNTUxMTAvBgNVBAUTKDQzMjg4REM5RTk0MTI4NjIzODVDMUU4M0REMzc4NjM1 ODMzMjBEMTgwHhcNMjUwNTExMDI1MTUyWhcNMjUwNTE4MDI1MTUyWjAYMRYwFAYD VQQDEw02ODIwMTBjOS03NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOuhy5IImML5nqQrU1OvpMNjhrz8ZjdCEqsZ1Gq/V44PBU3KD4JiSzB9yN4l LzXs0gZoK24fEsE2bqIBG2RKk6j0PdzAV+Xr4woyd/P04sikqU2Y27tyBr0lC7ju 2QtNmoOIkmAR8KwsoQVatZ0goDk14BXLhhOc8VabuzLRvRLCImuk5wRv6POjFydi jgsaL+Ni7FVXrHzZvW5/Vi0ee7EdyrZc9NtUQbfnCLPIxYG/9zeR8XO8L7jkiztQ gRd5su8UYJJgBNyRXLji40Ms0lU0CGQ1IObmse/6gAWv420EknIoz7ChGVnzka0n 1C/EMXV0JPx55PBNeAOYH6OsCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjm7xln o9xJzJBkX+e1SmbCzU6OMB8GA1UdIwQYMBaAFEMojcnpQShiOFweg903hjWDMg0Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEE1NS81RkM2NTgyNjBC QzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktHSTRYQjZEM1RlR05ZTXlE UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5aU55ZWxCS0dJNFhCNkQzVGVHTllNeURSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEE1NS81RkM2NTgyNjBCQzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktH STRYQjZEM1RlR05ZTXlEUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATQwa4kjUGx9QZ9m7OL/Gx9m5pu7dLmxmS3/dLrAg1IgmV+om9/+vn Vbh20QU8581Z7GzRuRwGnDkR/HSxm0LB+ExNNDXRAbvijydfhyyg4H8GmL7vsmWf 3MwZ2eKLINb3hwh0p2T1fsZMYmVw2uORnMakJE6VBaWRHop+nOr4IKu4tX7uhftG KXKcqU8sA/yaZ0FVDebsbvSW8tYpWSEd+uQtArELqpas/fVADP1Q3toV/TE7zA7Y 33cSVIkBD9VMEN5oXCtsky1egyDaOJDzwp/0ImNWEfKeGnsbQ/cuTI0WEeW1ccRj KijCCgzXYpkA0QZXIP5hbVNil6CXmvWd -----END CERTIFICATE-----Generated at Mon May 12 23:15:24 2025 by rpki-client