$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: o7w6qdaB0dXkGd+t9NPQUBM8ZhinRL0njWbE4v7zhf0= Subject key identifier: 3C:34:9E:F3:F0:69:C8:F0:6D:EA:F4:E0:8C:3E:D2:9A:16:36:A6:F2 Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 01E3 Signing time: Sun 11 May 2025 01:38:23 +0000 Manifest this update: Sun 11 May 2025 01:38:22 +0000 Manifest next update: Sun 18 May 2025 01:38:22 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: jgqv3CDae8hhHHuaQTZPdttqFABrSzylix1fwsd8k2c=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: May 11 01:38:22 2025 GMT Not After : May 18 01:38:22 2025 GMT Subject: CN=681fff8e-6ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:37:9a:c3:a0:bd:c2:12:d1:3e:3e:aa:2e:77: f1:84:e1:de:e9:6f:1e:c8:c6:71:e3:6c:1d:d9:da: 8a:42:0e:80:74:be:f2:13:7d:d2:21:4e:ba:56:1b: 83:5c:1b:76:8e:d8:ee:78:df:62:e3:c1:7d:ee:ec: 69:21:f4:77:49:8d:7d:5b:7c:d5:7a:19:ab:b0:e3: 6e:ae:8e:27:6c:60:0b:01:19:74:90:d9:dd:42:c3: 2b:b8:9a:74:c1:62:ef:ac:cf:a8:f2:5f:f1:f5:a0: fb:b0:42:0b:12:82:35:af:c1:c0:8b:ff:ed:7b:3b: fd:b1:70:fe:fb:5e:e4:5c:7f:a5:88:4b:1c:19:86: 05:3e:26:84:9b:3f:83:f6:fc:72:a5:65:53:71:0c: 5e:d9:ca:49:1c:d7:e9:50:29:94:59:70:4e:27:0e: 37:74:80:2a:14:e5:c9:68:b9:a0:0a:4c:fd:a5:db: 42:53:2a:e6:26:80:84:78:27:d1:c3:77:3a:3b:8b: 89:e9:f7:3b:7e:e2:a3:02:42:f6:06:4d:45:e4:77: c9:7c:e2:1b:3a:b0:7d:19:00:82:09:ca:1d:43:78: b9:56:4a:75:40:99:b0:43:d4:12:b4:6a:00:73:f9: 77:ce:63:06:1a:3e:d7:c5:0b:21:9a:84:4e:bb:81: be:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:34:9E:F3:F0:69:C8:F0:6D:EA:F4:E0:8C:3E:D2:9A:16:36:A6:F2 X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:12:49:2e:3a:81:e5:0a:a6:a4:2c:80:71:50:b6:b3:5f:72: 89:79:02:48:20:37:44:84:1f:a0:f0:d0:42:88:67:69:a0:72: de:a8:f6:71:a6:4d:7a:a2:50:3c:0d:7e:e3:9a:ab:ef:be:f8: 2f:db:77:a8:fc:3e:16:9d:31:3e:5a:c6:56:4a:3d:07:27:77: e0:c8:7b:50:c6:54:a0:69:29:99:4b:88:2b:83:e4:5f:8c:d8: 4e:af:2b:21:b2:b7:ea:4f:f4:9a:1a:90:2d:60:85:90:18:8a: 0f:1a:6a:9a:21:37:da:70:85:73:b7:49:15:1c:df:fc:5f:75: 78:c5:2f:7e:20:69:45:ec:d7:62:5a:43:92:57:79:38:a6:20: 19:0d:38:5a:c4:a5:ad:21:d0:aa:2b:ad:7e:cd:d7:ec:a7:81: 96:48:3a:59:a8:bd:d4:54:8d:d3:24:ea:25:85:ad:ff:3e:dc: 60:e4:96:e6:22:71:1b:c5:2a:23:98:82:5c:d3:09:73:10:d4: 3f:d1:0a:d9:a0:e1:2f:8a:41:c7:41:0b:20:94:a0:c5:b3:50: b3:27:11:55:93:57:77:87:f1:c6:f2:d7:3e:1c:52:1d:1c:2f: 0a:b3:6c:33:d3:8f:50:88:78:35:c4:70:52:46:06:37:d3:c1: db:7b:f7:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUwNTExMDEzODIyWhcNMjUwNTE4MDEzODIyWjAYMRYwFAYD VQQDEw02ODFmZmY4ZS02YWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Deaw6C9whLRPj6qLnfxhOHe6W8eyMZx42wd2dqKQg6AdL7yE33SIU66VhuD XBt2jtjueN9i48F97uxpIfR3SY19W3zVehmrsONuro4nbGALARl0kNndQsMruJp0 wWLvrM+o8l/x9aD7sEILEoI1r8HAi//tezv9sXD++17kXH+liEscGYYFPiaEmz+D 9vxypWVTcQxe2cpJHNfpUCmUWXBOJw43dIAqFOXJaLmgCkz9pdtCUyrmJoCEeCfR w3c6O4uJ6fc7fuKjAkL2Bk1F5HfJfOIbOrB9GQCCCcodQ3i5Vkp1QJmwQ9QStGoA c/l3zmMGGj7XxQshmoROu4G+5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDw0nvPw acjwber04Iw+0poWNqbyMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHEkkuOoHlCqakLIBxULazX3KJeQJIIDdEhB+g8NBCiGdpoHLeqPZx pk16olA8DX7jmqvvvvgv23eo/D4WnTE+WsZWSj0HJ3fgyHtQxlSgaSmZS4grg+Rf jNhOryshsrfqT/SaGpAtYIWQGIoPGmqaITfacIVzt0kVHN/8X3V4xS9+IGlF7Ndi WkOSV3k4piAZDThaxKWtIdCqK61+zdfsp4GWSDpZqL3UVI3TJOolha3/Ptxg5Jbm InEbxSojmIJc0wlzENQ/0QrZoOEvikHHQQsglKDFs1CzJxFVk1d3h/HG8tc+HFId HC8Ks2wz049QiHg1xHBSRgY308Hbe/d8 -----END CERTIFICATE-----Generated at Sun May 11 13:53:19 2025 by rpki-client