$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: pNxj4kSDMSYg0OClFzdGxVRXyAofRBP8uXUTfQIW0u4= Subject key identifier: 4F:70:B3:3C:49:EA:AC:54:05:93:53:4C:C2:79:6D:94:35:76:DC:77 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 014D Signing time: Sun 11 May 2025 03:06:32 +0000 Manifest this update: Sun 11 May 2025 03:06:31 +0000 Manifest next update: Sun 18 May 2025 03:06:31 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: yG5+jrlCnNJHL/oSQF0oHlDtqizNvltRu6tx1kzwzAI=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: e+rpsrJfE3yU94kVnBShl6jDwyCOKp3rugpFTdwj4Dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: May 11 03:06:31 2025 GMT Not After : May 18 03:06:31 2025 GMT Subject: CN=68201437-0c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:0f:d7:e3:22:2c:ed:51:24:e3:76:37:35: 4d:06:00:4a:b8:46:87:85:be:33:44:ab:e0:fa:fd: 5e:77:85:b0:27:fb:03:e5:b9:54:86:61:9f:77:51: c0:01:ce:f1:ab:58:b7:23:21:d3:5e:76:35:15:ea: 36:e8:59:ad:2c:de:56:34:74:b6:32:00:48:6e:9b: 04:45:b1:6d:27:da:f8:9b:1b:66:ff:24:ec:66:dc: e0:93:10:e7:dc:c7:2d:d4:b3:51:01:3f:32:4c:60: 40:b0:c9:7d:88:eb:49:74:c6:76:54:63:4d:3a:93: af:e8:99:83:ba:ab:6f:1a:ad:83:d8:4c:2c:39:77: 05:a6:0a:67:bb:f5:f1:57:d9:54:37:c4:b7:20:5e: d7:94:54:6f:5b:84:0b:e6:29:58:4a:a8:0a:fa:17: da:ac:43:1f:ee:eb:7d:f0:84:b7:26:d0:59:a3:cf: d6:dc:2d:65:c9:22:e6:57:c1:01:e7:a5:2b:b9:bb: ba:c6:d4:93:4c:bd:fe:f9:12:1a:f8:6d:ba:d9:41: eb:a4:45:c2:5d:00:48:4d:a5:4c:0b:92:6c:5b:fc: ae:71:03:4a:4c:d9:cc:ec:0a:1e:b2:55:73:bf:69: ea:f9:78:51:c4:b3:4b:f1:b8:03:fb:2b:12:3c:59: 8c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:70:B3:3C:49:EA:AC:54:05:93:53:4C:C2:79:6D:94:35:76:DC:77 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:07:70:4d:de:cb:df:f2:a7:ab:d3:16:61:92:60:c5:f9:b4: 2c:ab:68:be:7e:24:86:c1:c9:1f:fe:36:72:6f:af:59:06:f0: fd:ba:6f:47:ea:91:7d:ab:cf:94:17:4d:c0:b0:55:f5:62:b8: d8:cb:79:19:d9:14:3a:e2:42:12:04:25:a0:12:8c:3e:85:70: 7a:5b:2f:92:1f:fa:d0:cb:18:cc:c7:ab:33:3b:1c:8f:21:17: cf:36:0c:ca:10:1f:09:58:75:bd:8f:b6:32:ac:17:8d:db:8f: 80:53:e7:46:e9:e0:cf:d5:96:2f:34:c9:2c:58:34:94:dc:9d: 78:32:1d:3b:41:d5:1a:70:b2:8a:bb:57:3c:9f:d8:5c:5d:af: 15:6e:4c:29:1f:33:af:c7:b8:c0:93:5b:d0:58:44:8b:fb:e7: 7f:fd:c1:07:10:36:a0:d9:e7:24:6d:93:2d:7c:20:62:ff:33: af:8e:88:e8:18:96:c8:1b:19:7d:ca:61:93:14:08:78:bd:49: 98:83:06:48:b9:81:73:84:de:fb:ab:55:44:b5:00:cd:2b:90: 6a:54:0d:4e:54:14:d3:99:97:c0:e1:52:19:d4:55:8a:67:16: 67:74:66:6c:08:77:2b:55:7e:9d:1c:5f:bf:9d:6d:cc:ff:11: 14:1c:d8:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjUwNTExMDMwNjMxWhcNMjUwNTE4MDMwNjMxWjAYMRYwFAYD VQQDEw02ODIwMTQzNy0wYzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcwP1+MiLO1RJON2NzVNBgBKuEaHhb4zRKvg+v1ed4WwJ/sD5blUhmGfd1HA Ac7xq1i3IyHTXnY1Feo26FmtLN5WNHS2MgBIbpsERbFtJ9r4mxtm/yTsZtzgkxDn 3Mct1LNRAT8yTGBAsMl9iOtJdMZ2VGNNOpOv6JmDuqtvGq2D2EwsOXcFpgpnu/Xx V9lUN8S3IF7XlFRvW4QL5ilYSqgK+hfarEMf7ut98IS3JtBZo8/W3C1lySLmV8EB 56Urubu6xtSTTL3++RIa+G262UHrpEXCXQBITaVMC5JsW/yucQNKTNnM7AoeslVz v2nq+XhRxLNL8bgD+ysSPFmMdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9wszxJ 6qxUBZNTTMJ5bZQ1dtx3MB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1B3BN3svf8qer0xZhkmDF+bQsq2i+fiSGwckf/jZyb69ZBvD9um9H 6pF9q8+UF03AsFX1YrjYy3kZ2RQ64kISBCWgEow+hXB6Wy+SH/rQyxjMx6szOxyP IRfPNgzKEB8JWHW9j7YyrBeN24+AU+dG6eDP1ZYvNMksWDSU3J14Mh07QdUacLKK u1c8n9hcXa8VbkwpHzOvx7jAk1vQWESL++d//cEHEDag2eckbZMtfCBi/zOvjojo GJbIGxl9ymGTFAh4vUmYgwZIuYFzhN77q1VEtQDNK5BqVA1OVBTTmZfA4VIZ1FWK ZxZndGZsCHcrVX6dHF+/nW3M/xEUHNg2 -----END CERTIFICATE-----Generated at Sun May 11 15:53:38 2025 by rpki-client