$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: IdPq396hrkWQU5WWvlz4lK5l6z/vdd8cb/oaqAHaM5g= Subject key identifier: 63:FA:60:EA:1B:DC:B5:63:A8:15:16:9F:38:AF:B7:51:88:C4:9E:B5 Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 1283 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 4719 Signing time: Mon 12 May 2025 14:21:02 +0000 Manifest this update: Mon 12 May 2025 14:21:01 +0000 Manifest next update: Mon 19 May 2025 14:21:01 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: wYYxknav3xa1As3Kx8+EJtnKbRjBd9uP/8bJfVG2Gio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4739 (0x1283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: May 12 14:21:01 2025 GMT Not After : May 19 14:21:01 2025 GMT Subject: CN=682203cd-7b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ec:b9:00:e8:ae:72:92:bb:d7:92:c1:48:ee: 9e:db:07:cc:dd:18:7c:8b:8a:b1:4e:60:3c:1a:55: 0b:54:41:ba:df:f8:c4:a1:7e:e3:be:27:9d:97:55: d9:7f:ec:a2:3f:cc:9a:2b:61:1f:7c:8a:8e:e6:8a: bf:35:da:84:2c:1b:00:bc:d6:37:54:15:d7:e3:89: 80:4f:ee:0a:06:f3:30:a9:14:1d:db:d2:5d:6f:a1: c8:b8:fc:52:d8:43:60:e1:d4:b9:5f:11:32:ac:b1: ea:51:99:1d:7f:1a:14:72:e9:16:1b:c6:6b:6f:4e: dc:f1:f9:7c:c3:ce:a8:d9:86:3c:57:42:fc:62:e4: d3:b0:49:62:ff:42:fa:bc:7c:e6:77:ab:2a:f3:f6: e8:f5:a2:ed:38:47:9d:f6:eb:76:6c:6a:d0:e7:fe: a5:e3:93:d0:28:85:45:ec:8f:81:c4:32:e3:14:9f: 0f:36:45:85:0c:37:21:f6:ff:0c:b0:6d:ec:76:5b: c4:37:26:ec:5e:cc:63:26:1a:62:6f:b8:a0:7f:94: 8a:7e:20:23:3c:89:ac:25:c4:2e:6f:8f:d2:4d:da: 35:f0:5b:c4:88:9e:54:ea:cb:24:69:d3:da:2b:6f: ac:33:71:50:0d:f5:d7:84:fa:0d:e9:a8:b2:d9:85: cb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:FA:60:EA:1B:DC:B5:63:A8:15:16:9F:38:AF:B7:51:88:C4:9E:B5 X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:c6:1f:65:71:10:7c:9b:78:d3:a3:a5:d2:19:3d:88:9b:5b: d7:63:39:12:c5:14:04:de:f0:f3:a8:3c:77:fd:7c:f0:1b:26: 33:43:a7:0a:ce:27:bc:13:b5:b2:2a:99:79:10:53:74:13:6f: 08:1a:10:57:39:4d:2b:89:cd:9e:f2:a1:dd:0e:ac:56:0c:ec: 9b:f8:4d:d1:c5:00:59:21:4b:21:5c:00:be:61:f7:fb:ee:5c: f4:a8:e3:6f:bf:c6:d4:cd:1e:aa:7f:e2:65:b7:3c:98:ed:5b: ce:30:aa:4e:74:79:9e:e3:ba:9e:17:fc:e9:a7:2f:ac:ab:02: db:78:2b:1b:71:57:f4:21:bd:89:53:64:2c:89:05:a8:74:2d: ce:ee:5e:ee:59:46:05:e7:6c:14:d7:2c:a0:ee:21:fc:66:b4: 17:33:b7:05:47:22:2a:90:6a:ae:01:bc:5c:7f:07:78:da:d9: 4a:14:5d:b1:59:95:7e:fd:c8:5f:83:15:a6:db:34:7e:c0:e7: 9f:58:4b:ce:92:b3:45:03:0a:96:7e:83:b7:1d:74:c6:1a:4b: b9:49:3a:82:1c:13:aa:7b:b7:c9:c0:07:f8:6b:7e:89:de:ad: e5:90:40:3c:f3:6b:dd:07:cc:5b:00:56:e0:62:bf:83:57:75: 0f:d4:10:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUwNTEyMTQyMTAxWhcNMjUwNTE5MTQyMTAxWjAYMRYwFAYD VQQDEw02ODIyMDNjZC03YjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Oy5AOiucpK715LBSO6e2wfM3Rh8i4qxTmA8GlULVEG63/jEoX7jviedl1XZ f+yiP8yaK2EffIqO5oq/NdqELBsAvNY3VBXX44mAT+4KBvMwqRQd29Jdb6HIuPxS 2ENg4dS5XxEyrLHqUZkdfxoUcukWG8Zrb07c8fl8w86o2YY8V0L8YuTTsEli/0L6 vHzmd6sq8/bo9aLtOEed9ut2bGrQ5/6l45PQKIVF7I+BxDLjFJ8PNkWFDDch9v8M sG3sdlvENybsXsxjJhpib7igf5SKfiAjPImsJcQub4/STdo18FvEiJ5U6sskadPa K2+sM3FQDfXXhPoN6aiy2YXLjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGP6YOob 3LVjqBUWnzivt1GIxJ61MB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjxh9lcRB8m3jTo6XSGT2Im1vXYzkSxRQE3vDzqDx3/XzwGyYzQ6cK zie8E7WyKpl5EFN0E28IGhBXOU0ric2e8qHdDqxWDOyb+E3RxQBZIUshXAC+Yff7 7lz0qONvv8bUzR6qf+JltzyY7VvOMKpOdHme47qeF/zppy+sqwLbeCsbcVf0Ib2J U2QsiQWodC3O7l7uWUYF52wU1yyg7iH8ZrQXM7cFRyIqkGquAbxcfwd42tlKFF2x WZV+/chfgxWm2zR+wOefWEvOkrNFAwqWfoO3HXTGGku5STqCHBOqe7fJwAf4a36J 3q3lkEA882vdB8xbAFbgYr+DV3UP1BDh -----END CERTIFICATE-----Generated at Tue May 13 20:52:29 2025 by rpki-client