$ rpki-client -vvf rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft File: QIWuE0tjOKEnZXKD67wWwS8guGI.mft (raw, json) Hash identifier: nL/5P12pkC5yKuCokvnJJLE8zdSn7wSE0GvwTelPYnQ= Subject key identifier: 75:C7:AB:74:00:F9:40:97:A0:BE:FB:79:EF:48:F9:A0:5A:B7:A3:4A Authority key identifier: 40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 Certificate issuer: /CN=A91E80FB/serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Certificate serial: 03C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft Manifest number: 03BA Signing time: Tue 13 May 2025 00:30:30 +0000 Manifest this update: Tue 13 May 2025 00:30:30 +0000 Manifest next update: Tue 20 May 2025 00:30:29 +0000 Files and hashes: 1: QIWuE0tjOKEnZXKD67wWwS8guGI.crl (hash: CXIpbmU/gtkJ4Z2s+X1/HTms4122DXOh4abu662dzGE=) 2: 9FBFD358C0F911EFA63F3E64C4F9AE02.roa (hash: yc1nPimI0kUiUPjKIX7+rUbHKCs59csyBzZSSe87J8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 965 (0x3c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E80FB, serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Validity Not Before: May 13 00:30:30 2025 GMT Not After : May 20 00:30:29 2025 GMT Subject: CN=682292a6-0ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:8a:49:cf:8a:41:12:c0:7f:c9:54:f1:43: 08:a7:e4:17:c1:74:91:f4:dc:b6:66:63:a9:b6:09: 53:69:3d:f4:d5:d7:b9:f2:f9:d9:65:58:9c:fe:9d: e0:a6:8e:de:cb:fa:7f:64:3d:9d:86:13:55:79:dd: 22:81:44:c7:28:80:c5:46:44:54:13:98:18:06:0f: 94:ee:56:0c:09:21:c5:d1:73:21:f1:e4:85:28:cd: 78:d8:01:ed:ae:9c:5e:0e:c6:07:df:69:bf:49:1f: 01:be:f8:ff:08:53:00:53:cf:2b:96:b4:18:9b:b6: fe:a0:08:0e:f6:e8:21:46:67:2f:8e:4d:5e:5a:7c: c5:59:85:60:68:68:bc:a1:30:5e:13:a3:85:36:2d: 14:b7:d0:c3:33:bf:13:bb:72:63:ef:d4:f7:e5:c9: 44:a9:5d:35:60:25:b8:7d:0f:30:2c:4f:4d:0d:89: 37:b2:b9:72:d4:da:4d:e7:76:fa:13:43:78:a3:45: 20:c1:05:c2:fd:29:1f:e7:92:b7:85:9c:4d:02:cd: 6d:6f:c2:12:07:96:6a:44:23:6e:d1:64:29:38:d1: e1:8e:94:d2:07:76:29:ed:b8:1f:b1:ee:f5:65:be: 0b:77:e7:84:46:9d:64:cc:ba:09:68:18:03:0c:54: 69:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C7:AB:74:00:F9:40:97:A0:BE:FB:79:EF:48:F9:A0:5A:B7:A3:4A X509v3 Authority Key Identifier: keyid:40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b2:fb:27:ed:0b:cf:78:a1:36:13:07:2d:3c:b6:bf:99:74: 81:80:df:0c:a4:4e:9f:d0:d6:23:8a:82:e7:08:3c:bb:a6:ec: 43:77:8d:e6:ed:0b:12:29:1d:21:3e:c7:be:79:a9:8e:f0:9d: ac:cf:37:97:75:93:f0:57:22:66:ea:f8:f2:3a:c0:b5:30:20: 04:f1:a7:b9:0a:d5:98:52:67:f1:84:a5:be:cd:47:69:b7:56: 8b:f7:bf:58:fb:f8:3b:a6:bb:7d:dc:cd:a3:51:1f:39:35:a1: b3:52:aa:d8:31:af:2c:1c:7d:56:ba:50:b1:ce:c3:aa:83:36: 4f:54:43:f1:3e:7d:86:27:84:75:a5:90:72:45:43:73:91:1c: 3d:39:c7:29:3f:3e:c0:23:b4:1f:b5:eb:c4:d2:82:1e:87:5c: 4a:0c:66:5b:d5:8a:b0:9f:8d:9e:bc:0f:4f:7b:0c:7f:06:73: e4:ad:5e:a6:3d:a4:92:fd:a2:6c:74:6c:1c:15:f3:31:e6:f2: 38:c1:06:89:8f:d4:e5:3a:cc:06:17:ff:10:57:dd:39:71:15: 78:3a:96:f9:cd:af:cd:3a:ea:4e:3f:f0:ea:5c:52:37:da:50: 71:2c:ab:5d:2f:2d:c3:78:bd:38:71:d9:bd:17:1f:1e:a5:98: 42:30:52:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgwRkIxMTAvBgNVBAUTKDQwODVBRTEzNEI2MzM4QTEyNzY1NzI4M0VCQkMxNkMx MkYyMEI4NjIwHhcNMjUwNTEzMDAzMDMwWhcNMjUwNTIwMDAzMDI5WjAYMRYwFAYD VQQDEw02ODIyOTJhNi0wZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCuKSc+KQRLAf8lU8UMIp+QXwXSR9Ny2ZmOptglTaT301de58vnZZVic/p3g po7ey/p/ZD2dhhNVed0igUTHKIDFRkRUE5gYBg+U7lYMCSHF0XMh8eSFKM142AHt rpxeDsYH32m/SR8Bvvj/CFMAU88rlrQYm7b+oAgO9ughRmcvjk1eWnzFWYVgaGi8 oTBeE6OFNi0Ut9DDM78Tu3Jj79T35clEqV01YCW4fQ8wLE9NDYk3srly1NpN53b6 E0N4o0UgwQXC/Skf55K3hZxNAs1tb8ISB5ZqRCNu0WQpONHhjpTSB3Yp7bgfse71 Zb4Ld+eERp1kzLoJaBgDDFRpPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXHq3QA +UCXoL77ee9I+aBat6NKMB8GA1UdIwQYMBaAFECFrhNLYzihJ2Vyg+u8FsEvILhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODBGQi82MjhENTIwQzhG QjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9LRW5aWEtENjd3V3dTOGd1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJV3VFMHRqT0tFblpYS0Q2N3dXd1M4Z3VHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODBGQi82MjhENTIwQzhGQjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9L RW5aWEtENjd3V3dTOGd1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKsvsn7QvPeKE2EwctPLa/mXSBgN8MpE6f0NYjioLnCDy7puxDd43m 7QsSKR0hPse+eamO8J2szzeXdZPwVyJm6vjyOsC1MCAE8ae5CtWYUmfxhKW+zUdp t1aL979Y+/g7prt93M2jUR85NaGzUqrYMa8sHH1WulCxzsOqgzZPVEPxPn2GJ4R1 pZByRUNzkRw9OccpPz7AI7QftevE0oIeh1xKDGZb1Yqwn42evA9Pewx/BnPkrV6m PaSS/aJsdGwcFfMx5vI4wQaJj9TlOswGF/8QV905cRV4Opb5za/NOupOP/DqXFI3 2lBxLKtdLy3DeL04cdm9Fx8epZhCMFLY -----END CERTIFICATE-----Generated at Wed May 14 18:29:29 2025 by rpki-client