$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft File: qSFNuZGEmynE8EXDNkcOnYLEjOI.mft (raw, json) Hash identifier: kUyQti4hYE8Af+M6rZBkTykkW2lfta/L/UmLcLAWxDE= Subject key identifier: AD:CC:24:9E:92:C8:66:02:7E:27:24:B6:F6:59:14:66:33:D6:0B:37 Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft Manifest number: E3 Signing time: Sun 11 May 2025 04:18:35 +0000 Manifest this update: Sun 11 May 2025 04:18:35 +0000 Manifest next update: Sun 18 May 2025 04:18:35 +0000 Files and hashes: 1: qSFNuZGEmynE8EXDNkcOnYLEjOI.crl (hash: UnneOHRL8spP5xhPvR3+M1QoRXvMTy0T0DRVCv+0+v8=) 2: 70C04006D5EF11EE8279357EC4F9AE02.roa (hash: CD5JHrOld6EH8gDDi5gO0sRUppO6UZeQlXazyHZlOek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929, serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: May 11 04:18:35 2025 GMT Not After : May 18 04:18:35 2025 GMT Subject: CN=6820251b-8185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8f:84:5f:1c:08:b2:fe:33:e9:79:79:d8:36: c5:21:59:15:d2:f1:0a:f3:c5:a1:f2:7e:24:79:ac: 36:1f:56:94:98:d6:98:9d:12:d5:d0:dd:bd:43:67: c7:7a:5c:c2:6a:e5:8a:7a:27:80:55:8e:d5:85:c1: 11:72:98:b1:2e:70:20:91:af:bc:10:5d:1e:36:82: d6:40:b0:e5:19:6e:c7:56:98:26:07:69:90:96:3c: f5:74:cd:6d:86:74:ba:ff:5f:d0:ae:ee:48:c3:17: 62:ff:e6:ff:ef:41:2f:6c:5e:84:be:9f:f5:8f:c2: ec:e8:50:76:a5:d9:74:bc:a8:7b:25:80:77:99:53: af:32:94:49:92:d2:db:63:b4:3e:5f:c1:ff:b5:f5: 2b:2b:e7:a7:8b:35:53:a7:31:56:ba:14:c1:14:ed: 9f:4b:f5:a5:da:00:c8:67:9b:42:fc:de:51:22:1a: 60:2e:c8:3f:75:ec:f9:90:24:ce:d6:3f:f9:d0:93: b5:36:85:67:d8:1c:8b:ab:a5:ca:5c:a5:f9:16:48: 0e:86:87:ec:92:a1:e1:71:de:1c:3f:f5:51:c2:41: c0:16:94:2b:68:c9:a6:53:25:89:32:b1:fa:27:9c: a3:ba:a1:85:e1:21:42:98:ae:b0:00:8b:fd:b3:36: 56:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CC:24:9E:92:C8:66:02:7E:27:24:B6:F6:59:14:66:33:D6:0B:37 X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:8f:1b:ba:20:5f:a4:d6:7f:cc:26:d0:a4:6a:fa:a5:18:36: 3b:69:1e:87:67:12:17:31:5f:b6:fd:67:27:b3:f3:41:58:b1: 17:db:cc:41:c0:b1:37:33:12:69:40:51:ed:47:53:4c:64:da: 82:94:e9:9c:52:ad:9f:13:86:b1:4b:29:8f:b9:a6:f8:bd:ee: 73:dd:08:09:42:9a:7b:6c:c8:71:56:26:af:4a:aa:d2:60:47: 7a:01:04:92:6f:be:df:ac:22:08:6c:b7:0e:4b:3d:6b:9e:1f: 10:2f:0a:7c:6e:09:cd:26:b0:ff:b0:10:16:6f:8a:63:e4:d6: e2:6b:a4:19:b1:cf:0a:3f:40:d3:e6:58:b6:43:6a:b1:04:4b: 28:a5:5d:39:e3:87:d3:64:37:eb:03:d3:c3:63:2a:19:cb:41: 28:b4:79:25:d7:95:98:09:46:c3:f1:ea:f7:31:2a:fc:a5:ea: 27:0b:32:59:9b:26:52:71:71:d1:7a:f4:91:81:82:19:ec:d0: 72:48:f8:a1:8b:0f:2e:40:58:2c:26:13:c5:3b:50:7a:73:52: d0:e7:c5:33:3f:4a:41:44:d9:37:12:ea:05:be:e9:70:8a:08: 0a:05:1d:fd:ce:60:f4:63:cc:52:37:d9:09:7b:fe:02:c8:c3: 16:fa:d3:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5MjkxMTAvBgNVBAUTKEE5MjE0REI5OTE4NDlCMjlDNEYwNDVDMzM2NDcwRTlE ODJDNDhDRTIwHhcNMjUwNTExMDQxODM1WhcNMjUwNTE4MDQxODM1WjAYMRYwFAYD VQQDEw02ODIwMjUxYi04MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Y+EXxwIsv4z6Xl52DbFIVkV0vEK88Wh8n4keaw2H1aUmNaYnRLV0N29Q2fH elzCauWKeieAVY7VhcERcpixLnAgka+8EF0eNoLWQLDlGW7HVpgmB2mQljz1dM1t hnS6/1/Qru5Iwxdi/+b/70EvbF6Evp/1j8Ls6FB2pdl0vKh7JYB3mVOvMpRJktLb Y7Q+X8H/tfUrK+enizVTpzFWuhTBFO2fS/Wl2gDIZ5tC/N5RIhpgLsg/dez5kCTO 1j/50JO1NoVn2ByLq6XKXKX5FkgOhofskqHhcd4cP/VRwkHAFpQraMmmUyWJMrH6 J5yjuqGF4SFCmK6wAIv9szZWxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3MJJ6S yGYCficktvZZFGYz1gs3MB8GA1UdIwQYMBaAFKkhTbmRhJspxPBFwzZHDp2CxIzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjkyOS9CRUJERUE5OEQ1 RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15bkU4RVhETmtjT25ZTEVq T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjkyOS9CRUJERUE5OEQ1RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15 bkU4RVhETmtjT25ZTEVqT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxjxu6IF+k1n/MJtCkavqlGDY7aR6HZxIXMV+2/Wcns/NBWLEX28xB wLE3MxJpQFHtR1NMZNqClOmcUq2fE4axSymPuab4ve5z3QgJQpp7bMhxViavSqrS YEd6AQSSb77frCIIbLcOSz1rnh8QLwp8bgnNJrD/sBAWb4pj5Nbia6QZsc8KP0DT 5li2Q2qxBEsopV0544fTZDfrA9PDYyoZy0EotHkl15WYCUbD8er3MSr8peonCzJZ myZScXHRevSRgYIZ7NBySPihiw8uQFgsJhPFO1B6c1LQ58UzP0pBRNk3EuoFvulw iggKBR39zmD0Y8xSN9kJe/4CyMMW+tMk -----END CERTIFICATE-----Generated at Sun May 11 14:43:58 2025 by rpki-client