$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft File: QRfXbD7AS2IRM0hQpc1uowVTUFw.mft (raw, json) Hash identifier: 89WFlflubckwAIRS1GTVe+VSyzIcDq2xNd8WK8I5DIc= Subject key identifier: 6C:DB:3E:79:AD:27:0F:D7:A5:AE:18:76:02:67:B9:5F:01:C9:48:3A Authority key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C Certificate issuer: /CN=A91ED6B5/serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Certificate serial: 043D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft Manifest number: 0439 Signing time: Sat 10 May 2025 23:52:32 +0000 Manifest this update: Sat 10 May 2025 23:52:32 +0000 Manifest next update: Sat 17 May 2025 23:52:32 +0000 Files and hashes: 1: QRfXbD7AS2IRM0hQpc1uowVTUFw.crl (hash: nl7s1NjRomklu3coqAUtNfKdETB7TIx9dhtoQ2jtIUM=) 2: 06A899FECCF311EC86719729C4F9AE02.roa (hash: aXuFAPx3sTT3XGxZkToSNXJ/vwo2rNiJs7Ikunvy7v4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED6B5, serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Validity Not Before: May 10 23:52:32 2025 GMT Not After : May 17 23:52:32 2025 GMT Subject: CN=681fe6c0-2f80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:be:e3:bd:2d:ff:14:da:15:a8:be:d4:e1:32: 95:d5:60:85:07:b0:ed:b6:df:c3:fe:9d:f3:8d:6f: a0:28:79:f2:b2:3f:aa:26:cb:1b:22:4f:a2:2f:15: de:4a:58:9e:6d:ee:5d:f5:12:d2:aa:b3:70:c5:ec: 8e:d0:d4:01:74:d2:42:51:f7:d8:ca:84:15:a7:59: 2b:e1:ee:a4:a8:4d:a5:6b:df:7f:e1:84:3a:d1:b5: b5:b1:f8:58:c0:cb:bb:de:05:9d:22:f7:b6:ef:65: 16:ce:0d:0d:93:0f:68:3f:c7:34:55:2f:11:a5:5e: f1:52:7b:8b:c8:4c:fd:47:5f:66:c5:10:85:10:8d: 7e:e2:a9:a7:34:e7:62:59:92:66:ad:c6:9c:16:a4: 8b:1e:a0:7a:7f:b7:21:37:29:30:55:f7:82:86:f3: a4:70:2d:d6:7e:b6:a3:3f:df:73:36:ed:91:a0:a1: ac:45:0e:b1:14:f8:0f:31:48:b7:6e:bd:29:74:7c: 0f:ed:67:c3:04:80:01:98:fc:27:8a:64:09:b7:e1: c9:f6:f9:e5:ff:dd:db:68:53:c4:f1:26:13:52:e6: ca:2f:8a:91:3a:53:8d:a0:46:ca:ac:34:64:1b:a6: 9b:b2:c2:a4:00:d7:72:d8:1a:32:ac:6e:ed:7e:9b: 2c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DB:3E:79:AD:27:0F:D7:A5:AE:18:76:02:67:B9:5F:01:C9:48:3A X509v3 Authority Key Identifier: keyid:41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:cf:8d:a9:65:92:78:bb:5d:e4:37:4a:cf:ad:d3:7c:4f:ab: 4c:42:21:5a:7a:b4:77:aa:14:07:48:83:fe:8e:07:dd:1c:22: 04:3e:21:ba:a3:5e:80:b0:8e:c9:b5:73:fb:c3:9b:79:a5:18: 51:52:3d:11:12:7d:c5:18:b8:47:da:00:7b:39:ce:be:eb:b0: 32:1d:41:3e:25:45:65:09:03:d1:32:34:7d:ed:82:a0:b9:2d: 60:3d:6d:d7:65:9c:73:03:d4:42:ba:cc:00:05:f3:3b:d7:b0: 3b:41:76:a3:4a:5a:da:ca:2d:da:ad:45:5d:16:78:6c:41:d0: 9a:be:b4:54:73:4a:60:dd:c9:67:9a:03:d7:d1:fa:c6:02:2b: 4d:45:94:51:a2:3d:b6:21:d0:12:f6:1d:71:9d:de:c4:f4:d7: 02:81:62:fc:63:51:13:85:d2:29:ba:3d:2e:a0:fe:13:c2:e6: fc:be:41:3b:a0:69:ee:4b:36:00:d2:5f:fe:fc:b4:5a:86:56: 64:1a:04:5d:f5:8e:0d:cf:3c:16:d1:0b:78:1d:6c:87:40:26: bf:38:b2:64:4f:19:35:01:c8:96:5a:31:9c:d6:76:52:72:4b: 0a:19:3f:64:7d:ae:da:09:0a:be:b8:91:f6:a6:c3:59:d8:8f: 16:8c:78:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ2QjUxMTAvBgNVBAUTKDQxMTdENzZDM0VDMDRCNjIxMTMzNDg1MEE1Q0Q2RUEz MDU1MzUwNUMwHhcNMjUwNTEwMjM1MjMyWhcNMjUwNTE3MjM1MjMyWjAYMRYwFAYD VQQDEw02ODFmZTZjMC0yZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb7jvS3/FNoVqL7U4TKV1WCFB7Dttt/D/p3zjW+gKHnysj+qJssbIk+iLxXe Sliebe5d9RLSqrNwxeyO0NQBdNJCUffYyoQVp1kr4e6kqE2la99/4YQ60bW1sfhY wMu73gWdIve272UWzg0Nkw9oP8c0VS8RpV7xUnuLyEz9R19mxRCFEI1+4qmnNOdi WZJmrcacFqSLHqB6f7chNykwVfeChvOkcC3WfrajP99zNu2RoKGsRQ6xFPgPMUi3 br0pdHwP7WfDBIABmPwnimQJt+HJ9vnl/93baFPE8SYTUubKL4qROlONoEbKrDRk G6abssKkANdy2BoyrG7tfpss5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzbPnmt Jw/Xpa4YdgJnuV8ByUg6MB8GA1UdIwQYMBaAFEEX12w+wEtiETNIUKXNbqMFU1Bc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDZCNS9FRjQ2OUJGQzU5 NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMySVJNMGhRcGMxdW93VlRV RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSZlhiRDdBUzJJUk0waFFwYzF1b3dWVFVGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDZCNS9FRjQ2OUJGQzU5NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMy SVJNMGhRcGMxdW93VlRVRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMz42pZZJ4u13kN0rPrdN8T6tMQiFaerR3qhQHSIP+jgfdHCIEPiG6 o16AsI7JtXP7w5t5pRhRUj0REn3FGLhH2gB7Oc6+67AyHUE+JUVlCQPRMjR97YKg uS1gPW3XZZxzA9RCuswABfM717A7QXajSlrayi3arUVdFnhsQdCavrRUc0pg3cln mgPX0frGAitNRZRRoj22IdAS9h1xnd7E9NcCgWL8Y1EThdIpuj0uoP4Twub8vkE7 oGnuSzYA0l/+/LRahlZkGgRd9Y4NzzwW0Qt4HWyHQCa/OLJkTxk1AciWWjGc1nZS cksKGT9kfa7aCQq+uJH2psNZ2I8WjHjm -----END CERTIFICATE-----Generated at Sun May 11 15:46:27 2025 by rpki-client