$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: K9NVz64TmSNle0CH4A6kPKzRxILgezmCQ7r++6BahZ0= Subject key identifier: E8:98:FC:0A:07:C1:79:87:77:8C:81:D7:EA:46:43:17:40:07:A8:12 Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 18DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 18B4 Signing time: Wed 14 May 2025 16:34:49 +0000 Manifest this update: Wed 14 May 2025 16:34:49 +0000 Manifest next update: Wed 21 May 2025 16:34:49 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: cKkYKdyadvNq2pkJExg302w06VahkJJHPFZCg6e54r0=) 2: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=) 3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6366 (0x18de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: May 14 16:34:49 2025 GMT Not After : May 21 16:34:49 2025 GMT Subject: CN=6824c629-69e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d9:a4:bb:f0:2c:8c:f9:df:6b:80:02:a6:74: 05:00:5a:21:53:78:a9:18:67:9c:61:67:d5:5e:8c: 6a:7d:c8:17:fb:22:64:59:b2:6e:b2:ee:d6:fa:7d: 77:d5:8c:07:ce:34:ab:b9:73:ab:17:16:2c:97:95: 3f:ba:08:6b:7c:a7:8c:c2:2a:2e:5e:fb:1b:35:69: 54:b6:75:f2:b7:3c:81:71:70:45:be:b8:c9:5f:b8: 5c:90:46:03:fa:25:d6:67:4b:24:05:13:34:79:f1: 71:11:70:ca:bc:3e:fb:11:1e:d2:27:5d:c0:57:a9: 55:f5:d5:3d:88:15:dc:4c:63:7f:5c:e7:a2:3e:c6: 0f:fe:86:21:c7:7a:9f:b8:3d:43:35:2c:8f:0b:1b: ce:b8:28:bc:7f:49:76:37:00:77:5a:e4:eb:e1:9b: 5d:0a:88:c9:62:14:38:a3:c1:7f:d7:e5:f3:73:e1: 03:1b:ea:9e:7d:6c:a8:d6:c0:4a:60:b1:c0:68:b6: 59:2a:bd:77:e1:15:6f:3b:87:65:25:28:8d:18:68: cd:00:f1:4a:d2:e3:a2:c7:6a:61:fa:c8:f2:82:6b: f9:77:9d:eb:56:2d:08:e3:28:7d:1f:54:6d:b8:91: f2:ab:2f:19:69:7f:16:7b:3a:ee:b6:48:6a:52:41: 4a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:98:FC:0A:07:C1:79:87:77:8C:81:D7:EA:46:43:17:40:07:A8:12 X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:44:b8:9c:fc:be:ac:e1:d8:d7:cc:0a:09:28:73:d2:01:44: 35:c2:90:57:a2:30:d2:31:a8:6d:1b:fb:b5:6b:21:15:22:b1: 13:d0:22:d9:d1:f4:71:6d:0e:9e:75:29:d5:c8:fc:3e:56:8d: 51:fa:f6:ad:7a:36:c9:0e:a1:c6:de:57:8b:84:5f:aa:5a:fa: 52:2f:79:22:1a:e3:08:d0:2b:c1:9f:6a:c1:b9:19:6f:7b:a5: 8b:40:87:eb:e7:91:be:9f:92:fa:b3:c2:82:ba:11:3e:6c:a3: 2d:bf:46:48:f3:aa:7c:f7:aa:f2:14:24:92:3a:a5:12:b2:71: ee:bc:b0:39:8c:99:22:e7:12:a1:bc:04:1a:6b:7f:e7:cb:c1: f6:f6:0d:78:07:15:91:55:1d:3e:00:bd:35:d6:44:07:99:fd: 27:5f:5d:a2:36:0d:e0:06:ea:cf:11:05:86:3d:d5:41:ca:60: 24:da:33:ff:d7:d4:cc:60:18:68:23:ce:e9:d5:60:38:45:93: b0:9d:82:76:3a:7b:e8:84:92:ea:cb:46:43:57:ab:04:44:b8: 08:9a:d9:3b:96:98:3d:45:ea:0f:aa:b0:41:44:c7:59:f6:57: 03:1e:e2:59:45:5a:e5:f3:a9:a7:d1:84:e6:54:4b:b3:10:d9: 04:ec:a8:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUwNTE0MTYzNDQ5WhcNMjUwNTIxMTYzNDQ5WjAYMRYwFAYD VQQDEw02ODI0YzYyOS02OWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNmku/AsjPnfa4ACpnQFAFohU3ipGGecYWfVXoxqfcgX+yJkWbJusu7W+n13 1YwHzjSruXOrFxYsl5U/ughrfKeMwiouXvsbNWlUtnXytzyBcXBFvrjJX7hckEYD +iXWZ0skBRM0efFxEXDKvD77ER7SJ13AV6lV9dU9iBXcTGN/XOeiPsYP/oYhx3qf uD1DNSyPCxvOuCi8f0l2NwB3WuTr4ZtdCojJYhQ4o8F/1+Xzc+EDG+qefWyo1sBK YLHAaLZZKr134RVvO4dlJSiNGGjNAPFK0uOix2ph+sjygmv5d53rVi0I4yh9H1Rt uJHyqy8ZaX8WezrutkhqUkFKnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiY/AoH wXmHd4yB1+pGQxdAB6gSMB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeRLic/L6s4djXzAoJKHPSAUQ1wpBXojDSMahtG/u1ayEVIrET0CLZ 0fRxbQ6edSnVyPw+Vo1R+vatejbJDqHG3leLhF+qWvpSL3kiGuMI0CvBn2rBuRlv e6WLQIfr55G+n5L6s8KCuhE+bKMtv0ZI86p896ryFCSSOqUSsnHuvLA5jJki5xKh vAQaa3/ny8H29g14BxWRVR0+AL011kQHmf0nX12iNg3gBurPEQWGPdVBymAk2jP/ 19TMYBhoI87p1WA4RZOwnYJ2OnvohJLqy0ZDV6sERLgImtk7lpg9ReoPqrBBRMdZ 9lcDHuJZRVrl86mn0YTmVEuzENkE7Kj5 -----END CERTIFICATE-----Generated at Thu May 15 18:09:24 2025 by rpki-client