$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft File: QvY5Q1NTT7CXXsweC49bZSOvr8U.mft (raw, json) Hash identifier: xq+GlNIlsFQoXwLrPYysKLE1mCegXSIIDv+0dmNHnC4= Subject key identifier: 14:04:AC:4F:D5:CE:E6:BD:92:54:34:76:C9:CC:AE:12:8F:62:05:81 Authority key identifier: 42:F6:39:43:53:53:4F:B0:97:5E:CC:1E:0B:8F:5B:65:23:AF:AF:C5 Certificate issuer: /CN=A91178F4/serialNumber=42F6394353534FB0975ECC1E0B8F5B6523AFAFC5 Certificate serial: 0BA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft Manifest number: 0BA9 Signing time: Thu 24 Apr 2025 18:53:01 +0000 Manifest this update: Thu 24 Apr 2025 18:53:00 +0000 Manifest next update: Thu 01 May 2025 18:53:00 +0000 Files and hashes: 1: QvY5Q1NTT7CXXsweC49bZSOvr8U.crl (hash: W7o9iIlbQjru2XUl+jFOaPE/oMK5DxknpkIqHLAK9tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.crl rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91178F4, serialNumber=42F6394353534FB0975ECC1E0B8F5B6523AFAFC5 Validity Not Before: Apr 24 18:53:00 2025 GMT Not After : May 1 18:53:00 2025 GMT Subject: CN=680a888d-d052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:30:93:3d:4f:5a:df:b8:29:a1:60:18:ea:c6: 83:da:18:d4:04:92:7d:05:cd:3c:49:b1:f9:27:2d: e3:8f:04:c8:5b:52:b8:80:53:73:2a:4d:a5:ab:77: fc:fd:33:0e:43:c0:05:b6:da:10:04:45:e1:2b:57: cf:3d:bb:3a:22:e9:47:d9:48:dd:1c:49:09:6c:2e: bd:d2:5d:64:e1:a8:d7:f3:ee:7a:3d:21:30:64:e2: 12:15:63:f1:17:80:16:29:3b:07:3c:bb:f7:e4:27: b0:c6:35:98:9a:74:15:60:da:73:4c:21:59:37:1a: 52:8c:73:ad:27:6e:90:7a:0b:74:91:a7:11:fc:bf: a7:23:da:5a:8e:eb:31:7b:17:48:08:b1:4d:27:5b: 0e:72:5d:9e:38:9a:7b:64:8e:e2:e0:fa:2f:00:87: f5:ec:a4:18:a5:fe:95:79:3c:20:ff:1d:52:f1:76: 79:28:36:55:b9:c2:03:ea:3d:02:e6:dc:1c:57:36: 1f:df:c4:3d:b3:6f:0b:e5:81:91:a3:dd:9a:31:16: bb:da:6f:8d:34:ae:e7:33:f9:76:3f:5e:9c:44:6e: 36:66:35:ee:eb:5e:85:87:ce:f0:60:e1:97:bf:36: 56:07:31:32:77:5c:69:3a:82:ae:77:f1:4d:23:49: d1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:04:AC:4F:D5:CE:E6:BD:92:54:34:76:C9:CC:AE:12:8F:62:05:81 X509v3 Authority Key Identifier: keyid:42:F6:39:43:53:53:4F:B0:97:5E:CC:1E:0B:8F:5B:65:23:AF:AF:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QvY5Q1NTT7CXXsweC49bZSOvr8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/D7065E34213211EA9A05FF40C4F9AE02/QvY5Q1NTT7CXXsweC49bZSOvr8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:f3:cc:b1:90:64:78:2c:4f:05:40:f4:0a:07:44:76:4c:d3: 03:07:ad:9f:63:a1:3a:ad:ba:eb:ee:3e:fc:26:76:f3:96:7c: c6:7a:dc:e0:dd:2f:5e:b7:db:71:9c:a5:d7:54:82:06:01:ed: 35:6b:74:8a:28:76:00:79:49:92:32:88:c1:6d:0f:1f:db:0a: 1e:1e:dd:27:81:03:27:90:a5:0c:2f:dd:8d:57:56:32:43:58: 17:95:cb:1a:e4:0d:13:3e:ad:62:22:b4:ce:9e:e4:14:19:58: c6:6e:5d:09:fa:48:26:d7:79:1d:7d:cd:48:40:c0:c9:95:6a: 13:fd:d0:5c:82:ef:1d:b7:29:c7:3d:0a:ed:83:2b:57:cd:f1: 75:70:81:20:fd:e5:9c:60:bb:cc:5d:40:a9:cf:77:63:a9:f0: c6:75:d6:c0:bb:89:21:aa:40:54:ca:35:89:e3:b9:45:07:17: bd:37:3a:77:93:8e:8c:48:21:45:ea:b2:a9:fb:76:c2:19:68: b2:eb:5d:dd:56:33:41:b6:32:07:8e:e4:e7:02:5b:9d:64:3e: f8:0c:5e:81:ec:10:f3:7e:6f:25:b8:71:de:53:3e:93:6a:f5: 8e:0c:a6:76:c5:00:1c:f5:06:d4:b8:b0:c3:e9:4e:33:d8:42: 1c:8d:36:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4RjQxMTAvBgNVBAUTKDQyRjYzOTQzNTM1MzRGQjA5NzVFQ0MxRTBCOEY1QjY1 MjNBRkFGQzUwHhcNMjUwNDI0MTg1MzAwWhcNMjUwNTAxMTg1MzAwWjAYMRYwFAYD VQQDEw02ODBhODg4ZC1kMDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDCTPU9a37gpoWAY6saD2hjUBJJ9Bc08SbH5Jy3jjwTIW1K4gFNzKk2lq3f8 /TMOQ8AFttoQBEXhK1fPPbs6IulH2UjdHEkJbC690l1k4ajX8+56PSEwZOISFWPx F4AWKTsHPLv35CewxjWYmnQVYNpzTCFZNxpSjHOtJ26Qegt0kacR/L+nI9pajusx exdICLFNJ1sOcl2eOJp7ZI7i4PovAIf17KQYpf6VeTwg/x1S8XZ5KDZVucID6j0C 5twcVzYf38Q9s28L5YGRo92aMRa72m+NNK7nM/l2P16cRG42ZjXu616Fh87wYOGX vzZWBzEyd1xpOoKud/FNI0nRuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQErE/V zua9klQ0dsnMrhKPYgWBMB8GA1UdIwQYMBaAFEL2OUNTU0+wl17MHguPW2Ujr6/F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9ENzA2NUUzNDIx MzIxMUVBOUEwNUZGNDBDNEY5QUUwMi9Rdlk1UTFOVFQ3Q1hYc3dlQzQ5YlpTT3Zy OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F2WTVRMU5UVDdDWFhzd2VDNDliWlNPdnI4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzhGNC9ENzA2NUUzNDIxMzIxMUVBOUEwNUZGNDBDNEY5QUUwMi9Rdlk1UTFOVFQ3 Q1hYc3dlQzQ5YlpTT3ZyOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw88yxkGR4LE8FQPQKB0R2TNMDB62fY6E6rbrr7j78JnbzlnzGetzg 3S9et9txnKXXVIIGAe01a3SKKHYAeUmSMojBbQ8f2woeHt0ngQMnkKUML92NV1Yy Q1gXlcsa5A0TPq1iIrTOnuQUGVjGbl0J+kgm13kdfc1IQMDJlWoT/dBcgu8dtynH PQrtgytXzfF1cIEg/eWcYLvMXUCpz3djqfDGddbAu4khqkBUyjWJ47lFBxe9Nzp3 k46MSCFF6rKp+3bCGWiy613dVjNBtjIHjuTnAludZD74DF6B7BDzfm8luHHeUz6T avWODKZ2xQAc9QbUuLDD6U4z2EIcjTZy -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:35 2025 by rpki-client