$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: yO8+NPrivfKUiYI3/3FA+8fz1DfeoP3nrjuk7NDGlHI= Subject key identifier: 53:79:9F:6A:73:BD:23:CA:8E:D8:02:E9:35:BF:FB:54:ED:BD:46:2B Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 07BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 07BA Signing time: Thu 24 Apr 2025 20:56:59 +0000 Manifest this update: Thu 24 Apr 2025 20:56:58 +0000 Manifest next update: Thu 01 May 2025 20:56:58 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: azF6mliI2fWllBIIhdbLTUkh8khuYj74D7epWgzJ9hI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1978 (0x7ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Apr 24 20:56:58 2025 GMT Not After : May 1 20:56:58 2025 GMT Subject: CN=680aa59a-aed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cb:ac:4c:0a:37:2e:91:1e:f3:2c:6b:7c:a8: 1d:ed:2c:ac:a1:9d:ae:0a:7a:ed:e1:f2:85:32:f0: b0:87:82:6c:b6:31:3b:80:7a:d6:78:2c:a5:58:fc: 16:46:bd:1c:01:6c:18:82:e3:3e:e3:bc:fc:a6:2d: e6:0a:c7:5d:00:17:9a:1d:3f:21:20:f7:49:3e:ca: 53:cb:1f:c1:c5:bd:91:6b:c6:d0:f0:6a:f5:4e:53: ce:f1:cf:c9:e6:4e:6c:f4:da:b7:74:d4:de:09:c9: 32:a3:25:66:94:e5:0d:72:95:20:5e:50:99:9c:26: 62:11:fc:de:6f:7a:f9:43:d8:7f:d1:28:04:8b:48: bc:e9:dc:02:2a:ac:09:02:fa:6b:41:46:0d:0d:be: b4:36:d4:52:d5:88:05:7a:a4:fc:f1:c3:0f:8f:52: de:a6:dd:52:7a:ac:87:8c:ad:38:fe:96:e7:06:b4: 14:66:ac:7b:5d:c8:b6:84:8e:a2:7a:d7:ce:14:c2: 03:0b:93:23:da:a6:c7:02:27:d5:c0:56:97:b5:24: 3d:2e:c1:60:8a:0b:88:d3:7e:b5:da:a8:92:44:d4: a7:99:82:79:9a:50:03:31:e1:87:4e:c0:aa:d2:d3: 7c:45:85:06:a3:c7:03:06:75:ec:60:df:3b:ec:69: 85:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:79:9F:6A:73:BD:23:CA:8E:D8:02:E9:35:BF:FB:54:ED:BD:46:2B X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:69:56:35:d2:7e:90:25:22:30:9a:9d:f3:f8:82:f3:75:68: da:5f:c9:4d:1c:7b:d6:1e:0b:a9:1b:fc:d8:2b:5f:2d:f4:56: d5:3c:02:6e:7b:2f:39:99:24:84:83:0b:fd:f3:0c:2b:0c:6f: f6:11:8a:df:25:40:6c:12:fe:c4:9b:18:51:2f:7a:3c:6c:7a: e5:f2:68:11:99:7f:b9:c9:34:c8:30:2b:5f:65:77:8a:12:6c: 43:73:7b:b1:65:a8:54:0e:b0:f5:fc:49:8e:73:99:a3:f9:99: 9e:97:04:10:de:a1:52:aa:78:ed:8a:8f:a9:02:72:5f:d0:97: 60:cf:2e:b4:bf:b8:eb:03:2d:03:31:58:9d:6e:e3:3a:48:07: 9c:12:3b:b7:64:ac:d5:63:b0:13:07:0e:f3:e2:d6:ed:57:dc: 2c:85:06:1a:e6:ea:50:bd:f0:61:ee:c2:25:c2:2f:f3:d1:71: a0:87:23:e6:48:1f:27:4d:5d:ef:03:af:32:1a:ca:4f:10:78: c1:0d:2d:f9:1f:13:82:8f:77:4e:58:77:8b:48:0c:bb:1a:c6: 74:6e:b9:7e:ee:1a:c5:c7:2c:f2:36:14:ab:94:45:14:1c:b5: 18:13:f5:b8:cb:7d:49:7e:bb:08:6b:18:16:7d:23:b0:02:ee: a0:29:1c:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjUwNDI0MjA1NjU4WhcNMjUwNTAxMjA1NjU4WjAYMRYwFAYD VQQDEw02ODBhYTU5YS1hZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMusTAo3LpEe8yxrfKgd7SysoZ2uCnrt4fKFMvCwh4JstjE7gHrWeCylWPwW Rr0cAWwYguM+47z8pi3mCsddABeaHT8hIPdJPspTyx/Bxb2Ra8bQ8Gr1TlPO8c/J 5k5s9Nq3dNTeCckyoyVmlOUNcpUgXlCZnCZiEfzeb3r5Q9h/0SgEi0i86dwCKqwJ AvprQUYNDb60NtRS1YgFeqT88cMPj1Lept1SeqyHjK04/pbnBrQUZqx7Xci2hI6i etfOFMIDC5Mj2qbHAifVwFaXtSQ9LsFgiguI03612qiSRNSnmYJ5mlADMeGHTsCq 0tN8RYUGo8cDBnXsYN877GmFWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFN5n2pz vSPKjtgC6TW/+1TtvUYrMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFaVY10n6QJSIwmp3z+ILzdWjaX8lNHHvWHgupG/zYK18t9FbVPAJu ey85mSSEgwv98wwrDG/2EYrfJUBsEv7EmxhRL3o8bHrl8mgRmX+5yTTIMCtfZXeK EmxDc3uxZahUDrD1/EmOc5mj+ZmelwQQ3qFSqnjtio+pAnJf0Jdgzy60v7jrAy0D MVidbuM6SAecEju3ZKzVY7ATBw7z4tbtV9wshQYa5upQvfBh7sIlwi/z0XGghyPm SB8nTV3vA68yGspPEHjBDS35HxOCj3dOWHeLSAy7GsZ0brl+7hrFxyzyNhSrlEUU HLUYE/W4y31JfrsIaxgWfSOwAu6gKRxM -----END CERTIFICATE-----Generated at Sat Apr 26 05:28:36 2025 by rpki-client