$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: L05Rvyuj0+y7ELdrUudXKma0f20q6wNq1CYR4Wllnm8= Subject key identifier: 91:F8:DD:55:35:99:50:B1:26:12:EB:72:84:23:A8:14:06:A9:CC:37 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 010F Signing time: Fri 25 Apr 2025 03:58:38 +0000 Manifest this update: Fri 25 Apr 2025 03:58:37 +0000 Manifest next update: Fri 02 May 2025 03:58:37 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: azGZyud01/r87uVdj0f8V+ci92L5k7AlmvUKivWmGZM=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Apr 25 03:58:37 2025 GMT Not After : May 2 03:58:37 2025 GMT Subject: CN=680b086e-89dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:13:92:d6:e9:b3:ac:3a:c0:0b:00:e2:68:53: 6d:0f:2d:b6:7d:b3:6b:de:52:65:87:d0:4c:7d:ac: 20:b6:3d:87:78:6e:ee:cb:3c:b8:b8:a0:3b:cb:0d: 8f:08:9e:8a:99:26:40:4f:f4:86:b7:f3:6d:99:5e: 4e:bc:40:9e:75:36:2e:47:fd:e6:2c:cd:f6:f3:e3: c2:21:30:32:5f:5a:eb:92:9c:98:ef:68:bd:a4:c2: 8c:e8:1d:38:11:db:51:86:aa:9e:b9:de:6f:fb:4b: d5:8d:22:8a:4f:7a:20:72:77:17:c7:5c:be:55:f8: db:25:f4:9d:46:bd:01:26:3a:44:fa:1c:85:12:6a: 60:ed:db:14:c3:21:e3:a5:4f:4d:3e:38:f0:2d:bd: ca:8c:35:29:c2:d9:c4:7d:de:31:9e:75:41:68:f0: 98:23:d2:b0:14:68:ce:6d:a8:30:dd:d3:93:2a:a5: c4:22:94:13:56:32:6f:35:30:e9:d6:3d:09:d5:69: f3:31:b5:90:2f:2e:88:15:3a:4f:e2:1b:a6:a6:31: e0:16:a8:ba:4d:9b:c4:17:98:c4:1d:8a:6d:77:25: 39:3a:ed:03:2b:88:92:15:82:2c:3c:4b:2c:de:db: 0e:11:ca:31:51:23:0c:a4:25:6f:de:05:39:fc:ce: 6c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F8:DD:55:35:99:50:B1:26:12:EB:72:84:23:A8:14:06:A9:CC:37 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:7b:e9:71:03:8a:e1:c4:f5:1c:6b:fc:6f:b4:27:92:14:8e: 43:6d:fb:4b:56:2c:43:be:76:32:7e:e3:3a:00:f3:6c:41:d3: 31:5b:1d:e7:41:5c:55:d1:f2:5c:04:12:09:8f:bc:69:6c:3b: cb:27:dc:43:b1:5a:0e:ea:2f:bf:84:61:a6:67:97:02:b2:40: 9e:16:f9:82:ca:26:e6:d3:d0:e8:e8:50:58:84:e5:4b:8f:81: 43:5c:8e:eb:b1:ae:df:4f:9d:bf:d5:68:de:78:55:9a:94:9f: 3c:5d:41:3e:69:61:85:22:c2:d0:ca:1f:03:e6:a9:bc:6b:d1: 71:bd:6d:f0:0a:13:71:4f:3c:ec:2c:6f:af:e6:ea:c4:6e:27: d5:dc:50:c5:79:4a:42:0d:24:55:b5:d0:1c:23:ec:a9:81:15: 9e:10:9d:03:6e:c3:fc:0b:3e:3a:0d:56:46:7e:dd:96:8d:36: 44:84:da:de:13:1c:cb:fa:06:96:15:ce:9e:95:64:d5:dc:76: b8:0b:c8:bc:f9:79:fd:50:97:c2:03:67:b9:e3:19:7d:8a:02: ab:2f:0c:12:d2:ac:43:ea:57:e2:88:dc:71:4e:99:0a:c3:1c: a5:5b:38:bf:a8:01:88:9b:fe:07:bb:ed:db:9a:fd:55:9c:5d: 3e:c5:5c:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUwNDI1MDM1ODM3WhcNMjUwNTAyMDM1ODM3WjAYMRYwFAYD VQQDEw02ODBiMDg2ZS04OWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwROS1umzrDrACwDiaFNtDy22fbNr3lJlh9BMfawgtj2HeG7uyzy4uKA7yw2P CJ6KmSZAT/SGt/NtmV5OvECedTYuR/3mLM328+PCITAyX1rrkpyY72i9pMKM6B04 EdtRhqqeud5v+0vVjSKKT3ogcncXx1y+VfjbJfSdRr0BJjpE+hyFEmpg7dsUwyHj pU9NPjjwLb3KjDUpwtnEfd4xnnVBaPCYI9KwFGjObagw3dOTKqXEIpQTVjJvNTDp 1j0J1WnzMbWQLy6IFTpP4humpjHgFqi6TZvEF5jEHYptdyU5Ou0DK4iSFYIsPEss 3tsOEcoxUSMMpCVv3gU5/M5sMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJH43VU1 mVCxJhLrcoQjqBQGqcw3MB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAae+lxA4rhxPUca/xvtCeSFI5DbftLVixDvnYyfuM6APNsQdMxWx3n QVxV0fJcBBIJj7xpbDvLJ9xDsVoO6i+/hGGmZ5cCskCeFvmCyibm09Do6FBYhOVL j4FDXI7rsa7fT52/1WjeeFWalJ88XUE+aWGFIsLQyh8D5qm8a9FxvW3wChNxTzzs LG+v5urEbifV3FDFeUpCDSRVtdAcI+ypgRWeEJ0DbsP8Cz46DVZGft2WjTZEhNre ExzL+gaWFc6elWTV3Ha4C8i8+Xn9UJfCA2e54xl9igKrLwwS0qxD6lfiiNxxTpkK wxylWzi/qAGIm/4Hu+3bmv1VnF0+xVxC -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:41 2025 by rpki-client