$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: p/lVviCllDbA3hh2edz/IEuU0tHAFhXaHIkdrcZagxU= Subject key identifier: D0:7C:DD:02:F7:00:70:7D:C5:F4:33:F6:2F:43:FF:B8:A3:7B:B9:B0 Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 0224 Signing time: Fri 25 Apr 2025 01:43:43 +0000 Manifest this update: Fri 25 Apr 2025 01:43:43 +0000 Manifest next update: Fri 02 May 2025 01:43:43 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: 6fXZqdLaaqRrAdJ4Tf48m4n2YuxWF34pQNiF7vZ5qqM=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9, serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Apr 25 01:43:43 2025 GMT Not After : May 2 01:43:43 2025 GMT Subject: CN=680ae8cf-25c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e0:fd:02:3f:b3:85:8e:00:72:8b:91:84:91: 92:ec:2c:a6:fe:77:f6:b2:08:0a:55:ac:5c:0f:c9: 46:4f:bd:4b:18:2f:c3:39:7f:d7:8f:a4:6b:a7:30: d1:35:5b:6d:65:09:78:eb:5d:2f:25:8a:5e:06:0e: 12:8b:6d:02:9f:b4:31:d8:41:50:43:2b:34:88:a1: e9:76:a5:8e:36:b2:54:28:bc:1e:a2:7e:c8:c8:4e: ce:b3:51:c8:66:be:37:16:87:55:1d:89:0a:44:d7: b5:c2:26:41:b5:f4:f2:ae:35:af:6f:df:c1:55:b8: bb:00:1a:fc:63:32:96:48:4b:31:c5:19:1e:f7:ee: 8e:62:c2:a7:2b:79:03:9b:38:6f:31:0b:0e:d3:34: 29:cf:76:71:ee:a5:c5:5b:0c:76:97:a9:15:7a:ac: cf:26:73:2b:bf:43:f1:b6:3b:ad:63:86:2b:a0:2a: 2e:d6:2e:83:74:e5:05:64:a6:fb:3e:f2:ed:e0:93: 1e:7a:5c:c8:39:71:30:71:51:8c:42:71:c3:7a:52: 1a:ac:e6:31:98:f3:ad:3c:82:bd:7b:7e:db:c3:15: 28:e8:76:ce:95:66:64:1f:b2:78:6f:9e:c3:89:e6: a6:36:8c:58:07:a5:77:ae:a4:47:57:f2:2a:a5:6e: 7e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7C:DD:02:F7:00:70:7D:C5:F4:33:F6:2F:43:FF:B8:A3:7B:B9:B0 X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:82:fb:a3:ee:ca:71:ce:4a:1a:da:2f:65:8c:35:42:b0:68: ad:c3:df:40:6c:6f:69:26:ee:7a:71:ca:59:39:4d:d6:88:50: 4b:48:a8:ff:cc:e0:53:50:cd:c7:e4:f4:b1:81:4f:7d:db:7f: 49:88:aa:6d:e9:20:6b:79:0e:28:3a:e8:f0:56:53:3e:af:ff: 3b:54:16:a7:c7:14:56:ca:2e:79:2b:3b:23:b2:2d:c6:06:ac: 0c:c1:f5:7f:92:86:33:5b:d7:6e:2b:fb:aa:f1:7e:1a:b1:70: cf:eb:60:77:d0:cf:f4:6b:57:66:54:b8:7f:88:53:dc:24:7d: b2:e0:7c:52:21:74:f4:f8:ee:34:4a:4f:05:80:ac:6a:fe:30: bd:fd:9c:f9:c5:a6:2b:26:ae:d7:2b:82:aa:a7:0f:0b:3f:32: 1c:df:66:c0:b0:58:f0:57:f8:ee:4f:be:42:1b:37:99:38:41: 12:64:7a:de:54:d6:0a:0c:7f:00:da:28:08:01:e8:78:44:6d: e8:82:2c:9a:f3:86:ea:21:b2:bc:b3:63:d5:7f:d1:8f:7c:16: 83:c3:cc:f8:b3:11:8c:9d:d6:32:6e:eb:0c:31:05:da:ce:c5: 91:6b:06:03:4d:b0:9b:54:50:24:16:51:cf:d1:89:d2:50:55: 0a:16:ef:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjUwNDI1MDE0MzQzWhcNMjUwNTAyMDE0MzQzWjAYMRYwFAYD VQQDEw02ODBhZThjZi0yNWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweD9Aj+zhY4AcouRhJGS7Cym/nf2sggKVaxcD8lGT71LGC/DOX/Xj6RrpzDR NVttZQl4610vJYpeBg4Si20Cn7Qx2EFQQys0iKHpdqWONrJUKLweon7IyE7Os1HI Zr43FodVHYkKRNe1wiZBtfTyrjWvb9/BVbi7ABr8YzKWSEsxxRke9+6OYsKnK3kD mzhvMQsO0zQpz3Zx7qXFWwx2l6kVeqzPJnMrv0PxtjutY4YroCou1i6DdOUFZKb7 PvLt4JMeelzIOXEwcVGMQnHDelIarOYxmPOtPIK9e37bwxUo6HbOlWZkH7J4b57D ieamNoxYB6V3rqRHV/IqpW5+dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNB83QL3 AHB9xfQz9i9D/7ije7mwMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfgvuj7spxzkoa2i9ljDVCsGitw99AbG9pJu56ccpZOU3WiFBLSKj/ zOBTUM3H5PSxgU99239JiKpt6SBreQ4oOujwVlM+r/87VBanxxRWyi55Kzsjsi3G BqwMwfV/koYzW9duK/uq8X4asXDP62B30M/0a1dmVLh/iFPcJH2y4HxSIXT0+O40 Sk8FgKxq/jC9/Zz5xaYrJq7XK4Kqpw8LPzIc32bAsFjwV/juT75CGzeZOEESZHre VNYKDH8A2igIAeh4RG3ogiya84bqIbK8s2PVf9GPfBaDw8z4sxGMndYybusMMQXa zsWRawYDTbCbVFAkFlHP0YnSUFUKFu9/ -----END CERTIFICATE-----Generated at Sat Apr 26 05:46:04 2025 by rpki-client