$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft File: QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft (raw, json) Hash identifier: 8a4UayjzPRJLE1bsL+OIS7cNeJsH7SZZ11jyUQNou/I= Subject key identifier: 58:97:35:36:C3:BB:B1:54:80:57:BA:12:F9:0D:BC:DB:25:B5:08:ED Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft Manifest number: B2 Signing time: Fri 25 Apr 2025 05:02:03 +0000 Manifest this update: Fri 25 Apr 2025 05:02:03 +0000 Manifest next update: Fri 02 May 2025 05:02:03 +0000 Files and hashes: 1: QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl (hash: 5lbVEDkVBFZAlbRIvIUOKDhoZCrZ4mZVMF2WsB3Pa40=) 2: 691C2F48169211EFBBB5BD6CC4F9AE02.roa (hash: JFnoGlMQvx0rfghWguqYEQOafVm5KcUTywblwtb1T0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Apr 25 05:02:03 2025 GMT Not After : May 2 05:02:03 2025 GMT Subject: CN=680b174b-999c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cb:d0:aa:b8:e2:b8:a4:61:6c:5a:20:d5:0c: 39:32:ca:30:a4:69:8e:db:0d:ae:fa:d3:59:bb:17: 8f:c3:08:26:0a:9a:d1:1f:1c:04:68:e4:d5:a2:a5: eb:19:f3:cf:cd:99:9b:9d:a0:31:07:d3:7f:27:5b: 9e:7a:d1:0a:6f:0c:47:d2:e3:bb:a0:46:73:49:ec: 5b:14:2f:07:83:f3:b9:f0:1c:fa:9a:7b:be:31:89: 5a:3d:0f:e6:0e:be:c7:69:0b:82:97:4b:e6:cc:26: fe:d3:f1:2b:02:65:0f:20:02:d5:14:b4:60:42:da: d4:9c:ec:b1:55:89:f0:55:b0:d5:bc:1b:45:5c:4c: e1:3a:ce:69:c8:4c:c1:e2:cb:0b:9c:79:32:8f:6e: 7b:96:8d:94:22:11:22:ef:7a:5e:a9:8b:54:90:e1: 3f:90:f3:85:d3:e5:24:0e:a8:cb:ce:15:62:d5:10: 17:2e:fa:4d:3d:ff:49:f4:55:ca:84:3b:db:74:9f: f9:64:69:98:65:43:2a:8d:7c:23:91:f9:57:d6:25: 8d:48:53:ca:37:6f:b1:a3:de:a1:5d:f7:3d:75:80: a1:fa:8d:2e:3d:26:85:07:a5:1b:d8:69:6c:49:0b: 3b:83:d5:d0:4e:e6:ba:b5:f3:55:c9:21:33:15:de: 10:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:97:35:36:C3:BB:B1:54:80:57:BA:12:F9:0D:BC:DB:25:B5:08:ED X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:77:31:76:20:8e:d8:09:cb:ab:3f:8d:56:be:bd:6e:71:05: 35:b9:ad:f8:ab:7c:0f:57:61:eb:cc:79:6e:cf:97:61:bb:60: 93:b3:a6:0c:55:74:0e:12:d7:45:63:57:c5:d2:0b:b9:20:03: 32:13:f3:a5:f0:6c:d5:84:bc:34:51:19:75:13:59:36:e5:99: 01:83:f8:41:20:d9:38:30:5e:dd:ac:7c:35:07:42:5b:8f:62: 20:44:97:04:10:d4:c8:10:14:51:e2:fa:0b:b3:81:00:d9:78: f0:ce:6d:1e:91:e1:a8:21:ba:27:a5:ea:e5:ed:8a:00:83:77: 28:1d:b6:0a:6c:c4:cc:b3:e3:37:e4:e5:2d:eb:72:df:c3:4d: bb:52:e5:1b:02:bf:f2:60:c4:73:e7:13:04:7e:fa:fa:b8:69: 6e:0c:6c:de:e0:2f:f6:f5:a9:37:e8:5e:6e:bb:01:28:b6:e9: 73:d2:20:b5:50:f8:d0:b3:91:61:17:94:73:eb:b9:91:4f:b5: 16:02:c4:46:ea:3f:23:51:c1:c0:27:fd:31:93:76:a5:f8:e8: 44:58:db:6a:74:62:85:76:db:e8:77:e2:52:9c:d5:58:27:c8: 79:69:f9:a5:d6:fa:11:0b:5f:c7:63:14:ac:45:1b:de:ce:41: c4:bb:5d:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUwNDI1MDUwMjAzWhcNMjUwNTAyMDUwMjAzWjAYMRYwFAYD VQQDEw02ODBiMTc0Yi05OTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcvQqrjiuKRhbFog1Qw5MsowpGmO2w2u+tNZuxePwwgmCprRHxwEaOTVoqXr GfPPzZmbnaAxB9N/J1ueetEKbwxH0uO7oEZzSexbFC8Hg/O58Bz6mnu+MYlaPQ/m Dr7HaQuCl0vmzCb+0/ErAmUPIALVFLRgQtrUnOyxVYnwVbDVvBtFXEzhOs5pyEzB 4ssLnHkyj257lo2UIhEi73peqYtUkOE/kPOF0+UkDqjLzhVi1RAXLvpNPf9J9FXK hDvbdJ/5ZGmYZUMqjXwjkflX1iWNSFPKN2+xo96hXfc9dYCh+o0uPSaFB6Ub2Gls SQs7g9XQTua6tfNVySEzFd4QbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiXNTbD u7FUgFe6EvkNvNsltQjtMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC81ODQwQTA3QzEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRN QmZGM1k2bWJ1eU9KdlM2cjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWdzF2II7YCcurP41Wvr1ucQU1ua34q3wPV2HrzHluz5dhu2CTs6YM VXQOEtdFY1fF0gu5IAMyE/Ol8GzVhLw0URl1E1k25ZkBg/hBINk4MF7drHw1B0Jb j2IgRJcEENTIEBRR4voLs4EA2Xjwzm0ekeGoIbonperl7YoAg3coHbYKbMTMs+M3 5OUt63Lfw027UuUbAr/yYMRz5xMEfvr6uGluDGze4C/29ak36F5uuwEotulz0iC1 UPjQs5FhF5Rz67mRT7UWAsRG6j8jUcHAJ/0xk3al+OhEWNtqdGKFdtvod+JSnNVY J8h5afml1voRC1/HYxSsRRvezkHEu11H -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:12 2025 by rpki-client