$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft File: QRzJhRGOMuB6FVTV6boLTNKKSu8.mft (raw, json) Hash identifier: DB55hFZItW8kQ1D/NgDHaflm+pFAamREBkSq6kVi2Bc= Subject key identifier: A9:B4:D2:38:58:2F:E4:3A:E0:41:43:9F:CB:55:C3:1B:DB:83:FC:26 Authority key identifier: 41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF Certificate issuer: /CN=A91BEE0F/serialNumber=411CC985118E32E07A1554D5E9BA0B4CD28A4AEF Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft Manifest number: 01A3 Signing time: Fri 25 Apr 2025 02:27:06 +0000 Manifest this update: Fri 25 Apr 2025 02:27:05 +0000 Manifest next update: Fri 02 May 2025 02:27:05 +0000 Files and hashes: 1: QRzJhRGOMuB6FVTV6boLTNKKSu8.crl (hash: XE44BmLtYxsTUKIxtY+vFQIb1j+DcLr8GQpbDemhT9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.crl rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE0F, serialNumber=411CC985118E32E07A1554D5E9BA0B4CD28A4AEF Validity Not Before: Apr 25 02:27:05 2025 GMT Not After : May 2 02:27:05 2025 GMT Subject: CN=680af2fa-ce8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2d:38:9f:fd:ef:b3:f5:17:b9:28:60:b8:3b: f8:24:bf:52:6b:e5:df:c4:8d:62:30:c3:06:3e:93: e8:ed:b2:79:af:f4:de:7b:05:a9:4d:ee:3f:44:7a: 87:52:96:5e:c1:0e:3e:13:1b:5d:0a:13:40:56:02: 53:6d:9d:ff:0b:a8:ca:ea:ac:e4:94:4f:ec:7a:86: ae:f8:39:e6:8f:34:d5:28:9f:eb:69:6b:93:86:26: d8:fe:2d:2f:46:50:f2:cb:29:a9:a3:56:27:4c:85: d5:dc:44:32:5c:25:90:f1:53:37:32:57:14:35:58: e7:2d:e6:e3:77:ce:8c:3c:50:4c:5e:32:01:c0:61: 32:d6:9b:5f:16:bf:f1:75:5b:7a:ff:ee:46:09:35: 60:0b:d3:7c:28:31:02:da:27:11:ff:b1:12:d1:cc: 2c:6b:7d:13:74:f4:5d:40:a0:ca:97:28:48:5c:fd: f5:8f:b7:8e:82:5f:be:59:1e:a7:43:cc:4c:f6:34: f4:f9:62:45:8f:0e:e2:ca:22:f2:ba:05:8b:53:43: 63:f9:54:2f:3d:86:bc:41:99:86:c8:b5:bc:05:7a: f8:e5:79:72:9e:97:9a:37:f2:e2:e8:b2:d2:b7:c3: 80:89:18:41:85:db:65:c0:87:33:ca:1c:6e:e8:28: 8d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B4:D2:38:58:2F:E4:3A:E0:41:43:9F:CB:55:C3:1B:DB:83:FC:26 X509v3 Authority Key Identifier: keyid:41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:d1:8d:59:b1:41:00:40:e8:80:6b:05:fa:b0:02:d1:18:d7: c7:bb:34:5c:9c:10:c0:70:d7:09:be:01:2a:5e:57:26:22:40: 6c:85:55:a0:61:55:eb:54:7b:69:c7:ea:a6:d2:f6:cd:5a:aa: 9b:ec:20:b2:97:ef:bb:2a:28:cb:42:d0:dd:6f:f6:2d:41:5a: 9a:e4:03:5a:da:22:30:9e:b6:0d:ba:cf:f0:d6:fc:b6:bd:11: 01:62:dd:d7:cb:93:f4:6c:a5:0c:11:48:83:4f:ff:11:42:48: 16:3d:1c:31:e2:69:5a:f9:5b:cf:fa:32:13:03:2f:6e:d1:7b: d8:d4:c3:9b:bb:cb:76:a0:51:b2:28:5c:c2:0c:95:72:9b:dc: d3:6d:4c:7b:81:e2:33:1e:af:23:55:d5:4e:ad:7c:af:91:6f: 23:4e:06:70:33:f0:e8:47:b1:07:9a:bf:03:86:9d:e2:30:b0: 7e:d9:8e:da:02:94:88:52:22:4d:29:98:1c:3c:ca:d6:fe:b9: de:b1:61:df:32:07:22:1d:48:73:24:07:0a:87:09:bc:05:1a: 83:46:fb:d6:fd:ca:64:40:25:b8:3d:87:a9:b1:bf:e1:2c:69: 94:a5:a1:a5:6c:52:8d:25:39:3f:d3:a5:87:06:93:98:bc:be: ab:cf:4b:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMEYxMTAvBgNVBAUTKDQxMUNDOTg1MTE4RTMyRTA3QTE1NTRENUU5QkEwQjRD RDI4QTRBRUYwHhcNMjUwNDI1MDIyNzA1WhcNMjUwNTAyMDIyNzA1WjAYMRYwFAYD VQQDEw02ODBhZjJmYS1jZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1i04n/3vs/UXuShguDv4JL9Sa+XfxI1iMMMGPpPo7bJ5r/TeewWpTe4/RHqH UpZewQ4+ExtdChNAVgJTbZ3/C6jK6qzklE/seoau+DnmjzTVKJ/raWuThibY/i0v RlDyyympo1YnTIXV3EQyXCWQ8VM3MlcUNVjnLebjd86MPFBMXjIBwGEy1ptfFr/x dVt6/+5GCTVgC9N8KDEC2icR/7ES0cwsa30TdPRdQKDKlyhIXP31j7eOgl++WR6n Q8xM9jT0+WJFjw7iyiLyugWLU0Nj+VQvPYa8QZmGyLW8BXr45XlynpeaN/Li6LLS t8OAiRhBhdtlwIczyhxu6CiNNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKm00jhY L+Q64EFDn8tVwxvbg/wmMB8GA1UdIwQYMBaAFEEcyYURjjLgehVU1em6C0zSikrv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUwRi81RTExMTQ4RTlC QTkxMUVEQTMzRUVDNkJDNEY5QUUwMi9RUnpKaFJHT011QjZGVlRWNmJvTFROS0tT dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSekpoUkdPTXVCNkZWVFY2Ym9MVE5LS1N1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUwRi81RTExMTQ4RTlCQTkxMUVEQTMzRUVDNkJDNEY5QUUwMi9RUnpKaFJHT011 QjZGVlRWNmJvTFROS0tTdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX0Y1ZsUEAQOiAawX6sALRGNfHuzRcnBDAcNcJvgEqXlcmIkBshVWg YVXrVHtpx+qm0vbNWqqb7CCyl++7KijLQtDdb/YtQVqa5ANa2iIwnrYNus/w1vy2 vREBYt3Xy5P0bKUMEUiDT/8RQkgWPRwx4mla+VvP+jITAy9u0XvY1MObu8t2oFGy KFzCDJVym9zTbUx7geIzHq8jVdVOrXyvkW8jTgZwM/DoR7EHmr8Dhp3iMLB+2Y7a ApSIUiJNKZgcPMrW/rnesWHfMgciHUhzJAcKhwm8BRqDRvvW/cpkQCW4PYepsb/h LGmUpaGlbFKNJTk/06WHBpOYvL6rz0uF -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:02 2025 by rpki-client