$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft File: QRzJhRGOMuB6FVTV6boLTNKKSu8.mft (raw, json) Hash identifier: ihnmTKDM9C9lHelgV2bS+xHMyCcJnYr9gk/PisQUEKM= Subject key identifier: 9B:87:15:A0:C3:DE:69:05:E6:67:EF:DD:62:61:64:30:FD:DC:94:35 Authority key identifier: 41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF Certificate issuer: /CN=A91BEE0F/serialNumber=411CC985118E32E07A1554D5E9BA0B4CD28A4AEF Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft Manifest number: 01BB Signing time: Fri 13 Jun 2025 02:05:22 +0000 Manifest this update: Fri 13 Jun 2025 02:05:21 +0000 Manifest next update: Fri 20 Jun 2025 02:05:21 +0000 Files and hashes: 1: QRzJhRGOMuB6FVTV6boLTNKKSu8.crl (hash: xB93DYCQLTnbG8hdSOXQzWXIRx81gbeY0wzOJEVhZaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.crl rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE0F, serialNumber=411CC985118E32E07A1554D5E9BA0B4CD28A4AEF Validity Not Before: Jun 13 02:05:21 2025 GMT Not After : Jun 20 02:05:21 2025 GMT Subject: CN=684b8762-b147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:30:39:b7:02:65:c5:7b:e8:5a:4a:a8:74:dd: 6f:90:7b:b4:d7:48:84:0d:f7:a3:0b:3e:f5:23:af: 6d:85:b0:8f:eb:5d:cc:9a:66:63:5f:c0:41:78:7a: 66:da:02:04:54:2d:f8:4f:3f:c0:97:67:53:62:ce: e0:05:75:fd:1c:11:0d:c5:75:d2:82:d8:86:a9:9b: 41:6b:ed:c8:c8:29:5b:74:3e:36:0f:6b:5c:e4:86: c4:7d:43:6a:18:ae:4a:ec:27:38:77:65:a4:27:0b: 7d:45:4d:91:46:1c:3c:8b:72:26:df:50:1e:63:44: 7d:ad:a4:59:6a:bb:c3:40:83:30:97:1e:83:b1:4d: 20:9f:18:43:e3:a6:e2:83:dd:67:28:9e:0b:4c:a4: 75:d4:af:5a:09:fc:28:cf:bc:7c:89:f7:cb:f3:10: d5:32:49:74:32:5f:ac:fd:bd:51:14:61:36:c1:19: 7b:64:da:d6:be:68:1c:fe:b6:58:1b:41:aa:14:8c: 15:a6:0c:7e:51:de:32:54:69:1c:d7:67:c7:5a:8e: a4:3a:22:c6:fc:5e:f3:25:9c:7d:1e:7d:c6:a7:d1: 24:24:31:15:a7:02:a8:e9:1f:31:c7:73:05:41:31: 61:c2:ef:8b:d7:ea:cb:3c:b2:1c:38:04:2d:17:3e: eb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:87:15:A0:C3:DE:69:05:E6:67:EF:DD:62:61:64:30:FD:DC:94:35 X509v3 Authority Key Identifier: keyid:41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b5:68:67:84:01:8a:fa:9c:f3:76:79:ec:95:93:1d:cc:1b: b3:d1:59:57:43:5c:56:9c:0b:75:fe:ac:f6:31:e9:0f:4b:3b: 31:78:1b:45:0f:5e:a0:cf:27:8f:fc:e0:50:57:85:4e:90:47: c7:c2:45:80:d2:74:7f:83:76:c8:08:27:3e:f6:b8:f4:5f:97: 6f:ac:65:d1:12:29:01:24:f0:21:dd:0b:85:83:c1:1f:2b:bb: 38:26:cc:96:e4:46:56:41:1e:69:a3:9b:0c:86:2a:cc:1c:1d: 8f:9b:83:bb:53:8d:50:11:e9:fc:76:4f:90:32:4e:a3:cf:70: 9b:43:1b:09:bf:b7:2f:1a:d8:c5:55:eb:80:34:9c:b3:16:91: 12:46:dd:00:0b:1d:82:5c:20:0b:fa:58:f4:e9:bc:05:ec:b4: 5f:b1:48:99:95:cf:a4:e6:5f:69:05:a7:72:b4:52:55:a4:b9: 09:35:2f:03:0f:53:d2:f9:ca:f4:0d:2a:4b:e5:85:a8:7e:ae: 37:70:45:67:ff:59:84:d8:06:48:d4:73:7f:1f:fc:6d:4c:2b: 1b:6d:03:5e:cf:0a:35:f6:44:9f:74:4b:80:eb:49:e1:66:2d: f8:e8:e9:bd:0b:13:17:1f:1e:02:0e:68:f0:d7:20:88:a4:28: be:e6:5c:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMEYxMTAvBgNVBAUTKDQxMUNDOTg1MTE4RTMyRTA3QTE1NTRENUU5QkEwQjRD RDI4QTRBRUYwHhcNMjUwNjEzMDIwNTIxWhcNMjUwNjIwMDIwNTIxWjAYMRYwFAYD VQQDEw02ODRiODc2Mi1iMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DA5twJlxXvoWkqodN1vkHu010iEDfejCz71I69thbCP613MmmZjX8BBeHpm 2gIEVC34Tz/Al2dTYs7gBXX9HBENxXXSgtiGqZtBa+3IyClbdD42D2tc5IbEfUNq GK5K7Cc4d2WkJwt9RU2RRhw8i3Im31AeY0R9raRZarvDQIMwlx6DsU0gnxhD46bi g91nKJ4LTKR11K9aCfwoz7x8iffL8xDVMkl0Ml+s/b1RFGE2wRl7ZNrWvmgc/rZY G0GqFIwVpgx+Ud4yVGkc12fHWo6kOiLG/F7zJZx9Hn3Gp9EkJDEVpwKo6R8xx3MF QTFhwu+L1+rLPLIcOAQtFz7rSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuHFaDD 3mkF5mfv3WJhZDD93JQ1MB8GA1UdIwQYMBaAFEEcyYURjjLgehVU1em6C0zSikrv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUwRi81RTExMTQ4RTlC QTkxMUVEQTMzRUVDNkJDNEY5QUUwMi9RUnpKaFJHT011QjZGVlRWNmJvTFROS0tT dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSekpoUkdPTXVCNkZWVFY2Ym9MVE5LS1N1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUwRi81RTExMTQ4RTlCQTkxMUVEQTMzRUVDNkJDNEY5QUUwMi9RUnpKaFJHT011 QjZGVlRWNmJvTFROS0tTdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBltWhnhAGK+pzzdnnslZMdzBuz0VlXQ1xWnAt1/qz2MekPSzsxeBtF D16gzyeP/OBQV4VOkEfHwkWA0nR/g3bICCc+9rj0X5dvrGXREikBJPAh3QuFg8Ef K7s4JsyW5EZWQR5po5sMhirMHB2Pm4O7U41QEen8dk+QMk6jz3CbQxsJv7cvGtjF VeuANJyzFpESRt0ACx2CXCAL+lj06bwF7LRfsUiZlc+k5l9pBadytFJVpLkJNS8D D1PS+cr0DSpL5YWofq43cEVn/1mE2AZI1HN/H/xtTCsbbQNezwo19kSfdEuA60nh Zi346Om9CxMXHx4CDmjw1yCIpCi+5lzY -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:57 2025 by rpki-client