$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft File: qVBr_Nym0SxcNyUDFHD30eBncFI.mft (raw, json) Hash identifier: jEFTyumaqqs4G2t8Fx/BSbKiiNU4qHT4xwVi31l9RIQ= Subject key identifier: 10:37:CE:D8:1D:A1:73:C7:5B:99:9E:92:0F:50:03:15:35:B8:09:FA Authority key identifier: A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 Certificate issuer: /CN=A91C5ED0/serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Certificate serial: 136C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft Manifest number: 2977 Signing time: Thu 24 Apr 2025 16:59:36 +0000 Manifest this update: Thu 24 Apr 2025 16:59:36 +0000 Manifest next update: Thu 01 May 2025 16:59:36 +0000 Files and hashes: 1: qVBr_Nym0SxcNyUDFHD30eBncFI.crl (hash: aPnhtQMNcq2xYWVX//EYPigmuzYDfwwRyJBcDMYZhcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4972 (0x136c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Validity Not Before: Apr 24 16:59:36 2025 GMT Not After : May 1 16:59:36 2025 GMT Subject: CN=680a6df8-a10b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b9:e0:aa:83:72:25:ba:d1:71:01:bd:d0:94: 1a:74:f0:df:6d:77:a8:0b:94:8b:04:cd:d9:d4:5e: 7a:c2:a5:97:3f:db:b1:03:54:11:80:70:29:11:5d: 79:00:7f:fa:72:7a:6f:3b:18:a1:35:b0:7e:1a:15: 93:05:52:67:ac:78:55:85:5d:9b:77:a3:f5:90:14: 97:5e:b1:c3:17:c0:09:39:35:bd:0b:6e:7e:78:55: 7d:f3:30:13:69:fe:86:3b:66:dd:47:46:e7:8c:9a: ff:da:c6:82:85:fe:00:2d:f2:a5:c2:e0:fb:0f:b2: 09:40:77:ec:fe:d7:7b:43:0a:55:e0:a4:2b:c1:be: 90:2a:2c:99:e5:cc:f1:a8:7d:c7:a4:a6:ee:a2:36: 30:12:4f:22:b5:be:b8:ad:d4:e0:ef:ed:41:fd:0b: b2:c5:84:bd:05:7f:3c:02:88:d1:e8:b4:cc:7c:53: 77:5e:25:b2:f3:b5:63:6c:32:97:eb:3a:f2:17:16: 07:a5:cd:d9:db:84:fd:68:7e:87:cf:da:d7:c8:56: e1:8c:32:b6:52:da:93:32:00:cd:d1:dd:d2:85:15: d3:d6:08:0a:5a:14:8d:35:fb:ba:1f:e5:eb:a6:a8: a6:58:22:23:a0:3a:96:42:7a:0e:e9:e9:f0:db:4f: 76:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:37:CE:D8:1D:A1:73:C7:5B:99:9E:92:0F:50:03:15:35:B8:09:FA X509v3 Authority Key Identifier: keyid:A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:2a:39:ca:a5:fa:39:54:63:4f:9e:41:0c:f4:7e:1c:1e:1f: 02:ca:87:28:bf:b7:4f:2e:66:2d:c1:b5:61:91:b2:03:d4:cc: f8:d8:ca:4f:77:9b:05:42:83:9f:28:79:19:1c:fb:16:77:4c: 8c:a0:7b:16:d6:82:7e:24:5b:70:15:32:f3:01:4e:f7:cf:09: 55:6a:67:c0:37:4c:e8:c5:07:b0:74:8b:2d:ed:da:68:cf:17: 5e:36:64:a9:f8:bb:84:e1:96:56:f4:00:ab:60:5d:2d:48:ca: 5a:cd:a1:98:a5:2e:44:0a:47:ec:28:d6:e0:88:66:a6:b7:09: c7:e6:42:45:a8:b8:62:9d:40:9c:01:9f:bb:c3:53:76:4c:53: f3:94:d4:12:19:40:0c:07:4d:0e:0b:c2:76:6d:71:14:ae:42: 86:6e:32:d9:f3:69:c7:56:85:80:cc:43:82:31:b7:97:1b:67: 3f:e8:d3:08:92:ad:3e:00:f3:d7:09:70:f1:96:44:d5:d2:c6: df:6d:eb:80:8c:aa:70:b6:24:4a:35:98:5a:63:b2:4b:1d:cb: 97:de:54:3b:e2:6c:4a:b5:87:c1:01:5f:9c:7e:ab:cd:ae:bf: f9:99:6d:8f:7b:0d:82:42:f4:84:d7:b1:49:cd:3a:24:01:ab: ad:e6:d4:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE5NTA2QkZDRENBNkQxMkM1QzM3MjUwMzE0NzBGN0Qx RTA2NzcwNTIwHhcNMjUwNDI0MTY1OTM2WhcNMjUwNTAxMTY1OTM2WjAYMRYwFAYD VQQDEw02ODBhNmRmOC1hMTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rngqoNyJbrRcQG90JQadPDfbXeoC5SLBM3Z1F56wqWXP9uxA1QRgHApEV15 AH/6cnpvOxihNbB+GhWTBVJnrHhVhV2bd6P1kBSXXrHDF8AJOTW9C25+eFV98zAT af6GO2bdR0bnjJr/2saChf4ALfKlwuD7D7IJQHfs/td7QwpV4KQrwb6QKiyZ5czx qH3HpKbuojYwEk8itb64rdTg7+1B/QuyxYS9BX88AojR6LTMfFN3XiWy87VjbDKX 6zryFxYHpc3Z24T9aH6Hz9rXyFbhjDK2UtqTMgDN0d3ShRXT1ggKWhSNNfu6H+Xr pqimWCIjoDqWQnoO6enw2092zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBA3ztgd oXPHW5mekg9QAxU1uAn6MB8GA1UdIwQYMBaAFKlQa/zcptEsXDclAxRw99HgZ3BS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBTeGNOeVVERkhEMzBlQm5j RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FWQnJfTnltMFN4Y055VURGSEQzMGVCbmNGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBT eGNOeVVERkhEMzBlQm5jRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhKjnKpfo5VGNPnkEM9H4cHh8Cyocov7dPLmYtwbVhkbID1Mz42MpP d5sFQoOfKHkZHPsWd0yMoHsW1oJ+JFtwFTLzAU73zwlVamfAN0zoxQewdIst7dpo zxdeNmSp+LuE4ZZW9ACrYF0tSMpazaGYpS5ECkfsKNbgiGamtwnH5kJFqLhinUCc AZ+7w1N2TFPzlNQSGUAMB00OC8J2bXEUrkKGbjLZ82nHVoWAzEOCMbeXG2c/6NMI kq0+APPXCXDxlkTV0sbfbeuAjKpwtiRKNZhaY7JLHcuX3lQ74mxKtYfBAV+cfqvN rr/5mW2Pew2CQvSE17FJzTokAaut5tQE -----END CERTIFICATE-----Generated at Sat Apr 26 09:03:48 2025 by rpki-client