$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: ZRcjmTqPE/WZjz5HCjIqDlMYSLsPPFXZSO6S79jtod0= Subject key identifier: DA:F8:8F:AE:2D:4F:AD:C9:B0:BD:5D:51:60:7A:51:43:B6:FE:17:3E Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 01F4 Signing time: Sun 15 Jun 2025 01:44:54 +0000 Manifest this update: Sun 15 Jun 2025 01:44:53 +0000 Manifest next update: Sun 22 Jun 2025 01:44:53 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: KCq0ohCjA5nOJm/S0qcl9PS67JwJi+myjHVgEQoKNxw=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Jun 15 01:44:53 2025 GMT Not After : Jun 22 01:44:53 2025 GMT Subject: CN=684e2595-4de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:22:bc:6f:18:f4:eb:ee:97:08:0c:5e:d5:34: 28:cb:18:98:53:e7:03:de:f5:ab:f6:77:2f:97:43: a3:c3:80:14:b4:8e:7a:23:a4:08:4b:07:7d:3f:bf: 45:29:60:23:bf:d4:03:c7:ca:eb:1a:72:7f:d4:20: ec:72:99:9d:6f:9c:6e:c7:b8:ba:67:fb:b3:24:40: 0f:5c:48:32:15:74:0b:a8:c2:53:cf:bc:76:8c:75: fe:c5:b1:05:22:3d:80:01:bd:6d:49:2a:b2:2c:f7: 4f:06:1c:60:50:75:5c:0b:ef:4b:5c:27:3e:5b:8f: 51:a1:4c:f5:d0:8b:85:1e:62:98:fd:e2:a8:cb:32: 2e:71:08:85:5b:08:e4:57:a8:e5:10:e4:5f:ac:46: 84:e6:60:ee:b9:01:fb:c5:5a:86:3a:cf:ef:ab:3e: 99:53:d9:ee:22:59:50:8a:ed:43:d6:79:48:b5:ca: c8:0c:25:73:73:8d:99:0b:e4:40:00:60:52:99:60: aa:0c:fd:72:d0:e8:9b:33:c1:4a:4f:89:8d:f9:27: 96:47:22:8e:6d:7b:f6:4f:a4:18:35:69:03:88:72: 79:dd:2e:6c:0d:78:3c:9f:70:2b:80:a0:ae:d0:3d: 0f:a7:ee:0d:79:d2:f2:bd:36:8e:ec:33:e7:9b:b7: f0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F8:8F:AE:2D:4F:AD:C9:B0:BD:5D:51:60:7A:51:43:B6:FE:17:3E X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:0d:40:72:02:08:42:71:4b:e7:a4:af:6a:64:cc:5f:f6:9c: 3d:4c:57:3d:13:8a:2e:fc:c9:71:49:74:94:3e:15:c1:17:7c: dc:22:db:33:df:2c:44:16:d6:92:19:8b:f8:c7:8e:bc:db:18: 65:32:b3:ec:1c:67:ba:60:7a:1f:64:d1:ec:5c:31:1c:1e:36: 44:60:3a:e3:08:5d:e3:b8:f9:f3:d0:e7:e6:52:67:58:56:c6: ed:17:e9:07:05:61:14:51:8b:3b:68:3a:04:13:ea:8c:3e:69: 6e:af:38:9b:65:95:2a:38:f1:28:97:ea:b1:6e:81:f2:4f:4f: f6:68:87:b7:db:e6:21:be:5e:6e:60:74:0a:0a:00:dc:c3:19: 81:34:30:6f:0b:02:c6:3f:cc:bd:cb:ee:d0:8f:a6:ea:61:2f: bd:16:72:d0:7f:75:4c:bf:ec:6c:f4:c0:d5:7d:b5:f9:5f:19: 90:00:ed:e0:45:13:14:84:78:c4:04:fb:0c:95:5c:0a:2e:4c: a5:6e:99:06:dc:2e:bb:16:41:53:67:d1:a0:79:4f:38:02:1b: 1a:2d:13:66:d4:60:2e:e7:02:57:58:25:14:34:6c:75:a9:7f: 45:7f:0e:f4:ad:5d:a4:c3:7c:82:11:3b:0d:ce:d4:fa:95:c5: ed:02:94:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUwNjE1MDE0NDUzWhcNMjUwNjIyMDE0NDUzWjAYMRYwFAYD VQQDEw02ODRlMjU5NS00ZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySK8bxj06+6XCAxe1TQoyxiYU+cD3vWr9ncvl0Ojw4AUtI56I6QISwd9P79F KWAjv9QDx8rrGnJ/1CDscpmdb5xux7i6Z/uzJEAPXEgyFXQLqMJTz7x2jHX+xbEF Ij2AAb1tSSqyLPdPBhxgUHVcC+9LXCc+W49RoUz10IuFHmKY/eKoyzIucQiFWwjk V6jlEORfrEaE5mDuuQH7xVqGOs/vqz6ZU9nuIllQiu1D1nlItcrIDCVzc42ZC+RA AGBSmWCqDP1y0OibM8FKT4mN+SeWRyKObXv2T6QYNWkDiHJ53S5sDXg8n3ArgKCu 0D0Pp+4NedLyvTaO7DPnm7fwCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNr4j64t T63JsL1dUWB6UUO2/hc+MB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMDUByAghCcUvnpK9qZMxf9pw9TFc9E4ou/MlxSXSUPhXBF3zcItsz 3yxEFtaSGYv4x4682xhlMrPsHGe6YHofZNHsXDEcHjZEYDrjCF3juPnz0OfmUmdY VsbtF+kHBWEUUYs7aDoEE+qMPmlurzibZZUqOPEol+qxboHyT0/2aIe32+Yhvl5u YHQKCgDcwxmBNDBvCwLGP8y9y+7Qj6bqYS+9FnLQf3VMv+xs9MDVfbX5XxmQAO3g RRMUhHjEBPsMlVwKLkylbpkG3C67FkFTZ9GgeU84AhsaLRNm1GAu5wJXWCUUNGx1 qX9Ffw70rV2kw3yCETsNztT6lcXtApSs -----END CERTIFICATE-----Generated at Sun Jun 15 07:09:10 2025 by rpki-client