$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: kyhHgvvdP9Pr2RkawIjj1o3R7V3FkOUwUNrGY+Ykl3c= Subject key identifier: 3E:8A:53:2D:B5:81:88:CF:48:9D:44:00:40:FD:C4:F6:7C:82:40:23 Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 0722 Signing time: Sat 12 Apr 2025 22:26:54 +0000 Manifest this update: Sat 12 Apr 2025 22:26:54 +0000 Manifest next update: Sat 19 Apr 2025 22:26:54 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: 2gLYvt0uqkvYtyD1SWbrt6LEAEN4B+EckEFfVJ6DqF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 22:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: Apr 12 22:26:54 2025 GMT Not After : Apr 19 22:26:54 2025 GMT Subject: CN=67fae8ae-0955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:66:f2:d5:5a:35:61:50:93:7d:cc:5a:59:c5: 3b:a1:95:f6:36:df:4a:84:e9:86:8a:96:c4:73:34: 27:c0:04:a4:66:3b:d5:e0:c8:11:0b:ed:06:3d:b5: f5:9a:b8:4a:7b:6a:90:53:08:7c:b7:2e:73:87:ed: 3d:f6:d5:ef:16:c3:e3:a7:23:b8:2b:c7:b2:95:6f: b9:14:59:2d:be:13:03:88:25:54:c2:9a:be:00:08: 98:d9:f3:f4:97:18:db:85:07:10:51:83:49:d1:97: 67:e5:d6:7b:1b:b0:9a:4b:f0:f7:58:44:5e:5b:f4: a3:f9:f9:03:0c:97:8a:9f:28:91:d1:36:05:52:8d: 0c:78:98:3f:ee:13:b4:6f:0e:1d:76:a1:98:b2:68: dd:6c:78:73:14:6e:e3:b9:ad:38:30:96:2c:85:35: 70:28:23:96:0a:3b:b8:4d:23:c9:7b:fb:c4:28:60: 9f:07:b8:e0:84:13:cb:fc:f2:8a:8c:e2:9a:7f:e2: 16:10:ad:2d:4d:26:cb:fc:dd:4b:5e:82:27:ac:c5: 01:ab:92:bd:0c:32:99:c7:93:0d:00:02:85:ea:9b: ad:3c:27:e4:8b:ad:bc:0b:17:d1:26:c7:5e:23:4f: 78:e2:e1:41:b7:76:42:c7:76:07:38:7e:99:3d:f9: bc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:8A:53:2D:B5:81:88:CF:48:9D:44:00:40:FD:C4:F6:7C:82:40:23 X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:0d:f3:2b:7a:d4:aa:91:a5:7e:e0:3b:51:df:74:71:f4:a5: 20:2b:6e:69:d9:b9:bd:d4:26:17:dc:cc:72:0e:b8:8d:68:54: 97:85:98:43:c5:f3:9f:8c:03:3a:93:82:85:59:e6:71:35:e3: 61:c9:b5:7a:10:a8:37:7f:22:e4:29:e2:47:b3:e9:81:2f:92: 20:d1:69:dc:70:88:1a:30:a5:26:7d:70:19:e6:d5:96:43:f3: c3:02:e7:66:81:58:81:b1:68:82:0e:51:74:a3:60:07:be:43: 5d:06:f3:f3:18:b2:fc:79:0f:83:64:47:4c:90:ad:8d:8c:6e: 8c:c2:99:37:a4:9c:12:0f:ec:f8:68:43:85:6e:a6:77:6d:43: b7:95:63:a3:68:6e:a0:40:23:34:a4:dc:0a:d0:53:78:45:b1: 13:12:81:2c:79:16:1c:6f:cc:48:ae:4e:25:6a:5a:c7:a6:90: bd:26:43:be:c6:37:54:a5:bb:16:94:bb:1a:71:bb:dd:d6:04: 08:4e:9e:79:fc:24:bf:c2:2f:59:e1:c1:5d:15:77:16:18:5a: 80:62:d3:d4:1a:fc:90:46:db:38:c0:43:88:8a:08:dc:73:37: f3:97:58:32:8d:c7:7d:c3:77:40:ed:e8:16:cf:71:56:29:4c: 57:e5:fe:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjUwNDEyMjIyNjU0WhcNMjUwNDE5MjIyNjU0WjAYMRYwFAYD VQQDEw02N2ZhZThhZS0wOTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWby1Vo1YVCTfcxaWcU7oZX2Nt9KhOmGipbEczQnwASkZjvV4MgRC+0GPbX1 mrhKe2qQUwh8ty5zh+099tXvFsPjpyO4K8eylW+5FFktvhMDiCVUwpq+AAiY2fP0 lxjbhQcQUYNJ0Zdn5dZ7G7CaS/D3WEReW/Sj+fkDDJeKnyiR0TYFUo0MeJg/7hO0 bw4ddqGYsmjdbHhzFG7jua04MJYshTVwKCOWCju4TSPJe/vEKGCfB7jghBPL/PKK jOKaf+IWEK0tTSbL/N1LXoInrMUBq5K9DDKZx5MNAAKF6putPCfki628CxfRJsde I0944uFBt3ZCx3YHOH6ZPfm8vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6KUy21 gYjPSJ1EAED9xPZ8gkAjMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDeDfMretSqkaV+4DtR33Rx9KUgK25p2bm91CYX3MxyDriNaFSXhZhD xfOfjAM6k4KFWeZxNeNhybV6EKg3fyLkKeJHs+mBL5Ig0WnccIgaMKUmfXAZ5tWW Q/PDAudmgViBsWiCDlF0o2AHvkNdBvPzGLL8eQ+DZEdMkK2NjG6Mwpk3pJwSD+z4 aEOFbqZ3bUO3lWOjaG6gQCM0pNwK0FN4RbETEoEseRYcb8xIrk4lalrHppC9JkO+ xjdUpbsWlLsacbvd1gQITp55/CS/wi9Z4cFdFXcWGFqAYtPUGvyQRts4wEOIigjc czfzl1gyjcd9w3dA7egWz3FWKUxX5f6L -----END CERTIFICATE-----Generated at Sun Apr 13 02:29:38 2025 by rpki-client