$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: gsG/kCeDKcOJM3Dm48/UpOTA248Ixs2QFB2Xet+MLXI= Subject key identifier: 08:DA:96:74:7A:2F:80:26:17:E5:42:6B:9D:B5:37:0F:12:2F:4E:AC Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 182A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 181F Signing time: Sun 20 Apr 2025 16:27:22 +0000 Manifest this update: Sun 20 Apr 2025 16:27:21 +0000 Manifest next update: Sun 27 Apr 2025 16:27:21 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: /WEQll+CjW3nYHQ/24eJ4NVQ14+l8wkHRWxgVIQsrNo=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: WFmZvmOIKNk0az+zKPBYrOXakumFbE34A1nRoyLlGgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 16:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6186 (0x182a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58, serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Apr 20 16:27:21 2025 GMT Not After : Apr 27 16:27:21 2025 GMT Subject: CN=68052069-2789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:db:5a:61:60:7b:ff:a1:5e:29:bb:0c:a2:77: a1:c7:fe:22:03:59:df:20:2d:68:12:50:97:3b:e5: 9d:c0:03:91:a6:6b:2d:92:d4:bd:79:ba:6e:40:77: bb:f4:d4:de:d4:54:fd:cc:b6:49:28:7c:24:09:59: c7:4f:cc:ae:2b:d9:fe:61:d6:53:a5:9f:d1:99:94: 08:14:f0:a6:a4:11:21:c6:be:ac:b5:04:69:d7:dc: 52:eb:11:e9:0d:c7:f9:ba:90:29:d4:8f:97:18:a5: 15:93:15:19:e2:3e:f3:b5:0e:2e:07:67:4d:66:c9: b1:a6:62:b8:dc:91:5c:5f:b8:63:62:e7:d0:b9:bb: 2c:fe:b9:aa:aa:99:13:21:e5:f0:e1:10:ff:fa:9e: e0:45:87:7a:5e:1d:99:44:cf:fe:49:bf:3b:6d:62: 44:b9:ce:0e:9a:2d:0c:a6:6a:d4:df:46:01:05:dd: eb:3e:99:be:e4:f8:c0:f3:7b:a3:cd:1c:7d:fe:38: 2f:ea:73:b3:2f:a5:59:69:79:a6:0f:ea:5d:9e:00: d3:7c:4a:aa:4f:4e:ce:f4:5b:e9:4f:17:c5:dc:53: c6:eb:24:20:2a:03:3c:98:57:55:8d:58:6b:17:09: b3:bc:09:25:a8:73:13:59:99:ce:76:c0:57:38:e4: 85:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:DA:96:74:7A:2F:80:26:17:E5:42:6B:9D:B5:37:0F:12:2F:4E:AC X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:82:cd:6a:39:60:84:39:6f:92:16:76:81:6e:ee:56:42:40: 64:ce:f8:83:42:6b:4f:b7:99:c8:f8:36:9a:11:98:3e:36:25: 58:5f:09:fe:5a:3d:10:cd:51:0b:0d:d2:0d:16:9b:2d:3d:00: 31:f6:44:c5:49:25:6e:0d:4a:9d:70:de:c0:fa:18:bd:41:71: d6:f1:e0:33:f1:74:20:8c:ff:bc:63:ee:41:e0:a0:ec:62:a9: f9:88:cb:9e:76:84:ca:b9:c3:ff:76:73:63:e0:8f:83:9b:55: 92:eb:55:0b:86:71:b6:cd:9e:d2:bc:79:07:f6:11:43:6a:82: 72:da:a9:83:2c:b1:9c:40:73:8c:42:85:57:6f:27:05:26:42: 44:19:9b:8d:01:4b:53:5e:cd:cd:9a:99:21:90:2a:60:f6:2f: e6:1a:dc:40:ab:6c:29:68:38:6b:21:58:aa:fa:85:11:d3:30: 07:6d:6b:be:79:b2:2d:5f:d1:5c:12:f3:aa:b5:67:a9:77:7f: 00:f9:f5:0d:11:b3:5f:45:df:95:2f:c2:a2:ec:68:49:bb:1c: bc:02:8e:e8:93:a2:98:c6:84:0f:54:d8:eb:ec:70:ba:db:eb: b8:5f:0f:49:34:06:2c:0a:8e:80:1f:cd:65:10:eb:29:64:ec: 2a:3b:8e:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjUwNDIwMTYyNzIxWhcNMjUwNDI3MTYyNzIxWjAYMRYwFAYD VQQDEw02ODA1MjA2OS0yNzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dtaYWB7/6FeKbsMonehx/4iA1nfIC1oElCXO+WdwAORpmstktS9ebpuQHe7 9NTe1FT9zLZJKHwkCVnHT8yuK9n+YdZTpZ/RmZQIFPCmpBEhxr6stQRp19xS6xHp Dcf5upAp1I+XGKUVkxUZ4j7ztQ4uB2dNZsmxpmK43JFcX7hjYufQubss/rmqqpkT IeXw4RD/+p7gRYd6Xh2ZRM/+Sb87bWJEuc4Omi0MpmrU30YBBd3rPpm+5PjA83uj zRx9/jgv6nOzL6VZaXmmD+pdngDTfEqqT07O9FvpTxfF3FPG6yQgKgM8mFdVjVhr FwmzvAklqHMTWZnOdsBXOOSFUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjalnR6 L4AmF+VCa521Nw8SL06sMB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3gs1qOWCEOW+SFnaBbu5WQkBkzviDQmtPt5nI+DaaEZg+NiVYXwn+ Wj0QzVELDdINFpstPQAx9kTFSSVuDUqdcN7A+hi9QXHW8eAz8XQgjP+8Y+5B4KDs Yqn5iMuedoTKucP/dnNj4I+Dm1WS61ULhnG2zZ7SvHkH9hFDaoJy2qmDLLGcQHOM QoVXbycFJkJEGZuNAUtTXs3NmpkhkCpg9i/mGtxAq2wpaDhrIViq+oUR0zAHbWu+ ebItX9FcEvOqtWepd38A+fUNEbNfRd+VL8Ki7GhJuxy8Ao7ok6KYxoQPVNjr7HC6 2+u4Xw9JNAYsCo6AH81lEOspZOwqO461 -----END CERTIFICATE-----Generated at Mon Apr 21 23:07:33 2025 by rpki-client