$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft File: QpCYAlfGdws2CulWLaWJPGDa2nc.mft (raw, json) Hash identifier: AlifHHN9BOtA11G5a6Xk1/MZLJjNrjDZdbYvtTAcnhk= Subject key identifier: AE:8B:AF:EE:54:28:7E:96:93:95:5F:E5:F2:FD:DD:24:05:6E:F8:60 Authority key identifier: 42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 Certificate issuer: /CN=A91C3B89/serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Certificate serial: 08B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft Manifest number: 08B0 Signing time: Wed 02 Apr 2025 20:31:38 +0000 Manifest this update: Wed 02 Apr 2025 20:31:37 +0000 Manifest next update: Wed 09 Apr 2025 20:31:37 +0000 Files and hashes: 1: QpCYAlfGdws2CulWLaWJPGDa2nc.crl (hash: nJGQxtztEDZjSwiZ9hkc5cM0kWmUi7F/9u8jKh5Kiao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2224 (0x8b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B89 Validity Not Before: Apr 2 20:31:37 2025 GMT Not After : Apr 9 20:31:37 2025 GMT Subject: CN=67ed9ea9-2154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:db:87:ee:a4:e1:f8:5b:19:b9:0b:93:ff: dc:5c:8d:7b:00:76:3f:4e:b1:3c:a7:44:fd:00:c1: 23:21:b4:f8:19:21:72:74:40:e0:0e:91:e0:6a:79: 55:f3:ff:6c:59:17:7b:af:98:07:61:24:0b:78:2a: c7:e3:60:e4:9b:6c:c4:f5:6e:7f:cd:70:9c:e6:15: 85:0f:be:c6:11:a9:7e:40:2d:5f:31:96:84:3e:4b: b0:68:ea:40:24:ce:ba:af:c7:f7:cb:ff:46:e5:46: fd:1e:56:a5:2b:c6:1d:2e:b5:b5:e3:a6:74:c2:c1: c1:9c:4c:9b:0b:d2:96:5e:df:1a:5c:51:bc:17:50: 0d:6b:f1:00:2a:02:f3:f8:97:a8:36:bb:dc:fb:b9: 6c:c6:37:b8:87:d6:5c:b9:52:76:49:bb:cf:93:df: 27:63:0d:e3:b7:67:49:ed:a7:b8:d5:af:95:74:c3: ff:6c:bf:c2:3f:aa:98:5e:5e:8c:d1:3f:07:7e:f0: e4:0a:ac:45:3e:b0:f1:f6:34:1f:cd:59:01:84:85: c3:8f:22:e9:b5:4b:6d:3c:22:0b:a8:af:ec:73:5c: db:ca:34:5e:f1:66:3b:1c:77:16:05:8d:2a:9e:11: d6:46:03:b3:94:7c:47:f0:77:51:bb:3a:6f:0e:0d: fd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8B:AF:EE:54:28:7E:96:93:95:5F:E5:F2:FD:DD:24:05:6E:F8:60 X509v3 Authority Key Identifier: keyid:42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:38:45:12:27:e3:6d:72:50:90:6d:24:6b:fb:0c:0b:92:e6: dd:88:d9:82:56:2a:21:c9:0a:c9:ec:83:89:80:d7:5d:66:42: 85:d7:e0:70:45:90:21:dc:87:ed:d8:74:bf:8b:31:46:79:8d: fd:51:a2:24:78:28:76:ce:f5:ba:de:ae:73:2e:d0:a9:f3:61: b5:b0:42:10:83:d7:28:77:73:81:be:3a:61:e6:e3:10:2f:d1: c6:80:e8:8e:ad:9c:99:5c:43:f7:36:af:a1:b6:32:c8:1e:96: 42:98:69:51:4e:49:3f:35:f6:14:4a:c4:31:f9:0d:1a:e8:ac: cd:fe:b7:2a:da:b8:5e:fe:05:b9:54:42:c5:12:30:47:00:be: 65:11:e9:1a:2a:16:25:76:48:6a:94:93:1a:36:05:a1:2c:6c: d7:75:ba:d6:09:c6:9a:b1:96:34:17:ea:b6:f9:5e:2a:53:bf: 0e:ac:8d:31:b9:52:12:f8:c6:42:2b:ee:03:0e:3b:07:c9:c4: 60:95:fc:9d:4d:2d:74:99:fe:27:81:6c:91:21:f4:8f:d7:dc: 44:23:fc:ac:a8:cf:84:1c:8a:79:de:06:5b:b0:b6:eb:7a:37: 70:6a:90:ba:be:c7:e9:bd:86:8f:a3:36:90:1c:24:8c:ca:ca: 06:84:28:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCODkxMTAvBgNVBAUTKDQyOTA5ODAyNTdDNjc3MEIzNjBBRTk1NjJEQTU4OTND NjBEQURBNzcwHhcNMjUwNDAyMjAzMTM3WhcNMjUwNDA5MjAzMTM3WjAYMRYwFAYD VQQDEw02N2VkOWVhOS0yMTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQfbh+6k4fhbGbkLk//cXI17AHY/TrE8p0T9AMEjIbT4GSFydEDgDpHganlV 8/9sWRd7r5gHYSQLeCrH42Dkm2zE9W5/zXCc5hWFD77GEal+QC1fMZaEPkuwaOpA JM66r8f3y/9G5Ub9HlalK8YdLrW146Z0wsHBnEybC9KWXt8aXFG8F1ANa/EAKgLz +JeoNrvc+7lsxje4h9ZcuVJ2SbvPk98nYw3jt2dJ7ae41a+VdMP/bL/CP6qYXl6M 0T8HfvDkCqxFPrDx9jQfzVkBhIXDjyLptUttPCILqK/sc1zbyjRe8WY7HHcWBY0q nhHWRgOzlHxH8HdRuzpvDg39JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6Lr+5U KH6Wk5Vf5fL93SQFbvhgMB8GA1UdIwQYMBaAFEKQmAJXxncLNgrpVi2liTxg2tp3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4OS9EODM1NkJBQ0Iw NzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3czJDdWxXTGFXSlBHRGEy bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwQ1lBbGZHZHdzMkN1bFdMYVdKUEdEYTJuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0I4OS9EODM1NkJBQ0IwNzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3 czJDdWxXTGFXSlBHRGEybmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFOEUSJ+NtclCQbSRr+wwLkubdiNmCViohyQrJ7IOJgNddZkKF1+Bw RZAh3Ift2HS/izFGeY39UaIkeCh2zvW63q5zLtCp82G1sEIQg9cod3OBvjph5uMQ L9HGgOiOrZyZXEP3Nq+htjLIHpZCmGlRTkk/NfYUSsQx+Q0a6KzN/rcq2rhe/gW5 VELFEjBHAL5lEekaKhYldkhqlJMaNgWhLGzXdbrWCcaasZY0F+q2+V4qU78OrI0x uVIS+MZCK+4DDjsHycRglfydTS10mf4ngWyRIfSP19xEI/ysqM+EHIp53gZbsLbr ejdwapC6vsfpvYaPozaQHCSMysoGhCj+ -----END CERTIFICATE-----Generated at Fri Apr 4 18:28:50 2025 by rpki-client