$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: Irhqi5V92Pv08CZS7UHhCIfANVOnJR1DNvRfnqoNntw= Subject key identifier: 93:2D:23:79:C8:8B:AB:FB:71:88:1D:46:C4:09:9A:5A:43:A2:F0:BC Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 051D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 0516 Signing time: Wed 02 Apr 2025 23:35:49 +0000 Manifest this update: Wed 02 Apr 2025 23:35:49 +0000 Manifest next update: Wed 09 Apr 2025 23:35:49 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: yD+NVeCWZuWWEJpWEvUKb07Ng8Gfpo5EsdLlNnrJ/SQ=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: hZNj0hXIhx7iHvLN1BguzuArYcQdXQGnTsHHjJIXTSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1309 (0x51d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803 Validity Not Before: Apr 2 23:35:49 2025 GMT Not After : Apr 9 23:35:49 2025 GMT Subject: CN=67edc9d5-818e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:38:de:35:49:28:f1:bc:3b:35:02:9b:55:a6: 89:ce:e5:f4:d0:b6:31:ba:fd:1b:10:fc:21:f1:45: 54:18:59:05:33:56:88:5e:43:ad:60:51:22:39:04: 56:85:6d:15:5d:44:2a:b3:ee:08:90:3e:59:94:4f: 93:de:f1:98:c3:0b:0b:e6:96:77:5c:31:18:90:4c: 48:ee:63:9f:e2:92:53:ae:47:27:a2:c1:68:f1:dc: 94:d5:a6:79:e6:7d:ca:e6:82:76:43:c7:f9:75:82: 46:f6:c5:c8:54:2a:de:74:f9:c2:93:07:89:33:ed: 7b:ac:c6:0d:c4:8c:dd:fb:ee:f1:71:a1:3c:6e:19: 35:2d:9c:31:cb:de:13:8e:f8:df:ac:8a:89:dc:2d: 96:2f:68:c6:aa:aa:7f:5f:4b:42:01:26:ee:13:aa: 7b:26:1a:89:ac:57:b6:32:d2:81:d8:c3:a8:6b:bf: fd:54:2f:ee:e4:ee:a2:bd:10:5a:1b:c5:48:ae:1d: 35:3e:66:5a:7b:72:65:c8:10:02:d6:19:d0:4b:1d: 70:b1:75:d2:ee:6d:7b:ee:7c:2f:31:bb:9f:da:66: f2:73:cb:4c:28:94:45:f2:78:21:49:f3:e3:74:67: 66:51:69:5f:d0:be:f8:45:88:cb:c5:d2:1b:d0:c6: 5c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2D:23:79:C8:8B:AB:FB:71:88:1D:46:C4:09:9A:5A:43:A2:F0:BC X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:5b:3e:67:33:d0:8b:e5:31:e5:02:df:78:81:10:b6:d9:d6: 86:1d:bd:cb:79:41:83:cc:f0:88:4e:ea:b3:99:69:39:67:19: 29:04:f3:e8:82:69:95:6d:bb:88:f3:46:fa:cc:2e:71:9b:ab: c9:10:92:19:f2:9a:b3:ac:63:9e:7a:42:f0:55:c8:a7:ca:48: f0:77:5a:94:6e:77:19:fb:e9:6e:be:8a:c9:a6:29:02:b0:27: 7e:97:14:04:08:5d:b9:7e:c0:1d:e9:c1:4b:83:d0:92:14:2d: 8b:88:bf:c9:a0:50:92:35:3a:61:7b:d0:86:32:7f:12:b7:79: 95:cd:df:cf:94:96:ba:62:f4:fd:1a:81:fc:85:8d:f6:7c:41: e3:50:0a:28:26:a0:90:68:49:4e:d6:0f:e5:74:05:cc:59:dd: e0:5d:f2:e5:88:bb:4d:57:2e:04:ea:32:29:cf:a6:b2:58:0b: 7c:a0:85:0f:9b:11:59:6d:b1:7b:25:33:ea:ba:1c:48:c9:6f: a0:4f:8b:8c:fa:a4:ed:c6:54:3e:32:d0:15:66:43:c9:69:18: 72:c1:97:77:7b:f0:67:2c:58:78:9b:db:b6:38:1e:0a:3a:87: 0f:ca:9f:ba:17:4c:f1:2b:3d:90:37:45:45:9d:ac:5a:02:d5: 9b:05:41:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUwNDAyMjMzNTQ5WhcNMjUwNDA5MjMzNTQ5WjAYMRYwFAYD VQQDEw02N2VkYzlkNS04MThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzjeNUko8bw7NQKbVaaJzuX00LYxuv0bEPwh8UVUGFkFM1aIXkOtYFEiOQRW hW0VXUQqs+4IkD5ZlE+T3vGYwwsL5pZ3XDEYkExI7mOf4pJTrkcnosFo8dyU1aZ5 5n3K5oJ2Q8f5dYJG9sXIVCredPnCkweJM+17rMYNxIzd++7xcaE8bhk1LZwxy94T jvjfrIqJ3C2WL2jGqqp/X0tCASbuE6p7JhqJrFe2MtKB2MOoa7/9VC/u5O6ivRBa G8VIrh01PmZae3JlyBAC1hnQSx1wsXXS7m177nwvMbuf2mbyc8tMKJRF8nghSfPj dGdmUWlf0L74RYjLxdIb0MZc/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMtI3nI i6v7cYgdRsQJmlpDovC8MB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKWz5nM9CL5THlAt94gRC22daGHb3LeUGDzPCITuqzmWk5ZxkpBPPo gmmVbbuI80b6zC5xm6vJEJIZ8pqzrGOeekLwVcinykjwd1qUbncZ++luvorJpikC sCd+lxQECF25fsAd6cFLg9CSFC2LiL/JoFCSNTphe9CGMn8St3mVzd/PlJa6YvT9 GoH8hY32fEHjUAooJqCQaElO1g/ldAXMWd3gXfLliLtNVy4E6jIpz6ayWAt8oIUP mxFZbbF7JTPquhxIyW+gT4uM+qTtxlQ+MtAVZkPJaRhywZd3e/BnLFh4m9u2OB4K OocPyp+6F0zxKz2QN0VFnaxaAtWbBUEH -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:46 2025 by rpki-client