$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft File: qpoNy1ExOS1xlqhEGKioRkVTH5c.mft (raw, json) Hash identifier: 5P1KMAm9Z1GB5++cwSp6RYr5e1t0yTr3e0fIdlMsa0M= Subject key identifier: 9B:89:7E:9D:A6:06:47:9D:B4:45:8C:5E:FE:92:8E:8E:45:22:7A:DF Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft Manifest number: 0115 Signing time: Sat 05 Apr 2025 04:15:13 +0000 Manifest this update: Sat 05 Apr 2025 04:15:13 +0000 Manifest next update: Sat 12 Apr 2025 04:15:13 +0000 Files and hashes: 1: qpoNy1ExOS1xlqhEGKioRkVTH5c.crl (hash: 7Cc9QBTHboKkqQ8jm5WToQCXFXRvTIBaOXigG9PWAiM=) 2: C2D66F8271A911EEAEEE351CC4F9AE02.roa (hash: 182Ac4fyaiVrniCYLGV61RP5qpWrfJewUwg3lX5zumg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D Validity Not Before: Apr 5 04:15:13 2025 GMT Not After : Apr 12 04:15:13 2025 GMT Subject: CN=67f0ae51-1443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2b:a8:16:1f:5a:63:23:92:3f:68:df:10:39: c1:91:20:64:d3:81:43:4c:df:b6:8a:54:d7:04:35: ca:36:8a:68:5a:87:c4:8e:d3:3b:00:ea:c9:8a:98: eb:65:c3:1f:88:ea:b8:33:cb:c5:b3:8a:1e:e7:7a: c3:2f:b1:35:32:81:e0:da:ed:f4:ed:c8:4b:20:1a: 9e:89:5c:9a:48:ab:a0:78:e9:d9:d2:fc:71:01:cd: bf:4f:a6:0e:44:bf:fa:20:b6:25:ed:10:df:61:31: 9a:e1:1b:34:c9:8c:d4:15:c0:20:9c:20:c2:78:f2: f8:7b:a3:82:3b:4d:eb:ac:9a:21:cf:19:0f:25:30: 86:b6:fe:64:32:4a:26:27:96:cc:42:fb:af:75:26: 85:4a:84:46:86:27:0d:43:ac:dc:5d:f4:6b:d5:e2: 6c:13:9b:66:b7:02:5f:4f:59:4f:c0:65:34:96:50: 26:92:09:89:26:6b:73:ec:4b:8f:58:fb:73:93:db: 18:d4:38:8d:68:05:03:0e:83:51:a4:1d:aa:a6:6c: fd:2e:60:2f:e2:f9:af:da:b3:8c:58:e3:df:77:e1: 8b:73:f8:06:09:ed:03:ba:10:c6:59:3a:b6:30:62: 07:62:76:2c:e5:5d:02:6b:07:9b:9a:fa:f3:09:5d: 3e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:89:7E:9D:A6:06:47:9D:B4:45:8C:5E:FE:92:8E:8E:45:22:7A:DF X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:2b:cf:2e:b1:21:91:08:4d:7a:5b:90:fd:97:2d:c9:98:74: 68:1c:85:1f:fa:7a:db:55:a3:4b:0f:6d:8f:9a:2d:f2:f5:72: 3d:78:52:b9:25:e4:bf:40:88:09:d3:39:c8:c6:c1:34:96:c4: 0b:1c:e2:bb:14:94:64:0c:12:9e:8c:33:b7:77:0c:b4:21:3f: b4:c4:b9:05:b3:f2:54:d4:5e:37:d3:1a:4e:25:6c:4b:00:3d: 3f:c1:4e:e3:a0:8f:a5:18:ca:f9:6e:c1:6f:f9:17:8d:63:8a: 60:9f:ba:69:b2:b3:0f:16:80:91:06:ac:55:93:e0:09:08:a6: 59:b6:11:72:e7:5f:6b:05:09:81:8a:9d:07:29:bb:99:d4:ad: 97:3e:7e:76:f5:81:61:2f:7c:e0:55:2a:9d:6c:91:a1:62:09: 5f:2e:23:83:a6:73:83:74:52:07:9d:88:52:5b:a4:1c:5b:4e: 78:78:b8:7c:60:b8:07:2c:93:67:31:88:22:f8:f3:eb:3d:bc: 98:ac:f9:0e:b2:bb:82:f2:44:9d:28:80:1b:7d:3f:16:8e:e3: cd:7f:4c:4e:f2:f5:49:c4:d9:b0:ef:47:7a:f9:8d:c6:2c:34: 98:18:70:7b:c5:48:ef:ec:fa:8c:bf:e6:82:d9:46:c5:1a:e3: 21:a7:22:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY2NkQxMTAvBgNVBAUTKEFBOUEwRENCNTEzMTM5MkQ3MTk2QTg0NDE4QThBODQ2 NDU1MzFGOTcwHhcNMjUwNDA1MDQxNTEzWhcNMjUwNDEyMDQxNTEzWjAYMRYwFAYD VQQDEw02N2YwYWU1MS0xNDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yuoFh9aYyOSP2jfEDnBkSBk04FDTN+2ilTXBDXKNopoWofEjtM7AOrJipjr ZcMfiOq4M8vFs4oe53rDL7E1MoHg2u307chLIBqeiVyaSKugeOnZ0vxxAc2/T6YO RL/6ILYl7RDfYTGa4Rs0yYzUFcAgnCDCePL4e6OCO03rrJohzxkPJTCGtv5kMkom J5bMQvuvdSaFSoRGhicNQ6zcXfRr1eJsE5tmtwJfT1lPwGU0llAmkgmJJmtz7EuP WPtzk9sY1DiNaAUDDoNRpB2qpmz9LmAv4vmv2rOMWOPfd+GLc/gGCe0DuhDGWTq2 MGIHYnYs5V0CawebmvrzCV0+XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuJfp2m BkedtEWMXv6Sjo5FInrfMB8GA1UdIwQYMBaAFKqaDctRMTktcZaoRBioqEZFUx+X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjY2RC81MTFBODkyRTcx QTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9TMXhscWhFR0tpb1JrVlRI NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjY2RC81MTFBODkyRTcxQTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9T MXhscWhFR0tpb1JrVlRINWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5K88usSGRCE16W5D9ly3JmHRoHIUf+nrbVaNLD22Pmi3y9XI9eFK5 JeS/QIgJ0znIxsE0lsQLHOK7FJRkDBKejDO3dwy0IT+0xLkFs/JU1F430xpOJWxL AD0/wU7joI+lGMr5bsFv+ReNY4pgn7ppsrMPFoCRBqxVk+AJCKZZthFy519rBQmB ip0HKbuZ1K2XPn529YFhL3zgVSqdbJGhYglfLiODpnODdFIHnYhSW6QcW054eLh8 YLgHLJNnMYgi+PPrPbyYrPkOsruC8kSdKIAbfT8WjuPNf0xO8vVJxNmw70d6+Y3G LDSYGHB7xUjv7PqMv+aC2UbFGuMhpyL1 -----END CERTIFICATE-----Generated at Sat Apr 5 19:21:17 2025 by rpki-client