$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: bgtXxK7zagv4M3oEhqwqHq3T0yXDbewxlsFRbYFDOcU= Subject key identifier: 12:4B:EA:5C:CA:C1:EF:87:0F:03:B6:EE:E0:B5:AC:ED:08:11:C1:80 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BC8 Signing time: Fri 30 May 2025 19:03:56 +0000 Manifest this update: Fri 30 May 2025 19:03:56 +0000 Manifest next update: Fri 06 Jun 2025 19:03:56 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: ZFXQhFWXyQdbgbG/9enn7sWt0I1dgcLHa+kptYuI7IM=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3023 (0xbcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: May 30 19:03:56 2025 GMT Not After : Jun 6 19:03:56 2025 GMT Subject: CN=683a011c-fd38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:46:ed:5f:33:76:c1:c8:14:0b:2e:94:40:ff: 0c:f0:07:97:59:a6:dc:aa:8b:c6:98:7c:34:3e:25: b3:c3:2f:ed:85:87:27:c7:c7:05:dd:e4:20:0a:61: 91:29:91:bd:5b:98:55:95:80:42:14:ef:ae:87:c7: 31:9c:a6:1f:39:35:a7:48:7c:ec:ba:58:54:93:93: f7:e9:b8:fb:86:c2:fb:f6:43:e0:cd:54:10:d7:74: 20:d0:a8:45:30:25:90:ae:cf:b1:1d:45:18:83:d0: 57:53:3e:ac:ad:91:c3:4d:aa:88:69:57:39:88:85: 46:83:46:47:48:27:5b:a7:17:6b:36:43:20:1a:37: 96:6a:f3:b5:10:27:67:4c:bf:89:9f:b1:cc:98:29: 52:ee:5f:58:9d:33:39:6c:11:64:1c:54:78:63:26: 1e:e3:2b:49:1f:3b:ab:6e:3f:df:d9:a2:1c:2c:9c: 73:10:e6:b2:12:a6:4e:6c:45:17:cc:61:46:03:39: 30:78:ba:79:e9:36:54:b6:d9:5e:73:b8:b7:f1:dd: c3:ca:cc:bc:2b:cf:45:95:a5:01:d8:43:67:fc:58: de:09:13:04:04:07:2e:1f:8e:2f:1d:4d:e1:39:88: bb:92:ba:1c:1a:25:96:b8:23:8f:3b:ab:b8:2b:96: 81:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4B:EA:5C:CA:C1:EF:87:0F:03:B6:EE:E0:B5:AC:ED:08:11:C1:80 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:a3:f6:f1:fb:29:94:a9:bf:e7:54:e3:97:ef:7b:d3:f8:45: 69:cb:04:53:79:cf:fc:6d:eb:be:a7:dd:b9:35:23:e5:95:ae: d8:76:d4:2b:c0:da:ac:6a:5e:97:6b:b5:33:fb:43:d1:94:14: 72:c2:53:00:e5:d4:29:60:3f:d4:b5:93:1b:88:1b:b9:e0:b1: 13:fd:32:2d:1f:6c:61:45:22:b8:8c:45:90:a1:9a:7f:70:d2: d1:f4:c5:be:ed:fd:9c:24:02:e7:1e:9d:60:59:a2:33:6e:33: a4:ea:41:c0:7d:6a:ed:eb:17:d4:14:51:94:b6:b6:a5:ca:6e: e9:f1:c0:38:f1:c0:50:40:ad:31:59:87:6b:55:94:98:34:11: 2a:e0:5c:e1:95:83:61:c0:e0:64:a5:15:db:c0:ae:cb:90:79: 19:63:4e:e9:3d:d2:4d:4a:ad:cf:e5:01:6c:a3:96:03:48:65: f9:a9:97:bc:f9:4a:7b:d9:a9:79:44:2e:da:e9:e2:ac:03:68: 1f:6e:58:ba:fa:15:f7:7f:d8:01:f5:30:a3:96:0d:7c:09:40: 49:11:6b:07:f1:ae:6c:34:a4:27:64:9c:73:5e:0a:eb:70:48: 92:56:9e:8f:0c:7c:c4:8a:ee:f6:7c:f1:e6:32:72:2b:67:00: 30:ad:c9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwNTMwMTkwMzU2WhcNMjUwNjA2MTkwMzU2WjAYMRYwFAYD VQQDEw02ODNhMDExYy1mZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UbtXzN2wcgUCy6UQP8M8AeXWabcqovGmHw0PiWzwy/thYcnx8cF3eQgCmGR KZG9W5hVlYBCFO+uh8cxnKYfOTWnSHzsulhUk5P36bj7hsL79kPgzVQQ13Qg0KhF MCWQrs+xHUUYg9BXUz6srZHDTaqIaVc5iIVGg0ZHSCdbpxdrNkMgGjeWavO1ECdn TL+Jn7HMmClS7l9YnTM5bBFkHFR4YyYe4ytJHzurbj/f2aIcLJxzEOayEqZObEUX zGFGAzkweLp56TZUttlec7i38d3Dysy8K89FlaUB2ENn/FjeCRMEBAcuH44vHU3h OYi7krocGiWWuCOPO6u4K5aB5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJL6lzK we+HDwO27uC1rO0IEcGAMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAko/bx+ymUqb/nVOOX73vT+EVpywRTec/8beu+p925NSPlla7YdtQr wNqsal6Xa7Uz+0PRlBRywlMA5dQpYD/UtZMbiBu54LET/TItH2xhRSK4jEWQoZp/ cNLR9MW+7f2cJALnHp1gWaIzbjOk6kHAfWrt6xfUFFGUtralym7p8cA48cBQQK0x WYdrVZSYNBEq4FzhlYNhwOBkpRXbwK7LkHkZY07pPdJNSq3P5QFso5YDSGX5qZe8 +Up72al5RC7a6eKsA2gfbli6+hX3f9gB9TCjlg18CUBJEWsH8a5sNKQnZJxzXgrr cEiSVp6PDHzEiu72fPHmMnIrZwAwrclz -----END CERTIFICATE-----Generated at Sat May 31 17:39:21 2025 by rpki-client