$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft File: QeLjUgZMov-eIcSENVrALkQHJY0.mft (raw, json) Hash identifier: u50sTEsMW16ivorQ7ApiM+X0l2lE8gt+HR+TGlg2xp8= Subject key identifier: BB:0B:5D:D7:73:97:42:3E:B9:DB:B0:74:21:E7:90:B0:F9:57:07:9E Authority key identifier: 41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D Certificate issuer: /CN=A9131D5E/serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Certificate serial: 0590 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft Manifest number: 0589 Signing time: Sat 31 May 2025 23:24:52 +0000 Manifest this update: Sat 31 May 2025 23:24:51 +0000 Manifest next update: Sat 07 Jun 2025 23:24:51 +0000 Files and hashes: 1: QeLjUgZMov-eIcSENVrALkQHJY0.crl (hash: yBb/mAaTHbCqMi5Ona3YVB8EtCqNAk09taZpdrC7Mgc=) 2: 9B41336A9ABB11EC9D11861FC4F9AE02.roa (hash: JjNvo6+sKFXJO5jB79ObwXmzISqdgMEQqhlFwLrXnJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D5E, serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Validity Not Before: May 31 23:24:51 2025 GMT Not After : Jun 7 23:24:51 2025 GMT Subject: CN=683b8fc3-5dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c0:0d:a9:cd:bc:1d:a8:ad:9c:21:6c:33:22: 03:e1:eb:1a:56:56:9e:c8:52:b9:63:18:a9:d3:44: 85:34:7f:3d:87:2f:29:48:67:8e:e8:5c:68:23:73: f2:a1:72:64:00:77:42:8a:d1:9a:f3:c0:33:ee:23: 09:62:fa:8c:6a:05:ef:10:56:3e:82:72:a6:f8:01: a3:b2:a4:2c:7e:80:13:b3:3f:e4:c4:ec:f1:11:8c: 96:1e:fe:c4:08:25:66:1e:37:c0:61:27:91:1e:66: 74:88:92:2c:c1:d1:d5:fd:3e:02:f8:ae:8d:6e:9a: e2:0a:10:ff:62:f3:e2:7c:ad:f6:a3:1f:c8:cf:b7: 76:8e:49:9e:9b:fb:e4:5f:61:1e:fb:77:16:5a:e3: 21:cb:4f:fd:c3:57:78:89:6a:98:4f:86:ac:e7:2f: e7:29:67:29:cf:e9:47:b8:56:fc:7e:5a:3a:63:57: 38:18:fd:ec:4e:95:b4:f1:f8:ea:6a:f0:62:13:2d: ec:55:31:09:36:b4:74:d1:cc:59:35:87:c9:20:b9: 93:71:77:c5:34:60:a8:fe:89:72:04:d6:0a:ef:5c: 77:43:20:27:95:ee:c7:50:6c:86:bd:0b:ee:1c:24: a9:99:74:b2:14:22:39:d8:1e:83:ec:45:65:26:0c: 45:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0B:5D:D7:73:97:42:3E:B9:DB:B0:74:21:E7:90:B0:F9:57:07:9E X509v3 Authority Key Identifier: keyid:41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:19:ba:a9:4b:78:7d:aa:3e:17:2a:f8:60:bf:bc:a7:68:c5: dd:f3:7e:a0:ae:ef:ce:79:5b:fe:d2:ab:4a:54:54:5b:66:80: 77:4c:68:01:3d:d8:9d:25:e4:42:73:6b:ee:bd:60:9e:36:ec: 1d:5a:dd:87:83:f0:0f:3a:63:0a:d8:68:ad:d3:fc:34:c7:62: d6:dc:41:d9:3d:13:ab:b5:5a:a7:43:8b:d4:ac:4c:20:6d:e6: fb:f1:ee:22:33:61:f1:20:d1:14:92:04:01:20:a5:b2:17:cb: ed:96:3e:26:8f:89:e9:3a:ad:1a:7d:b1:d8:c0:3b:9a:90:9e: ea:37:c4:3a:db:82:a4:16:19:41:db:f4:22:61:f5:95:c1:38: 97:43:e5:64:87:ca:4d:32:ff:29:a0:7d:c1:11:b3:da:e8:9a: d4:b6:d2:59:43:15:e3:ab:99:4f:19:a2:87:80:37:e1:05:08: 09:e6:b1:fc:b6:3f:37:08:c2:59:91:77:ee:aa:67:d2:f4:58: 83:62:ab:4d:90:5c:9f:cb:ff:8c:67:1f:c0:33:f1:87:0b:bc: 73:34:58:9c:75:27:3b:a9:07:ff:6b:cb:69:6b:2a:f8:a5:c1: d5:10:19:93:65:2d:eb:37:c3:8f:3a:12:69:a4:c6:02:57:8c: c6:ea:31:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFENUUxMTAvBgNVBAUTKDQxRTJFMzUyMDY0Q0EyRkY5RTIxQzQ4NDM1NUFDMDJF NDQwNzI1OEQwHhcNMjUwNTMxMjMyNDUxWhcNMjUwNjA3MjMyNDUxWjAYMRYwFAYD VQQDEw02ODNiOGZjMy01ZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsANqc28HaitnCFsMyID4esaVlaeyFK5Yxip00SFNH89hy8pSGeO6FxoI3Py oXJkAHdCitGa88Az7iMJYvqMagXvEFY+gnKm+AGjsqQsfoATsz/kxOzxEYyWHv7E CCVmHjfAYSeRHmZ0iJIswdHV/T4C+K6NbpriChD/YvPifK32ox/Iz7d2jkmem/vk X2Ee+3cWWuMhy0/9w1d4iWqYT4as5y/nKWcpz+lHuFb8flo6Y1c4GP3sTpW08fjq avBiEy3sVTEJNrR00cxZNYfJILmTcXfFNGCo/olyBNYK71x3QyAnle7HUGyGvQvu HCSpmXSyFCI52B6D7EVlJgxFyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsLXddz l0I+uduwdCHnkLD5VweeMB8GA1UdIwQYMBaAFEHi41IGTKL/niHEhDVawC5EByWN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQ1RS81NkRENDhERUQ5 NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92LWVJY1NFTlZyQUxrUUhK WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlTGpVZ1pNb3YtZUljU0VOVnJBTGtRSEpZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQ1RS81NkRENDhERUQ5NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92 LWVJY1NFTlZyQUxrUUhKWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOGbqpS3h9qj4XKvhgv7ynaMXd836gru/OeVv+0qtKVFRbZoB3TGgB PdidJeRCc2vuvWCeNuwdWt2Hg/APOmMK2Git0/w0x2LW3EHZPROrtVqnQ4vUrEwg beb78e4iM2HxINEUkgQBIKWyF8vtlj4mj4npOq0afbHYwDuakJ7qN8Q624KkFhlB 2/QiYfWVwTiXQ+Vkh8pNMv8poH3BEbPa6JrUttJZQxXjq5lPGaKHgDfhBQgJ5rH8 tj83CMJZkXfuqmfS9FiDYqtNkFyfy/+MZx/AM/GHC7xzNFicdSc7qQf/a8tpayr4 pcHVEBmTZS3rN8OPOhJppMYCV4zG6jEg -----END CERTIFICATE-----Generated at Mon Jun 2 06:27:55 2025 by rpki-client