$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: o1/ahe+Tzd7hUt4mSqRU2bgCE2fje0Ns5Fi3o1Yot4E= Subject key identifier: 86:9B:30:C2:3F:16:AA:5E:81:45:FF:FD:BF:BA:D8:CC:13:F4:41:66 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 0234 Signing time: Sat 31 May 2025 02:06:14 +0000 Manifest this update: Sat 31 May 2025 02:06:13 +0000 Manifest next update: Sat 07 Jun 2025 02:06:13 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: 4eVTu6R/LwIQsWKxZeTgxgl4B8brl0r6QmvS+sAj3rs=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: May 31 02:06:13 2025 GMT Not After : Jun 7 02:06:13 2025 GMT Subject: CN=683a6416-3946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d0:31:b5:a4:86:62:d0:80:6c:44:fa:eb:20: a7:6a:83:6c:03:31:0d:d2:5f:d6:1f:61:ed:69:5f: 93:c6:3e:69:68:8c:71:6e:1d:c6:c6:5d:f8:13:e8: 57:24:54:17:3a:70:db:98:57:af:10:2b:3b:04:e1: 44:06:88:a6:c9:8c:50:a7:bc:9a:c5:13:a3:c3:38: 7a:3c:aa:3e:ba:e9:5d:43:0e:44:8f:7d:43:38:04: 0d:6b:d4:08:6d:1f:2d:33:f8:b4:3f:7e:63:21:4e: 65:31:b2:4e:aa:4d:59:25:58:26:e7:dd:2f:7b:4b: 3f:ec:88:81:69:45:aa:b3:97:0a:6c:bb:ef:91:c1: 16:79:d8:54:90:bb:55:9f:15:ab:ff:92:28:f3:a3: a0:04:eb:11:57:2b:0b:1f:3c:f8:ff:a1:3e:12:a9: ef:31:41:f1:2b:45:42:b3:ea:72:cf:ec:52:f0:91: cc:6b:9c:ea:82:89:47:79:fd:d6:b4:54:51:11:74: af:6f:7c:36:2f:8b:3e:c0:dd:c9:ab:3e:77:fa:70: b7:af:46:81:bd:46:ca:e4:2d:6a:77:05:3f:4a:36: 5c:47:dc:f9:44:68:e4:40:d8:1f:24:a9:79:94:7b: 2c:03:61:e3:3b:48:11:c7:20:3d:7c:33:55:76:45: cf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:9B:30:C2:3F:16:AA:5E:81:45:FF:FD:BF:BA:D8:CC:13:F4:41:66 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:8f:1e:7d:59:5c:96:9f:2c:8d:1e:61:71:8a:78:a6:22:6c: dc:0c:d9:00:36:f4:c8:b9:0d:7e:9c:4c:41:01:ad:71:d1:a0: a7:bc:ff:76:96:44:ff:e4:52:d7:d9:a9:36:ec:ea:a3:69:96: 68:fd:68:4b:3c:18:40:47:19:b6:11:b2:ca:05:4c:db:66:45: 19:27:06:49:8e:46:27:52:1b:bd:f0:3c:d2:4b:58:7c:5d:35: 0d:cc:e8:43:6c:4f:ad:80:80:f6:81:95:5f:6e:46:45:ca:4c: e9:37:0f:11:25:ea:29:48:93:96:8a:34:27:77:a1:ef:8e:f4: 15:28:43:3f:ab:d4:6d:34:43:4d:7b:3b:2f:86:fc:4f:ad:f8: eb:61:20:6e:f1:09:bd:93:c8:a2:5d:9c:2e:3b:b4:5f:d5:4d: 45:1f:38:ed:57:14:98:e4:e8:9a:85:f7:3e:09:96:47:bf:6e: 24:1b:1a:c7:af:f4:ae:57:87:e8:1c:4c:59:a1:5d:31:6a:22: 07:f0:87:6b:b0:a6:26:3c:90:a0:9a:b9:41:33:f4:cf:72:60: ff:9e:4d:34:bf:51:51:24:fe:ad:f0:91:b4:e3:d7:0f:27:0a: 38:3b:c2:d3:de:99:79:ff:e1:86:f3:dd:63:77:6e:be:ce:cf: 0c:c4:92:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUwNTMxMDIwNjEzWhcNMjUwNjA3MDIwNjEzWjAYMRYwFAYD VQQDEw02ODNhNjQxNi0zOTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39AxtaSGYtCAbET66yCnaoNsAzEN0l/WH2HtaV+Txj5paIxxbh3Gxl34E+hX JFQXOnDbmFevECs7BOFEBoimyYxQp7yaxROjwzh6PKo+uuldQw5Ej31DOAQNa9QI bR8tM/i0P35jIU5lMbJOqk1ZJVgm590ve0s/7IiBaUWqs5cKbLvvkcEWedhUkLtV nxWr/5Io86OgBOsRVysLHzz4/6E+EqnvMUHxK0VCs+pyz+xS8JHMa5zqgolHef3W tFRREXSvb3w2L4s+wN3Jqz53+nC3r0aBvUbK5C1qdwU/SjZcR9z5RGjkQNgfJKl5 lHssA2HjO0gRxyA9fDNVdkXPfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIabMMI/ FqpegUX//b+62MwT9EFmMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPjx59WVyWnyyNHmFxinimImzcDNkANvTIuQ1+nExBAa1x0aCnvP92 lkT/5FLX2ak27OqjaZZo/WhLPBhARxm2EbLKBUzbZkUZJwZJjkYnUhu98DzSS1h8 XTUNzOhDbE+tgID2gZVfbkZFykzpNw8RJeopSJOWijQnd6HvjvQVKEM/q9RtNENN ezsvhvxPrfjrYSBu8Qm9k8iiXZwuO7Rf1U1FHzjtVxSY5Oiahfc+CZZHv24kGxrH r/SuV4foHExZoV0xaiIH8IdrsKYmPJCgmrlBM/TPcmD/nk00v1FRJP6t8JG049cP Jwo4O8LT3pl5/+GG891jd26+zs8MxJI9 -----END CERTIFICATE-----Generated at Sat May 31 17:44:05 2025 by rpki-client