$ rpki-client -vvf rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft File: QV0e9X3aeKX8lSQFQkhAAozUfZk.mft (raw, json) Hash identifier: +y7YjX62OQfoNisu2BwFQfQWRv/UutX+yKyXXQ02rH4= Subject key identifier: 4C:50:2F:C9:0D:24:C7:BD:B6:45:BF:20:75:E1:8A:4A:9A:38:B6:52 Authority key identifier: 41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 Certificate issuer: /CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Certificate serial: 02F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft Manifest number: 02F3 Signing time: Sat 31 May 2025 01:29:30 +0000 Manifest this update: Sat 31 May 2025 01:29:30 +0000 Manifest next update: Sat 07 Jun 2025 01:29:30 +0000 Files and hashes: 1: QV0e9X3aeKX8lSQFQkhAAozUfZk.crl (hash: XXWYEhxgddG+eWfD4JpuDL+ZX1SREpMKacGMXz6gAAU=) 2: 09513072DE3B11EC9F25BA5FC4F9AE02.roa (hash: WES9ucDGz8CEKO/wZoNG/u047WdQevrcBNglpR6DHnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501FC, serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Validity Not Before: May 31 01:29:30 2025 GMT Not After : Jun 7 01:29:30 2025 GMT Subject: CN=683a5b7a-db71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ae:91:b8:f6:49:6d:d0:07:af:5f:06:1e:35: 5a:fd:59:66:a7:74:54:db:ad:e8:e9:4b:c3:07:64: d5:38:0e:30:0c:1a:4c:2c:33:39:09:23:0a:18:53: 6c:e2:f0:f8:c8:35:02:c1:df:b7:7b:26:e2:53:9f: d7:71:1f:20:81:25:41:17:ec:67:25:b3:9b:7d:51: af:d8:19:fe:56:4e:2f:fc:a1:a6:04:d8:c5:40:4d: c6:cc:f6:77:cd:37:de:47:c5:c5:dc:ab:41:72:8f: 36:fc:65:4d:b2:e8:a2:15:44:8d:a4:54:74:ea:bd: 3b:80:88:83:80:8a:34:25:62:ea:73:94:2a:d4:29: 9d:d7:cd:a2:12:ec:12:dd:e1:df:92:4c:6a:60:c1: 6c:01:16:35:2c:8e:84:94:78:01:d3:d4:8a:49:90: 84:41:d4:a8:d2:7e:6b:21:fe:55:66:c4:b1:8e:0f: 7b:a3:01:31:eb:95:97:7b:dd:5f:90:6c:b6:be:42: ce:18:f2:8f:d0:a9:09:a5:ff:f9:3e:58:7e:4e:65: 3e:6d:9d:38:d0:7a:18:0b:d6:5b:70:14:b1:63:7d: 56:da:55:08:72:78:e1:e8:c3:b7:84:88:30:87:8a: ec:14:7d:fc:6c:d9:2c:d0:10:55:4a:52:03:5b:6c: f3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:50:2F:C9:0D:24:C7:BD:B6:45:BF:20:75:E1:8A:4A:9A:38:B6:52 X509v3 Authority Key Identifier: keyid:41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6e:d6:b3:b0:0f:aa:01:6d:2b:f9:69:b6:de:32:8d:8c:3f: 4b:a5:b7:36:84:3e:c1:08:cb:ad:07:78:79:a3:bb:c0:ff:6a: 65:6b:f4:4c:53:14:db:be:f6:e7:53:ec:2c:fc:58:3d:c9:cb: 59:db:e9:bd:2d:34:d8:36:a7:61:6e:db:fc:d6:43:b0:da:ed: 85:c8:2b:80:ad:9d:c1:30:07:f4:dd:62:5f:7b:b8:9a:05:bc: b2:d8:1a:e0:ca:37:12:ef:92:f5:03:3e:69:43:1c:28:1e:60: ab:82:cc:3c:51:e0:36:27:5b:a4:1b:5f:90:3e:fe:38:05:7c: b8:ee:27:9e:67:06:32:c6:db:ee:5e:a8:ac:fd:65:a0:80:64: 5b:6b:a4:78:98:d0:8a:34:4a:fe:d8:09:d9:5a:cb:7a:1e:f5: d6:7c:40:d7:c3:4e:bb:9f:25:9d:44:33:e5:82:b0:30:e7:6a: f3:d4:74:1d:5f:71:a0:e0:80:1e:5b:9c:4e:af:8c:7c:cc:45: 38:d6:3d:c0:f1:b1:1b:38:23:35:1d:d2:9e:16:85:dd:0a:37: 4c:4e:2a:61:57:5f:a6:3a:c0:17:d1:11:ce:02:f9:76:a7:bd: a0:b4:f1:ca:ac:34:60:3f:c7:aa:52:ae:54:52:9d:4d:30:cc: 17:45:b7:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxRkMxMTAvBgNVBAUTKDQxNUQxRUY1N0REQTc4QTVGQzk1MjQwNTQyNDg0MDAy OENENDdEOTkwHhcNMjUwNTMxMDEyOTMwWhcNMjUwNjA3MDEyOTMwWjAYMRYwFAYD VQQDEw02ODNhNWI3YS1kYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl66RuPZJbdAHr18GHjVa/Vlmp3RU263o6UvDB2TVOA4wDBpMLDM5CSMKGFNs 4vD4yDUCwd+3eybiU5/XcR8ggSVBF+xnJbObfVGv2Bn+Vk4v/KGmBNjFQE3GzPZ3 zTfeR8XF3KtBco82/GVNsuiiFUSNpFR06r07gIiDgIo0JWLqc5Qq1Cmd182iEuwS 3eHfkkxqYMFsARY1LI6ElHgB09SKSZCEQdSo0n5rIf5VZsSxjg97owEx65WXe91f kGy2vkLOGPKP0KkJpf/5Plh+TmU+bZ040HoYC9ZbcBSxY31W2lUIcnjh6MO3hIgw h4rsFH38bNks0BBVSlIDW2zz6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExQL8kN JMe9tkW/IHXhikqaOLZSMB8GA1UdIwQYMBaAFEFdHvV92nil/JUkBUJIQAKM1H2Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFGQy8zMDRBODlEQ0RF MzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVLWDhsU1FGUWtoQUFvelVm WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWMGU5WDNhZUtYOGxTUUZRa2hBQW96VWZaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDFGQy8zMDRBODlEQ0RFMzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVL WDhsU1FGUWtoQUFvelVmWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXbtazsA+qAW0r+Wm23jKNjD9Lpbc2hD7BCMutB3h5o7vA/2pla/RM UxTbvvbnU+ws/Fg9yctZ2+m9LTTYNqdhbtv81kOw2u2FyCuArZ3BMAf03WJfe7ia Bbyy2BrgyjcS75L1Az5pQxwoHmCrgsw8UeA2J1ukG1+QPv44BXy47ieeZwYyxtvu Xqis/WWggGRba6R4mNCKNEr+2AnZWst6HvXWfEDXw067nyWdRDPlgrAw52rz1HQd X3Gg4IAeW5xOr4x8zEU41j3A8bEbOCM1HdKeFoXdCjdMTiphV1+mOsAX0RHOAvl2 p72gtPHKrDRgP8eqUq5UUp1NMMwXRbdc -----END CERTIFICATE-----Generated at Sat May 31 16:36:52 2025 by rpki-client