$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: 5Mll0IZsCXDrfYgIe1z1v8Ppohetdx/IuZqr9JJAt8k= Subject key identifier: 45:90:CE:68:02:0C:67:09:E6:C0:5F:FE:A3:83:6A:1C:61:11:EA:8E Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 063A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 0752 Signing time: Fri 30 May 2025 22:55:59 +0000 Manifest this update: Fri 30 May 2025 22:55:58 +0000 Manifest next update: Fri 06 Jun 2025 22:55:58 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: mywdvhzS5M9YFavGbCaIHSpFhXmOgl/L3OTt6THcO8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: May 30 22:55:58 2025 GMT Not After : Jun 6 22:55:58 2025 GMT Subject: CN=683a377f-e5dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2b:3f:a7:98:75:d3:ac:55:fc:0f:9a:5e:bc: 56:aa:0b:e6:f9:f9:e1:9f:21:a9:ca:69:e8:8a:5e: f1:5d:76:db:dd:16:dc:ef:74:23:b8:fc:9e:0a:45: 32:86:49:fc:dc:db:98:08:f7:92:b0:ee:78:f9:fa: 9e:6f:01:b5:6a:ca:72:1c:88:9b:cb:68:34:70:47: f7:c0:a9:0f:64:69:ca:43:3b:f4:c1:3b:d4:5d:c1: c3:ec:e7:99:b3:b6:29:54:69:c3:8b:7d:f1:53:0d: ef:cd:97:28:0e:00:e1:b1:0e:ec:03:a5:7f:a6:65: 9b:8c:1f:6f:2d:d0:86:3f:61:24:b6:0a:38:2d:27: 79:c2:6e:28:46:3b:26:e9:36:ea:ae:2a:47:49:a0: e6:d3:8d:bb:ef:00:7d:c8:dd:5b:3d:a4:10:0d:5a: 53:b8:e2:88:84:95:95:67:fe:a4:6d:36:6a:a6:5a: 33:1d:cc:01:9a:4b:cd:14:74:c9:1d:ef:1b:71:3e: ca:d4:28:d4:e1:0e:ac:d6:9f:e8:83:e9:e4:3d:55: 8e:b8:d3:bd:f0:6f:39:0e:ab:5c:5b:7f:aa:7a:5d: 89:2c:9b:fd:74:67:7c:1b:51:6e:6c:fe:21:0d:ee: 7f:d7:97:ec:b8:64:b0:b3:d6:5c:f1:b2:05:7c:f7: 0d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:90:CE:68:02:0C:67:09:E6:C0:5F:FE:A3:83:6A:1C:61:11:EA:8E X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:96:e4:d1:a8:12:88:77:94:84:2a:e9:c8:51:ac:08:82:4e: 9d:9b:8e:78:60:a9:b4:c7:f4:83:fd:22:e7:34:12:93:02:00: 2d:d7:9d:dc:26:0a:6c:2e:b9:6d:2b:17:0f:d6:ab:10:5f:5e: 96:48:59:d7:08:09:f3:59:9a:1d:cd:8a:68:cd:57:83:e5:d4: 28:72:fe:cc:8a:dd:61:fe:14:ac:ac:ad:70:47:8e:6d:9c:b4: c5:62:44:92:c2:52:1d:a4:57:c1:cc:39:5c:41:63:4f:84:c7: c4:75:bf:4a:7c:1b:27:b4:1c:54:19:af:f2:c6:03:fe:8a:c5: 98:15:78:1f:14:52:73:37:46:9c:df:fe:90:b3:8a:83:63:c1: 24:ef:e7:f2:a9:48:dc:4c:32:7b:cd:bf:7b:cb:8f:21:51:fb: 9d:0c:ab:6f:0e:f1:91:31:50:3c:a6:91:9f:1d:db:b6:a4:0b: d8:32:4e:13:b2:b5:2b:a6:20:70:0d:dc:a2:68:57:f3:16:aa: 14:52:79:79:f5:5f:89:1e:18:3f:eb:eb:77:2a:be:8b:11:3c: c7:ce:4f:aa:41:3c:51:41:9a:3f:01:8f:f7:01:9c:de:c1:c9: 21:ad:4f:8c:78:a9:6e:70:8f:a1:c9:bb:20:d4:2e:fc:11:4c: ba:f1:1d:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjUwNTMwMjI1NTU4WhcNMjUwNjA2MjI1NTU4WjAYMRYwFAYD VQQDEw02ODNhMzc3Zi1lNWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCs/p5h106xV/A+aXrxWqgvm+fnhnyGpymnoil7xXXbb3Rbc73QjuPyeCkUy hkn83NuYCPeSsO54+fqebwG1aspyHIiby2g0cEf3wKkPZGnKQzv0wTvUXcHD7OeZ s7YpVGnDi33xUw3vzZcoDgDhsQ7sA6V/pmWbjB9vLdCGP2Ektgo4LSd5wm4oRjsm 6TbqripHSaDm04277wB9yN1bPaQQDVpTuOKIhJWVZ/6kbTZqplozHcwBmkvNFHTJ He8bcT7K1CjU4Q6s1p/og+nkPVWOuNO98G85DqtcW3+qel2JLJv9dGd8G1FubP4h De5/15fsuGSws9Zc8bIFfPcNxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWQzmgC DGcJ5sBf/qODahxhEeqOMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmluTRqBKId5SEKunIUawIgk6dm454YKm0x/SD/SLnNBKTAgAt153c JgpsLrltKxcP1qsQX16WSFnXCAnzWZodzYpozVeD5dQocv7Mit1h/hSsrK1wR45t nLTFYkSSwlIdpFfBzDlcQWNPhMfEdb9KfBsntBxUGa/yxgP+isWYFXgfFFJzN0ac 3/6Qs4qDY8Ek7+fyqUjcTDJ7zb97y48hUfudDKtvDvGRMVA8ppGfHdu2pAvYMk4T srUrpiBwDdyiaFfzFqoUUnl59V+JHhg/6+t3Kr6LETzHzk+qQTxRQZo/AY/3AZze wckhrU+MeKlucI+hybsg1C78EUy68R2b -----END CERTIFICATE-----Generated at Sat May 31 17:31:57 2025 by rpki-client