$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: w4OI6zm6cXP3rSerjt9vPUe1fUsn7buWr18E1VuIHc0= Subject key identifier: 87:46:BB:B6:49:90:9C:96:F9:9E:4F:33:14:3A:9B:10:04:40:18:94 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 24A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 2487 Signing time: Sat 31 May 2025 15:45:16 +0000 Manifest this update: Sat 31 May 2025 15:45:15 +0000 Manifest next update: Sat 07 Jun 2025 15:45:15 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: LVMOl8g01cveDjVhPOiBhzSDQXNedCAJfGue7Qj1t1w=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mECvLTKiNtfSmorR6F/JjM52Np+0S4zr3je4uTIkUj8=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: dltD8ogNsgEp1LNwu/hSjpxIyXjpYdO8Yd4ZGWGZBuI=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: tv9RdWOPyxWE44FO50AuecGDdKWojTS5Z904qdTlAMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9383 (0x24a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: May 31 15:45:15 2025 GMT Not After : Jun 7 15:45:15 2025 GMT Subject: CN=683b240b-4fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f4:6f:65:a3:01:ec:c5:2e:1a:c7:8a:47:7a: af:a5:c4:3f:af:86:40:12:eb:94:e8:10:bc:47:4d: f8:ee:71:69:fd:f2:c3:28:d1:53:2c:bd:97:4b:8a: aa:1d:58:5b:9f:4d:b8:03:28:9c:37:a7:f4:3d:73: e5:7d:9e:ab:73:62:f4:68:fc:bd:ed:54:6c:de:f7: fa:db:3d:bf:22:21:b1:23:5e:90:73:36:65:41:09: 37:00:d5:ba:86:36:b5:ae:bf:ea:26:d5:71:55:8c: 74:e2:09:bc:0b:3c:04:69:f4:6a:15:8b:95:9f:cf: fd:34:6d:3c:1e:ad:71:2f:55:66:d1:19:64:41:9d: 3d:d9:81:d0:1e:a0:ea:1b:56:d8:f7:0c:3e:1e:74: 2d:55:3e:a2:3e:d4:74:14:ba:6c:fc:6b:cc:e0:f6: ec:fc:42:78:7b:7b:9b:8b:68:89:44:92:f6:0f:a6: ae:1f:24:80:3e:7d:b5:92:f2:7c:22:ad:4b:41:f6: 09:54:e3:c9:f1:35:65:21:2e:74:13:2c:a5:2a:de: e7:94:31:7d:ad:93:91:59:30:ff:02:48:f9:18:ca: f5:43:52:9d:38:3c:35:b5:f2:08:dc:5d:ec:d8:cc: ba:cb:c3:08:90:2e:63:b0:9b:6e:3f:b8:56:83:11: 96:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:46:BB:B6:49:90:9C:96:F9:9E:4F:33:14:3A:9B:10:04:40:18:94 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:63:b9:aa:69:61:dd:db:45:85:41:39:2e:8e:29:31:26:d0: 95:ed:b5:09:59:d1:fa:f1:f8:56:a7:ac:bc:27:b1:ff:47:4a: 5d:b9:21:46:55:97:55:2b:4d:c1:6b:39:d6:af:4c:4a:87:37: 36:5f:37:78:5a:f4:36:59:4a:aa:ad:b2:a9:21:7f:af:cb:bf: c6:16:a2:7f:45:61:0e:5d:93:79:5f:0b:13:63:2b:1d:7d:cb: e8:d6:84:ec:bf:d3:45:2c:7e:b8:03:7d:3e:48:93:37:1b:9b: e7:07:50:4f:01:5d:c9:5c:9b:d7:51:27:5a:05:19:14:91:6c: 7e:5b:97:4b:c9:33:74:9d:e7:81:79:f3:88:54:43:4a:f5:19: d5:f2:e3:c0:c1:20:8d:1d:dc:c1:c8:fe:3e:01:c2:a9:67:6f: 5f:c7:0e:69:ce:56:79:d6:7d:15:90:92:44:7d:f5:10:81:aa: 88:f3:e4:d6:cd:9f:70:f0:8f:de:bc:5d:fc:7d:71:c2:73:88: 02:00:fd:0e:e7:62:e5:42:01:41:3b:a0:cf:f7:0e:14:42:9f: 3e:2d:64:ee:b3:8a:b7:3f:c6:f4:3a:59:d9:5c:dc:c4:f0:04: 65:24:92:99:32:89:fe:eb:04:9b:50:ec:02:c2:30:9a:a4:0b: c7:e9:d7:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUwNTMxMTU0NTE1WhcNMjUwNjA3MTU0NTE1WjAYMRYwFAYD VQQDEw02ODNiMjQwYi00ZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPRvZaMB7MUuGseKR3qvpcQ/r4ZAEuuU6BC8R0347nFp/fLDKNFTLL2XS4qq HVhbn024AyicN6f0PXPlfZ6rc2L0aPy97VRs3vf62z2/IiGxI16QczZlQQk3ANW6 hja1rr/qJtVxVYx04gm8CzwEafRqFYuVn8/9NG08Hq1xL1Vm0RlkQZ092YHQHqDq G1bY9ww+HnQtVT6iPtR0FLps/GvM4Pbs/EJ4e3ubi2iJRJL2D6auHySAPn21kvJ8 Iq1LQfYJVOPJ8TVlIS50EyylKt7nlDF9rZORWTD/Akj5GMr1Q1KdODw1tfII3F3s 2My6y8MIkC5jsJtuP7hWgxGWhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdGu7ZJ kJyW+Z5PMxQ6mxAEQBiUMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2Y7mqaWHd20WFQTkujikxJtCV7bUJWdH68fhWp6y8J7H/R0pduSFG VZdVK03BaznWr0xKhzc2Xzd4WvQ2WUqqrbKpIX+vy7/GFqJ/RWEOXZN5XwsTYysd fcvo1oTsv9NFLH64A30+SJM3G5vnB1BPAV3JXJvXUSdaBRkUkWx+W5dLyTN0neeB efOIVENK9RnV8uPAwSCNHdzByP4+AcKpZ29fxw5pzlZ51n0VkJJEffUQgaqI8+TW zZ9w8I/evF38fXHCc4gCAP0O52LlQgFBO6DP9w4UQp8+LWTus4q3P8b0OlnZXNzE 8ARlJJKZMon+6wSbUOwCwjCapAvH6dfY -----END CERTIFICATE-----Generated at Sat May 31 17:18:46 2025 by rpki-client