$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft File: qgt4LbmTLiL93vDD91WW7glF4S0.mft (raw, json) Hash identifier: 4qoDiGkwo3eLbjeaaoaNFYj2paB2jEMk7L2voFybhl8= Subject key identifier: 25:A5:02:5D:E6:B2:30:85:D2:F6:E9:68:12:AE:7A:4B:86:11:1D:A5 Authority key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D Certificate issuer: /CN=A917C909/serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft Manifest number: 57 Signing time: Sat 31 May 2025 06:48:34 +0000 Manifest this update: Sat 31 May 2025 06:48:34 +0000 Manifest next update: Sat 07 Jun 2025 06:48:34 +0000 Files and hashes: 1: qgt4LbmTLiL93vDD91WW7glF4S0.crl (hash: asqKd+2lxSDbKmdc1w3+VYsCa39vxwuN+HMzMuBEVvA=) 2: 3A0E0B1CD47511EF91EA0832C4F9AE02.roa (hash: pAj7NdDmToipkIAovmtOfynK/RP/8C5/+xzCsvCxUC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909, serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Validity Not Before: May 31 06:48:34 2025 GMT Not After : Jun 7 06:48:34 2025 GMT Subject: CN=683aa642-49c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2a:71:a3:14:15:70:17:be:83:52:ef:3f:34: e0:2c:4b:4e:a0:a9:7c:d0:e3:a9:f9:db:02:1d:e6: aa:1c:ee:12:cb:ad:da:36:93:43:41:f9:d2:a8:c6: ff:a0:36:49:26:ca:2b:37:3c:0a:5f:f7:d2:ce:ca: 42:b2:32:fc:87:04:72:e7:34:f1:e3:24:95:d3:10: bf:33:92:38:72:48:ec:1c:5a:49:57:ae:02:af:b5: f9:f5:87:e4:21:b0:7c:10:4e:30:84:cd:a2:77:33: 2f:9e:8b:79:ce:ae:e5:c4:c6:72:43:0c:85:40:55: 38:42:35:53:c5:21:d1:7e:c4:2a:ab:8d:99:79:6f: fe:9c:68:67:39:58:d6:f4:3c:c5:8a:83:13:8f:64: 79:86:13:de:c8:96:63:6e:90:6b:3a:03:04:e8:05: d9:04:30:c3:49:cc:df:a0:85:9d:10:4c:a8:5b:0b: 7e:c8:6b:96:6e:15:42:d9:2b:8b:4e:16:19:ab:e9: a4:f7:80:a8:80:94:38:f4:a7:6a:fa:0a:05:b0:5b: 68:10:6a:42:42:ce:e1:10:1e:3f:0a:55:34:b3:cd: 6e:d5:6d:09:c8:24:4f:f5:f9:e1:b3:e0:76:ec:e6: de:bf:e3:44:9b:3a:38:05:24:b6:f2:3a:08:af:37: 9b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A5:02:5D:E6:B2:30:85:D2:F6:E9:68:12:AE:7A:4B:86:11:1D:A5 X509v3 Authority Key Identifier: keyid:AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:fa:57:07:3b:4c:9d:94:d5:2f:dd:4d:23:62:10:1f:d3:dd: 91:f3:62:cf:97:21:24:f3:fb:8c:61:81:71:3e:a2:a1:5b:23: 84:a3:4c:95:e0:fd:02:f6:ad:63:82:b0:bf:0c:83:bb:47:90: 09:0c:44:ed:11:4f:66:71:8e:8e:3c:11:d0:39:47:df:0e:66: 36:81:57:ff:e6:ee:3b:4b:72:8f:13:d4:64:96:02:79:1e:0c: 6f:ff:f9:26:cc:e6:61:9f:49:21:92:1b:a5:16:00:ac:e0:8e: 9e:1b:31:57:1e:92:a2:b9:16:e1:d4:fc:ab:85:a8:42:28:25: 77:ea:37:99:5f:f3:cf:33:9a:a6:35:b9:65:42:97:fd:2a:00: a8:6a:ab:4a:1f:03:eb:7c:32:0e:3c:98:70:9a:6f:89:b7:65: 04:83:05:5a:8a:a7:5e:de:56:57:16:60:7e:90:71:a4:c2:f2: d0:fa:d1:58:96:20:87:1b:d7:99:19:ba:a5:dd:96:53:3c:06: 63:81:89:33:b9:6e:85:d8:14:55:f5:fc:e6:94:1f:bc:fe:aa: c6:44:b6:a4:dd:56:46:43:61:b5:0d:69:0e:37:99:5b:ee:92: d2:b6:81:1b:6d:6a:cd:bb:94:88:6e:0a:f8:c2:df:24:fc:c6: 90:1c:68:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzkwOTExMC8GA1UEBRMoQUEwQjc4MkRCOTkzMkUyMkZEREVGMEMzRjc1NTk2RUUw OTQ1RTEyRDAeFw0yNTA1MzEwNjQ4MzRaFw0yNTA2MDcwNjQ4MzRaMBgxFjAUBgNV BAMTDTY4M2FhNjQyLTQ5YzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9KnGjFBVwF76DUu8/NOAsS06gqXzQ46n52wId5qoc7hLLrdo2k0NB+dKoxv+g Nkkmyis3PApf99LOykKyMvyHBHLnNPHjJJXTEL8zkjhySOwcWklXrgKvtfn1h+Qh sHwQTjCEzaJ3My+ei3nOruXExnJDDIVAVThCNVPFIdF+xCqrjZl5b/6caGc5WNb0 PMWKgxOPZHmGE97IlmNukGs6AwToBdkEMMNJzN+ghZ0QTKhbC37Ia5ZuFULZK4tO Fhmr6aT3gKiAlDj0p2r6CgWwW2gQakJCzuEQHj8KVTSzzW7VbQnIJE/1+eGz4Hbs 5t6/40SbOjgFJLbyOgivN5txAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJaUCXeay MIXS9uloEq56S4YRHaUwHwYDVR0jBBgwFoAUqgt4LbmTLiL93vDD91WW7glF4S0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDOTA5LzA3Nzk3RkU0QzBE QzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlMOTN2REQ5MVdXN2dsRjRT MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWd0NExibVRMaUw5M3ZERDkxV1c3Z2xGNFMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD OTA5LzA3Nzk3RkU0QzBEQzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlM OTN2REQ5MVdXN2dsRjRTMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGX6Vwc7TJ2U1S/dTSNiEB/T3ZHzYs+XISTz+4xhgXE+oqFbI4SjTJXg /QL2rWOCsL8Mg7tHkAkMRO0RT2Zxjo48EdA5R98OZjaBV//m7jtLco8T1GSWAnke DG//+SbM5mGfSSGSG6UWAKzgjp4bMVcekqK5FuHU/KuFqEIoJXfqN5lf888zmqY1 uWVCl/0qAKhqq0ofA+t8Mg48mHCab4m3ZQSDBVqKp17eVlcWYH6QcaTC8tD60ViW IIcb15kZuqXdllM8BmOBiTO5boXYFFX1/OaUH7z+qsZEtqTdVkZDYbUNaQ43mVvu ktK2gRttas27lIhuCvjC3yT8xpAcaII= -----END CERTIFICATE-----Generated at Sat May 31 16:40:50 2025 by rpki-client