$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F72/CAAF0D4C0E2C11F08F1D6981C4F9AE02/qpCd6zVb4xTwVTIZQw0JrOLY53E.mft File: qpCd6zVb4xTwVTIZQw0JrOLY53E.mft (raw, json) Hash identifier: AU4LWI6PBq68ZncA9gAsVfmN9vCIOZGRmQrIAvPdEcA= Subject key identifier: 6C:5B:CF:AD:F7:D1:FA:74:03:C7:BB:E5:47:01:9F:F4:F5:09:E3:7A Authority key identifier: AA:90:9D:EB:35:5B:E3:14:F0:55:32:19:43:0D:09:AC:E2:D8:E7:71 Certificate issuer: /CN=A9188F72/serialNumber=AA909DEB355BE314F0553219430D09ACE2D8E771 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpCd6zVb4xTwVTIZQw0JrOLY53E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F72/CAAF0D4C0E2C11F08F1D6981C4F9AE02/qpCd6zVb4xTwVTIZQw0JrOLY53E.mft Manifest number: 21 Signing time: Sat 31 May 2025 07:27:00 +0000 Manifest this update: Sat 31 May 2025 07:26:59 +0000 Manifest next update: Sat 07 Jun 2025 07:26:59 +0000 Files and hashes: 1: qpCd6zVb4xTwVTIZQw0JrOLY53E.crl (hash: jQNjfAbNOwykm0HArRkvWw2gAbX37WWaEpf/Fja0PyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F72/CAAF0D4C0E2C11F08F1D6981C4F9AE02/qpCd6zVb4xTwVTIZQw0JrOLY53E.crl rsync://rpki.apnic.net/member_repository/A9188F72/CAAF0D4C0E2C11F08F1D6981C4F9AE02/qpCd6zVb4xTwVTIZQw0JrOLY53E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpCd6zVb4xTwVTIZQw0JrOLY53E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F72, serialNumber=AA909DEB355BE314F0553219430D09ACE2D8E771 Validity Not Before: May 31 07:26:59 2025 GMT Not After : Jun 7 07:26:59 2025 GMT Subject: CN=683aaf43-126f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:20:8d:69:8f:67:61:73:bf:0f:3b:60:55:31: c7:3d:24:73:be:82:fd:73:77:f5:b0:c5:70:70:d4: 4b:13:da:61:e9:af:10:3c:b6:61:a9:e5:f5:c0:6d: d4:33:6c:39:32:2b:2c:f1:8e:32:c4:ef:d1:c6:cc: 81:2a:81:65:d6:b8:94:d1:b8:b0:29:70:5e:7e:70: 03:e1:8e:8a:3e:3b:8f:c8:4e:94:f7:f3:51:34:2e: 98:75:20:ca:b3:19:cf:d3:65:3b:53:97:85:8c:1d: bb:60:7d:7e:8a:33:f1:93:4b:34:57:2b:ae:12:37: 22:7a:1b:9a:c1:14:32:46:95:a7:25:5a:70:6a:2c: e5:43:f1:58:c0:e1:41:a4:4f:69:7c:cc:a5:fd:ed: 89:b3:79:df:50:8e:c2:c6:e7:a2:09:a2:a3:41:ca: aa:c0:86:7a:32:4a:97:5f:b0:9b:75:81:fd:cb:19: 5b:e2:76:cd:cc:86:db:ec:1e:40:ef:d0:2c:c8:25: 63:c1:65:2d:4e:34:a8:0f:6f:3a:60:46:74:6e:87: 42:b6:7e:5a:2b:0f:72:54:42:1b:52:9f:96:b1:10: 63:5a:6e:ae:66:fa:a0:18:36:eb:a2:f8:99:b8:f0: f5:12:ba:ad:27:89:01:dd:27:37:f0:a9:41:d4:76: a1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:5B:CF:AD:F7:D1:FA:74:03:C7:BB:E5:47:01:9F:F4:F5:09:E3:7A X509v3 Authority Key Identifier: keyid:AA:90:9D:EB:35:5B:E3:14:F0:55:32:19:43:0D:09:AC:E2:D8:E7:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F72/CAAF0D4C0E2C11F08F1D6981C4F9AE02/qpCd6zVb4xTwVTIZQw0JrOLY53E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpCd6zVb4xTwVTIZQw0JrOLY53E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F72/CAAF0D4C0E2C11F08F1D6981C4F9AE02/qpCd6zVb4xTwVTIZQw0JrOLY53E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:16:5f:fb:ef:c8:c6:9b:a3:99:e2:4d:d2:8d:d6:60:87:91: 37:ba:39:fe:ae:dc:1c:f0:22:25:02:d7:36:ee:22:99:3b:38: ad:77:63:2b:f4:ae:1a:e7:27:bd:58:b6:93:5e:c5:42:ce:f9: 25:5e:2b:92:69:8e:b8:a8:c8:03:3c:03:dd:6b:a3:c4:0b:b0: 44:53:b1:b7:41:ee:16:94:7d:d5:f3:37:bc:45:f2:be:31:21: ea:94:f7:5f:76:1d:39:81:ff:9b:93:58:fd:74:43:e9:c4:61: 6d:6b:08:0a:b2:81:d5:e0:8c:00:08:f4:80:28:a5:6c:2b:56: 03:60:35:32:1f:4e:1e:c7:3e:cb:3c:27:33:d1:46:0c:0b:ff: dc:1b:a2:ee:78:e6:17:54:f9:10:d4:05:36:69:27:23:78:eb: 1a:ee:21:8d:c2:13:74:fe:51:3b:1e:14:88:64:3d:c1:dd:97: 0a:0d:26:cd:75:4f:d1:c0:39:a5:82:c5:ea:d8:a4:b3:ad:4e: e1:d8:5e:18:94:5d:84:69:1e:a7:00:10:51:37:b8:98:60:7e: cf:96:8b:21:0a:7d:f4:fe:3d:cf:27:ad:39:40:5f:56:5f:54: 09:5b:8f:f4:46:d5:94:90:b9:c8:96:38:52:e6:79:55:59:0b: 3b:f7:10:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OEY3MjExMC8GA1UEBRMoQUE5MDlERUIzNTVCRTMxNEYwNTUzMjE5NDMwRDA5QUNF MkQ4RTc3MTAeFw0yNTA1MzEwNzI2NTlaFw0yNTA2MDcwNzI2NTlaMBgxFjAUBgNV BAMTDTY4M2FhZjQzLTEyNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnII1pj2dhc78PO2BVMcc9JHO+gv1zd/WwxXBw1EsT2mHprxA8tmGp5fXAbdQz bDkyKyzxjjLE79HGzIEqgWXWuJTRuLApcF5+cAPhjoo+O4/ITpT381E0Lph1IMqz Gc/TZTtTl4WMHbtgfX6KM/GTSzRXK64SNyJ6G5rBFDJGlaclWnBqLOVD8VjA4UGk T2l8zKX97Ymzed9QjsLG56IJoqNByqrAhnoySpdfsJt1gf3LGVvids3MhtvsHkDv 0CzIJWPBZS1ONKgPbzpgRnRuh0K2florD3JUQhtSn5axEGNabq5m+qAYNuui+Jm4 8PUSuq0niQHdJzfwqUHUdqGjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbFvPrffR +nQDx7vlRwGf9PUJ43owHwYDVR0jBBgwFoAUqpCd6zVb4xTwVTIZQw0JrOLY53Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4RjcyL0NBQUYwRDRDMEUy QzExRjA4RjFENjk4MUM0RjlBRTAyL3FwQ2Q2elZiNHhUd1ZUSVpRdzBKck9MWTUz RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcXBDZDZ6VmI0eFR3VlRJWlF3MEpyT0xZNTNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4 RjcyL0NBQUYwRDRDMEUyQzExRjA4RjFENjk4MUM0RjlBRTAyL3FwQ2Q2elZiNHhU d1ZUSVpRdzBKck9MWTUzRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUWX/vvyMabo5niTdKN1mCHkTe6Of6u3BzwIiUC1zbuIpk7OK13Yyv0 rhrnJ71YtpNexULO+SVeK5JpjrioyAM8A91ro8QLsERTsbdB7haUfdXzN7xF8r4x IeqU9192HTmB/5uTWP10Q+nEYW1rCAqygdXgjAAI9IAopWwrVgNgNTIfTh7HPss8 JzPRRgwL/9wbou545hdU+RDUBTZpJyN46xruIY3CE3T+UTseFIhkPcHdlwoNJs11 T9HAOaWCxerYpLOtTuHYXhiUXYRpHqcAEFE3uJhgfs+WiyEKffT+Pc8nrTlAX1Zf VAlbj/RG1ZSQuciWOFLmeVVZCzv3EB4= -----END CERTIFICATE-----Generated at Sat May 31 15:07:53 2025 by rpki-client