$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: 3CtC33kPqykCf/JVcSJHI0D9JtUhunEjE1UhDLlRjaA= Subject key identifier: 4E:B8:A6:06:A3:1F:72:59:5D:51:03:7F:68:D1:A2:9D:BC:0A:F1:11 Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 0236 Signing time: Sun 01 Jun 2025 02:08:26 +0000 Manifest this update: Sun 01 Jun 2025 02:08:26 +0000 Manifest next update: Sun 08 Jun 2025 02:08:26 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: wD9OvYSahe42EKn7Pl3pp98OtwB4+8Xa+0QtnJZLpuc=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9, serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Jun 1 02:08:26 2025 GMT Not After : Jun 8 02:08:26 2025 GMT Subject: CN=683bb61a-18e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3c:2e:c1:43:20:47:0b:44:63:73:c3:2a:e5: ea:fb:48:64:7c:b7:0e:57:3d:0c:eb:85:b5:f6:3f: c3:b3:5f:0c:84:40:e6:38:7a:91:7e:3a:93:09:ab: 0f:51:d0:92:2a:df:e9:07:52:31:33:79:57:bd:73: 1d:89:75:c3:4d:75:53:d6:fd:68:d7:69:32:77:84: 8b:15:12:db:82:3e:48:ba:1a:a9:e7:7d:98:38:3f: b7:fe:20:30:4a:2d:20:af:41:4d:d1:6d:d0:1e:6d: 5c:06:13:c7:89:a8:62:c7:9e:86:4d:91:4c:3a:de: 56:c2:57:0f:ec:9b:73:23:a4:78:f7:a5:f3:ea:7a: 5d:0c:be:f6:4f:1d:14:cf:4b:8e:58:70:20:51:50: 79:1e:3c:4b:ea:ac:9b:43:9d:27:6d:15:f0:44:ed: 8d:b3:ce:99:92:a5:81:bd:8f:39:21:e6:f7:8e:b5: a7:15:2f:dc:97:b5:48:0d:a4:b2:df:93:85:14:ce: b1:1a:9b:2d:d3:2f:5a:2c:78:5d:46:55:80:0a:08: 43:ab:86:19:db:66:f4:95:2e:a2:8e:15:01:cf:29: 0f:1d:a4:cf:ae:31:0c:31:83:eb:ec:61:86:b2:e0: cc:88:2e:3f:8b:0d:15:8a:6a:f9:66:fd:1b:58:f1: 02:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B8:A6:06:A3:1F:72:59:5D:51:03:7F:68:D1:A2:9D:BC:0A:F1:11 X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:49:57:43:b6:1b:cd:07:c1:2e:87:ef:46:b3:4f:bc:be:d7: fa:92:27:10:4b:c3:87:3d:c7:ef:a2:37:80:6a:ad:83:f0:d7: b1:e8:61:33:cd:f2:71:fc:8b:6d:65:72:ea:f5:70:65:16:2a: d3:7a:1c:41:3e:b8:d0:29:56:b9:39:12:66:d8:65:ed:ec:ae: 3a:61:3c:dc:da:4b:df:05:14:dd:51:27:8e:bc:79:7a:aa:01: 34:2b:3d:8a:46:90:83:5a:ac:b4:31:61:d9:aa:95:b8:e0:3e: d5:43:d7:9d:19:03:18:85:fb:0c:8d:60:88:d0:02:89:fa:44: 86:60:25:ba:e9:16:e1:cf:79:48:a9:4b:00:09:07:af:f9:b7: 56:65:2a:74:c4:2e:7d:46:5b:dd:37:e5:fb:05:0c:cc:39:d6: b5:bd:a3:72:f4:6d:23:aa:4b:e1:c9:dc:d7:95:4f:18:64:92: c1:6a:95:c5:b9:40:7d:88:c3:1e:a1:db:17:83:0a:d9:b9:1a: 21:4a:33:a3:d5:17:b1:53:5b:fd:9f:cf:11:99:2c:c6:9c:47: d7:1c:b5:9e:ae:59:95:47:6c:0b:cd:a0:f2:21:7f:05:99:76: ef:4c:34:b5:67:b9:96:10:46:97:73:7b:7f:ee:6a:39:6f:c5: b3:6c:84:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjUwNjAxMDIwODI2WhcNMjUwNjA4MDIwODI2WjAYMRYwFAYD VQQDEw02ODNiYjYxYS0xOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zwuwUMgRwtEY3PDKuXq+0hkfLcOVz0M64W19j/Ds18MhEDmOHqRfjqTCasP UdCSKt/pB1IxM3lXvXMdiXXDTXVT1v1o12kyd4SLFRLbgj5Iuhqp532YOD+3/iAw Si0gr0FN0W3QHm1cBhPHiahix56GTZFMOt5WwlcP7JtzI6R496Xz6npdDL72Tx0U z0uOWHAgUVB5HjxL6qybQ50nbRXwRO2Ns86ZkqWBvY85Ieb3jrWnFS/cl7VIDaSy 35OFFM6xGpst0y9aLHhdRlWACghDq4YZ22b0lS6ijhUBzykPHaTPrjEMMYPr7GGG suDMiC4/iw0Vimr5Zv0bWPEClQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE64pgaj H3JZXVEDf2jRop28CvERMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBSVdDthvNB8Euh+9Gs0+8vtf6kicQS8OHPcfvojeAaq2D8Nex6GEz zfJx/IttZXLq9XBlFirTehxBPrjQKVa5ORJm2GXt7K46YTzc2kvfBRTdUSeOvHl6 qgE0Kz2KRpCDWqy0MWHZqpW44D7VQ9edGQMYhfsMjWCI0AKJ+kSGYCW66Rbhz3lI qUsACQev+bdWZSp0xC59RlvdN+X7BQzMOda1vaNy9G0jqkvhydzXlU8YZJLBapXF uUB9iMMeodsXgwrZuRohSjOj1RexU1v9n88RmSzGnEfXHLWerlmVR2wLzaDyIX8F mXbvTDS1Z7mWEEaXc3t/7mo5b8WzbISK -----END CERTIFICATE-----Generated at Mon Jun 2 06:37:11 2025 by rpki-client