$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: kV/3jznvm/AZW/shZYGIlb0jb1TbImp7nqc2zF2VKfA= Subject key identifier: 2C:77:C0:51:17:57:F8:DA:6E:10:F7:5F:FF:08:75:B6:F4:3C:7D:9B Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 23 Signing time: Sat 31 May 2025 07:24:56 +0000 Manifest this update: Sat 31 May 2025 07:24:55 +0000 Manifest next update: Sat 07 Jun 2025 07:24:55 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: sCH/h7jay1ci1bbXkabg3Ye98ISortlvFAfjF1muKnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: May 31 07:24:55 2025 GMT Not After : Jun 7 07:24:55 2025 GMT Subject: CN=683aaec8-5549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ef:91:a8:64:be:b0:84:0d:a5:57:eb:9d:e1: d1:0d:ee:06:7e:43:ca:be:81:30:70:96:48:99:75: ef:4e:e6:c0:d3:74:df:ff:2c:b0:51:ee:72:bf:e7: 27:5d:0e:82:e1:fc:57:d5:96:af:fe:18:32:32:b2: 53:86:6d:65:df:9e:8e:46:5a:25:da:2a:7d:40:d2: 8f:03:87:ba:32:b9:ed:b5:71:12:a6:d7:47:ed:0c: 26:9a:95:2a:c2:78:96:bb:ca:00:74:13:69:fd:35: 19:2c:f7:f9:7b:30:fc:27:79:91:6b:7a:61:8f:95: d3:f5:f6:7b:40:6f:3f:06:3d:3d:90:8f:6e:a7:01: 96:49:a6:02:a7:10:85:96:66:93:44:d7:33:2e:15: 00:85:64:b6:2b:9f:c6:7f:4e:41:e7:d5:4d:36:8f: 41:5e:38:e4:74:6f:ef:be:89:7f:79:8e:75:7a:75: 35:e9:91:10:7f:d7:f8:18:c7:6d:84:ab:c0:a5:a5: fe:8b:a0:96:43:77:ad:24:05:21:12:a0:f0:70:3e: 49:1b:1f:1d:8c:b1:2f:50:19:92:ff:8a:33:e9:f7: 5f:d7:ab:4d:93:87:c8:5d:44:32:09:2f:c3:dc:a6: 88:aa:cf:95:ff:6c:b7:2a:f3:1c:9f:17:c2:94:05: da:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:77:C0:51:17:57:F8:DA:6E:10:F7:5F:FF:08:75:B6:F4:3C:7D:9B X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:1b:fb:b4:35:f9:11:3a:97:4a:7b:d4:65:4c:65:dc:11:59: 87:e0:50:f7:8c:8d:51:61:41:83:4b:c6:72:9b:eb:70:03:3d: 9d:67:42:4f:30:d1:84:7b:aa:aa:7d:a2:f1:9c:60:4a:04:7b: 01:04:33:74:29:aa:26:36:90:7f:05:ff:d8:98:88:97:f5:8f: 63:2c:19:57:33:31:21:ec:d9:86:ef:22:7c:62:9a:3a:ed:b5: 77:79:85:77:95:16:64:d5:6a:dd:9d:fe:80:77:23:31:1f:1f: 52:52:4b:db:af:55:1b:97:3a:c1:c2:bf:b2:f1:75:0f:61:c0: 28:1c:11:78:da:4c:ec:1f:ad:cd:3a:67:d0:7b:22:5c:37:6a: cd:95:37:f6:27:de:ae:e7:28:ae:a9:63:3f:1c:7f:c6:d6:54: 7d:2a:a0:f4:71:36:1e:80:cf:e7:6a:15:fb:5a:e0:9a:7a:80: 5f:80:5b:5d:a2:73:b5:a4:f8:8a:2f:a0:18:ac:d5:1c:1e:f2: d5:f3:90:8c:8d:1f:d6:70:b2:a0:02:2c:90:3a:bf:d0:fe:d0: 5a:a6:39:1f:54:b5:65:41:09:de:a6:74:b6:3e:43:98:08:9d: aa:c7:68:5b:64:bd:85:b7:01:b8:4a:b7:f4:23:12:81:14:f7: fc:a8:23:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjQ5MjExMC8GA1UEBRMoNDBFNEJEMzZBRTE1MDc3RkU1OTk4NUQxMzcwRDVENjQ2 NzBBODhEOTAeFw0yNTA1MzEwNzI0NTVaFw0yNTA2MDcwNzI0NTVaMBgxFjAUBgNV BAMTDTY4M2FhZWM4LTU1NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC275GoZL6whA2lV+ud4dEN7gZ+Q8q+gTBwlkiZde9O5sDTdN//LLBR7nK/5ydd DoLh/FfVlq/+GDIyslOGbWXfno5GWiXaKn1A0o8Dh7oyue21cRKm10ftDCaalSrC eJa7ygB0E2n9NRks9/l7MPwneZFremGPldP19ntAbz8GPT2Qj26nAZZJpgKnEIWW ZpNE1zMuFQCFZLYrn8Z/TkHn1U02j0FeOOR0b+++iX95jnV6dTXpkRB/1/gYx22E q8Clpf6LoJZDd60kBSESoPBwPkkbHx2MsS9QGZL/ijPp91/Xq02Th8hdRDIJL8Pc poiqz5X/bLcq8xyfF8KUBdp1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULHfAURdX +NpuEPdf/wh1tvQ8fZswHwYDVR0jBBgwFoAUQOS9Nq4VB3/lmYXRNw1dZGcKiNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNDkyLzJDMEIzMkQ4MDkz NjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUU9TOU5xNFZCM19sbVlYUk53MWRaR2NLaU5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NDkyLzJDMEIzMkQ4MDkzNjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNf bG1ZWFJOdzFkWkdjS2lOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGQb+7Q1+RE6l0p71GVMZdwRWYfgUPeMjVFhQYNLxnKb63ADPZ1nQk8w 0YR7qqp9ovGcYEoEewEEM3QpqiY2kH8F/9iYiJf1j2MsGVczMSHs2YbvInximjrt tXd5hXeVFmTVat2d/oB3IzEfH1JSS9uvVRuXOsHCv7LxdQ9hwCgcEXjaTOwfrc06 Z9B7Ilw3as2VN/Yn3q7nKK6pYz8cf8bWVH0qoPRxNh6Az+dqFfta4Jp6gF+AW12i c7Wk+IovoBis1Rwe8tXzkIyNH9ZwsqACLJA6v9D+0FqmOR9UtWVBCd6mdLY+Q5gI narHaFtkvYW3AbhKt/QjEoEU9/yoIwA= -----END CERTIFICATE-----Generated at Sat May 31 15:40:36 2025 by rpki-client