$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft File: qhOo9ipv0n6bme44axRRnm_MhjI.mft (raw, json) Hash identifier: IN0TH3j8DfoOCWjgPGBwPHMz3FG0QL450nlExA7fdHg= Subject key identifier: F4:D5:74:F9:EE:50:89:60:7C:EF:AF:61:F1:E9:0F:87:0D:48:7F:9D Authority key identifier: AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 Certificate issuer: /CN=A91DB04D/serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft Manifest number: 0522 Signing time: Fri 30 May 2025 23:47:29 +0000 Manifest this update: Fri 30 May 2025 23:47:28 +0000 Manifest next update: Fri 06 Jun 2025 23:47:28 +0000 Files and hashes: 1: qhOo9ipv0n6bme44axRRnm_MhjI.crl (hash: YabVw1ZuWQtmvqf8bzoslDnuSYeI9xo98jXwTmeN4F0=) 2: 5913DBAA01A011ECBFF72849C4F9AE02.roa (hash: L2t/K4jYZMjKtZ2tLHjje+iSEvp8dgbz2aouwvg2y60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB04D, serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Validity Not Before: May 30 23:47:28 2025 GMT Not After : Jun 6 23:47:28 2025 GMT Subject: CN=683a4390-01c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9e:4b:d0:ca:02:48:e2:9f:52:31:0a:2d:f8: dd:3a:a8:c4:19:ed:98:5f:56:56:d5:a4:4f:71:66: 46:f5:65:c6:8a:9b:be:b5:05:83:a5:32:89:67:01: 5d:5c:85:6a:96:14:fe:29:cc:70:c1:96:56:cf:1a: fa:60:1a:29:ae:ce:f4:03:0f:88:ca:3a:74:f0:63: 81:96:d4:1f:ab:86:de:b0:8f:0a:a6:11:e0:86:73: 43:85:af:f2:26:a5:06:c1:c0:64:c4:dc:6d:c5:42: c0:12:8d:52:3d:57:7a:51:ae:17:c4:e8:34:33:93: ae:e7:70:b1:a2:4d:d0:a3:3b:72:48:50:62:e7:1c: 33:07:2c:29:1b:3a:d0:73:ea:f0:58:bf:96:57:f9: cc:69:89:4e:6d:ea:ff:41:c3:91:6b:33:55:ee:38: 6e:4e:d0:55:91:94:82:da:19:7f:0b:12:92:27:64: 39:9d:b7:41:17:d8:ac:cf:9d:f9:55:a4:87:f8:9d: 70:36:88:9c:d8:86:b8:ca:f7:b0:10:20:e7:65:83: e2:18:af:46:3a:14:ed:89:b6:5e:22:f7:85:b6:f2: 91:14:87:b8:31:f9:d1:19:18:c4:48:1e:1a:5e:a9: 1c:81:42:c3:2d:b2:f6:1b:4c:2e:e7:a0:aa:b5:0d: 3b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D5:74:F9:EE:50:89:60:7C:EF:AF:61:F1:E9:0F:87:0D:48:7F:9D X509v3 Authority Key Identifier: keyid:AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:bc:5b:bd:f6:ea:fa:7b:ca:2b:fe:ab:97:fb:7f:4a:1c:61: 5b:cb:e3:6a:35:2a:ed:c2:77:d2:08:51:b5:cb:24:46:29:33: ac:a2:9d:29:27:8f:d4:43:4b:49:5a:a2:ad:da:a0:3b:af:16: d3:e9:a1:64:81:c9:e9:d8:14:b1:ae:c8:36:7d:18:57:76:eb: 95:7f:34:e6:f0:12:b6:9f:48:56:69:bd:72:7a:0d:a8:47:92: b3:24:9e:38:8f:5f:07:96:49:76:4e:c8:7c:bd:15:66:8d:44: 12:dd:7f:88:1b:d1:14:8a:17:de:29:1d:b1:be:73:2a:cf:04: 84:ce:ae:4b:60:8d:bc:69:16:01:8b:71:2e:bf:fb:63:74:02: f0:f0:9f:bc:c8:90:27:ca:d4:a2:ef:c3:20:b9:4c:70:eb:73: 8d:13:e3:c9:c8:4f:68:64:69:15:47:03:6b:bd:d6:60:c0:c5: 03:34:1f:5e:75:8f:76:a1:10:b6:3f:47:90:cd:e4:65:e4:0c: 19:82:a0:7e:dc:d7:f4:16:e2:0f:4d:bd:b1:c5:b2:13:5c:71: 0b:c6:69:33:ad:1e:66:ec:25:58:9e:5d:46:26:c4:93:fa:24: 88:1f:df:ba:a6:99:bb:d5:a2:e8:1e:ec:cc:cb:0b:b8:e6:96: bb:10:73:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwNEQxMTAvBgNVBAUTKEFBMTNBOEY2MkE2RkQyN0U5Qjk5RUUzODZCMTQ1MTlF NkZDQzg2MzIwHhcNMjUwNTMwMjM0NzI4WhcNMjUwNjA2MjM0NzI4WjAYMRYwFAYD VQQDEw02ODNhNDM5MC0wMWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJ5L0MoCSOKfUjEKLfjdOqjEGe2YX1ZW1aRPcWZG9WXGipu+tQWDpTKJZwFd XIVqlhT+KcxwwZZWzxr6YBoprs70Aw+Iyjp08GOBltQfq4besI8KphHghnNDha/y JqUGwcBkxNxtxULAEo1SPVd6Ua4XxOg0M5Ou53Cxok3QoztySFBi5xwzBywpGzrQ c+rwWL+WV/nMaYlOber/QcORazNV7jhuTtBVkZSC2hl/CxKSJ2Q5nbdBF9isz535 VaSH+J1wNoic2Ia4yvewECDnZYPiGK9GOhTtibZeIveFtvKRFIe4MfnRGRjESB4a XqkcgULDLbL2G0wu56CqtQ07vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTVdPnu UIlgfO+vYfHpD4cNSH+dMB8GA1UdIwQYMBaAFKoTqPYqb9J+m5nuOGsUUZ5vzIYy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjA0RC9FOTU4QUZFNjAx OUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBuNmJtZTQ0YXhSUm5tX01o akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FoT285aXB2MG42Ym1lNDRheFJSbm1fTWhqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjA0RC9FOTU4QUZFNjAxOUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBu NmJtZTQ0YXhSUm5tX01oakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOvFu99ur6e8or/quX+39KHGFby+NqNSrtwnfSCFG1yyRGKTOsop0p J4/UQ0tJWqKt2qA7rxbT6aFkgcnp2BSxrsg2fRhXduuVfzTm8BK2n0hWab1yeg2o R5KzJJ44j18Hlkl2Tsh8vRVmjUQS3X+IG9EUihfeKR2xvnMqzwSEzq5LYI28aRYB i3Euv/tjdALw8J+8yJAnytSi78MguUxw63ONE+PJyE9oZGkVRwNrvdZgwMUDNB9e dY92oRC2P0eQzeRl5AwZgqB+3Nf0FuIPTb2xxbITXHELxmkzrR5m7CVYnl1GJsST +iSIH9+6ppm71aLoHuzMywu45pa7EHPW -----END CERTIFICATE-----Generated at Sat May 31 16:47:52 2025 by rpki-client