$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: 44L9JrEHlIbi57AWyCHe2mAdTx5hY8OGvKpNjDk+jSI= Subject key identifier: FF:4A:1E:82:34:FC:27:06:15:D2:92:11:F3:92:5D:06:0B:D5:77:35 Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 1290 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 4733 Signing time: Fri 06 Jun 2025 14:21:09 +0000 Manifest this update: Fri 06 Jun 2025 14:21:09 +0000 Manifest next update: Fri 13 Jun 2025 14:21:09 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: gsNwMESzQppAih+EzIrSKBAA9DjU26NW9SOy4E4++H4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 14:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4752 (0x1290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Jun 6 14:21:09 2025 GMT Not After : Jun 13 14:21:09 2025 GMT Subject: CN=6842f955-97e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:20:83:15:d7:b3:96:9d:a8:f0:57:4e:71:fa: e7:f7:e0:e0:de:ae:38:a7:b7:51:72:bc:99:d3:4b: e0:77:5d:ce:13:6f:0d:69:41:63:fa:16:d1:61:13: 42:a0:17:f3:fc:b5:a5:25:5b:b9:b5:68:7a:70:30: 95:83:10:3c:78:1e:85:e2:62:85:00:14:81:77:3e: 02:63:3b:d8:26:67:d2:60:9b:5e:75:d7:89:a9:29: a0:94:d5:3d:d0:0e:b4:c4:e0:3c:7c:a1:25:cd:3a: f7:a0:0c:ba:32:dc:37:d2:14:38:d8:7e:39:f6:3d: fa:0a:2a:13:44:2f:1e:6d:df:c1:86:18:cf:2c:52: b7:77:bb:d9:9f:57:11:00:c8:7e:70:cf:9a:7f:3e: 58:83:5d:86:e5:fe:e7:c1:e9:6d:88:56:29:6a:16: a6:12:96:27:dd:a6:21:72:81:aa:dc:0e:e5:cc:6f: 77:d2:ea:68:d5:3b:62:0a:b0:42:7a:72:dc:bf:5c: ee:7f:b0:68:db:d3:b3:51:13:27:6c:ea:71:1d:a6: 38:9a:55:c2:96:45:d5:60:24:99:40:26:2a:1f:fb: 1e:42:a4:e4:10:be:43:a5:d9:33:31:54:03:5c:87: d5:04:ae:d9:3a:95:94:11:c1:69:4a:38:db:b7:56: b8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4A:1E:82:34:FC:27:06:15:D2:92:11:F3:92:5D:06:0B:D5:77:35 X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:de:3c:20:5b:e7:f2:ad:e6:04:76:9e:62:9f:41:99:22:7b: 64:53:2a:db:07:4d:fe:26:6b:38:d0:db:6c:a6:89:cd:1a:75: c8:6f:a3:46:f7:ef:09:8e:61:75:62:20:d7:e9:ad:f9:fb:e8: a7:aa:31:71:fb:1b:8d:b4:7a:5a:80:0a:33:2b:f5:ae:33:a8: e6:4b:db:5e:16:d7:4b:c1:46:c0:e2:53:2e:22:a7:57:a1:57: a4:fd:c5:48:ea:d4:41:be:8f:a1:e8:1b:ea:52:aa:8b:1f:45: 5c:5e:0f:64:b4:f9:73:aa:72:90:8e:18:b8:6f:a9:7b:d1:10: f1:21:e3:d9:7f:a7:c3:f4:88:80:c7:f9:ba:0f:bc:28:db:83: 0f:10:db:29:6b:8e:08:42:53:20:90:8a:ec:00:18:f2:e3:b1: 7d:d5:f9:d7:4d:dd:76:04:33:a3:f0:5d:68:89:0b:79:25:55: e2:fd:af:01:6f:2d:5b:af:ee:08:3a:f3:b1:bb:0e:1e:93:59: 21:34:a1:4c:88:e3:6b:4b:d3:2a:d1:d4:fa:ae:c0:ec:b6:c8: f7:f2:2e:fd:93:5f:06:e6:c8:89:b1:97:ca:9d:d3:0e:7e:f7: 21:dc:96:4e:f8:c5:ea:00:70:85:f9:a8:18:96:84:05:b8:e0: 17:ec:db:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUwNjA2MTQyMTA5WhcNMjUwNjEzMTQyMTA5WjAYMRYwFAYD VQQDEw02ODQyZjk1NS05N2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyCDFdezlp2o8FdOcfrn9+Dg3q44p7dRcryZ00vgd13OE28NaUFj+hbRYRNC oBfz/LWlJVu5tWh6cDCVgxA8eB6F4mKFABSBdz4CYzvYJmfSYJteddeJqSmglNU9 0A60xOA8fKElzTr3oAy6Mtw30hQ42H459j36CioTRC8ebd/BhhjPLFK3d7vZn1cR AMh+cM+afz5Yg12G5f7nweltiFYpahamEpYn3aYhcoGq3A7lzG930upo1TtiCrBC enLcv1zuf7Bo29OzURMnbOpxHaY4mlXClkXVYCSZQCYqH/seQqTkEL5DpdkzMVQD XIfVBK7ZOpWUEcFpSjjbt1a4vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9KHoI0 /CcGFdKSEfOSXQYL1Xc1MB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/3jwgW+fyreYEdp5in0GZIntkUyrbB03+Jms40NtsponNGnXIb6NG 9+8JjmF1YiDX6a35++inqjFx+xuNtHpagAozK/WuM6jmS9teFtdLwUbA4lMuIqdX oVek/cVI6tRBvo+h6BvqUqqLH0VcXg9ktPlzqnKQjhi4b6l70RDxIePZf6fD9IiA x/m6D7wo24MPENspa44IQlMgkIrsABjy47F91fnXTd12BDOj8F1oiQt5JVXi/a8B by1br+4IOvOxuw4ek1khNKFMiONrS9Mq0dT6rsDstsj38i79k18G5siJsZfKndMO fvch3JZO+MXqAHCF+agYloQFuOAX7NsB -----END CERTIFICATE-----Generated at Fri Jun 6 17:02:41 2025 by rpki-client