$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft File: qkjQtX4IXNlA26F5HapYc8wZx_4.mft (raw, json) Hash identifier: F46rX7idzBxAtTpsQRUaLaH0rkKCAr7oTCCew9q8z8s= Subject key identifier: F0:3E:BF:F9:74:FC:C2:FF:F1:76:39:EA:E6:C0:ED:7C:DC:04:B4:E7 Authority key identifier: AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE Certificate issuer: /CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Certificate serial: 0392 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft Manifest number: 038C Signing time: Sat 31 May 2025 01:03:09 +0000 Manifest this update: Sat 31 May 2025 01:03:09 +0000 Manifest next update: Sat 07 Jun 2025 01:03:09 +0000 Files and hashes: 1: qkjQtX4IXNlA26F5HapYc8wZx_4.crl (hash: oRHmDL5KHsyKlV5YdSmcXL3zEHyBuX8kIyjt0GwXFPg=) 2: 9924B750A1AF11EC9A73D814C4F9AE02.roa (hash: H07H0KC74DRAPdC4SUe3j+pKIkb6uyeJtaN+ueDEin0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 914 (0x392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA582, serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Validity Not Before: May 31 01:03:09 2025 GMT Not After : Jun 7 01:03:09 2025 GMT Subject: CN=683a554d-e2a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:98:0c:21:6b:14:e1:83:73:e3:2b:e6:99:6b: eb:d6:87:78:6b:80:de:c7:15:2b:33:d3:75:2e:d0: 33:98:a9:d6:8c:ba:10:64:47:c7:e4:ee:b4:a5:3b: dc:e1:11:5b:43:07:6d:31:ff:93:f1:63:d1:35:28: 54:06:8a:40:ba:60:d0:ca:78:92:06:97:c1:f3:01: f5:33:43:40:ab:79:1c:b3:04:7f:3e:d2:1c:fc:a1: 89:e9:e9:f5:9f:b7:ad:1f:80:e2:c2:10:c4:c5:16: 44:59:f5:6b:20:98:67:5b:56:93:8b:26:e3:9e:a6: 44:9d:43:6a:d6:31:d2:9f:86:7f:55:e9:31:3e:a5: 83:1e:5d:a3:7c:e1:40:c4:22:fa:3c:32:59:1a:e2: 13:ef:cb:74:9b:6e:3f:a8:f8:1f:c6:d4:37:24:0e: 4a:a7:bd:fa:31:1e:4a:15:a1:1c:34:c4:e6:de:ef: a4:53:09:9b:f9:f9:35:22:d7:0e:e8:6b:b0:d9:c1: 59:39:f2:69:3a:f2:ae:4f:0e:2e:38:df:7d:28:8b: 52:ec:3a:33:c6:2d:8b:5d:12:cf:ca:3c:a5:01:66: f3:58:61:e8:2b:40:ad:00:9e:1b:1f:d0:a5:08:1e: 10:8c:48:1f:f2:17:ff:3f:38:d2:ae:07:99:c3:ce: 2a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:3E:BF:F9:74:FC:C2:FF:F1:76:39:EA:E6:C0:ED:7C:DC:04:B4:E7 X509v3 Authority Key Identifier: keyid:AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:d3:ac:dd:5e:25:03:68:31:e3:c7:91:a0:0c:4c:6b:8e:1f: 72:d4:43:03:2b:d9:b2:04:e5:d5:2f:70:2b:81:d4:5b:80:24: 56:99:de:51:76:eb:52:c7:1d:7f:70:46:96:b2:da:25:de:d3: 0f:93:c5:64:77:7f:54:bb:34:7d:d4:a1:be:0b:31:f7:c2:f3: 5a:82:6f:09:23:94:ef:3c:c7:97:84:68:0b:89:08:a9:79:a3: 1c:64:dd:d0:7f:f4:be:5d:96:b7:96:f3:c7:fa:d7:0b:83:b1: 96:6a:c9:f5:26:44:6e:2f:8a:c6:45:68:9d:91:61:f3:c9:1b: 2a:28:69:a1:40:87:0d:46:a3:e2:08:4f:9f:ef:06:3a:cf:66: a7:a7:b7:65:60:f4:91:ed:08:d5:ee:4e:24:82:2a:19:07:af: 9a:53:f7:f3:31:cb:a8:2d:a8:57:6e:9b:4d:f9:2b:d2:ba:86: d8:b1:dd:92:79:1d:d5:b2:22:89:70:e8:07:5c:8a:f6:af:30: d7:30:8a:5f:f3:67:49:5c:52:98:a0:33:65:0e:64:55:6f:1c: 43:06:42:80:b6:f5:82:64:94:87:c9:21:7a:56:17:3a:cf:bc: 9b:aa:cb:16:4b:bd:db:7e:c4:78:cc:27:cc:90:fe:bd:3b:1a: 5c:ea:cc:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1ODIxMTAvBgNVBAUTKEFBNDhEMEI1N0UwODVDRDk0MERCQTE3OTFEQUE1ODcz Q0MxOUM3RkUwHhcNMjUwNTMxMDEwMzA5WhcNMjUwNjA3MDEwMzA5WjAYMRYwFAYD VQQDEw02ODNhNTU0ZC1lMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pgMIWsU4YNz4yvmmWvr1od4a4DexxUrM9N1LtAzmKnWjLoQZEfH5O60pTvc 4RFbQwdtMf+T8WPRNShUBopAumDQyniSBpfB8wH1M0NAq3kcswR/PtIc/KGJ6en1 n7etH4DiwhDExRZEWfVrIJhnW1aTiybjnqZEnUNq1jHSn4Z/VekxPqWDHl2jfOFA xCL6PDJZGuIT78t0m24/qPgfxtQ3JA5Kp736MR5KFaEcNMTm3u+kUwmb+fk1ItcO 6Guw2cFZOfJpOvKuTw4uON99KItS7Dozxi2LXRLPyjylAWbzWGHoK0CtAJ4bH9Cl CB4QjEgf8hf/PzjSrgeZw84q8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPA+v/l0 /ML/8XY56ubA7XzcBLTnMB8GA1UdIwQYMBaAFKpI0LV+CFzZQNuheR2qWHPMGcf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU4Mi85NzRGQ0FBMEEx MTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhObEEyNkY1SGFwWWM4d1p4 XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FralF0WDRJWE5sQTI2RjVIYXBZYzh3WnhfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTU4Mi85NzRGQ0FBMEExMTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhO bEEyNkY1SGFwWWM4d1p4XzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy06zdXiUDaDHjx5GgDExrjh9y1EMDK9myBOXVL3ArgdRbgCRWmd5R dutSxx1/cEaWstol3tMPk8Vkd39UuzR91KG+CzH3wvNagm8JI5TvPMeXhGgLiQip eaMcZN3Qf/S+XZa3lvPH+tcLg7GWasn1JkRuL4rGRWidkWHzyRsqKGmhQIcNRqPi CE+f7wY6z2anp7dlYPSR7QjV7k4kgioZB6+aU/fzMcuoLahXbptN+SvSuobYsd2S eR3VsiKJcOgHXIr2rzDXMIpf82dJXFKYoDNlDmRVbxxDBkKAtvWCZJSHySF6Vhc6 z7ybqssWS73bfsR4zCfMkP69Oxpc6sya -----END CERTIFICATE-----Generated at Sat May 31 17:18:50 2025 by rpki-client