$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft File: qpoNy1ExOS1xlqhEGKioRkVTH5c.mft (raw, json) Hash identifier: FINfjIFUfyn9ynHghray8lO0+AFt3e7vE6y2L4ObiQc= Subject key identifier: A9:6D:DF:94:5D:C7:B3:34:5F:69:C0:A9:09:F5:14:25:03:FC:94:A5 Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft Manifest number: 0130 Signing time: Sat 31 May 2025 04:13:56 +0000 Manifest this update: Sat 31 May 2025 04:13:56 +0000 Manifest next update: Sat 07 Jun 2025 04:13:56 +0000 Files and hashes: 1: qpoNy1ExOS1xlqhEGKioRkVTH5c.crl (hash: DLfoiweT9zoCbQ7H5RLtvAUlASN2oKBK/2Q+AbfyyDE=) 2: C2D66F8271A911EEAEEE351CC4F9AE02.roa (hash: 182Ac4fyaiVrniCYLGV61RP5qpWrfJewUwg3lX5zumg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D, serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: May 31 04:13:56 2025 GMT Not After : Jun 7 04:13:56 2025 GMT Subject: CN=683a8204-5c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:17:e5:4e:52:06:1d:d7:93:66:8a:04:71:94: eb:33:5c:b2:0c:e5:1a:42:9d:4c:dc:ba:9a:13:26: 1d:43:e1:da:20:a2:b0:93:70:02:3f:bc:7e:aa:65: 49:47:9e:a3:49:4d:c4:c7:32:4b:73:ca:e3:37:5d: d6:ca:b9:1b:6b:c6:ad:c9:af:59:5d:10:6d:92:ad: 1f:53:51:86:e5:34:92:b6:ce:19:ef:21:55:fa:b3: d7:28:b6:28:09:7f:2d:51:63:47:3b:a9:18:14:c1: a9:04:00:a1:ba:bc:21:06:b9:5a:1c:54:ba:16:81: 52:ef:97:6f:95:51:b9:e4:14:42:ad:7e:ac:31:56: e9:c0:ec:d9:0c:31:45:4f:9b:b1:7b:f8:d6:d9:1c: 1b:33:53:37:8d:49:d5:fd:fc:6b:8c:d0:0a:4f:63: 86:80:4b:80:10:39:75:cc:f6:b6:5e:56:af:f8:d1: 18:39:b0:db:87:e4:1f:3e:ac:76:20:0a:e5:ae:b3: 55:40:ab:50:32:1e:b3:b4:a7:62:cb:61:02:1d:98: c8:b5:ab:09:7d:a0:fd:ed:fb:cd:cd:c4:17:81:97: bf:ae:a1:15:69:7e:7b:81:2a:5c:d6:86:e3:55:8a: 94:6f:fc:20:c5:a4:b1:7e:d9:c3:cc:a1:d9:3a:79: 5a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:6D:DF:94:5D:C7:B3:34:5F:69:C0:A9:09:F5:14:25:03:FC:94:A5 X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:5b:a0:16:91:dc:ef:31:9b:90:8b:fb:35:3d:37:8f:48:37: e0:6a:17:85:d3:90:10:91:54:9c:b5:c7:86:50:32:01:02:4f: 2f:7e:3c:d6:60:bd:c0:66:1c:ca:0e:f1:96:40:a0:ee:ff:7e: 43:d8:1d:a2:83:20:55:59:5a:4a:79:bf:d6:10:d3:bb:9c:93: 39:9d:c9:b6:b6:5a:75:d1:dd:40:ad:65:34:3a:37:3d:ab:3f: 06:54:b4:53:d1:32:b4:65:c6:8a:2c:2e:96:38:f0:70:8d:3d: 2b:04:8a:29:6b:e2:b7:e3:a4:df:da:22:05:62:b8:a8:0c:87: 89:17:c5:0d:eb:50:5b:4e:d8:75:ba:22:77:92:1d:7c:b1:68: 65:b5:f9:54:1c:14:97:06:d1:41:5d:99:f4:f6:b7:7a:80:44: d3:c0:ee:dc:da:7d:4c:f9:af:7a:e6:36:43:28:e8:a4:4f:97: 77:f6:ce:8f:b6:05:aa:2b:ad:32:73:d6:da:4f:5f:35:07:82: dc:96:48:7b:9d:72:1e:a7:1e:91:68:d7:43:ca:58:28:81:b2: 52:e5:8b:78:b7:6f:89:92:68:c4:3b:c6:c9:95:f0:4d:f5:2a: c5:04:12:f2:ad:79:43:37:9a:bd:88:6c:38:23:03:a6:04:ed: 7a:b8:a6:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY2NkQxMTAvBgNVBAUTKEFBOUEwRENCNTEzMTM5MkQ3MTk2QTg0NDE4QThBODQ2 NDU1MzFGOTcwHhcNMjUwNTMxMDQxMzU2WhcNMjUwNjA3MDQxMzU2WjAYMRYwFAYD VQQDEw02ODNhODIwNC01YzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRflTlIGHdeTZooEcZTrM1yyDOUaQp1M3LqaEyYdQ+HaIKKwk3ACP7x+qmVJ R56jSU3ExzJLc8rjN13Wyrkba8atya9ZXRBtkq0fU1GG5TSSts4Z7yFV+rPXKLYo CX8tUWNHO6kYFMGpBAChurwhBrlaHFS6FoFS75dvlVG55BRCrX6sMVbpwOzZDDFF T5uxe/jW2RwbM1M3jUnV/fxrjNAKT2OGgEuAEDl1zPa2Xlav+NEYObDbh+QfPqx2 IArlrrNVQKtQMh6ztKdiy2ECHZjItasJfaD97fvNzcQXgZe/rqEVaX57gSpc1obj VYqUb/wgxaSxftnDzKHZOnlarwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlt35Rd x7M0X2nAqQn1FCUD/JSlMB8GA1UdIwQYMBaAFKqaDctRMTktcZaoRBioqEZFUx+X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjY2RC81MTFBODkyRTcx QTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9TMXhscWhFR0tpb1JrVlRI NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjY2RC81MTFBODkyRTcxQTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9T MXhscWhFR0tpb1JrVlRINWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4W6AWkdzvMZuQi/s1PTePSDfgaheF05AQkVSctceGUDIBAk8vfjzW YL3AZhzKDvGWQKDu/35D2B2igyBVWVpKeb/WENO7nJM5ncm2tlp10d1ArWU0Ojc9 qz8GVLRT0TK0ZcaKLC6WOPBwjT0rBIopa+K346Tf2iIFYrioDIeJF8UN61BbTth1 uiJ3kh18sWhltflUHBSXBtFBXZn09rd6gETTwO7c2n1M+a965jZDKOikT5d39s6P tgWqK60yc9baT181B4Lclkh7nXIepx6RaNdDylgogbJS5Yt4t2+JkmjEO8bJlfBN 9SrFBBLyrXlDN5q9iGw4IwOmBO16uKbp -----END CERTIFICATE-----Generated at Sat May 31 16:42:07 2025 by rpki-client