$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft File: QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json) Hash identifier: 4tWBUQhD6KssnMbPIKOYdu3jDYCXwOUEpghGnAnwji0= Subject key identifier: 88:1A:DB:9E:F2:00:C6:54:06:9A:8A:F7:00:1F:2E:4E:B7:69:3C:67 Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 Certificate issuer: /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft Manifest number: 01AC Signing time: Sat 31 May 2025 03:11:14 +0000 Manifest this update: Sat 31 May 2025 03:11:14 +0000 Manifest next update: Sat 07 Jun 2025 03:11:14 +0000 Files and hashes: 1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: FN/dM6Ap1slxEj/qBOTaMKQS7p4NODxTAuiqZe/5dSo=) 2: A91AF6A8CE7811EF89FA3944C4F9AE02.roa (hash: xYipp+ZcmQFz/ogxlth1vHSd96eYxW/drt1nbOwk66E=) 3: 2B8EF9AA083911F0A051CE72C4F9AE02.roa (hash: NUJLc0QRL6TCVIjI3d7tAKvp2NahPW0NGI52wQUI1t4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B2E, serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Validity Not Before: May 31 03:11:14 2025 GMT Not After : Jun 7 03:11:14 2025 GMT Subject: CN=683a7352-06d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0d:8f:f0:a5:e0:c8:e8:5b:dc:d5:ec:98:6e: 65:41:1d:3e:1c:7c:79:c9:63:83:25:d2:6c:f0:48: 50:c9:c6:0c:cc:c8:58:40:4b:3c:b3:7d:79:34:2e: 2c:b8:40:fc:5f:63:07:52:c1:a0:47:17:8a:8f:72: af:5c:28:e4:ae:0c:ec:63:af:33:f1:04:7d:f4:d8: 54:cb:94:55:1e:d0:36:c2:40:6c:94:c3:b9:0b:3d: 20:1d:5f:3a:1e:c7:59:0a:a2:1c:6c:4c:b3:08:2b: 70:23:35:22:b7:d4:2d:9a:ae:b6:58:3a:30:37:cd: 07:7a:b2:69:c7:32:b7:02:3a:c9:1c:a9:11:c3:a2: ad:41:9a:88:d4:f2:62:6f:4f:84:74:60:5f:58:a6: e0:93:50:94:9e:0f:4f:91:c3:35:93:8b:d6:d9:ae: bf:a7:90:5d:cc:31:4c:be:ee:7c:cf:27:d6:b0:b1: 21:59:d5:78:5b:89:5e:95:65:88:0b:16:cf:28:11: ce:c2:83:44:83:18:ff:37:61:07:6b:a0:1d:1b:7d: e1:33:d7:7b:32:5c:69:b4:6c:c9:d1:9c:d7:08:4e: 25:2e:8c:cc:1a:82:83:c2:8a:11:55:bb:2f:7b:df: 37:b6:27:ee:e2:23:e8:2f:1f:cb:a8:de:0f:4a:7f: e6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:1A:DB:9E:F2:00:C6:54:06:9A:8A:F7:00:1F:2E:4E:B7:69:3C:67 X509v3 Authority Key Identifier: keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:5d:45:59:c6:69:45:c2:0b:44:53:d5:9a:11:53:03:ff:68: 16:c3:50:c8:0b:81:d0:ba:be:1d:0f:7a:07:db:15:2a:06:41: a9:df:1e:46:dd:39:36:2d:97:11:bc:7f:57:13:92:c3:63:aa: 40:63:0e:94:69:bf:be:82:75:6a:9d:83:cf:e3:7f:8f:1a:ee: 9b:45:57:cf:4c:6b:ab:46:40:e8:13:72:fb:4f:b0:ee:99:ce: 17:40:28:62:e2:9e:8c:c1:23:93:e2:f3:0c:47:5b:2e:e7:71: f3:46:3b:13:6b:2d:24:b6:09:39:c5:0c:69:e2:39:73:f9:58: b8:9f:1b:9b:58:42:82:2f:d6:b9:50:98:31:5a:e8:27:da:41: e4:d6:02:51:1b:00:86:9b:6d:7b:a8:0f:a0:1f:89:4b:ea:99: 96:cd:01:9b:d8:8b:4a:35:3b:ba:89:58:99:7d:e3:e8:33:53: 37:d8:92:e1:12:c7:e6:d8:69:e7:26:fa:91:0b:30:66:1b:f1: 19:95:6d:01:23:ce:85:ce:f2:69:8f:e4:02:eb:b3:aa:ca:cb: 4c:7d:95:c1:fc:d0:a1:d2:46:3c:d5:a1:bf:3f:b7:f2:cc:a9: 1e:ba:f0:92:8c:24:62:77:5b:b6:74:4b:6c:db:78:72:07:a8: 37:fe:d8:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCMkUxMTAvBgNVBAUTKDQxMjNFOTAwRTZBMkVDOEZFOUI1RDcwM0I3OTI4MEVG MjE0MDdDODEwHhcNMjUwNTMxMDMxMTE0WhcNMjUwNjA3MDMxMTE0WjAYMRYwFAYD VQQDEw02ODNhNzM1Mi0wNmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3w2P8KXgyOhb3NXsmG5lQR0+HHx5yWODJdJs8EhQycYMzMhYQEs8s315NC4s uED8X2MHUsGgRxeKj3KvXCjkrgzsY68z8QR99NhUy5RVHtA2wkBslMO5Cz0gHV86 HsdZCqIcbEyzCCtwIzUit9Qtmq62WDowN80HerJpxzK3AjrJHKkRw6KtQZqI1PJi b0+EdGBfWKbgk1CUng9PkcM1k4vW2a6/p5BdzDFMvu58zyfWsLEhWdV4W4lelWWI CxbPKBHOwoNEgxj/N2EHa6AdG33hM9d7MlxptGzJ0ZzXCE4lLozMGoKDwooRVbsv e983tifu4iPoLx/LqN4PSn/mcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIga257y AMZUBpqK9wAfLk63aTxnMB8GA1UdIwQYMBaAFEEj6QDmouyP6bXXA7eSgO8hQHyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0IyRS8wRjU1QzY5NkQ2 N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJX3B0ZGNEdDVLQTd5RkFm SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTUHBBT2FpN0lfcHRkY0R0NUtBN3lGQWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0IyRS8wRjU1QzY5NkQ2N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJ X3B0ZGNEdDVLQTd5RkFmSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdXUVZxmlFwgtEU9WaEVMD/2gWw1DIC4HQur4dD3oH2xUqBkGp3x5G 3Tk2LZcRvH9XE5LDY6pAYw6Uab++gnVqnYPP43+PGu6bRVfPTGurRkDoE3L7T7Du mc4XQChi4p6MwSOT4vMMR1su53HzRjsTay0ktgk5xQxp4jlz+Vi4nxubWEKCL9a5 UJgxWugn2kHk1gJRGwCGm217qA+gH4lL6pmWzQGb2ItKNTu6iViZfePoM1M32JLh Esfm2GnnJvqRCzBmG/EZlW0BI86FzvJpj+QC67OqystMfZXB/NCh0kY81aG/P7fy zKkeuvCSjCRid1u2dEts23hyB6g3/thQ -----END CERTIFICATE-----Generated at Sat May 31 16:42:56 2025 by rpki-client