$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft File: QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft (raw, json) Hash identifier: FCQPhBUUQUfTIYnznwl9xsIza7iSLHNdxv0R70eTrak= Subject key identifier: 87:24:6F:E5:51:A4:82:54:30:E8:DD:F7:F1:7B:A1:96:4C:3F:E6:1C Authority key identifier: 42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 Certificate issuer: /CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Certificate serial: 208A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft Manifest number: 278B Signing time: Fri 30 May 2025 16:08:45 +0000 Manifest this update: Fri 30 May 2025 16:08:44 +0000 Manifest next update: Fri 06 Jun 2025 16:08:44 +0000 Files and hashes: 1: QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl (hash: C7BJBIF9z/L8OeQHp28qq1cnHBbhrAxj4k7PI0HHA4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8330 (0x208a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Validity Not Before: May 30 16:08:44 2025 GMT Not After : Jun 6 16:08:44 2025 GMT Subject: CN=6839d80c-328d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0d:6b:0b:d2:bc:fe:2c:b8:26:a1:3f:01:a6: b4:ce:df:e7:c8:4d:9a:8c:64:9e:06:b6:1d:c2:f6: 24:95:d1:ee:4e:ad:20:dc:af:66:76:aa:f5:d2:5e: 4d:82:6f:b1:0b:6d:b1:c3:bd:a6:14:42:ee:b4:8f: 17:76:c0:68:b7:f1:34:d4:f5:e8:00:81:5d:c9:45: 07:4e:60:6e:a5:de:2f:fa:b0:d2:36:48:ae:a2:05: bf:82:39:c4:2e:df:bf:0d:9e:6b:22:08:22:a5:0c: 8e:ef:65:11:f3:0f:40:71:8f:ee:a9:9b:da:66:97: f5:bd:47:5d:6e:e9:ba:12:fa:c7:28:44:24:40:7b: be:b3:91:b3:3c:9e:15:8d:28:9f:93:5b:6f:31:d0: cd:3c:5b:91:da:3c:a3:ec:08:57:74:c9:48:46:5a: 93:12:1f:1d:52:f2:86:a5:55:bd:21:84:6c:df:05: ad:92:98:dd:69:3b:16:99:fb:7d:3d:ca:27:be:d9: d9:4e:64:0d:cd:c4:ac:c9:ee:5c:eb:df:53:19:c7: e4:e2:00:e9:6e:64:ef:8b:59:56:40:6f:1c:ff:1c: 42:98:cd:69:a0:5d:1d:37:39:d1:d7:0d:92:c4:17: 5e:bc:f6:01:d3:e0:ad:bd:a6:63:2f:c6:df:f0:52: 0c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:24:6F:E5:51:A4:82:54:30:E8:DD:F7:F1:7B:A1:96:4C:3F:E6:1C X509v3 Authority Key Identifier: keyid:42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:04:d0:04:44:90:96:d9:e8:4a:97:d1:3b:75:7a:d6:31:06: b4:6d:cd:79:31:ee:e5:83:f5:61:77:14:58:74:ab:34:a4:bf: b5:ee:fe:d2:d3:cd:b1:01:16:42:6e:f9:e6:db:60:1e:7c:94: 1c:b2:a7:dd:25:94:b8:40:25:1e:0c:da:ca:48:9d:6b:0f:04: ee:12:50:3d:e3:f0:b1:ff:01:70:41:e4:5f:6c:78:3d:e5:32: d8:47:13:3a:02:46:41:81:a9:36:5f:42:d6:fb:1b:7b:67:61: 9e:e0:00:1e:2d:6d:6f:d7:dd:da:3f:60:44:96:e6:bc:b2:68: d4:69:02:35:ac:53:cb:03:b9:37:43:1f:12:d2:ed:a5:d3:0d: e2:41:48:ce:56:c1:00:02:ae:7c:e1:ea:c7:ca:b9:a6:9a:3a: d4:b3:a1:53:55:bd:02:d7:14:18:db:71:35:e2:7a:54:30:b7: 51:4e:34:27:99:82:7f:35:f3:09:07:2e:51:28:e6:c9:3e:ea: af:b0:6b:e4:af:a1:12:b8:b8:a9:4e:c5:0d:91:2b:46:4f:b2: e7:18:2b:30:d4:64:9d:4e:2f:b1:60:30:e7:b8:a6:05:87:2b: 61:03:e4:0e:d5:a7:44:ca:4a:19:98:3b:9e:bb:f2:09:50:6c: 5f:fa:82:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDQyNjdDRjVEMDMwMDRBOEZFRkRGMjEzOTVEMEZFODI0 NTQ4QjEzQzEwHhcNMjUwNTMwMTYwODQ0WhcNMjUwNjA2MTYwODQ0WjAYMRYwFAYD VQQDEw02ODM5ZDgwYy0zMjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqw1rC9K8/iy4JqE/Aaa0zt/nyE2ajGSeBrYdwvYkldHuTq0g3K9mdqr10l5N gm+xC22xw72mFELutI8XdsBot/E01PXoAIFdyUUHTmBupd4v+rDSNkiuogW/gjnE Lt+/DZ5rIggipQyO72UR8w9AcY/uqZvaZpf1vUddbum6EvrHKEQkQHu+s5GzPJ4V jSifk1tvMdDNPFuR2jyj7AhXdMlIRlqTEh8dUvKGpVW9IYRs3wWtkpjdaTsWmft9 PconvtnZTmQNzcSsye5c699TGcfk4gDpbmTvi1lWQG8c/xxCmM1poF0dNznR1w2S xBdevPYB0+CtvaZjL8bf8FIM/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIckb+VR pIJUMOjd9/F7oZZMP+YcMB8GA1UdIwQYMBaAFEJnz10DAEqP798hOV0P6CRUixPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNvX3YzeUU1WFFfb0pGU0xF OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtZlBYUU1BU29fdjN5RTVYUV9vSkZTTEU4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNv X3YzeUU1WFFfb0pGU0xFOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWBNAERJCW2ehKl9E7dXrWMQa0bc15Me7lg/VhdxRYdKs0pL+17v7S 082xARZCbvnm22AefJQcsqfdJZS4QCUeDNrKSJ1rDwTuElA94/Cx/wFwQeRfbHg9 5TLYRxM6AkZBgak2X0LW+xt7Z2Ge4AAeLW1v193aP2BElua8smjUaQI1rFPLA7k3 Qx8S0u2l0w3iQUjOVsEAAq584erHyrmmmjrUs6FTVb0C1xQY23E14npUMLdRTjQn mYJ/NfMJBy5RKObJPuqvsGvkr6ESuLipTsUNkStGT7LnGCsw1GSdTi+xYDDnuKYF hythA+QO1adEykoZmDueu/IJUGxf+oKV -----END CERTIFICATE-----Generated at Sat May 31 14:39:50 2025 by rpki-client