$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/67907734A19611EB8200CF09C4F9AE02/QL0p_yZodz0y7qDscGYCir7gy54.mft File: QL0p_yZodz0y7qDscGYCir7gy54.mft (raw, json) Hash identifier: 39bR9YbZcDfTASwesiCF/hfaLl04xNH++myQ57ZIgZ4= Subject key identifier: DB:3E:71:89:B5:CE:EF:14:25:FF:F4:6E:CA:09:6F:C5:3E:EB:EF:97 Authority key identifier: 40:BD:29:FF:26:68:77:3D:32:EE:A0:EC:70:66:02:8A:BE:E0:CB:9E Certificate issuer: /CN=A91840A8/serialNumber=40BD29FF2668773D32EEA0EC7066028ABEE0CB9E Certificate serial: 0601 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QL0p_yZodz0y7qDscGYCir7gy54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/67907734A19611EB8200CF09C4F9AE02/QL0p_yZodz0y7qDscGYCir7gy54.mft Manifest number: 0601 Signing time: Sat 26 Apr 2025 22:33:16 +0000 Manifest this update: Sat 26 Apr 2025 22:33:16 +0000 Manifest next update: Sat 03 May 2025 22:33:16 +0000 Files and hashes: 1: QL0p_yZodz0y7qDscGYCir7gy54.crl (hash: 57gb4O7Nc6P78J/YF9/xCBK9Dk51j3fm6HXhnTI+tJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/67907734A19611EB8200CF09C4F9AE02/QL0p_yZodz0y7qDscGYCir7gy54.crl rsync://rpki.apnic.net/member_repository/A91840A8/67907734A19611EB8200CF09C4F9AE02/QL0p_yZodz0y7qDscGYCir7gy54.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QL0p_yZodz0y7qDscGYCir7gy54.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1537 (0x601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=40BD29FF2668773D32EEA0EC7066028ABEE0CB9E Validity Not Before: Apr 26 22:33:16 2025 GMT Not After : May 3 22:33:16 2025 GMT Subject: CN=680d5f2c-9ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:10:f2:7e:6a:a8:0c:43:fb:ae:0b:2c:fa:a8: 93:3b:21:08:14:c0:00:0d:0c:ab:fc:9b:d4:51:80: c5:72:30:b2:1e:65:07:7f:da:80:e9:6f:f3:ee:0e: 19:dc:e1:48:ce:e8:86:e6:67:5e:92:2f:12:49:2e: 79:94:c5:f0:4a:45:1b:6f:cd:50:60:9e:4f:d8:08: 3b:3d:c7:ee:56:b1:17:3d:10:3e:58:41:d8:1b:5b: fe:82:71:ef:1b:86:b2:c4:cb:3d:d5:d0:67:20:1a: e0:87:e7:3a:e1:0b:77:25:29:c8:ec:1b:d7:de:77: a0:ed:1e:8b:cb:82:ab:d6:6f:6b:f8:37:0b:60:3b: 5f:f8:89:c6:3d:9e:63:8c:ef:10:1d:b8:1a:5f:e1: 96:71:cd:97:86:b9:ae:23:1d:5a:a0:7a:59:c4:67: 50:41:6b:4c:2f:74:74:b6:b7:7d:ee:69:e9:8e:70: f8:a0:11:7a:a8:d8:50:5f:6f:6d:70:bf:fb:b7:26: de:50:94:c0:c6:12:a8:7e:33:7c:86:75:20:92:12: a9:16:59:c4:f1:b2:25:5d:d9:a0:58:7b:74:ec:1b: 51:7e:68:3b:88:57:23:11:e8:b3:c8:83:70:59:3f: 42:71:35:08:52:f0:c2:54:b7:61:ec:b4:dc:64:b5: 3e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3E:71:89:B5:CE:EF:14:25:FF:F4:6E:CA:09:6F:C5:3E:EB:EF:97 X509v3 Authority Key Identifier: keyid:40:BD:29:FF:26:68:77:3D:32:EE:A0:EC:70:66:02:8A:BE:E0:CB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/67907734A19611EB8200CF09C4F9AE02/QL0p_yZodz0y7qDscGYCir7gy54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QL0p_yZodz0y7qDscGYCir7gy54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/67907734A19611EB8200CF09C4F9AE02/QL0p_yZodz0y7qDscGYCir7gy54.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c0:b0:19:60:fc:b5:f5:37:12:08:b7:7c:80:08:ec:d3:95: 64:f3:4b:16:16:6d:33:88:48:54:ef:fe:c6:f5:48:5b:01:17: 86:55:0d:4e:a8:48:f1:ce:bb:07:a3:31:21:6d:99:6e:fa:af: 0c:b8:99:af:48:b3:77:8e:d9:f6:45:41:66:c7:16:b1:01:9d: f9:81:3c:1a:43:f0:1f:bf:47:21:de:52:21:b6:47:2f:ea:ef: 9a:b1:79:83:f1:83:de:fb:d7:f8:51:df:a9:38:60:56:99:fa: 87:f3:a4:66:56:1a:cb:ef:24:9a:4d:a5:1e:f6:87:37:d5:22: 51:6c:ce:3a:f4:c5:e7:f9:0e:af:08:4f:8b:76:e3:56:f3:4d: da:bd:00:dc:8e:0b:3f:0a:d4:db:33:5c:33:73:10:3e:fc:a3: c3:aa:72:1c:57:c3:cc:4b:55:05:b1:60:1f:ca:8b:7f:b8:8d: be:a2:9b:3c:72:70:07:78:7a:bd:58:96:80:57:17:79:d8:c8: 3b:ea:6d:42:3f:90:ca:36:01:48:f8:66:c1:94:38:78:4a:03: 55:61:1a:96:68:0e:de:d7:84:07:da:d2:3b:33:fd:1e:e2:3e: 02:96:55:59:d8:01:37:74:89:d5:73:a6:00:00:6c:7f:ab:ef: 53:97:97:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKDQwQkQyOUZGMjY2ODc3M0QzMkVFQTBFQzcwNjYwMjhB QkVFMENCOUUwHhcNMjUwNDI2MjIzMzE2WhcNMjUwNTAzMjIzMzE2WjAYMRYwFAYD VQQDEw02ODBkNWYyYy05Y2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BDyfmqoDEP7rgss+qiTOyEIFMAADQyr/JvUUYDFcjCyHmUHf9qA6W/z7g4Z 3OFIzuiG5mdeki8SSS55lMXwSkUbb81QYJ5P2Ag7PcfuVrEXPRA+WEHYG1v+gnHv G4ayxMs91dBnIBrgh+c64Qt3JSnI7BvX3neg7R6Ly4Kr1m9r+DcLYDtf+InGPZ5j jO8QHbgaX+GWcc2XhrmuIx1aoHpZxGdQQWtML3R0trd97mnpjnD4oBF6qNhQX29t cL/7tybeUJTAxhKofjN8hnUgkhKpFlnE8bIlXdmgWHt07BtRfmg7iFcjEeizyINw WT9CcTUIUvDCVLdh7LTcZLU+ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNs+cYm1 zu8UJf/0bsoJb8U+6++XMB8GA1UdIwQYMBaAFEC9Kf8maHc9Mu6g7HBmAoq+4Mue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC82NzkwNzczNEEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi9RTDBwX3lab2R6MHk3cURzY0dZQ2lyN2d5 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FMMHBfeVpvZHoweTdxRHNjR1lDaXI3Z3k1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC82NzkwNzczNEExOTYxMUVCODIwMENGMDlDNEY5QUUwMi9RTDBwX3lab2R6 MHk3cURzY0dZQ2lyN2d5NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQwLAZYPy19TcSCLd8gAjs05Vk80sWFm0ziEhU7/7G9UhbAReGVQ1O qEjxzrsHozEhbZlu+q8MuJmvSLN3jtn2RUFmxxaxAZ35gTwaQ/Afv0ch3lIhtkcv 6u+asXmD8YPe+9f4Ud+pOGBWmfqH86RmVhrL7ySaTaUe9oc31SJRbM469MXn+Q6v CE+LduNW803avQDcjgs/CtTbM1wzcxA+/KPDqnIcV8PMS1UFsWAfyot/uI2+ops8 cnAHeHq9WJaAVxd52Mg76m1CP5DKNgFI+GbBlDh4SgNVYRqWaA7e14QH2tI7M/0e 4j4CllVZ2AE3dInVc6YAAGx/q+9Tl5ek -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:11 2025 by rpki-client on console.sobornost.net