$ rpki-client -vvf rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft File: QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft (raw, json) Hash identifier: mziY3fdffcY+TSvqySz1YHhx3j/Ip6kmxeha2tnCDbc= Subject key identifier: DC:D5:A2:9B:65:A3:CD:15:94:05:E6:8B:B4:DF:F2:35:C9:EC:8D:8F Authority key identifier: 41:76:F1:09:18:C9:B1:8D:2D:EF:8B:7C:66:FC:5A:3A:65:82:23:1E Certificate issuer: /CN=A91144AB/serialNumber=4176F10918C9B18D2DEF8B7C66FC5A3A6582231E Certificate serial: 3468 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft Manifest number: 3468 Signing time: Fri 04 Apr 2025 14:49:00 +0000 Manifest this update: Fri 04 Apr 2025 14:49:00 +0000 Manifest next update: Fri 11 Apr 2025 14:49:00 +0000 Files and hashes: 1: QXbxCRjJsY0t74t8ZvxaOmWCIx4.crl (hash: Q0wJo0dNLka/qElRvZDXLN68TdRrwFllpLYYPuDt60M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.crl rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13416 (0x3468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144AB Validity Not Before: Apr 4 14:49:00 2025 GMT Not After : Apr 11 14:49:00 2025 GMT Subject: CN=67eff15c-f617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4e:e5:9c:16:52:7b:be:72:e0:69:e1:35:68: 30:91:64:a0:bf:72:46:e3:4b:e4:ed:76:f6:b8:5b: cc:87:88:47:c7:3a:0f:d4:1c:11:7c:b9:4e:e4:9f: ed:6c:76:3e:12:c2:be:c9:3d:f1:b2:5d:1b:a4:f8: ae:1a:2e:70:e9:79:da:58:83:56:79:4e:6e:65:52: 28:a0:71:07:f0:a9:28:47:d8:8b:89:16:cf:b2:5f: 01:97:ec:95:30:61:42:b1:21:b9:3f:da:9c:ed:38: b4:e5:f3:d8:ed:f1:c6:01:1c:fd:5f:b2:28:75:1f: 1b:c5:8f:21:64:d5:a2:52:c3:ab:9f:f7:bb:c3:94: 28:22:18:77:b7:3d:6d:2c:59:cb:fc:65:2f:bf:e3: cc:e0:b5:ce:a3:5a:f6:a2:bb:8d:ae:7e:b3:f8:a1: 15:7d:f5:72:a1:6d:1a:f6:c0:3e:e6:1e:46:40:0f: 10:cc:57:a9:32:7e:13:f1:ac:51:0f:8b:04:ba:ad: 40:4c:89:15:be:c2:d0:6b:cc:3c:17:0f:be:16:a9: 91:86:81:4e:c1:87:8d:9e:20:e2:44:ec:3b:26:b1: 8e:ff:37:ba:58:2c:74:47:08:ac:e9:17:ba:8f:c4: 5b:12:c8:67:2e:95:db:88:9f:8b:73:2c:f5:be:b7: ab:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D5:A2:9B:65:A3:CD:15:94:05:E6:8B:B4:DF:F2:35:C9:EC:8D:8F X509v3 Authority Key Identifier: keyid:41:76:F1:09:18:C9:B1:8D:2D:EF:8B:7C:66:FC:5A:3A:65:82:23:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:53:93:5c:6b:bf:74:32:0f:13:46:a3:8b:e2:08:f3:d5:db: 46:3f:f7:ab:3d:da:4b:71:d6:ce:40:af:23:fe:2e:06:33:ba: f9:4d:86:d4:e9:00:be:20:65:35:e2:c5:bd:89:6d:b2:f5:c5: b7:bc:7d:67:cd:af:86:bc:98:36:f6:24:d8:a6:b9:83:38:1d: f2:ba:23:4c:ad:a9:b1:60:73:bb:e7:4d:48:07:df:15:fe:03: d4:44:d1:77:fd:19:35:78:2f:74:47:fa:be:09:16:a9:98:c6: ca:a2:e6:87:77:c6:49:42:5b:57:43:86:89:8f:e3:75:c4:78: ae:f3:85:bf:6f:55:73:b2:cd:bf:e5:85:a3:be:e9:a0:54:3b: 23:87:dd:0c:9b:80:27:f6:12:bb:ba:8d:4c:91:d8:ab:18:69: 39:5d:a0:29:37:ca:be:b9:52:b5:4f:01:d5:c6:f3:9c:b3:97: 8d:e2:5e:ee:d3:0d:fc:a5:4a:4b:c3:b3:3e:de:58:8b:52:9c: 2a:08:45:71:3e:ac:2a:97:3a:c5:50:ab:c0:91:7b:7d:51:5c: 24:a8:5e:87:ca:96:68:01:24:5a:68:13:a5:03:34:48:48:df: 59:4b:69:2b:69:3b:88:8e:e4:22:cf:01:b5:34:72:83:19:f1: 0c:b2:60:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QUIxMTAvBgNVBAUTKDQxNzZGMTA5MThDOUIxOEQyREVGOEI3QzY2RkM1QTNB NjU4MjIzMUUwHhcNMjUwNDA0MTQ0OTAwWhcNMjUwNDExMTQ0OTAwWjAYMRYwFAYD VQQDEw02N2VmZjE1Yy1mNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr07lnBZSe75y4GnhNWgwkWSgv3JG40vk7Xb2uFvMh4hHxzoP1BwRfLlO5J/t bHY+EsK+yT3xsl0bpPiuGi5w6XnaWINWeU5uZVIooHEH8KkoR9iLiRbPsl8Bl+yV MGFCsSG5P9qc7Ti05fPY7fHGARz9X7IodR8bxY8hZNWiUsOrn/e7w5QoIhh3tz1t LFnL/GUvv+PM4LXOo1r2oruNrn6z+KEVffVyoW0a9sA+5h5GQA8QzFepMn4T8axR D4sEuq1ATIkVvsLQa8w8Fw++FqmRhoFOwYeNniDiROw7JrGO/ze6WCx0Rwis6Re6 j8RbEshnLpXbiJ+Lcyz1vrerLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzVoptl o80VlAXmi7Tf8jXJ7I2PMB8GA1UdIwQYMBaAFEF28QkYybGNLe+LfGb8WjplgiMe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRBQi81RTBBQTlBMjFE OTUxMUUyQjRFRTMzN0QwOEIwMkNEMi9RWGJ4Q1JqSnNZMHQ3NHQ4WnZ4YU9tV0NJ eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FYYnhDUmpKc1kwdDc0dDhadnhhT21XQ0l4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDRBQi81RTBBQTlBMjFEOTUxMUUyQjRFRTMzN0QwOEIwMkNEMi9RWGJ4Q1JqSnNZ MHQ3NHQ4WnZ4YU9tV0NJeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZU5Nca790Mg8TRqOL4gjz1dtGP/erPdpLcdbOQK8j/i4GM7r5TYbU 6QC+IGU14sW9iW2y9cW3vH1nza+GvJg29iTYprmDOB3yuiNMramxYHO7501IB98V /gPURNF3/Rk1eC90R/q+CRapmMbKouaHd8ZJQltXQ4aJj+N1xHiu84W/b1Vzss2/ 5YWjvumgVDsjh90Mm4An9hK7uo1MkdirGGk5XaApN8q+uVK1TwHVxvOcs5eN4l7u 0w38pUpLw7M+3liLUpwqCEVxPqwqlzrFUKvAkXt9UVwkqF6HypZoASRaaBOlAzRI SN9ZS2kraTuIjuQizwG1NHKDGfEMsmAR -----END CERTIFICATE-----Generated at Fri Apr 4 22:20:00 2025 by rpki-client