$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json) Hash identifier: UCD7wX2lTsa10bUP0v/Vdnqk+8RslMJ6RDPrHacIerw= Subject key identifier: 80:8B:B4:3E:17:A9:59:4D:3E:14:EF:25:80:83:F2:8A:A8:85:DA:2C Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft Manifest number: 5B Signing time: Sat 05 Apr 2025 06:23:30 +0000 Manifest this update: Sat 05 Apr 2025 06:23:29 +0000 Manifest next update: Sat 12 Apr 2025 06:23:29 +0000 Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: FFdibjkCDBki+EByOC1D8rHfBLWGAVXcc5TUxykMKjU=) 2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: eCOiciHVF02QIJ92sCGpWxzFiJ0IghOmtXmYmm4vkYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CB05 Validity Not Before: Apr 5 06:23:29 2025 GMT Not After : Apr 12 06:23:29 2025 GMT Subject: CN=67f0cc62-82ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:bd:fd:19:8b:19:ce:0b:05:a6:c2:2b:5c: 26:9a:4c:a2:b7:11:d9:74:fe:c6:2a:fd:6e:54:26: a2:4e:5c:ec:ac:d3:25:34:82:c5:5d:a9:27:31:21: 3d:16:12:61:07:6a:f7:a6:f0:e7:f2:c8:6e:c1:d6: 9c:92:6d:3f:9b:76:87:5b:8c:32:e9:6d:ef:01:fe: 7d:75:ee:37:06:c2:25:5f:07:19:43:c1:1e:2d:01: 5d:3c:59:c5:13:ee:f9:e1:43:76:b0:48:9c:78:4b: 5e:29:26:c4:19:cd:08:0b:78:8a:0f:78:0c:ec:5a: 5f:68:ae:d1:8f:4a:e8:be:01:05:a9:7d:48:07:1d: 82:85:be:27:5a:0f:26:e4:4d:55:a1:b2:8a:1e:bf: e4:a3:8c:eb:9b:81:b1:b7:10:42:24:bc:a0:39:11: a5:e8:dd:52:84:3d:08:29:02:45:0a:ec:ec:22:96: bd:3f:11:cf:6e:1d:92:e2:67:2f:77:06:b6:6f:9c: 92:e9:8d:c1:53:8a:03:1f:73:ad:7f:9e:5a:b9:26: 24:a8:57:22:bd:a6:23:92:8a:4f:41:e9:7b:c5:b8: 6c:d1:52:56:cf:f6:15:ee:c9:c9:c8:73:9a:83:38: 06:f1:98:48:3d:32:76:97:ee:c2:70:14:e4:21:bb: c1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8B:B4:3E:17:A9:59:4D:3E:14:EF:25:80:83:F2:8A:A8:85:DA:2C X509v3 Authority Key Identifier: keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:4d:66:67:08:8c:49:3d:fb:14:53:dc:84:8c:70:e2:1a:3f: a9:ce:36:be:27:42:e0:c7:62:4a:90:e9:d1:4c:82:c9:43:9b: ee:66:df:9c:46:9c:84:67:8d:0d:88:ea:8d:f8:52:ed:dc:f1: 3d:39:25:a1:27:44:f6:a8:35:81:ab:52:ab:27:c5:89:85:c7: 7c:76:73:7c:6a:5c:5b:04:16:a9:a2:c8:cb:6c:43:cd:01:bb: cb:35:7d:6a:41:bc:de:27:b3:f3:e0:5e:a1:6d:cb:1b:d1:1d: 1c:12:aa:f2:c1:f7:6b:cf:f6:1b:94:6d:eb:f0:fa:c9:28:e1: aa:9d:47:e3:9c:51:86:ef:e7:4c:84:6f:4b:b4:7d:6d:81:b1: f4:4f:b3:f5:c2:df:6c:84:ca:80:55:75:e2:d1:a8:b7:89:80: a5:88:e9:88:7d:2b:f0:c4:a5:12:10:6f:f2:16:8b:a7:eb:33: 6a:e4:23:38:48:37:03:a0:c8:03:a3:40:6b:ef:6a:da:7d:0c: 3c:a9:65:35:80:21:6d:22:cf:97:5e:a5:4e:8e:63:e2:b9:51: 50:4f:4f:8f:f7:f0:d8:44:7a:0d:21:79:de:90:e0:7c:4b:e0: 5f:c4:c6:44:cd:74:1b:4c:58:f1:41:70:c3:65:fa:23:0e:a4: 62:99:77:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0IwNTExMC8GA1UEBRMoNDBEREVFRjAxOEVBRENERTREMUJGNzhEMTU0ODUxRjhE OEJDMjZBNTAeFw0yNTA0MDUwNjIzMjlaFw0yNTA0MTIwNjIzMjlaMBgxFjAUBgNV BAMTDTY3ZjBjYzYyLTgyYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvsr39GYsZzgsFpsIrXCaaTKK3Edl0/sYq/W5UJqJOXOys0yU0gsVdqScxIT0W EmEHavem8OfyyG7B1pySbT+bdodbjDLpbe8B/n117jcGwiVfBxlDwR4tAV08WcUT 7vnhQ3awSJx4S14pJsQZzQgLeIoPeAzsWl9ortGPSui+AQWpfUgHHYKFvidaDybk TVWhsooev+SjjOubgbG3EEIkvKA5EaXo3VKEPQgpAkUK7Owilr0/Ec9uHZLiZy93 BrZvnJLpjcFTigMfc61/nlq5JiSoVyK9piOSik9B6XvFuGzRUlbP9hXuycnIc5qD OAbxmEg9MnaX7sJwFOQhu8E1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgIu0Phep WU0+FO8lgIPyiqiF2iwwHwYDVR0jBBgwFoAUQN3u8Bjq3N5NG/eNFUhR+Ni8JqUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQjA1L0YwQjY2Q0Y4OEE5 QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041TkdfZU5GVWhSLU5pOEpx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUU4zdThCanEzTjVOR19lTkZVaFItTmk4SnFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QjA1L0YwQjY2Q0Y4OEE5QTExRUZCOEFBNTY0OEM0RjlBRTAyL1FOM3U4QmpxM041 TkdfZU5GVWhSLU5pOEpxVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADlNZmcIjEk9+xRT3ISMcOIaP6nONr4nQuDHYkqQ6dFMgslDm+5m35xG nIRnjQ2I6o34Uu3c8T05JaEnRPaoNYGrUqsnxYmFx3x2c3xqXFsEFqmiyMtsQ80B u8s1fWpBvN4ns/PgXqFtyxvRHRwSqvLB92vP9huUbevw+sko4aqdR+OcUYbv50yE b0u0fW2BsfRPs/XC32yEyoBVdeLRqLeJgKWI6Yh9K/DEpRIQb/IWi6frM2rkIzhI NwOgyAOjQGvvatp9DDypZTWAIW0iz5depU6OY+K5UVBPT4/38NhEeg0hed6Q4HxL 4F/ExkTNdBtMWPFBcMNl+iMOpGKZdxY= -----END CERTIFICATE-----Generated at Sat Apr 5 22:59:36 2025 by rpki-client