$ rpki-client -vvf rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft File: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft (raw, json) Hash identifier: DAcclGMWMyTKZPZ+T8yQvp8xrIRwJMBjG5zT38xY1pM= Subject key identifier: 9D:96:2A:0A:CA:6B:AD:83:84:A3:D4:CB:6D:C9:1A:1B:81:15:19:4A Authority key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD Certificate issuer: /CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft Manifest number: 0104 Signing time: Mon 21 Apr 2025 03:57:47 +0000 Manifest this update: Mon 21 Apr 2025 03:57:47 +0000 Manifest next update: Mon 28 Apr 2025 03:57:47 +0000 Files and hashes: 1: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl (hash: Xx7SLeJV92SlI00vcIkUNSUYMClI8yhtKtlHaZlVrqk=) 2: 9BD4B85894D611EE85EDE844C4F9AE02.roa (hash: qMb5p2DafyW8EWL0hOaIMJWbQyW8PlH7p5vaUcSXFyQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 03:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91237A2, serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Validity Not Before: Apr 21 03:57:47 2025 GMT Not After : Apr 28 03:57:47 2025 GMT Subject: CN=6805c23b-f534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:06:8c:42:12:fe:30:df:e4:22:fe:3e:8c:7d: 2d:92:d7:3d:47:79:85:b1:a4:eb:c1:9e:6c:55:35: f3:d6:89:99:4b:50:cd:11:c9:4b:1a:f0:9f:cd:53: 94:78:6d:e5:f1:86:6f:54:38:15:ba:2f:66:7d:6b: 9c:11:f9:e3:3b:63:61:22:9d:2e:ae:d3:b0:e8:af: b7:ae:50:60:37:67:92:67:04:42:f1:35:78:a4:a2: f9:a8:8f:d6:25:85:25:8a:b8:96:8a:cc:ca:c2:02: a6:f0:71:b9:18:2d:39:1f:76:68:aa:b5:a4:9d:73: ae:b1:78:a5:e8:07:fe:ae:d8:21:69:62:d2:8d:87: 43:c1:41:18:fd:a8:c0:e5:95:be:b7:fb:c0:e1:40: f6:fb:bf:5e:d7:00:4e:2d:8e:16:bc:60:7e:97:ea: 8b:5f:b5:21:73:f3:b9:21:d1:3d:76:3d:2c:d4:dc: b7:b6:ec:4e:f6:fe:3d:eb:d6:74:e6:cd:7b:fc:12: b9:53:5a:90:82:ee:9a:3f:42:de:a4:46:5b:b2:ca: 06:d3:af:1c:96:70:25:96:f5:75:9e:05:b0:35:8b: 5e:c9:eb:18:b1:f5:21:20:2d:07:88:e5:f5:06:1d: 6e:8b:72:d9:14:f4:9e:9a:37:18:63:56:26:99:3e: 01:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:96:2A:0A:CA:6B:AD:83:84:A3:D4:CB:6D:C9:1A:1B:81:15:19:4A X509v3 Authority Key Identifier: keyid:43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c8:aa:d8:f6:93:bd:af:f3:60:d6:a8:e7:9c:36:06:97:9c: 98:d5:a6:ef:0a:ed:85:91:17:8d:3a:b2:c1:40:38:79:2c:98: 82:ed:2b:4d:bd:40:e8:7d:29:e5:9a:b7:8f:5e:e0:2d:44:d6: f2:2b:8e:b5:11:8e:83:83:b6:1b:c8:c2:d2:62:36:12:d9:26: a2:f8:5d:0e:4d:98:e5:bd:7b:d3:a3:86:66:4b:52:5b:5a:a1: 11:c8:9d:1c:c5:ac:8c:8a:8f:6a:bc:88:4f:ca:eb:ce:39:c4: 2a:c2:a6:70:f7:e8:a8:32:fa:fc:43:66:8d:2b:e0:42:67:5d: 22:48:c7:30:a5:61:f3:9d:65:4d:fd:bb:23:00:11:7f:b3:e0: 29:80:f0:2d:8e:e8:11:c0:cb:1d:95:81:f1:b1:a3:11:ed:19: ad:46:1e:cf:7f:94:a5:41:98:9d:4a:78:dd:b4:db:a5:4f:03: 9a:d1:e2:f5:a1:5f:fd:81:28:4e:d8:70:b2:df:40:d3:fd:f8: 15:96:ce:9a:40:df:90:04:2f:20:34:5e:2b:fb:40:1e:f6:54: 9e:af:46:bd:fa:47:4b:4f:af:ac:3b:5d:89:01:d0:c8:fa:b8: 17:c9:4b:25:36:96:54:47:d5:8e:61:08:3c:ac:80:b4:58:c7: 12:d6:8e:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM3QTIxMTAvBgNVBAUTKDQzODJGOUFBMzAxNkZDQkYzMUY5MjRDRjEzMkU5NUJG OTI3MDlBREQwHhcNMjUwNDIxMDM1NzQ3WhcNMjUwNDI4MDM1NzQ3WjAYMRYwFAYD VQQDEw02ODA1YzIzYi1mNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwaMQhL+MN/kIv4+jH0tktc9R3mFsaTrwZ5sVTXz1omZS1DNEclLGvCfzVOU eG3l8YZvVDgVui9mfWucEfnjO2NhIp0urtOw6K+3rlBgN2eSZwRC8TV4pKL5qI/W JYUliriWiszKwgKm8HG5GC05H3ZoqrWknXOusXil6Af+rtghaWLSjYdDwUEY/ajA 5ZW+t/vA4UD2+79e1wBOLY4WvGB+l+qLX7Uhc/O5IdE9dj0s1Ny3tuxO9v4969Z0 5s17/BK5U1qQgu6aP0LepEZbssoG068clnAllvV1ngWwNYteyesYsfUhIC0HiOX1 Bh1ui3LZFPSemjcYY1YmmT4BOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2WKgrK a62DhKPUy23JGhuBFRlKMB8GA1UdIwQYMBaAFEOC+aowFvy/MfkkzxMulb+ScJrd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzdBMi80OUU2RTNENjkz M0MxMUVFQjQyMTBGMjlDNEY5QUUwMi9RNEw1cWpBV19MOHgtU1RQRXk2VnY1Sndt dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0TDVxakFXX0w4eC1TVFBFeTZWdjVKd210MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzdBMi80OUU2RTNENjkzM0MxMUVFQjQyMTBGMjlDNEY5QUUwMi9RNEw1cWpBV19M OHgtU1RQRXk2VnY1SndtdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3yKrY9pO9r/Ng1qjnnDYGl5yY1abvCu2FkReNOrLBQDh5LJiC7StN vUDofSnlmrePXuAtRNbyK461EY6Dg7YbyMLSYjYS2Sai+F0OTZjlvXvTo4ZmS1Jb WqERyJ0cxayMio9qvIhPyuvOOcQqwqZw9+ioMvr8Q2aNK+BCZ10iSMcwpWHznWVN /bsjABF/s+ApgPAtjugRwMsdlYHxsaMR7RmtRh7Pf5SlQZidSnjdtNulTwOa0eL1 oV/9gShO2HCy30DT/fgVls6aQN+QBC8gNF4r+0Ae9lSer0a9+kdLT6+sO12JAdDI +rgXyUslNpZUR9WOYQg8rIC0WMcS1o7h -----END CERTIFICATE-----Generated at Tue Apr 22 12:24:19 2025 by rpki-client