$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: rBk1YQIlOmtqI+KUBCk16plYHQ2qwgsjiBuBA3vZ3gY= Subject key identifier: BD:D1:15:5E:3B:DC:3F:6D:BF:60:19:87:1D:4C:DB:A4:ED:51:AB:AB Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BAE Signing time: Sun 06 Apr 2025 18:42:55 +0000 Manifest this update: Sun 06 Apr 2025 18:42:55 +0000 Manifest next update: Sun 13 Apr 2025 18:42:55 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: 1eQL1GpDAmiZNAVfMqR0K83laSbdzVq6kOximvRFcK0=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2997 (0xbb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1 Validity Not Before: Apr 6 18:42:55 2025 GMT Not After : Apr 13 18:42:55 2025 GMT Subject: CN=67f2cb2f-a0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:14:82:02:92:b8:16:e3:84:f9:00:ea:26: b9:b0:f9:ce:63:fa:a8:97:7a:dd:ff:5d:a2:e7:03: a2:b1:f7:fe:1e:7b:f6:42:a9:af:01:6f:bb:0e:19: 2c:5a:c5:77:ed:0f:22:69:d2:8e:d4:60:35:fb:06: 37:4f:66:63:00:e0:4a:0a:b1:0d:02:6a:79:a0:67: c7:62:e4:45:cf:b9:64:7d:c8:03:2f:44:09:e4:a8: 0b:d1:8f:80:c8:74:7f:4c:e4:b9:f6:74:94:32:10: 14:16:b4:f6:f5:a7:9b:34:5f:b7:74:10:f2:6d:a4: b8:12:ec:41:44:29:d0:35:2e:7f:4c:d2:e1:ac:c8: 61:7e:a5:a8:54:21:1d:54:e2:a2:86:3f:5b:47:5d: 5b:c9:83:2e:9e:34:e7:9e:58:74:41:34:7a:d8:a4: b1:ce:82:f8:ae:8d:c8:c7:6b:71:81:6f:ad:84:fe: 04:08:52:0d:60:ba:d7:b1:aa:bc:73:36:a3:10:f4: de:b0:09:d6:bc:1c:f5:c9:89:2f:aa:6f:dd:b9:20: 98:99:85:03:a2:59:16:50:93:19:5c:98:28:9e:c5: e5:b0:de:a2:e2:5a:92:47:86:c5:15:51:d4:08:b7: ae:6a:4d:d4:be:b3:4f:91:d5:ec:47:28:83:35:ab: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D1:15:5E:3B:DC:3F:6D:BF:60:19:87:1D:4C:DB:A4:ED:51:AB:AB X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:0e:23:d6:31:1a:9d:56:cd:bf:32:28:ff:cc:f4:08:7e:0b: de:3f:5a:08:31:f6:19:f7:25:68:67:ec:72:5f:82:d5:00:4b: ef:20:2b:ac:5f:51:11:79:98:24:54:f9:c0:74:46:d5:eb:15: 5c:ca:90:db:8e:32:36:f1:f3:c1:cd:0d:0e:06:65:1c:83:98: 69:53:81:70:64:18:d2:16:2d:8d:fc:d7:64:6c:c2:b2:7b:a3: 9c:31:fa:31:f0:9e:d0:85:94:84:83:71:89:dc:61:7e:0a:cb: 38:3f:09:af:57:07:9f:78:8b:f7:df:52:bf:21:d1:08:3b:97: 00:3e:4d:57:ce:39:ff:07:22:7f:0e:8e:33:61:92:04:43:d2: ba:d4:f5:48:71:ac:2d:b7:7d:bc:9c:11:f9:20:27:21:d3:58: 05:45:5f:e9:ad:dd:36:1f:33:3e:36:a8:81:79:1f:c0:60:32: cf:5b:ea:5e:82:71:32:79:16:80:53:58:03:a7:20:cc:76:a8: d4:ed:e9:78:51:6d:f7:42:22:fd:f6:83:a3:9b:74:49:85:35: c1:f3:35:5b:ad:1c:ef:93:89:88:ea:2d:6f:33:13:d7:a7:1e: f2:3f:f5:52:20:1e:48:46:ba:f8:2a:a5:39:75:05:50:f7:69: 0f:37:88:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwNDA2MTg0MjU1WhcNMjUwNDEzMTg0MjU1WjAYMRYwFAYD VQQDEw02N2YyY2IyZi1hMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwIUggKSuBbjhPkA6ia5sPnOY/qol3rd/12i5wOisff+Hnv2QqmvAW+7Dhks WsV37Q8iadKO1GA1+wY3T2ZjAOBKCrENAmp5oGfHYuRFz7lkfcgDL0QJ5KgL0Y+A yHR/TOS59nSUMhAUFrT29aebNF+3dBDybaS4EuxBRCnQNS5/TNLhrMhhfqWoVCEd VOKihj9bR11byYMunjTnnlh0QTR62KSxzoL4ro3Ix2txgW+thP4ECFINYLrXsaq8 czajEPTesAnWvBz1yYkvqm/duSCYmYUDolkWUJMZXJgonsXlsN6i4lqSR4bFFVHU CLeuak3UvrNPkdXsRyiDNasUqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3RFV47 3D9tv2AZhx1M26TtUaurMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASDiPWMRqdVs2/Mij/zPQIfgveP1oIMfYZ9yVoZ+xyX4LVAEvvICus X1EReZgkVPnAdEbV6xVcypDbjjI28fPBzQ0OBmUcg5hpU4FwZBjSFi2N/NdkbMKy e6OcMfox8J7QhZSEg3GJ3GF+Css4PwmvVwefeIv331K/IdEIO5cAPk1Xzjn/ByJ/ Do4zYZIEQ9K61PVIcawtt328nBH5ICch01gFRV/prd02HzM+NqiBeR/AYDLPW+pe gnEyeRaAU1gDpyDMdqjU7el4UW33QiL99oOjm3RJhTXB8zVbrRzvk4mI6i1vMxPX px7yP/VSIB5IRrr4KqU5dQVQ92kPN4hm -----END CERTIFICATE-----Generated at Mon Apr 7 23:15:15 2025 by rpki-client