$ rpki-client -vvf rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft File: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft (raw, json) Hash identifier: 6ZFh1ULlivQCJhshyLXiQ1ig2zO7rMIUePVbOze7LxY= Subject key identifier: 4E:CE:01:95:7C:72:8D:FB:5F:F5:99:B4:16:6F:E0:AF:BD:47:26:EF Authority key identifier: 43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B Certificate issuer: /CN=A9132C09/serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft Manifest number: 0120 Signing time: Thu 03 Apr 2025 03:55:57 +0000 Manifest this update: Thu 03 Apr 2025 03:55:57 +0000 Manifest next update: Thu 10 Apr 2025 03:55:57 +0000 Files and hashes: 1: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl (hash: jm2008UOlV9O5W8v2VE8Xccz7zCqewIDKTfQayk4gBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132C09 Validity Not Before: Apr 3 03:55:57 2025 GMT Not After : Apr 10 03:55:57 2025 GMT Subject: CN=67ee06cd-fa7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f9:8f:b7:5e:2a:d1:ef:4d:c0:9b:e6:fc:c4: cb:ee:fc:2c:e1:95:ea:7f:51:b3:3b:69:ee:19:6f: 97:df:46:73:e0:39:e1:ae:82:70:dc:fc:55:4f:9b: 46:c8:f6:dc:f3:5f:a3:76:4f:47:64:86:5e:6f:c2: 14:ee:fa:fe:e8:6c:be:f7:61:44:3d:3c:ec:82:c1: c8:56:6d:62:c2:9f:e6:27:34:09:63:1b:23:6a:c9: 8b:19:a2:3f:80:21:1f:ac:28:36:d1:17:52:ad:3e: 33:92:e2:4d:a1:b1:c9:3c:2a:ba:3d:fb:a5:16:a0: 86:d5:0b:4c:b5:a6:87:49:6b:ba:bf:99:f9:da:e8: 59:c0:6d:4e:7f:65:8c:b2:75:ed:e3:cf:27:f0:2f: b4:ea:49:69:35:21:6a:f8:d6:af:91:b5:07:9a:3c: c1:5a:da:4d:e4:05:f4:95:29:44:65:83:6d:7e:c6: c9:c3:30:b0:af:72:19:5a:0b:53:0c:9f:78:e8:e6: 21:4e:5f:b4:e1:9b:59:dc:74:0e:24:8b:f2:8b:4d: 83:6d:9c:7e:c0:9d:85:b0:4f:26:a9:55:45:8f:90: 20:2a:c3:ce:7e:58:71:19:1d:89:79:d6:c8:a4:36: 87:ff:ae:86:ab:4c:65:e1:93:fd:95:51:38:f2:8f: 42:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CE:01:95:7C:72:8D:FB:5F:F5:99:B4:16:6F:E0:AF:BD:47:26:EF X509v3 Authority Key Identifier: keyid:43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:5f:ec:1a:52:d6:e2:48:56:12:dc:ee:cb:c5:a6:13:a9:53: 84:b5:51:94:7d:bb:a9:4c:8e:2e:1c:54:a1:eb:5b:e0:f1:9f: 19:28:0b:cc:4e:b6:6a:e0:5c:e6:bc:59:0b:0e:19:41:09:86: 80:e8:43:ec:c4:76:7d:5f:9c:9d:9c:ef:93:70:2a:d3:f2:4c: 78:80:3f:dc:20:7d:8d:a5:fc:1a:65:9c:b9:95:31:62:c8:e6: 81:2a:18:ae:9d:87:21:8f:4d:85:bb:a8:1f:06:82:12:f6:3b: 1d:45:ba:1b:72:2f:2a:c6:31:33:7e:6b:ca:6d:da:af:50:ba: f2:48:25:91:92:27:6a:8d:ac:24:2e:24:b8:a8:9a:39:a1:d4: da:fb:a4:9b:a1:a0:23:0f:1c:f1:7e:70:33:85:e8:bc:7e:a6: 51:a6:52:d0:6a:98:f4:f5:ba:93:36:c3:a5:f3:a5:a3:9e:0a: 1c:28:35:46:08:40:d2:00:0a:71:36:10:fa:6a:a6:63:9a:3d: 14:92:96:ab:3d:e8:29:75:ff:e4:78:ab:90:6a:92:ca:9e:0a: ac:59:4d:52:dd:f5:6f:e9:3f:a4:c9:c4:48:13:de:02:3c:d9: 2e:8d:e3:45:34:e8:c7:a4:9d:13:18:9e:8f:d0:34:6a:5f:d4: 13:55:f7:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJDMDkxMTAvBgNVBAUTKDQzOTI5RDkxNkRDOUM5Q0UzNDYzRkY5MTU4Q0NCRUZF OUYxODJDM0IwHhcNMjUwNDAzMDM1NTU3WhcNMjUwNDEwMDM1NTU3WjAYMRYwFAYD VQQDEw02N2VlMDZjZC1mYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPmPt14q0e9NwJvm/MTL7vws4ZXqf1GzO2nuGW+X30Zz4DnhroJw3PxVT5tG yPbc81+jdk9HZIZeb8IU7vr+6Gy+92FEPTzsgsHIVm1iwp/mJzQJYxsjasmLGaI/ gCEfrCg20RdSrT4zkuJNobHJPCq6PfulFqCG1QtMtaaHSWu6v5n52uhZwG1Of2WM snXt488n8C+06klpNSFq+NavkbUHmjzBWtpN5AX0lSlEZYNtfsbJwzCwr3IZWgtT DJ946OYhTl+04ZtZ3HQOJIvyi02DbZx+wJ2FsE8mqVVFj5AgKsPOflhxGR2JedbI pDaH/66Gq0xl4ZP9lVE48o9CSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7OAZV8 co37X/WZtBZv4K+9RybvMB8GA1UdIwQYMBaAFEOSnZFtycnONGP/kVjMvv6fGCw7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkMwOS9DRDZENTIwMjU2 QzUxMUVFQkVEMzJFMEJDNEY5QUUwMi9RNUtka1czSnljNDBZXy1SV015LV9wOFlM RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E1S2RrVzNKeWM0MFlfLVJXTXktX3A4WUxEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkMwOS9DRDZENTIwMjU2QzUxMUVFQkVEMzJFMEJDNEY5QUUwMi9RNUtka1czSnlj NDBZXy1SV015LV9wOFlMRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4X+waUtbiSFYS3O7LxaYTqVOEtVGUfbupTI4uHFSh61vg8Z8ZKAvM TrZq4FzmvFkLDhlBCYaA6EPsxHZ9X5ydnO+TcCrT8kx4gD/cIH2NpfwaZZy5lTFi yOaBKhiunYchj02Fu6gfBoIS9jsdRbobci8qxjEzfmvKbdqvULrySCWRkidqjawk LiS4qJo5odTa+6SboaAjDxzxfnAzhei8fqZRplLQapj09bqTNsOl86WjngocKDVG CEDSAApxNhD6aqZjmj0UkparPegpdf/keKuQapLKngqsWU1S3fVv6T+kycRIE94C PNkujeNFNOjHpJ0TGJ6P0DRqX9QTVfck -----END CERTIFICATE-----Generated at Fri Apr 4 18:23:54 2025 by rpki-client