$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft File: qXEsy37uAkrriHZ7di4Qk7FA_24.mft (raw, json) Hash identifier: zyz+WJqqlxSdKmKyv6CuU3auD8NC1kVgcL3izjruZ28= Subject key identifier: 34:A4:18:5B:14:34:25:4C:3E:13:51:2D:F8:3A:AB:76:CA:30:75:2C Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 0FEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft Manifest number: 0FDA Signing time: Wed 02 Apr 2025 17:34:06 +0000 Manifest this update: Wed 02 Apr 2025 17:34:06 +0000 Manifest next update: Wed 09 Apr 2025 17:34:06 +0000 Files and hashes: 1: qXEsy37uAkrriHZ7di4Qk7FA_24.crl (hash: 5BchcQkoHWwR7E1j7NdfDsMuMJda8qbhi5gU1K6YU8M=) 2: 07FF4ABC5A1011EAA8B1B456C4F9AE02.roa (hash: /71nbSiWt0RVe5ogZCQfFYyxEZ4Mr3Z7iCfhqhLbM+k=) 3: 1BCA5982656311ECA4E81323C4F9AE02.roa (hash: JhAWbCAMrXKEKj1b3MlbXCTMtcBsS+XKDtYcGnLBqlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 17:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4076 (0xfec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A Validity Not Before: Apr 2 17:34:06 2025 GMT Not After : Apr 9 17:34:06 2025 GMT Subject: CN=67ed750e-8ff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:04:16:a6:14:22:6e:d8:2a:97:a3:d7:bc:ab: 9d:fb:5f:d3:d6:7b:84:3a:71:b7:ac:92:79:3e:47: c0:62:aa:23:59:88:ca:68:34:86:fe:03:a7:32:de: 2a:d9:1d:d8:47:11:dc:17:4d:3b:bf:71:97:20:fd: d6:4c:69:c7:c0:b4:2c:83:d6:29:d3:e9:9b:7e:7b: 78:f6:64:41:f5:56:1d:89:33:c1:2a:8c:ff:0e:fa: 10:5b:43:28:a5:e2:07:5b:e3:ef:9b:6b:8d:70:10: 9a:74:e0:9e:1e:bd:30:e3:d2:a7:cc:7c:5f:bd:7c: f8:1b:39:53:be:7b:e6:93:53:45:20:c3:2a:7f:6f: 1b:c7:44:f4:16:d9:a0:0f:10:1d:ac:5e:1e:6c:1b: 22:e7:99:b1:a9:ac:65:e0:04:b1:2a:21:28:78:6a: af:e5:b3:04:f4:12:20:0d:c6:54:10:18:3a:76:10: 29:cc:e0:d5:ea:ce:77:ba:af:5f:72:de:d7:15:54: 6d:b0:25:32:81:c3:f0:80:02:0f:8e:03:ac:94:21: 77:27:eb:b6:f3:bd:99:cb:eb:2e:17:bd:5f:37:8c: 14:e7:e1:ff:bc:15:e5:08:e1:09:b5:fb:4a:f3:f3: 96:89:12:e1:e9:c5:b7:0f:3d:ed:47:65:fa:f3:4e: 38:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A4:18:5B:14:34:25:4C:3E:13:51:2D:F8:3A:AB:76:CA:30:75:2C X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:54:a4:a9:15:85:37:10:ed:69:9b:98:fd:99:af:7a:29:08: 82:4c:11:7f:fe:6f:1c:72:57:1b:74:e1:f2:bb:99:0c:7f:ec: d5:fe:4f:e9:f1:8e:78:b2:69:c6:ae:88:b4:cd:43:28:13:34: 0b:b2:3f:a4:fe:78:9d:72:85:57:bb:19:c7:62:c7:93:19:d7: d8:0d:bf:46:d2:18:39:9a:1e:cd:17:72:f8:aa:d2:9f:8a:be: e6:72:41:84:71:2e:73:0e:69:2f:73:61:98:eb:a4:5c:69:5a: 28:3e:90:80:ee:74:41:91:b3:1e:57:17:5f:4f:6f:50:8a:b8: 6b:48:a7:d9:10:b9:2c:ee:00:98:f0:0a:b1:d0:2f:d0:b9:fd: bd:be:37:9c:e0:93:15:62:7f:00:26:cf:7a:50:88:4e:fc:e7: d8:7b:47:ce:78:17:fa:98:0e:24:99:c0:99:28:5c:e6:91:42: 63:d6:35:5f:95:ec:4d:df:16:fe:ad:8d:e3:ad:ba:73:0f:ae: 3b:ec:74:27:91:e0:90:7d:6e:34:aa:ad:ba:22:03:3c:88:dc: c8:22:74:9b:7a:28:4e:34:90:15:64:c4:5d:6f:57:65:e2:0f: 76:ef:86:67:df:69:f1:57:19:a7:75:38:f0:41:e1:b2:52:87: 58:e5:4d:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjUwNDAyMTczNDA2WhcNMjUwNDA5MTczNDA2WjAYMRYwFAYD VQQDEw02N2VkNzUwZS04ZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwQWphQibtgql6PXvKud+1/T1nuEOnG3rJJ5PkfAYqojWYjKaDSG/gOnMt4q 2R3YRxHcF007v3GXIP3WTGnHwLQsg9Yp0+mbfnt49mRB9VYdiTPBKoz/DvoQW0Mo peIHW+Pvm2uNcBCadOCeHr0w49KnzHxfvXz4GzlTvnvmk1NFIMMqf28bx0T0Ftmg DxAdrF4ebBsi55mxqaxl4ASxKiEoeGqv5bME9BIgDcZUEBg6dhApzODV6s53uq9f ct7XFVRtsCUygcPwgAIPjgOslCF3J+u2872Zy+suF71fN4wU5+H/vBXlCOEJtftK 8/OWiRLh6cW3Dz3tR2X68044gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSkGFsU NCVMPhNRLfg6q3bKMHUsMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI2QS8wODc1RjQ5NjRDNzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFr cnJpSFo3ZGk0UWs3RkFfMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnVKSpFYU3EO1pm5j9ma96KQiCTBF//m8cclcbdOHyu5kMf+zV/k/p 8Y54smnGroi0zUMoEzQLsj+k/nidcoVXuxnHYseTGdfYDb9G0hg5mh7NF3L4qtKf ir7mckGEcS5zDmkvc2GY66RcaVooPpCA7nRBkbMeVxdfT29QirhrSKfZELks7gCY 8Aqx0C/Quf29vjec4JMVYn8AJs96UIhO/OfYe0fOeBf6mA4kmcCZKFzmkUJj1jVf lexN3xb+rY3jrbpzD6477HQnkeCQfW40qq26IgM8iNzIInSbeihONJAVZMRdb1dl 4g9274Zn32nxVxmndTjwQeGyUodY5U21 -----END CERTIFICATE-----Generated at Fri Apr 4 18:32:22 2025 by rpki-client