$ rpki-client -vvf rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft File: QV0e9X3aeKX8lSQFQkhAAozUfZk.mft (raw, json) Hash identifier: GovRyiNb8Z8Va5h/Xmq98mxsPprQB3vOTr777wivvpA= Subject key identifier: 4D:71:D8:4A:12:42:6A:2D:05:62:9F:15:1E:E7:53:11:2E:F2:7F:B0 Authority key identifier: 41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 Certificate issuer: /CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Certificate serial: 02DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft Manifest number: 02D9 Signing time: Fri 11 Apr 2025 01:19:15 +0000 Manifest this update: Fri 11 Apr 2025 01:19:15 +0000 Manifest next update: Fri 18 Apr 2025 01:19:15 +0000 Files and hashes: 1: QV0e9X3aeKX8lSQFQkhAAozUfZk.crl (hash: YGOOZBCTfFfTi8YGqpW97evNBZpWnb2SsfZSKW3cq2A=) 2: 09513072DE3B11EC9F25BA5FC4F9AE02.roa (hash: RSA/ql0lNyv9WyAk0d5FOAFZ5R84Y3YnmGvbKn1e7f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 01:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501FC, serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Validity Not Before: Apr 11 01:19:15 2025 GMT Not After : Apr 18 01:19:15 2025 GMT Subject: CN=67f86e13-2650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7e:8f:e6:ec:88:ce:d2:d0:3b:d6:03:9f:1a: 70:91:7d:d1:df:79:f9:12:3f:2d:fb:05:4d:ed:d6: f1:e4:f8:5f:f8:87:d0:d6:65:b5:1f:43:e2:bc:48: 89:6c:38:f6:ba:d9:13:da:23:b0:e7:2b:52:68:3d: bd:47:3c:3f:9d:b9:18:5b:85:35:dd:24:33:6d:3c: e9:3b:91:86:4e:18:33:af:b1:12:19:73:57:55:1c: 59:b3:4c:6c:ef:a0:ba:cc:87:7c:d4:22:a2:63:f5: a0:ee:61:29:23:fd:26:a6:b6:29:c5:b5:54:48:7c: 1f:f6:0b:13:17:52:87:a2:6d:ca:3e:29:55:44:38: d0:cb:1a:c0:88:08:85:86:5b:87:d3:1a:cb:bb:81: b2:7c:b1:4e:69:09:cf:0d:5b:07:02:59:8f:b4:16: 62:4d:7a:d8:e5:cc:f4:be:03:3a:00:3a:8a:9a:fa: 23:f5:64:78:84:36:ea:35:0f:cf:28:d4:e2:d0:e1: 05:ed:26:59:65:10:ec:ab:04:0c:35:e3:2e:c2:81: c3:72:f5:f1:47:f4:5a:81:c1:f6:49:c7:b5:3d:78: aa:72:2e:1b:cd:9b:7e:65:09:cd:d4:44:e4:b9:13: b4:55:eb:40:35:07:b1:3f:2b:a4:9f:0c:7b:90:d7: ae:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:71:D8:4A:12:42:6A:2D:05:62:9F:15:1E:E7:53:11:2E:F2:7F:B0 X509v3 Authority Key Identifier: keyid:41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:0b:70:27:ac:99:ae:71:0a:4e:c7:f7:d9:2e:7b:d0:40:4e: d9:b6:4d:88:68:6d:da:21:3b:95:1c:b4:4b:18:4c:0c:52:5f: a6:be:bd:58:9c:1a:73:97:4d:32:67:ee:5c:78:92:b1:f0:f8: 81:46:7c:90:8a:29:0b:46:f7:a3:e0:a1:89:e4:57:21:ba:59: 5e:30:59:08:d5:09:10:22:b8:25:b8:1b:2a:10:fe:f4:49:8c: cf:68:fa:84:c1:7d:ee:95:80:72:eb:86:89:91:d0:c5:87:f2: f1:b9:05:a1:91:30:72:4c:6e:06:ce:e4:9f:87:a7:51:64:af: e3:b1:77:22:70:78:fe:f0:e2:0c:87:05:fc:9e:ff:9d:72:e1: f8:d4:46:6b:80:72:c5:e3:4b:27:6d:56:db:4f:a8:a7:e9:ed: 5e:b8:fe:c2:e6:34:99:b6:a5:99:e0:43:75:e3:b9:f8:2e:e9: 60:b1:27:03:f5:aa:d1:3a:b7:d3:32:20:d8:dc:d2:10:28:0d: 5c:62:36:f0:52:e6:40:8f:44:12:16:2f:01:e3:bb:44:1d:b7: 7b:d0:d7:55:c3:f9:2e:38:e3:17:cc:34:9b:c3:36:07:f6:64: 69:a6:18:c5:2e:6d:8f:fe:8a:13:bf:b4:18:f4:b0:29:a6:56: f0:a7:47:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxRkMxMTAvBgNVBAUTKDQxNUQxRUY1N0REQTc4QTVGQzk1MjQwNTQyNDg0MDAy OENENDdEOTkwHhcNMjUwNDExMDExOTE1WhcNMjUwNDE4MDExOTE1WjAYMRYwFAYD VQQDEw02N2Y4NmUxMy0yNjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA736P5uyIztLQO9YDnxpwkX3R33n5Ej8t+wVN7dbx5Phf+IfQ1mW1H0PivEiJ bDj2utkT2iOw5ytSaD29Rzw/nbkYW4U13SQzbTzpO5GGThgzr7ESGXNXVRxZs0xs 76C6zId81CKiY/Wg7mEpI/0mprYpxbVUSHwf9gsTF1KHom3KPilVRDjQyxrAiAiF hluH0xrLu4GyfLFOaQnPDVsHAlmPtBZiTXrY5cz0vgM6ADqKmvoj9WR4hDbqNQ/P KNTi0OEF7SZZZRDsqwQMNeMuwoHDcvXxR/RagcH2Sce1PXiqci4bzZt+ZQnN1ETk uRO0VetANQexPyuknwx7kNeuewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1x2EoS QmotBWKfFR7nUxEu8n+wMB8GA1UdIwQYMBaAFEFdHvV92nil/JUkBUJIQAKM1H2Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFGQy8zMDRBODlEQ0RF MzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVLWDhsU1FGUWtoQUFvelVm WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWMGU5WDNhZUtYOGxTUUZRa2hBQW96VWZaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDFGQy8zMDRBODlEQ0RFMzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVL WDhsU1FGUWtoQUFvelVmWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXC3AnrJmucQpOx/fZLnvQQE7Ztk2IaG3aITuVHLRLGEwMUl+mvr1Y nBpzl00yZ+5ceJKx8PiBRnyQiikLRvej4KGJ5FchulleMFkI1QkQIrgluBsqEP70 SYzPaPqEwX3ulYBy64aJkdDFh/LxuQWhkTByTG4GzuSfh6dRZK/jsXcicHj+8OIM hwX8nv+dcuH41EZrgHLF40snbVbbT6in6e1euP7C5jSZtqWZ4EN147n4LulgsScD 9arROrfTMiDY3NIQKA1cYjbwUuZAj0QSFi8B47tEHbd70NdVw/kuOOMXzDSbwzYH 9mRpphjFLm2P/ooTv7QY9LApplbwp0cB -----END CERTIFICATE-----Generated at Sat Apr 12 17:36:07 2025 by rpki-client