$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft File: Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft (raw, json) Hash identifier: Vvk+1OXIYDieqscoHL30gMiRopn1Xk0u2dCxfaGud3g= Subject key identifier: 68:2B:E5:24:38:66:F5:28:7C:16:46:3E:9B:D3:2C:B6:77:EE:F9:45 Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 07FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft Manifest number: 130D Signing time: Sat 12 Apr 2025 18:59:57 +0000 Manifest this update: Sat 12 Apr 2025 18:59:57 +0000 Manifest next update: Sat 19 Apr 2025 18:59:57 +0000 Files and hashes: 1: Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl (hash: IAS3Nvf7z1Y+gX/sy1U6dx4Csay2WS/eKumiLhnMMXY=) 2: B65A4FACE18C11ECB1697F55C4F9AE02.roa (hash: s2bmpBz0naXj5vRKeck0pYMUDs3OEcZzFMeGwcgEGxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 18:59:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Apr 12 18:59:57 2025 GMT Not After : Apr 19 18:59:57 2025 GMT Subject: CN=67fab82d-95ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6e:54:7c:dd:4e:b7:34:1e:0c:ab:2d:5c:7b: 9d:b3:e2:25:d0:66:81:1a:93:e6:5d:9b:6c:31:f1: 1b:19:6b:4a:c1:dd:3a:d2:60:eb:e4:6d:c2:19:f7: 91:22:b4:38:c4:0e:74:50:5b:d6:f4:c8:7f:8b:28: 5f:4a:22:c4:9f:49:3a:2a:51:e3:08:db:b3:03:ab: 90:8c:81:c6:4f:eb:fd:b7:4d:76:a3:4a:db:13:e5: 68:8b:de:80:4d:7d:17:c1:be:fe:c7:e9:77:9f:ca: 4d:2e:92:76:07:0b:7f:3e:63:33:53:8f:aa:78:8a: 10:34:c3:67:71:d0:eb:32:9f:cc:35:39:d5:1c:58: 56:3d:bd:1a:21:6d:88:a1:d2:1c:62:b0:49:d2:18: 72:f0:e1:64:d5:19:18:40:90:0e:35:e0:d0:a6:2a: 52:dd:28:a1:a4:47:4b:f5:d4:47:d6:a3:f2:d9:32: 06:91:fd:6b:a4:bc:e3:09:6f:ae:80:d4:49:98:b7: 29:93:b3:22:ce:ea:1c:2c:56:e2:a0:d1:ff:6e:a0: c5:b4:06:45:61:50:d1:ee:e2:cd:f3:dc:85:9a:ca: dc:f8:2b:5b:2e:97:86:a7:44:9e:6c:a3:fe:ef:76: 14:c9:c8:8b:9c:a5:05:c8:ce:39:b4:d9:57:2f:dd: 72:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2B:E5:24:38:66:F5:28:7C:16:46:3E:9B:D3:2C:B6:77:EE:F9:45 X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:46:2c:e8:3a:b9:7c:bf:67:da:06:22:19:cc:5e:bc:71:86: c0:55:ff:d9:72:99:a7:2e:7c:e0:b6:a6:6a:93:b1:bd:29:7e: 01:f3:d0:2d:b0:f7:95:5f:17:26:3d:cf:c1:6a:f9:a7:a9:43: 7d:91:92:ca:fd:5c:a1:57:98:1a:07:8b:c5:f1:f0:91:df:81: a3:66:bd:8f:14:d0:1d:4c:53:3f:6d:2c:b3:8c:d0:e6:f9:f0: 78:90:12:86:33:a4:0d:1e:c4:c6:b3:38:f4:6c:e3:16:f2:6d: ee:ac:f5:f8:5d:38:ea:23:a7:89:fe:0c:b6:d7:25:92:e5:e7: 6f:cd:e0:98:41:ad:bb:de:26:1f:fc:5b:13:75:a9:36:6d:49: ec:a8:46:cf:be:b6:b3:f1:c5:ed:ae:2d:66:05:3e:f8:23:2e: 36:13:31:1b:3f:3f:49:35:ae:89:c8:2c:fb:57:84:7a:db:f1: 67:7d:3f:e2:26:f0:d6:3d:b7:02:5a:2d:7b:1c:29:53:10:15: ff:c9:37:d4:9d:8b:38:43:f3:92:19:dd:52:d2:a3:35:2f:49: 7b:f2:27:5f:66:8b:8e:b6:ec:3f:57:8d:22:8b:c1:67:c7:10: 5e:e5:8a:55:d6:36:b7:08:0b:14:b9:85:f8:6e:42:5a:71:c4: 1c:48:05:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjUwNDEyMTg1OTU3WhcNMjUwNDE5MTg1OTU3WjAYMRYwFAYD VQQDEw02N2ZhYjgyZC05NWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoW5UfN1OtzQeDKstXHuds+Il0GaBGpPmXZtsMfEbGWtKwd060mDr5G3CGfeR IrQ4xA50UFvW9Mh/iyhfSiLEn0k6KlHjCNuzA6uQjIHGT+v9t012o0rbE+Voi96A TX0Xwb7+x+l3n8pNLpJ2Bwt/PmMzU4+qeIoQNMNncdDrMp/MNTnVHFhWPb0aIW2I odIcYrBJ0hhy8OFk1RkYQJAONeDQpipS3SihpEdL9dRH1qPy2TIGkf1rpLzjCW+u gNRJmLcpk7MizuocLFbioNH/bqDFtAZFYVDR7uLN89yFmsrc+CtbLpeGp0SebKP+ 73YUyciLnKUFyM45tNlXL91ySQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgr5SQ4 ZvUofBZGPpvTLLZ37vlFMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBBMS85MjU2MEE2QTM3NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNG REp5RWlHcXBUT2pQVU1KUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQRizoOrl8v2faBiIZzF68cYbAVf/ZcpmnLnzgtqZqk7G9KX4B89At sPeVXxcmPc/BavmnqUN9kZLK/VyhV5gaB4vF8fCR34GjZr2PFNAdTFM/bSyzjNDm +fB4kBKGM6QNHsTGszj0bOMW8m3urPX4XTjqI6eJ/gy21yWS5edvzeCYQa273iYf /FsTdak2bUnsqEbPvraz8cXtri1mBT74Iy42EzEbPz9JNa6JyCz7V4R62/FnfT/i JvDWPbcCWi17HClTEBX/yTfUnYs4Q/OSGd1S0qM1L0l78idfZouOtuw/V40ii8Fn xxBe5YpV1ja3CAsUuYX4bkJaccQcSAXe -----END CERTIFICATE-----Generated at Sun Apr 13 03:49:11 2025 by rpki-client