$ rpki-client -vvf rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft File: _qS5bzmD92nHM5dFbBK5D2QkbHw.mft (raw, json) Hash identifier: qvwufIUK9DW+wwm5EpVNdp/VyiItIaFpFbGLJAntdlA= Subject key identifier: 45:B9:D3:A9:9D:0E:C8:04:59:AB:9B:C2:01:BE:66:79:DB:99:6E:71 Authority key identifier: FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C Certificate issuer: /CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Certificate serial: 1847 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft Manifest number: 1830 Signing time: Mon 14 Apr 2025 16:30:39 +0000 Manifest this update: Mon 14 Apr 2025 16:30:39 +0000 Manifest next update: Mon 21 Apr 2025 16:30:39 +0000 Files and hashes: 1: _qS5bzmD92nHM5dFbBK5D2QkbHw.crl (hash: Hj2Rh4V/uD8h7FnvbbJr3dsjad9JHyqtqf81ludNcsc=) 2: 8C3BBD78F0D611EDAF996E15C4F9AE02.roa (hash: N7dx64GJQaTD+hfotgNWy8WEHDuKcv63Y/iKVEUUUcc=) 3: C6454260AA9A11E7B4776E52C4F9AE02.roa (hash: 0pdtzVqkZfrRuKXWFlClUIrZtwjYq09u9Tu2fAJzA2k=) 4: 7F77220A143811EE97A64D19C4F9AE02.roa (hash: ifAfuqdkBihiiYwd3cqT6s5KTTI/lvGZWL7UrWL4Qzs=) 5: 5A8744D8143411EEAB1A5D73C4F9AE02.roa (hash: x8Y3lIEpnx3SAsHPEwwS/VLgFTVHt3ABZ23zAnhnfc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 16:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6215 (0x1847) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D36A, serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Validity Not Before: Apr 14 16:30:39 2025 GMT Not After : Apr 21 16:30:39 2025 GMT Subject: CN=67fd382f-61a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0f:55:24:d1:eb:1d:cf:a2:00:bf:23:0b:83: ae:0b:4c:11:45:87:b5:5c:7f:b1:3b:d2:40:1e:19: 6b:de:55:c1:d9:60:1e:ea:3b:9c:70:d8:9d:98:4c: 85:fe:be:4e:52:64:9f:99:2b:97:5b:71:24:8d:44: e9:4c:17:47:3e:54:7d:b9:d9:50:92:fb:38:d5:dd: a9:7b:9d:6c:02:2d:bb:01:0a:11:d6:92:5e:b5:d7: 04:3e:36:03:19:08:a3:7e:83:cc:63:26:8b:50:82: 6f:1b:3b:e3:4a:d9:1b:fd:ae:c0:c3:ea:7c:f6:68: 94:5f:db:51:33:e5:5b:72:e6:9e:e6:59:6f:6b:9b: 65:e2:5b:5e:b2:fa:b2:e3:f3:65:d5:44:54:84:17: a3:4f:e3:27:a8:34:b0:33:a5:54:48:b5:13:02:a5: 93:64:1d:13:f6:1c:ca:05:e0:07:ef:9b:71:83:f4: ca:e3:5f:f9:99:a9:ba:43:6d:5d:4c:6b:cf:74:2e: b0:f0:a4:f2:05:ef:47:6f:ca:f4:7f:d0:35:74:ae: 10:4b:6b:70:1e:1f:06:e8:65:56:e5:11:06:ac:b2: f6:db:8d:95:99:20:89:b0:e7:b0:90:e8:61:35:45: 75:f9:ef:46:93:3b:c9:cd:d7:06:2a:b4:01:fc:ed: 52:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B9:D3:A9:9D:0E:C8:04:59:AB:9B:C2:01:BE:66:79:DB:99:6E:71 X509v3 Authority Key Identifier: keyid:FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:6e:12:76:6a:62:41:c9:57:c0:d0:60:ce:a4:bb:fa:08:a9: 1f:fa:43:ff:bd:4e:b5:59:fa:0d:12:87:73:fb:d1:d7:3f:1e: 34:71:92:d8:d8:05:5a:0e:32:ed:d4:db:6c:79:f7:22:84:95: 1f:b0:7b:bb:0c:48:1b:1a:97:18:3e:21:af:a0:de:72:e5:4b: bc:06:ed:ef:a8:0d:50:16:d8:84:70:10:e4:1c:b9:68:6c:20: 2c:99:d4:34:d6:13:88:94:77:ba:a8:e4:41:9e:41:bd:dd:92: 62:c0:a8:d9:ee:7c:d5:5a:29:32:64:67:92:50:5d:26:bf:c3: be:73:5d:88:d7:f0:2b:0c:9b:dd:aa:30:91:3f:73:5f:0a:1e: 60:8f:16:04:5e:65:b7:1c:e6:0f:7e:55:d0:e5:c0:5d:fb:75: f5:db:2c:7e:30:ab:b1:5b:52:58:51:57:99:d1:4f:ca:a7:02: 9a:75:12:eb:51:10:11:60:60:64:94:18:0c:b3:03:23:7d:12: f4:e4:be:ee:3b:e8:9e:88:15:6f:a7:a4:0e:68:a7:c9:e9:51: c5:2c:17:bd:ad:1c:1e:49:54:1c:c8:58:ad:d7:10:ae:50:f3: 72:2c:b5:18:d6:be:73:88:d6:e8:04:99:77:6d:c8:04:3d:3c: 43:ce:ba:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQzNkExMTAvBgNVBAUTKEZFQTRCOTZGMzk4M0Y3NjlDNzMzOTc0NTZDMTJCOTBG NjQyNDZDN0MwHhcNMjUwNDE0MTYzMDM5WhcNMjUwNDIxMTYzMDM5WjAYMRYwFAYD VQQDEw02N2ZkMzgyZi02MWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAng9VJNHrHc+iAL8jC4OuC0wRRYe1XH+xO9JAHhlr3lXB2WAe6juccNidmEyF /r5OUmSfmSuXW3EkjUTpTBdHPlR9udlQkvs41d2pe51sAi27AQoR1pJetdcEPjYD GQijfoPMYyaLUIJvGzvjStkb/a7Aw+p89miUX9tRM+Vbcuae5llva5tl4ltesvqy 4/Nl1URUhBejT+MnqDSwM6VUSLUTAqWTZB0T9hzKBeAH75txg/TK41/5mam6Q21d TGvPdC6w8KTyBe9Hb8r0f9A1dK4QS2twHh8G6GVW5REGrLL2242VmSCJsOewkOhh NUV1+e9GkzvJzdcGKrQB/O1SvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW506md DsgEWaubwgG+ZnnbmW5xMB8GA1UdIwQYMBaAFP6kuW85g/dpxzOXRWwSuQ9kJGx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDM2QS8zN0FCRDcwOEFB OUExMUU3QkFDNDEyNTJDNEY5QUUwMi9fcVM1YnptRDkybkhNNWRGYkJLNUQyUWti SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19xUzViem1EOTJuSE01ZEZiQks1RDJRa2JIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDM2QS8zN0FCRDcwOEFBOUExMUU3QkFDNDEyNTJDNEY5QUUwMi9fcVM1YnptRDky bkhNNWRGYkJLNUQyUWtiSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjbhJ2amJByVfA0GDOpLv6CKkf+kP/vU61WfoNEodz+9HXPx40cZLY 2AVaDjLt1NtsefcihJUfsHu7DEgbGpcYPiGvoN5y5Uu8Bu3vqA1QFtiEcBDkHLlo bCAsmdQ01hOIlHe6qORBnkG93ZJiwKjZ7nzVWikyZGeSUF0mv8O+c12I1/ArDJvd qjCRP3NfCh5gjxYEXmW3HOYPflXQ5cBd+3X12yx+MKuxW1JYUVeZ0U/KpwKadRLr URARYGBklBgMswMjfRL05L7uO+ieiBVvp6QOaKfJ6VHFLBe9rRweSVQcyFit1xCu UPNyLLUY1r5ziNboBJl3bcgEPTxDzrr8 -----END CERTIFICATE-----Generated at Wed Apr 16 17:15:25 2025 by rpki-client