$ rpki-client -vvf rpki.apnic.net/member_repository/A9171AD3/0BC4F840C1B211EA83278767C4F9AE02/3qB5KN5ChJYNLNXo50cChCYLMmY.mft File: 3qB5KN5ChJYNLNXo50cChCYLMmY.mft (raw, json) Hash identifier: kamg1PePK1yQGt7GnERyLumFQKbzi0UZK+IWl5rGcUg= Subject key identifier: D8:17:92:2F:62:2C:CE:74:BB:B2:A3:D6:72:A4:2D:98:AF:B7:69:F9 Authority key identifier: DE:A0:79:28:DE:42:84:96:0D:2C:D5:E8:E7:47:02:84:26:0B:32:66 Certificate issuer: /CN=A9171AD3/serialNumber=DEA07928DE4284960D2CD5E8E7470284260B3266 Certificate serial: 086A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qB5KN5ChJYNLNXo50cChCYLMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171AD3/0BC4F840C1B211EA83278767C4F9AE02/3qB5KN5ChJYNLNXo50cChCYLMmY.mft Manifest number: 0863 Signing time: Tue 08 Apr 2025 23:00:16 +0000 Manifest this update: Tue 08 Apr 2025 23:00:16 +0000 Manifest next update: Tue 15 Apr 2025 23:00:16 +0000 Files and hashes: 1: 3qB5KN5ChJYNLNXo50cChCYLMmY.crl (hash: Iqs81vVVzFbPY2euHfYwkAk7JazcAWTMwx5mziJQKFw=) 2: 186A811414CD11F0AB0B2C0CC4F9AE02.roa (hash: 7eGdphmXtZhUhFX6Ph1uLe9ZqTAdWtlD3BS/u1NYXHQ=) 3: BAA356B66F5611EB8862606AC4F9AE02.roa (hash: hXqRlxWUOgELX8BkSD9GAxJ/+ji0FZnADjlHzze8dU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171AD3/0BC4F840C1B211EA83278767C4F9AE02/3qB5KN5ChJYNLNXo50cChCYLMmY.crl rsync://rpki.apnic.net/member_repository/A9171AD3/0BC4F840C1B211EA83278767C4F9AE02/3qB5KN5ChJYNLNXo50cChCYLMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qB5KN5ChJYNLNXo50cChCYLMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171AD3 Validity Not Before: Apr 8 23:00:16 2025 GMT Not After : Apr 15 23:00:16 2025 GMT Subject: CN=67f5aa80-9673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c3:96:ce:f0:fe:7b:f6:5d:8d:a2:8c:ac:74: 04:29:09:67:7b:8c:15:12:0d:2b:73:71:2a:fa:fe: ea:0b:f6:b5:21:6d:4a:91:6e:1d:c7:0c:75:81:3c: 4d:a5:1b:65:8a:7a:a8:6d:95:f1:5f:48:9c:3a:4a: c2:59:f9:ef:63:7b:27:7f:20:05:57:49:03:73:3a: a1:eb:ff:c7:37:5e:6a:25:a0:7b:83:aa:14:d2:b1: 29:86:4d:04:63:f7:f1:0e:bb:0c:a4:9c:79:5a:30: c9:37:a2:35:84:f7:8f:5e:59:57:cd:81:94:c9:2c: d5:dd:03:6e:9d:eb:9c:51:c3:38:4d:71:99:2f:15: ed:04:0d:03:b1:e7:ec:2a:d8:5f:95:3e:d9:c7:41: 3f:1c:d7:58:67:2f:6a:41:92:86:64:12:5e:cf:a5: 04:5a:6f:c5:26:bf:3b:a2:18:17:82:81:5e:a9:f1: b2:2c:9f:fa:de:0f:d3:14:40:9b:4b:5b:71:c5:86: f4:f8:0f:f1:3f:5b:86:9e:4e:0b:77:a0:b9:5c:e5: c3:10:d7:4c:46:1b:85:94:85:9d:78:76:fa:2f:1b: e5:c7:33:eb:1d:0c:b7:91:86:e8:16:94:ab:0b:e0: 90:a7:13:1d:67:91:ea:8d:6e:04:29:4f:8c:f4:81: f9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:17:92:2F:62:2C:CE:74:BB:B2:A3:D6:72:A4:2D:98:AF:B7:69:F9 X509v3 Authority Key Identifier: keyid:DE:A0:79:28:DE:42:84:96:0D:2C:D5:E8:E7:47:02:84:26:0B:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171AD3/0BC4F840C1B211EA83278767C4F9AE02/3qB5KN5ChJYNLNXo50cChCYLMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qB5KN5ChJYNLNXo50cChCYLMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171AD3/0BC4F840C1B211EA83278767C4F9AE02/3qB5KN5ChJYNLNXo50cChCYLMmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:90:47:42:2e:4d:e9:d5:1d:47:81:85:85:af:32:b0:c6:a4: ad:59:ad:b7:ad:fd:cb:28:fe:10:3b:93:fe:31:c1:48:1d:bc: bb:7c:4c:30:41:7d:ec:79:9f:b5:0e:29:57:20:ed:2a:e3:d1: a6:40:30:b9:d0:89:9e:38:7e:09:a7:4d:45:d3:23:b2:87:0b: 66:e1:cf:cc:4e:89:f7:bc:91:a6:d1:8c:bb:22:64:a4:d3:c5: bd:ed:be:9d:e6:ca:e0:29:a5:97:78:aa:52:21:8b:db:0c:4b: 1c:e6:63:e7:13:c2:07:c9:18:db:0d:d2:45:96:e7:d1:2b:11: 40:e3:c3:e5:ee:77:8b:1c:28:3f:8a:13:82:46:98:fc:54:35: 6a:10:08:84:14:0b:90:36:a8:ed:01:2a:18:3e:8b:65:5e:0f: 70:99:23:96:2c:9c:f0:93:76:55:33:4e:4b:88:36:b9:b8:55: f1:1a:2d:43:9c:69:6e:ac:a8:f6:1b:33:19:a4:94:9c:3a:4c: 05:d0:e7:70:42:49:60:3f:02:2a:d0:fb:6c:56:88:06:9f:32: f5:40:ec:fd:cb:60:18:52:d2:e8:ee:62:c6:c0:67:bd:8a:94: c0:33:84:66:88:9a:b0:ab:74:32:37:da:97:c4:63:8b:c4:95: 2c:8f:23:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBRDMxMTAvBgNVBAUTKERFQTA3OTI4REU0Mjg0OTYwRDJDRDVFOEU3NDcwMjg0 MjYwQjMyNjYwHhcNMjUwNDA4MjMwMDE2WhcNMjUwNDE1MjMwMDE2WjAYMRYwFAYD VQQDEw02N2Y1YWE4MC05NjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcOWzvD+e/ZdjaKMrHQEKQlne4wVEg0rc3Eq+v7qC/a1IW1KkW4dxwx1gTxN pRtlinqobZXxX0icOkrCWfnvY3snfyAFV0kDczqh6//HN15qJaB7g6oU0rEphk0E Y/fxDrsMpJx5WjDJN6I1hPePXllXzYGUySzV3QNuneucUcM4TXGZLxXtBA0Dsefs KthflT7Zx0E/HNdYZy9qQZKGZBJez6UEWm/FJr87ohgXgoFeqfGyLJ/63g/TFECb S1txxYb0+A/xP1uGnk4Ld6C5XOXDENdMRhuFlIWdeHb6LxvlxzPrHQy3kYboFpSr C+CQpxMdZ5HqjW4EKU+M9IH5KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgXki9i LM50u7Kj1nKkLZivt2n5MB8GA1UdIwQYMBaAFN6geSjeQoSWDSzV6OdHAoQmCzJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUFEMy8wQkM0Rjg0MEMx QjIxMUVBODMyNzg3NjdDNEY5QUUwMi8zcUI1S041Q2hKWU5MTlhvNTBjQ2hDWUxN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxQjVLTjVDaEpZTkxOWG81MGNDaENZTE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUFEMy8wQkM0Rjg0MEMxQjIxMUVBODMyNzg3NjdDNEY5QUUwMi8zcUI1S041Q2hK WU5MTlhvNTBjQ2hDWUxNbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTkEdCLk3p1R1HgYWFrzKwxqStWa23rf3LKP4QO5P+McFIHby7fEww QX3seZ+1DilXIO0q49GmQDC50ImeOH4Jp01F0yOyhwtm4c/MTon3vJGm0Yy7ImSk 08W97b6d5srgKaWXeKpSIYvbDEsc5mPnE8IHyRjbDdJFlufRKxFA48Pl7neLHCg/ ihOCRpj8VDVqEAiEFAuQNqjtASoYPotlXg9wmSOWLJzwk3ZVM05LiDa5uFXxGi1D nGlurKj2GzMZpJScOkwF0OdwQklgPwIq0PtsVogGnzL1QOz9y2AYUtLo7mLGwGe9 ipTAM4RmiJqwq3QyN9qXxGOLxJUsjyME -----END CERTIFICATE-----Generated at Thu Apr 10 17:03:35 2025 by rpki-client