$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft File: QSE7L18kKfwyjsP06V1YhkAv62k.mft (raw, json) Hash identifier: OnPOqCcZtojKY3vbsQ1ESLDOigbB9hjN5oYXFP8X008= Subject key identifier: 2E:CB:67:79:F1:9D:7B:DF:E5:27:6A:30:2E:E4:D9:98:FF:2A:DF:BD Authority key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 Certificate issuer: /CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft Manifest number: C3 Signing time: Sat 05 Apr 2025 05:14:18 +0000 Manifest this update: Sat 05 Apr 2025 05:14:18 +0000 Manifest next update: Sat 12 Apr 2025 05:14:18 +0000 Files and hashes: 1: QSE7L18kKfwyjsP06V1YhkAv62k.crl (hash: nIBZgr0W/kDzQDoUn5NwfWULR/nHeXy/BdkkXXKH71Q=) 2: 47142068221311EFB680F113C4F9AE02.roa (hash: Wz7+GyEz4KEH5axb8P5kr/PKoJv9dBdTnqoEdl36Fic=) 3: EE01A248F2FB11EE9AA9E24CC4F9AE02.roa (hash: u90GvXDC2nj38gPxwI7H6zVq1FrynP/V/Ah+aJjG8F8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB Validity Not Before: Apr 5 05:14:18 2025 GMT Not After : Apr 12 05:14:18 2025 GMT Subject: CN=67f0bc2a-f31c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:45:91:50:5d:ec:70:f9:c1:76:c5:4d:73:b2: cb:e5:f4:e0:1f:b7:b1:20:a9:60:94:de:18:2f:ab: be:4d:fa:9f:a6:e0:90:1d:9a:3f:58:08:45:a3:50: 07:02:6a:a3:2f:ce:22:9a:8e:1f:9e:40:62:d2:98: ec:0d:7b:91:2b:df:8a:cd:80:20:08:ed:ce:04:d3: 83:b4:9e:5a:0a:f8:7c:11:b0:fd:e2:19:4a:84:5a: a0:c7:69:e4:ee:f1:c2:c3:ca:08:d6:b3:42:19:95: 37:39:bd:bf:83:1e:5c:8f:d5:54:59:45:de:a6:21: f8:96:27:0f:5f:6e:c3:ff:c2:7c:aa:89:6a:82:cb: c6:45:8c:32:40:ac:30:da:8b:80:bc:7a:ef:23:37: d1:0e:8d:b7:41:70:28:05:65:cc:83:5c:c6:0e:fc: 04:78:6c:9b:f8:77:c1:5f:51:4a:21:58:c4:10:fb: 4b:17:6d:1b:2e:97:d1:c4:bb:fd:a6:b2:41:f7:e4: 40:44:e6:5f:84:91:23:93:0a:b8:30:4a:3f:74:7f: aa:8e:90:f5:c5:98:4b:27:ba:20:89:4c:a2:c0:8a: 7c:df:60:bb:36:b9:c5:1b:5c:70:7f:3c:e8:f9:e0: 86:9d:1a:58:4d:9e:e7:09:78:be:0f:59:40:10:a3: c8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CB:67:79:F1:9D:7B:DF:E5:27:6A:30:2E:E4:D9:98:FF:2A:DF:BD X509v3 Authority Key Identifier: keyid:41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:7c:68:54:fe:57:d2:20:45:41:5a:6a:05:8b:f9:09:3a:0f: b9:a4:a5:4a:35:bb:db:79:35:68:66:66:be:07:e3:47:ca:6c: 95:ca:0b:29:75:ed:0b:a0:9d:04:49:57:21:35:f8:60:fd:29: 68:b2:03:31:1b:72:f3:3e:4f:c1:e6:2c:17:72:59:e3:7d:fa: 2d:51:48:8c:21:9c:95:50:69:61:b5:ac:e6:fb:86:b6:70:52: 5f:b0:9a:27:83:84:74:c5:95:68:7b:4a:2d:c7:e3:6a:21:6a: 00:8e:72:a8:94:58:46:a6:21:b7:ca:f4:5e:bb:09:24:8a:e8: 0b:2f:02:df:27:e0:57:86:34:3c:46:d9:45:93:db:3d:52:ed: 9c:32:01:7d:7f:d4:72:ee:41:3b:18:59:d0:a5:63:bf:39:9c: 39:63:43:8b:90:a5:ab:57:8d:c0:1c:7a:e0:1b:91:14:6e:54: 88:7e:92:dc:69:45:df:d6:c9:66:af:0d:f5:a6:ac:70:ea:88: 60:cc:c5:33:6b:71:7e:d9:a7:60:ef:3f:a0:3f:69:13:dc:04: 02:32:1e:cf:b5:3f:1d:84:a1:19:fc:00:dc:f5:5d:e1:4f:34: 3d:ec:e8:65:4a:d8:dc:ab:87:60:a7:d8:1a:58:eb:6e:a6:68: 60:9a:fd:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3Q0IxMTAvBgNVBAUTKDQxMjEzQjJGNUYyNDI5RkMzMjhFQzNGNEU5NUQ1ODg2 NDAyRkVCNjkwHhcNMjUwNDA1MDUxNDE4WhcNMjUwNDEyMDUxNDE4WjAYMRYwFAYD VQQDEw02N2YwYmMyYS1mMzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEWRUF3scPnBdsVNc7LL5fTgH7exIKlglN4YL6u+TfqfpuCQHZo/WAhFo1AH AmqjL84imo4fnkBi0pjsDXuRK9+KzYAgCO3OBNODtJ5aCvh8EbD94hlKhFqgx2nk 7vHCw8oI1rNCGZU3Ob2/gx5cj9VUWUXepiH4licPX27D/8J8qolqgsvGRYwyQKww 2ouAvHrvIzfRDo23QXAoBWXMg1zGDvwEeGyb+HfBX1FKIVjEEPtLF20bLpfRxLv9 prJB9+RAROZfhJEjkwq4MEo/dH+qjpD1xZhLJ7ogiUyiwIp832C7NrnFG1xwfzzo +eCGnRpYTZ7nCXi+D1lAEKPIPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7LZ3nx nXvf5SdqMC7k2Zj/Kt+9MB8GA1UdIwQYMBaAFEEhOy9fJCn8Mo7D9OldWIZAL+tp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTdDQi80NTlCMEM2NEYy RjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9RU0U3TDE4a0tmd3lqc1AwNlYxWWhrQXY2 MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FTRTdMMThrS2Z3eWpzUDA2VjFZaGtBdjYyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTdDQi80NTlCMEM2NEYyRjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9RU0U3TDE4a0tm d3lqc1AwNlYxWWhrQXY2MmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkfGhU/lfSIEVBWmoFi/kJOg+5pKVKNbvbeTVoZma+B+NHymyVygsp de0LoJ0ESVchNfhg/SlosgMxG3LzPk/B5iwXclnjffotUUiMIZyVUGlhtazm+4a2 cFJfsJong4R0xZVoe0otx+NqIWoAjnKolFhGpiG3yvReuwkkiugLLwLfJ+BXhjQ8 RtlFk9s9Uu2cMgF9f9Ry7kE7GFnQpWO/OZw5Y0OLkKWrV43AHHrgG5EUblSIfpLc aUXf1slmrw31pqxw6ohgzMUza3F+2adg7z+gP2kT3AQCMh7PtT8dhKEZ/ADc9V3h TzQ97OhlStjcq4dgp9gaWOtupmhgmv2D -----END CERTIFICATE-----Generated at Sat Apr 5 22:18:44 2025 by rpki-client