$ rpki-client -vvf rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft File: cqUfTuqiGLczbu_3p6WMsa5UQjk.mft (raw, json) Hash identifier: jJ+4iAC3VJpvztVFVu9l/nft78LUChaU7dSbeWHhw8k= Subject key identifier: BD:01:71:E9:CD:A6:C9:2C:4E:82:04:64:BF:F4:26:B5:D9:A2:6C:DE Authority key identifier: 72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 Certificate issuer: /CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Certificate serial: 0779 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft Manifest number: 0772 Signing time: Thu 10 Apr 2025 21:24:56 +0000 Manifest this update: Thu 10 Apr 2025 21:24:55 +0000 Manifest next update: Thu 17 Apr 2025 21:24:55 +0000 Files and hashes: 1: cqUfTuqiGLczbu_3p6WMsa5UQjk.crl (hash: 8Q6ODRKeG8PPofR+RGFGBB70mcU5Q3Vkd8OWaxF6dFU=) 2: DAAB94840EC911EBA913852BC4F9AE02.roa (hash: 5bBWhpUzFVVFApumie9XG8UpL1cOYbfpPDdsz7OV/tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 21:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D121, serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Validity Not Before: Apr 10 21:24:55 2025 GMT Not After : Apr 17 21:24:55 2025 GMT Subject: CN=67f83727-a2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7f:0a:4c:29:b5:63:e4:b8:f5:fe:f4:83:44: 5f:b2:45:1c:75:fc:e0:91:b7:6f:16:61:d9:22:05: 5f:7d:1c:bc:a4:d5:c1:9d:82:0b:b2:cd:a3:1a:38: 4e:84:58:dd:a7:02:72:ca:18:41:30:f6:2f:32:f4: f0:1a:d6:5f:09:2f:a4:c0:3a:43:23:e8:6f:f7:bf: 1a:2c:40:27:2b:9f:38:bb:57:cc:90:1d:ab:f0:30: 65:49:ca:f5:d5:01:85:68:42:06:5f:38:73:55:cf: 0d:72:55:12:e9:3d:a3:7f:1b:af:18:7e:40:df:1a: 4e:44:38:6d:7f:ed:1c:50:18:60:ad:aa:60:1c:c7: 26:08:2a:63:46:f7:f1:be:ab:27:20:ed:66:ec:18: 59:0d:2c:84:50:cd:b4:5b:8e:3d:65:f4:d5:ba:fe: 26:26:c3:e3:14:6a:f8:98:cb:7d:9a:b9:0f:3e:7c: 40:8d:60:3b:79:7c:64:11:dc:ec:73:e4:c3:47:ff: 02:6a:c9:5c:da:0a:6a:da:d6:b3:da:50:63:3d:9a: 14:c2:77:41:54:e0:48:e1:b4:f9:40:3d:a4:a0:de: 73:1b:cb:b6:45:89:85:2a:55:eb:92:4b:80:1d:bf: 38:8c:2f:b1:2e:63:3f:2a:62:d4:8b:89:d4:8f:4a: 12:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:01:71:E9:CD:A6:C9:2C:4E:82:04:64:BF:F4:26:B5:D9:A2:6C:DE X509v3 Authority Key Identifier: keyid:72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:df:65:cc:1b:26:dd:ea:67:ec:85:d7:d9:b9:bb:12:9c:e5: dd:70:7e:6d:14:49:65:56:6f:c2:e6:1a:23:82:41:30:d9:df: c9:fb:45:e5:74:e6:93:73:ef:cb:d5:c7:2f:5e:33:c4:e0:f5: 14:60:4d:34:c5:96:b7:70:77:47:f5:be:7c:a1:48:68:45:70: 01:0c:70:fb:2a:1a:0e:fb:af:01:10:40:8d:11:6e:04:f4:75: b6:ae:99:e5:bb:97:08:24:8f:7a:fb:50:e6:3e:af:c7:f9:bf: 14:27:0d:95:8f:08:e0:f7:ce:b5:f5:7e:66:f8:b3:b2:63:9f: b3:01:fb:53:21:09:c7:93:de:86:99:e3:dd:49:e1:b6:de:8c: bb:bf:d9:3f:16:22:7d:c8:3b:a9:07:93:ef:0b:62:45:3d:bc: a6:8a:af:50:38:c9:7b:4f:ec:7f:6c:1e:24:43:4a:40:0f:bd: bf:18:a4:10:98:09:f2:08:a0:8f:ab:37:1d:dd:25:b5:b3:4b: f0:a2:ba:aa:8e:14:49:d4:50:c1:5d:e6:b8:b4:b5:11:41:3c: dd:d9:ca:1a:45:8d:e1:80:ed:f5:a7:17:45:70:30:2f:b2:86: 5b:9e:f0:8c:88:7c:20:69:b7:68:70:85:96:69:f4:e2:c9:d0: 23:78:5f:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QxMjExMTAvBgNVBAUTKDcyQTUxRjRFRUFBMjE4QjczMzZFRUZGN0E3QTU4Q0Ix QUU1NDQyMzkwHhcNMjUwNDEwMjEyNDU1WhcNMjUwNDE3MjEyNDU1WjAYMRYwFAYD VQQDEw02N2Y4MzcyNy1hMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx38KTCm1Y+S49f70g0RfskUcdfzgkbdvFmHZIgVffRy8pNXBnYILss2jGjhO hFjdpwJyyhhBMPYvMvTwGtZfCS+kwDpDI+hv978aLEAnK584u1fMkB2r8DBlScr1 1QGFaEIGXzhzVc8NclUS6T2jfxuvGH5A3xpORDhtf+0cUBhgrapgHMcmCCpjRvfx vqsnIO1m7BhZDSyEUM20W449ZfTVuv4mJsPjFGr4mMt9mrkPPnxAjWA7eXxkEdzs c+TDR/8Caslc2gpq2taz2lBjPZoUwndBVOBI4bT5QD2koN5zG8u2RYmFKlXrkkuA Hb84jC+xLmM/KmLUi4nUj0oSdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0BcenN psksToIEZL/0JrXZomzeMB8GA1UdIwQYMBaAFHKlH07qohi3M27v96eljLGuVEI5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDEyMS84QjBGOEIwQzBF QzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdMY3pidV8zcDZXTXNhNVVR amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxVWZUdXFpR0xjemJ1XzNwNldNc2E1VVFqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDEyMS84QjBGOEIwQzBFQzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdM Y3pidV8zcDZXTXNhNVVRamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK32XMGybd6mfshdfZubsSnOXdcH5tFEllVm/C5hojgkEw2d/J+0Xl dOaTc+/L1ccvXjPE4PUUYE00xZa3cHdH9b58oUhoRXABDHD7KhoO+68BEECNEW4E 9HW2rpnlu5cIJI96+1DmPq/H+b8UJw2Vjwjg98619X5m+LOyY5+zAftTIQnHk96G mePdSeG23oy7v9k/FiJ9yDupB5PvC2JFPbymiq9QOMl7T+x/bB4kQ0pAD72/GKQQ mAnyCKCPqzcd3SW1s0vworqqjhRJ1FDBXea4tLURQTzd2coaRY3hgO31pxdFcDAv soZbnvCMiHwgabdocIWWafTiydAjeF86 -----END CERTIFICATE-----Generated at Sat Apr 12 17:45:26 2025 by rpki-client