$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: Wkds1/JzKqH7b+ZyJkXSTfBel0RMIXYVT9bY1Da401Q= Subject key identifier: A4:FE:E5:4C:16:89:8A:D4:05:AF:E2:7B:6C:9D:40:3D:F2:DB:82:60 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0AB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0AAA Signing time: Fri 04 Apr 2025 19:41:32 +0000 Manifest this update: Fri 04 Apr 2025 19:41:31 +0000 Manifest next update: Fri 11 Apr 2025 19:41:31 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: 2ebKlQJJ4GdQrqUE1npL4LcOL3BZateL8Bd91ED0RFI=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2744 (0xab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA Validity Not Before: Apr 4 19:41:31 2025 GMT Not After : Apr 11 19:41:31 2025 GMT Subject: CN=67f035eb-380b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d7:d5:78:af:b0:50:38:13:a5:b9:fa:c6:f7: 6c:5a:04:76:b2:83:71:8a:8b:16:be:53:65:92:6a: 0f:39:d0:3c:a5:e4:6c:0f:5a:f5:f3:78:13:77:5d: b5:f8:b9:29:52:3e:d8:b7:cf:c9:48:f8:65:6e:93: 2e:e9:fc:fe:f1:89:a5:e3:f4:54:e5:b1:dc:ed:07: c1:a7:20:aa:b9:b0:96:2a:68:eb:c7:b5:c0:66:8c: 98:e9:23:97:bc:51:af:4a:6c:c3:d3:20:d0:49:22: 92:67:b7:86:cc:d8:3c:d3:92:3c:1d:3f:db:a8:25: 18:d3:a7:66:94:b7:e9:ff:35:36:b8:0a:50:a6:fa: 8c:a7:2d:8a:5b:9c:ee:9f:0e:f0:86:2d:22:55:8b: b5:70:96:2e:12:73:a7:02:18:88:00:27:66:83:f4: 1f:15:6a:75:e1:a8:58:36:5e:b0:77:84:02:e0:c3: b8:3e:3f:0c:12:a6:7a:2d:ce:92:b4:b1:c6:79:af: f5:7f:97:49:92:ca:7f:27:23:b2:d9:22:bc:3c:72: e0:88:a5:7f:1d:97:d3:4e:e4:cc:45:3e:a9:4b:80: d0:6b:1e:bd:91:66:2b:77:b8:16:14:f7:6a:3f:79: 5e:8f:6e:66:a9:47:8b:3e:68:1d:c2:f4:5f:cc:2b: bc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:FE:E5:4C:16:89:8A:D4:05:AF:E2:7B:6C:9D:40:3D:F2:DB:82:60 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f4:0c:4f:c3:e2:3c:76:77:2d:7b:79:0c:b1:c4:1d:c0:25: 13:bd:c3:8b:62:ce:86:f4:c3:78:49:e2:80:bc:ae:c7:85:c2: ec:96:50:b8:1f:3c:97:1e:1b:20:f7:a5:8e:64:79:bd:36:31: 11:ef:3d:b1:cd:92:af:97:9b:2d:a8:c5:de:4f:53:80:87:86: 9e:10:b0:be:87:25:d1:ff:62:46:95:ae:ae:80:bd:e0:24:74: c9:df:6d:72:42:60:3e:d6:e6:e3:0a:fd:b2:e7:44:6a:76:b2: 7f:d7:99:70:52:f5:1c:7c:cd:7b:02:1f:42:c2:29:c7:28:2b: 62:da:f6:f0:73:d9:ae:73:c0:9c:56:05:7e:13:78:38:c1:f0: bf:02:48:a8:7a:4c:68:a3:89:6e:cb:c3:40:e5:8d:f7:ab:41: b7:89:09:df:21:62:1c:f2:73:6b:fd:7a:0a:e6:12:dd:e5:62: ea:5b:c0:cf:93:53:49:f1:ce:bf:48:f4:5f:d4:1e:33:37:da: 94:e0:d4:b7:3c:44:9c:89:b4:06:9d:df:d8:53:39:15:d8:1b: 8f:55:34:d6:01:6f:a8:7f:01:97:bb:e6:ea:f3:01:26:fb:a4: 2e:85:83:94:21:c1:e8:3b:d3:52:39:d0:c1:b4:fb:9d:d9:4f: 63:e3:f7:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUwNDA0MTk0MTMxWhcNMjUwNDExMTk0MTMxWjAYMRYwFAYD VQQDEw02N2YwMzVlYi0zODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtfVeK+wUDgTpbn6xvdsWgR2soNxiosWvlNlkmoPOdA8peRsD1r183gTd121 +LkpUj7Yt8/JSPhlbpMu6fz+8Yml4/RU5bHc7QfBpyCqubCWKmjrx7XAZoyY6SOX vFGvSmzD0yDQSSKSZ7eGzNg805I8HT/bqCUY06dmlLfp/zU2uApQpvqMpy2KW5zu nw7whi0iVYu1cJYuEnOnAhiIACdmg/QfFWp14ahYNl6wd4QC4MO4Pj8MEqZ6Lc6S tLHGea/1f5dJksp/JyOy2SK8PHLgiKV/HZfTTuTMRT6pS4DQax69kWYrd7gWFPdq P3lej25mqUeLPmgdwvRfzCu8OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKT+5UwW iYrUBa/ie2ydQD3y24JgMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr9AxPw+I8dncte3kMscQdwCUTvcOLYs6G9MN4SeKAvK7HhcLsllC4 HzyXHhsg96WOZHm9NjER7z2xzZKvl5stqMXeT1OAh4aeELC+hyXR/2JGla6ugL3g JHTJ321yQmA+1ubjCv2y50RqdrJ/15lwUvUcfM17Ah9CwinHKCti2vbwc9muc8Cc VgV+E3g4wfC/Akioekxoo4luy8NA5Y33q0G3iQnfIWIc8nNr/XoK5hLd5WLqW8DP k1NJ8c6/SPRf1B4zN9qU4NS3PEScibQGnd/YUzkV2BuPVTTWAW+ofwGXu+bq8wEm +6QuhYOUIcHoO9NSOdDBtPud2U9j4/er -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:41 2025 by rpki-client