$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: kj4KtDhECyWk8NW1bollClGoBOWDjynop7GS6AZbxKI= Subject key identifier: 11:52:BA:87:F3:BF:60:8A:05:17:9F:F2:27:BF:65:3B:FC:80:3D:AE Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 03CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 03C8 Signing time: Sat 29 Mar 2025 00:52:22 +0000 Manifest this update: Sat 29 Mar 2025 00:52:22 +0000 Manifest next update: Sat 05 Apr 2025 00:52:22 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: X4i8RZMxz4zRrU7nCVWsPTjKayUlBTFGLUO3LRhv0zw=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: OijvdKYC8DjMphaEyFQ4TM5tLnVnkQ/IOeHSMr/fpgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 973 (0x3cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1 Validity Not Before: Mar 29 00:52:22 2025 GMT Not After : Apr 5 00:52:22 2025 GMT Subject: CN=67e74446-1a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2c:dd:9e:94:9b:fc:92:e3:04:e4:8e:34:43: d0:2b:4d:24:b2:1b:65:1d:2e:a0:df:ce:ca:57:66: 89:ff:5a:a9:64:f1:66:20:4b:f9:f9:bc:9e:b9:64: 30:b8:6a:45:11:76:3b:f9:7a:67:db:31:0d:d8:00: fa:89:c9:9a:ee:9d:e0:dd:45:8a:8b:61:88:7b:2e: 4a:7f:0f:e0:f2:d3:f7:45:d1:1b:cf:bb:77:d2:e7: 05:4e:77:59:b9:1f:50:a5:ad:d1:fd:05:63:e0:23: 79:97:0a:8a:1f:b9:cd:a3:76:a4:2c:76:7c:bf:bc: db:17:47:c5:e3:45:63:5f:9f:bc:38:60:49:83:2e: 37:49:43:68:d4:09:f3:8b:35:51:6a:3e:72:2c:6a: f6:cb:ba:a4:5a:7f:64:9d:38:39:15:e4:8a:b0:0c: 2c:4f:36:e4:85:31:66:ff:4e:bf:e3:b2:af:97:02: 29:60:c6:ef:87:6c:0c:d1:ea:92:4e:eb:02:b7:47: 7b:3f:fc:11:b9:ce:2f:4e:ba:bd:45:2c:b3:ae:48: b7:f9:92:65:e1:40:cb:51:fd:a6:1e:25:dc:05:c5: 90:28:e2:79:20:4b:78:a8:16:8b:27:a9:3a:9e:3e: e9:d0:aa:50:1b:25:54:01:0d:4b:11:2f:a1:c7:68: 37:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:52:BA:87:F3:BF:60:8A:05:17:9F:F2:27:BF:65:3B:FC:80:3D:AE X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:55:a6:0a:c8:b5:97:1f:e3:85:a8:c0:f2:ca:de:08:61:81: 79:18:3f:09:86:ed:25:bd:d5:71:20:7c:43:3a:3c:e0:c2:fb: 61:b0:6f:3b:a8:80:b5:f9:73:5e:f4:0c:ef:63:97:42:2e:9e: 60:b6:97:f0:c6:05:b4:fc:fe:2b:96:3e:1a:b8:f0:01:44:87: 96:01:77:70:f5:b6:e2:bf:a8:17:3f:70:b3:e1:f5:e0:f3:64: 67:3d:07:a6:24:fc:ca:ab:9c:2b:7b:8d:df:46:ef:96:bc:bc: 26:55:84:8f:12:50:72:70:e6:71:4b:f0:1d:98:e9:fb:f9:8d: 97:97:ed:9b:33:12:a7:1d:8e:d3:8a:5f:e4:15:4e:3c:be:ca: ef:84:f6:63:45:cf:48:f7:77:8c:e5:54:05:4c:64:3c:63:ba: d8:30:6a:f0:ee:10:ec:af:ae:a9:9b:d1:a5:29:90:36:08:12: 25:c9:9e:2e:67:c6:85:8a:bf:6c:96:f7:e0:10:d8:de:58:80: 0e:85:c6:15:d1:eb:9c:83:a4:81:b8:da:a2:53:72:9c:b6:2c: c5:dd:3e:e7:79:ed:0b:b0:c9:a4:8c:af:fc:40:6c:b8:bd:33: 01:68:2a:af:8b:64:25:55:51:31:65:37:6c:1e:1a:d5:d3:72: 9d:b9:8a:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUwMzI5MDA1MjIyWhcNMjUwNDA1MDA1MjIyWjAYMRYwFAYD VQQDEw02N2U3NDQ0Ni0xYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCzdnpSb/JLjBOSONEPQK00kshtlHS6g387KV2aJ/1qpZPFmIEv5+byeuWQw uGpFEXY7+Xpn2zEN2AD6icma7p3g3UWKi2GIey5Kfw/g8tP3RdEbz7t30ucFTndZ uR9Qpa3R/QVj4CN5lwqKH7nNo3akLHZ8v7zbF0fF40VjX5+8OGBJgy43SUNo1Anz izVRaj5yLGr2y7qkWn9knTg5FeSKsAwsTzbkhTFm/06/47KvlwIpYMbvh2wM0eqS TusCt0d7P/wRuc4vTrq9RSyzrki3+ZJl4UDLUf2mHiXcBcWQKOJ5IEt4qBaLJ6k6 nj7p0KpQGyVUAQ1LES+hx2g30wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFSuofz v2CKBRef8ie/ZTv8gD2uMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4VaYKyLWXH+OFqMDyyt4IYYF5GD8Jhu0lvdVxIHxDOjzgwvthsG87 qIC1+XNe9AzvY5dCLp5gtpfwxgW0/P4rlj4auPABRIeWAXdw9bbiv6gXP3Cz4fXg 82RnPQemJPzKq5wre43fRu+WvLwmVYSPElBycOZxS/AdmOn7+Y2Xl+2bMxKnHY7T il/kFU48vsrvhPZjRc9I93eM5VQFTGQ8Y7rYMGrw7hDsr66pm9GlKZA2CBIlyZ4u Z8aFir9slvfgENjeWIAOhcYV0eucg6SBuNqiU3KctizF3T7nee0LsMmkjK/8QGy4 vTMBaCqvi2QlVVExZTdsHhrV03KduYrQ -----END CERTIFICATE-----Generated at Fri Apr 4 18:30:24 2025 by rpki-client