$ rpki-client -vvf rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft File: mqU9J74bthSVPDedOeC7xfHBJKc.mft (raw, json) Hash identifier: ySaIcMCYc1xvrWF06vclyumpFyebLXG0O08covo2IPw= Subject key identifier: 4C:D3:1D:B6:C3:6F:B4:D0:01:DC:28:C1:D9:AE:6B:9F:C5:DC:8B:AD Authority key identifier: 9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7 Certificate issuer: /CN=A91814CB/serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7 Certificate serial: 0BCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft Manifest number: 0BBF Signing time: Sun 20 Apr 2025 18:44:50 +0000 Manifest this update: Sun 20 Apr 2025 18:44:49 +0000 Manifest next update: Sun 27 Apr 2025 18:44:49 +0000 Files and hashes: 1: mqU9J74bthSVPDedOeC7xfHBJKc.crl (hash: +2OyPg6H+1QnOxJUCkbkYdHs42p+csG0V2wWJS2X2b0=) 2: F4F827D6BB6C11EF80151572C4F9AE02.roa (hash: 25pluhiPmnAm9YwUWup9o5G24MQf1uEQRknQIFNX3KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 18:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3019 (0xbcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91814CB, serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7 Validity Not Before: Apr 20 18:44:49 2025 GMT Not After : Apr 27 18:44:49 2025 GMT Subject: CN=680540a2-a70f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2b:50:01:92:f9:68:65:d5:c0:9f:65:cf:21: 24:3f:b0:83:7a:82:cc:76:92:4c:65:46:64:db:e0: aa:75:c3:65:05:55:0a:00:72:1e:a7:19:26:a2:21: f6:cc:66:9a:af:d1:87:55:6d:b7:e6:a3:cc:8c:f7: af:eb:ee:43:60:29:39:0f:9a:e6:4e:43:7c:fc:99: 3c:3f:39:4e:0e:d5:97:ec:ce:66:63:53:98:43:8e: f6:8f:14:97:0b:33:6b:c9:6a:3c:3e:c3:e6:00:1b: c5:31:32:81:b7:f4:ff:a3:c9:90:8c:dd:08:ec:79: 12:be:30:6e:2c:71:42:1e:56:da:3a:18:ce:91:6f: d4:97:95:a0:ab:db:90:6d:2e:8d:39:98:9a:84:e7: 12:c0:30:37:07:00:17:46:30:bc:16:8a:8a:e4:8e: 7f:0d:d8:fe:39:27:41:1b:40:cc:01:b2:5a:58:c1: 8c:2a:4d:46:99:9e:63:ac:85:a0:1a:0f:68:de:47: a0:b4:2a:e4:4c:1a:59:98:3e:89:1b:ca:49:8a:3a: 3e:45:2b:60:e6:58:d0:8f:62:d6:c8:1c:3e:06:78: d4:b5:4b:9a:f2:a2:0d:cb:ff:c9:b4:1e:52:de:ec: de:fb:ed:17:6d:00:0d:14:a7:9e:bd:29:bb:94:72: c5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D3:1D:B6:C3:6F:B4:D0:01:DC:28:C1:D9:AE:6B:9F:C5:DC:8B:AD X509v3 Authority Key Identifier: keyid:9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:7e:67:7e:86:84:de:2f:fe:b6:fe:d4:66:7e:43:00:7b:fd: ef:b9:38:9c:db:b3:49:df:b5:0e:66:d0:99:33:3f:78:7f:d3: 2f:79:86:54:3e:16:79:bd:1f:42:0d:10:30:e3:a3:e1:17:6e: 33:c3:f2:6a:6a:ee:59:ea:e0:f7:5f:ee:1c:e6:e6:e2:b3:ae: f8:f2:e4:c2:8b:d9:1c:cf:ec:71:2d:90:03:78:98:70:6a:7d: 91:53:51:d8:05:bb:aa:44:d2:bd:79:3d:54:51:ff:6e:2d:ce: a4:2f:c9:ec:2f:0b:d6:2e:8e:87:58:b4:62:1e:1b:81:fd:50: d2:aa:7c:40:29:16:19:34:b1:92:53:b1:a3:d9:32:76:46:7e: 78:79:ad:4c:7a:43:b9:8f:d1:e0:fd:a5:32:33:32:7f:10:ee: 50:de:d8:19:b1:ae:9f:21:d7:f2:61:79:b0:ee:91:aa:9b:22: 37:e4:ad:fa:3c:ef:7f:d1:cb:09:4a:fb:b5:e3:e9:1e:a5:83: 40:9c:2c:c7:e1:95:a6:ba:6b:0d:cf:b4:47:4d:3f:38:c2:1d: 5f:17:82:6d:16:31:e5:36:ad:0f:a3:a1:73:6e:df:23:f0:92: d9:4e:49:a7:0c:8d:af:5e:82:bf:9f:8e:13:94:67:aa:11:f1: f3:81:30:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0Q0IxMTAvBgNVBAUTKDlBQTUzRDI3QkUxQkI2MTQ5NTNDMzc5RDM5RTBCQkM1 RjFDMTI0QTcwHhcNMjUwNDIwMTg0NDQ5WhcNMjUwNDI3MTg0NDQ5WjAYMRYwFAYD VQQDEw02ODA1NDBhMi1hNzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3StQAZL5aGXVwJ9lzyEkP7CDeoLMdpJMZUZk2+CqdcNlBVUKAHIepxkmoiH2 zGaar9GHVW235qPMjPev6+5DYCk5D5rmTkN8/Jk8PzlODtWX7M5mY1OYQ472jxSX CzNryWo8PsPmABvFMTKBt/T/o8mQjN0I7HkSvjBuLHFCHlbaOhjOkW/Ul5Wgq9uQ bS6NOZiahOcSwDA3BwAXRjC8FoqK5I5/Ddj+OSdBG0DMAbJaWMGMKk1GmZ5jrIWg Gg9o3kegtCrkTBpZmD6JG8pJijo+RStg5ljQj2LWyBw+BnjUtUua8qINy//JtB5S 3uze++0XbQANFKeevSm7lHLF9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzTHbbD b7TQAdwowdmua5/F3IutMB8GA1UdIwQYMBaAFJqlPSe+G7YUlTw3nTngu8XxwSSn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTRDQi9BREVDNTQzQTFE NzgxMUVBOEQzMDE3NDRDNEY5QUUwMi9tcVU5Sjc0YnRoU1ZQRGVkT2VDN3hmSEJK S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xVTlKNzRidGhTVlBEZWRPZUM3eGZIQkpLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTRDQi9BREVDNTQzQTFENzgxMUVBOEQzMDE3NDRDNEY5QUUwMi9tcVU5Sjc0YnRo U1ZQRGVkT2VDN3hmSEJKS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXfmd+hoTeL/62/tRmfkMAe/3vuTic27NJ37UOZtCZMz94f9MveYZU PhZ5vR9CDRAw46PhF24zw/Jqau5Z6uD3X+4c5ubis6748uTCi9kcz+xxLZADeJhw an2RU1HYBbuqRNK9eT1UUf9uLc6kL8nsLwvWLo6HWLRiHhuB/VDSqnxAKRYZNLGS U7Gj2TJ2Rn54ea1MekO5j9Hg/aUyMzJ/EO5Q3tgZsa6fIdfyYXmw7pGqmyI35K36 PO9/0csJSvu14+kepYNAnCzH4ZWmumsNz7RHTT84wh1fF4JtFjHlNq0Po6Fzbt8j 8JLZTkmnDI2vXoK/n44TlGeqEfHzgTC9 -----END CERTIFICATE-----Generated at Mon Apr 21 15:39:43 2025 by rpki-client