$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft File: QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json) Hash identifier: COha3327wFJozQUxn28C2bafXCViPGj0GV2+xGlLiL0= Subject key identifier: 39:53:DA:07:0D:6D:C7:2E:63:D0:DE:D6:79:7B:DD:F6:C7:ED:ED:8B Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft Manifest number: 4F Signing time: Fri 11 Apr 2025 06:31:58 +0000 Manifest this update: Fri 11 Apr 2025 06:31:57 +0000 Manifest next update: Fri 18 Apr 2025 06:31:57 +0000 Files and hashes: 1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: pRHHSHM81XjL3k9m05LLCkik4J2NxTNGB98RL6hvYdQ=) 2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 06:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: Apr 11 06:31:57 2025 GMT Not After : Apr 18 06:31:57 2025 GMT Subject: CN=67f8b75e-6d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:94:29:b3:49:43:97:4f:d6:0f:9d:b5:4f:53: 51:f6:7e:f7:54:f7:bd:c8:5c:1b:f1:c0:35:b8:7f: 83:d4:49:00:08:f5:a5:e3:ad:6d:6f:79:ec:cf:94: 66:61:1f:f3:6c:b7:db:b7:9a:89:3c:e3:d1:a5:61: 44:0c:27:2c:83:9e:f0:59:e5:09:4b:f0:43:95:61: ce:d5:cc:b1:2d:8e:61:f4:3a:21:87:75:9f:23:39: 22:23:3a:e1:87:64:bf:df:d5:26:9f:37:a2:3e:f6: 89:3d:92:54:17:6a:85:94:10:a0:69:40:a5:ae:73: f1:d4:c2:e8:de:a9:57:4f:15:5d:4c:50:84:e2:ed: a5:84:26:dc:d8:83:3b:41:56:45:07:6c:65:32:b4: 24:ea:f4:65:bd:95:ca:74:4e:31:67:ee:9d:b3:a1: 46:3d:1a:6a:13:01:f0:51:d1:2d:e8:0e:b0:1d:06: 8c:58:fb:79:a2:83:bf:9a:6a:7f:c1:66:61:bf:3f: 7c:24:c9:37:4a:74:98:96:e5:c1:3d:6a:5f:1a:01: da:48:cd:69:80:97:89:d2:4b:c3:94:71:91:bb:54: a6:6f:78:ff:2b:7f:d1:a0:63:36:d2:57:83:12:2c: f6:68:d5:07:2e:e7:ff:22:94:c1:b8:d1:7c:71:c9: 66:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:53:DA:07:0D:6D:C7:2E:63:D0:DE:D6:79:7B:DD:F6:C7:ED:ED:8B X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:39:4b:84:46:84:d9:d6:87:01:88:fe:d3:f3:e1:7a:14:f8: 93:d8:16:a4:d5:5d:29:ed:2b:e0:18:97:65:5c:e9:24:e9:f5: 0b:67:39:ef:de:46:b4:c7:4a:7d:7e:04:35:26:16:d5:c0:7d: 61:94:7d:e7:37:65:ab:74:c5:8a:8f:29:65:87:84:af:a2:63: df:27:ea:28:f0:19:07:51:ce:26:14:75:8e:a4:1e:22:1b:90: 0a:88:fa:10:2d:fd:79:39:67:f3:41:13:0f:56:06:4b:b1:9a: 34:31:ec:a7:9a:cb:a7:01:92:9b:8c:a6:60:d1:b4:32:b9:43: 1e:82:61:d1:b7:6e:d6:d4:f4:72:69:56:8d:cf:a1:17:61:1a: b0:a8:8b:75:93:76:3e:4b:a8:da:a4:64:7c:46:fe:26:96:c8: 17:cc:96:f1:e0:0c:27:00:3e:0f:12:c2:c0:d5:ee:a6:f1:2d: 02:14:99:56:6b:98:ac:13:0b:2c:bb:b0:59:fd:82:00:1c:ac: be:e2:bd:5b:87:00:be:14:09:10:0c:8e:0b:97:79:95:07:e5: 8c:68:9d:a3:02:0f:e8:3a:06:76:58:fb:25:4e:85:0c:b2:9f: 0a:3c:74:39:65:b6:e5:fe:7f:a0:15:62:0a:26:0c:34:d0:82: 77:80:af:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzMxQzExMC8GA1UEBRMoNDBGQUE3MEY4QTIzQTAzRDE2QTExMDg2REJFNTAyRTg2 MjE2NDk2NzAeFw0yNTA0MTEwNjMxNTdaFw0yNTA0MTgwNjMxNTdaMBgxFjAUBgNV BAMTDTY3ZjhiNzVlLTZkMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCalCmzSUOXT9YPnbVPU1H2fvdU973IXBvxwDW4f4PUSQAI9aXjrW1veezPlGZh H/Nst9u3mok849GlYUQMJyyDnvBZ5QlL8EOVYc7VzLEtjmH0OiGHdZ8jOSIjOuGH ZL/f1SafN6I+9ok9klQXaoWUEKBpQKWuc/HUwujeqVdPFV1MUITi7aWEJtzYgztB VkUHbGUytCTq9GW9lcp0TjFn7p2zoUY9GmoTAfBR0S3oDrAdBoxY+3mig7+aan/B ZmG/P3wkyTdKdJiW5cE9al8aAdpIzWmAl4nSS8OUcZG7VKZveP8rf9GgYzbSV4MS LPZo1Qcu5/8ilMG40XxxyWaHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOVPaBw1t xy5j0N7WeXvd9sft7YswHwYDVR0jBBgwFoAUQPqnD4ojoD0WoRCG2+UC6GIWSWcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMzFDL0YxMDdEQTEwQTZD RjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NX Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVBxbkQ0b2pvRDBXb1JDRzItVUM2R0lXU1djLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD MzFDL0YxMDdEQTEwQTZDRjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0Qw V29SQ0cyLVVDNkdJV1NXYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAA5S4RGhNnWhwGI/tPz4XoU+JPYFqTVXSntK+AYl2Vc6STp9QtnOe/e RrTHSn1+BDUmFtXAfWGUfec3Zat0xYqPKWWHhK+iY98n6ijwGQdRziYUdY6kHiIb kAqI+hAt/Xk5Z/NBEw9WBkuxmjQx7Keay6cBkpuMpmDRtDK5Qx6CYdG3btbU9HJp Vo3PoRdhGrCoi3WTdj5LqNqkZHxG/iaWyBfMlvHgDCcAPg8SwsDV7qbxLQIUmVZr mKwTCyy7sFn9ggAcrL7ivVuHAL4UCRAMjguXeZUH5YxonaMCD+g6BnZY+yVOhQyy nwo8dDlltuX+f6AVYgomDDTQgneAr00= -----END CERTIFICATE-----Generated at Sun Apr 13 05:08:27 2025 by rpki-client