$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft File: qq7HHKNN7wjYjud72RwVcXXMPAk.mft (raw, json) Hash identifier: jRivlFh4yil9F+z4zWhgOJgzyFxrdRx9QN35aFope5g= Subject key identifier: 16:5E:12:37:EC:16:98:32:4C:36:C1:07:82:ED:CE:1F:54:FA:F6:18 Authority key identifier: AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09 Certificate issuer: /CN=A91A6353/serialNumber=AAAEC71CA34DEF08D88EE77BD91C157175CC3C09 Certificate serial: 0686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft Manifest number: 065E Signing time: Fri 28 Mar 2025 22:53:22 +0000 Manifest this update: Fri 28 Mar 2025 22:53:22 +0000 Manifest next update: Fri 04 Apr 2025 22:53:22 +0000 Files and hashes: 1: qq7HHKNN7wjYjud72RwVcXXMPAk.crl (hash: WYX1/g6Is8Hka5AxPDn5fo3ZNbtqwv4NMrPAE5Gjf0w=) 2: A43A27DAFC0911EF99725548C4F9AE02.roa (hash: emr+zhY1TbaeDkC7dmXT1lGYaVo4KENev4IW3OP2K7Q=) 3: 17687AB8D18F11EF8C6F8687C4F9AE02.roa (hash: WWuXoRDgSFC35DFMV3idQp1hR/mdc4d4fur1hKvZ27k=) 4: 94D84328C2BE11EFA78A383CC4F9AE02.roa (hash: ILedb+K4luFgP1u+0Lt3UnlTE9tN7xoj1804tP59xoo=) 5: C7DF2FAEB31C11EF92C86228C4F9AE02.roa (hash: nedZ6CxgF0ng6a51eLIMspuxhTSJIeVR5Q+BtX9A36g=) 6: 7B34351E6C4011EFB07AFE4DC4F9AE02.roa (hash: a8hiZQY4feWw7cGzPQPoFMY0Vgh/L0UfvR1IyLlgJEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.crl rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6353 Validity Not Before: Mar 28 22:53:22 2025 GMT Not After : Apr 4 22:53:22 2025 GMT Subject: CN=67e72862-8ff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:b7:e9:ab:5e:f2:a5:99:ea:02:77:a8:16: 62:60:25:62:6a:3b:3b:54:5c:ff:01:c3:78:45:47: d7:bd:08:5d:d4:31:87:ac:a2:62:28:af:f5:c4:91: 45:0e:de:32:88:65:1b:2a:74:8d:17:68:e7:6f:18: 27:8d:db:f8:3e:72:8d:a6:cb:5e:08:92:02:4d:22: d6:d4:ba:c7:42:83:63:eb:6d:e3:b4:80:5f:36:94: ec:5d:fc:3e:c6:9a:11:83:69:17:85:12:ed:57:03: 08:63:73:c4:60:0e:d5:3b:a0:62:dc:79:1b:16:d7: b8:10:bd:f7:0e:f0:5f:a5:1d:41:aa:1a:fa:9e:0e: 96:40:09:87:26:5e:2a:06:20:fa:fd:82:17:b7:5c: c3:e3:2b:4c:64:3a:14:81:69:da:55:65:4c:da:f5: 46:bc:74:2c:65:fd:b7:f5:4b:db:82:60:6a:51:96: 4a:ac:6f:b7:13:1e:5e:24:09:8e:c3:b8:61:27:fc: 67:ca:75:3c:1a:2b:bc:f2:27:f6:70:26:87:d1:9e: d0:2f:a6:93:c0:8e:4b:48:12:5c:72:65:3c:e4:6c: 73:bd:fd:b1:94:99:53:e2:64:bb:d6:24:0c:c8:87: 78:98:65:a9:c0:3f:5d:69:4c:71:0d:71:07:63:6c: 19:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5E:12:37:EC:16:98:32:4C:36:C1:07:82:ED:CE:1F:54:FA:F6:18 X509v3 Authority Key Identifier: keyid:AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:86:0a:e1:80:7c:65:4e:1d:ac:b3:d7:a9:9b:af:25:2b:d0: 9f:18:0d:78:47:f0:1b:7f:59:46:d6:46:57:79:18:54:dd:2e: 3a:f9:d1:39:3e:9d:82:ce:c4:da:5e:27:e7:35:51:d3:d4:e4: 24:9d:d7:26:96:35:4f:d7:cb:b7:1c:0b:0d:71:1b:87:72:8f: 97:96:d0:95:c7:59:50:c2:8e:9d:dc:31:e1:48:69:0c:95:56: fe:8e:50:df:b8:10:c0:82:eb:81:81:fd:70:a7:f3:c3:46:b9: 56:6d:f8:d6:9e:8f:e5:ea:65:30:31:9e:3a:7a:41:6b:c2:27: f8:92:83:b0:16:27:0b:59:7f:eb:b9:47:54:11:c1:0f:b3:56: 99:4b:03:41:77:0a:82:cf:12:07:58:61:10:9a:8d:f7:d1:63: e2:60:97:5a:89:71:7f:8f:e4:b3:77:0f:39:dd:63:22:f9:74: 07:45:fb:e2:b8:2e:7c:7f:1d:26:9e:d7:e3:88:d9:ed:4e:b4: 0f:35:5d:53:2c:33:8e:fb:e6:0c:46:b3:be:7e:11:b1:d3:48: 3d:26:59:75:da:89:81:e1:19:ef:b5:be:ae:45:2a:25:6f:a8: e4:fc:c2:ff:69:c3:d5:4c:30:18:e3:ca:da:eb:d9:8f:cb:e5: 69:02:31:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYzNTMxMTAvBgNVBAUTKEFBQUVDNzFDQTM0REVGMDhEODhFRTc3QkQ5MUMxNTcx NzVDQzNDMDkwHhcNMjUwMzI4MjI1MzIyWhcNMjUwNDA0MjI1MzIyWjAYMRYwFAYD VQQDEw02N2U3Mjg2Mi04ZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7a36ate8qWZ6gJ3qBZiYCViajs7VFz/AcN4RUfXvQhd1DGHrKJiKK/1xJFF Dt4yiGUbKnSNF2jnbxgnjdv4PnKNpsteCJICTSLW1LrHQoNj623jtIBfNpTsXfw+ xpoRg2kXhRLtVwMIY3PEYA7VO6Bi3HkbFte4EL33DvBfpR1Bqhr6ng6WQAmHJl4q BiD6/YIXt1zD4ytMZDoUgWnaVWVM2vVGvHQsZf239UvbgmBqUZZKrG+3Ex5eJAmO w7hhJ/xnynU8Giu88if2cCaH0Z7QL6aTwI5LSBJccmU85Gxzvf2xlJlT4mS71iQM yId4mGWpwD9daUxxDXEHY2wZIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZeEjfs FpgyTDbBB4Ltzh9U+vYYMB8GA1UdIwQYMBaAFKquxxyjTe8I2I7ne9kcFXF1zDwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjM1My8zQkZERUQ2NDg2 QkExMUVCQkNDMzk4NzVDNEY5QUUwMi9xcTdISEtOTjd3allqdWQ3MlJ3VmNYWE1Q QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxN0hIS05ON3dqWWp1ZDcyUndWY1hYTVBBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjM1My8zQkZERUQ2NDg2QkExMUVCQkNDMzk4NzVDNEY5QUUwMi9xcTdISEtOTjd3 allqdWQ3MlJ3VmNYWE1QQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfhgrhgHxlTh2ss9epm68lK9CfGA14R/Abf1lG1kZXeRhU3S46+dE5 Pp2CzsTaXifnNVHT1OQkndcmljVP18u3HAsNcRuHco+XltCVx1lQwo6d3DHhSGkM lVb+jlDfuBDAguuBgf1wp/PDRrlWbfjWno/l6mUwMZ46ekFrwif4koOwFicLWX/r uUdUEcEPs1aZSwNBdwqCzxIHWGEQmo330WPiYJdaiXF/j+Szdw853WMi+XQHRfvi uC58fx0mntfjiNntTrQPNV1TLDOO++YMRrO+fhGx00g9Jll12omB4Rnvtb6uRSol b6jk/ML/acPVTDAY48ra69mPy+VpAjET -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:31 2025 by rpki-client