$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: VPJ8jX9QW8vOO4MB3YBjWL2wWtKVAzHJDukQaGMd8ZA= Subject key identifier: 4B:A0:49:F1:2F:27:8D:F7:74:A5:5E:03:9C:76:91:ED:77:65:FC:C0 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 012F Signing time: Fri 11 Apr 2025 03:48:35 +0000 Manifest this update: Fri 11 Apr 2025 03:48:34 +0000 Manifest next update: Fri 18 Apr 2025 03:48:34 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: V9p3ybKb4q5zykkWoMunuGy+vLpjgYh2d0xgOsom8dk=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 03:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Apr 11 03:48:34 2025 GMT Not After : Apr 18 03:48:34 2025 GMT Subject: CN=67f89112-b9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6b:48:c4:d5:b2:cb:e4:ed:a6:ac:89:e4:10: 84:b6:81:ae:ea:6d:ed:08:f9:ef:83:42:0f:e1:31: c8:21:23:d7:2f:a1:cc:18:f2:65:d8:13:0a:21:a6: ae:23:86:9c:78:d4:70:86:a4:d8:f4:7d:33:16:e3: 7a:eb:ec:8d:ea:5d:16:18:b0:14:12:2e:b0:38:79: 6f:35:f0:66:62:7e:0e:03:bf:30:7e:9a:42:56:30: 24:c4:52:56:4a:e9:94:8a:83:19:3b:d4:5e:c4:8e: 0a:98:85:25:bb:54:8b:72:2a:e5:49:88:90:f8:16: 86:1e:b2:0d:6e:27:71:d7:1f:fe:f2:73:38:12:40: 8a:07:5a:d9:89:31:4a:31:a0:de:61:a7:67:f2:f6: 54:a7:04:93:32:45:82:d6:c0:19:62:a8:a3:4b:2f: d9:05:10:f2:d4:ca:f3:6d:06:cb:c5:75:17:61:86: e9:91:bf:1a:34:cb:88:e1:17:5a:77:46:e8:78:ee: e0:7d:f2:09:b3:c1:59:d8:b8:24:46:a2:d8:af:d3: e0:77:04:95:09:d5:71:10:34:82:6c:64:a5:48:0c: b0:2b:dc:dd:5c:c6:bb:33:c1:85:52:45:cb:1b:3b: aa:b5:30:53:b7:8a:a5:cd:77:e9:2c:2b:4d:64:62: 6c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A0:49:F1:2F:27:8D:F7:74:A5:5E:03:9C:76:91:ED:77:65:FC:C0 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:18:08:14:a5:0e:ae:c3:fd:27:b5:12:f2:0c:b0:b9:9b:7c: 20:03:6d:b5:33:21:e3:2c:f1:20:25:7c:3e:b3:db:b0:ad:a6: c0:a5:41:1f:98:e9:c3:17:e5:34:d0:e2:74:c4:da:47:e8:dd: 48:48:e9:49:65:ad:40:8b:18:30:21:36:d1:5c:e7:18:2d:ee: 82:f0:60:21:b6:d8:9e:a4:04:98:39:ce:8c:91:bc:f2:02:56: ce:e9:dd:e4:c2:fb:e6:cd:8e:7a:e3:89:37:cc:5c:5d:56:cb: 38:da:f5:3b:07:70:ab:71:32:e2:11:92:e6:d0:ae:fe:3d:c9: 00:29:04:5a:cd:7d:3d:32:53:f7:1e:83:09:bb:1e:f3:87:35: 98:44:0e:99:ee:48:33:39:71:6d:38:9a:c2:53:d8:2b:86:e3: b5:a4:fd:15:ee:79:28:56:18:a4:5e:d6:1c:e7:b3:97:d3:07: 89:e7:e9:71:27:d4:47:68:62:9a:9b:74:db:dd:28:01:db:f7: 5d:a5:15:b4:f7:c8:4a:35:2a:82:da:ea:8c:b0:53:0a:ba:af: 6f:a3:a1:14:d8:b4:15:f4:93:82:fc:8d:99:65:7a:53:86:64: 7f:9e:e9:ce:a9:af:8e:89:c3:13:f7:a9:4e:40:72:93:11:ec: 91:17:f6:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwNDExMDM0ODM0WhcNMjUwNDE4MDM0ODM0WjAYMRYwFAYD VQQDEw02N2Y4OTExMi1iOWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmtIxNWyy+TtpqyJ5BCEtoGu6m3tCPnvg0IP4THIISPXL6HMGPJl2BMKIaau I4aceNRwhqTY9H0zFuN66+yN6l0WGLAUEi6wOHlvNfBmYn4OA78wfppCVjAkxFJW SumUioMZO9RexI4KmIUlu1SLcirlSYiQ+BaGHrINbidx1x/+8nM4EkCKB1rZiTFK MaDeYadn8vZUpwSTMkWC1sAZYqijSy/ZBRDy1MrzbQbLxXUXYYbpkb8aNMuI4Rda d0boeO7gffIJs8FZ2LgkRqLYr9PgdwSVCdVxEDSCbGSlSAywK9zdXMa7M8GFUkXL GzuqtTBTt4qlzXfpLCtNZGJs2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEugSfEv J433dKVeA5x2ke13ZfzAMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZGAgUpQ6uw/0ntRLyDLC5m3wgA221MyHjLPEgJXw+s9uwrabApUEf mOnDF+U00OJ0xNpH6N1ISOlJZa1AixgwITbRXOcYLe6C8GAhttiepASYOc6Mkbzy AlbO6d3kwvvmzY5644k3zFxdVss42vU7B3CrcTLiEZLm0K7+PckAKQRazX09MlP3 HoMJux7zhzWYRA6Z7kgzOXFtOJrCU9grhuO1pP0V7nkoVhikXtYc57OX0weJ5+lx J9RHaGKam3Tb3SgB2/ddpRW098hKNSqC2uqMsFMKuq9vo6EU2LQV9JOC/I2ZZXpT hmR/nunOqa+OicMT96lOQHKTEeyRF/Yu -----END CERTIFICATE-----Generated at Sun Apr 13 02:37:35 2025 by rpki-client