$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: qa0oi90AqYAF9dA1lqLXPsze4K7OuE8q9mAgGC9Riog= Subject key identifier: 08:62:FA:9C:0A:CB:CC:72:13:07:16:8D:48:8C:21:DB:8C:2F:D7:97 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01A4 Signing time: Thu 03 Apr 2025 02:42:41 +0000 Manifest this update: Thu 03 Apr 2025 02:42:40 +0000 Manifest next update: Thu 10 Apr 2025 02:42:40 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: /Zlsgpt9iOyinpiBHOXLRkjkneb0Dm7e+a/IU4osjZI=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7 Validity Not Before: Apr 3 02:42:40 2025 GMT Not After : Apr 10 02:42:40 2025 GMT Subject: CN=67edf5a0-32f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fb:c5:07:38:72:5a:45:5e:15:14:f2:50:98: 47:1b:6b:e8:57:88:d4:8e:8c:a1:e1:3b:4e:fd:f6: d2:73:4c:51:25:39:b8:06:f3:51:38:a1:50:09:c2: 76:8e:96:a1:ba:a5:1c:71:b1:ba:78:4c:2b:99:94: c6:24:74:ba:6b:41:e8:c4:21:89:23:69:a2:0a:50: c1:a0:d9:28:ae:35:ca:7b:28:ff:0c:8b:ff:6d:62: 8f:c4:6f:d8:de:76:4a:f2:da:46:56:cc:e8:cb:dc: 44:be:ba:c2:ae:76:6c:84:c7:9e:47:e9:a7:b8:17: f9:b3:1e:0d:43:33:0a:33:f4:42:54:97:aa:92:8a: f1:97:67:3f:c3:c2:d8:31:a7:5f:bd:bd:4d:3a:8e: 46:b8:80:c1:4b:d8:1a:a0:54:51:0a:ea:c0:6f:b3: 5c:87:6e:96:d2:2d:1f:2b:50:2e:ee:09:13:0a:14: df:3b:45:6e:e8:36:69:06:5b:5f:0c:83:0f:f2:bc: d6:a6:00:c0:08:f1:35:e8:18:c2:84:c7:de:80:0e: 48:e7:6e:ac:d6:05:db:82:9d:45:16:00:9f:9b:e4: 9e:d3:30:a1:f4:6b:2e:e8:ff:00:8a:a1:2c:60:7b: 3e:b1:18:1d:6d:90:cc:f3:f4:fd:af:71:5c:01:9d: 52:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:62:FA:9C:0A:CB:CC:72:13:07:16:8D:48:8C:21:DB:8C:2F:D7:97 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:69:c8:d7:7d:b6:ea:b0:0b:70:06:b5:f1:9d:92:64:79:1e: cd:85:a4:f9:1e:2a:59:8f:c8:24:90:b6:16:20:41:df:5a:e8: 3c:ef:46:16:c7:24:13:80:46:15:0c:e2:75:80:c1:67:91:e3: 47:db:ae:43:0d:66:61:ef:61:bc:3c:18:1b:ec:ec:1a:9b:6a: 39:3d:79:ab:53:4c:b3:49:34:73:5e:ef:30:24:b0:b0:3e:4e: 9e:f7:cb:e8:a0:4f:10:f1:3a:2f:2d:bb:9c:42:44:58:9d:d0: 14:50:f7:b3:fe:0e:6c:57:12:25:4f:0e:0c:1a:d4:36:05:93: 5e:fb:56:45:98:86:41:41:3d:8d:24:4a:d0:e3:e0:d0:e9:23: ba:6c:62:e3:7a:e8:d2:f2:16:fe:6a:2d:55:f0:31:bd:14:36: 39:28:ff:07:07:a8:a6:5a:36:26:b9:ea:fe:ea:c1:bd:bb:03: 4a:7f:29:36:dd:0e:16:fa:bb:75:a2:39:28:24:74:47:c4:40: d0:13:de:0a:80:42:57:0f:d8:3a:d1:9c:35:f5:9a:e7:0e:2f: 44:62:c0:5f:1e:28:e0:16:0d:15:72:a6:3b:5e:4b:74:d2:25: 60:4e:bb:8c:18:fe:9a:ab:74:ad:21:18:0c:44:15:fa:a9:9a: d1:3c:c5:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwNDAzMDI0MjQwWhcNMjUwNDEwMDI0MjQwWjAYMRYwFAYD VQQDEw02N2VkZjVhMC0zMmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPvFBzhyWkVeFRTyUJhHG2voV4jUjoyh4TtO/fbSc0xRJTm4BvNROKFQCcJ2 jpahuqUccbG6eEwrmZTGJHS6a0HoxCGJI2miClDBoNkorjXKeyj/DIv/bWKPxG/Y 3nZK8tpGVszoy9xEvrrCrnZshMeeR+mnuBf5sx4NQzMKM/RCVJeqkorxl2c/w8LY Madfvb1NOo5GuIDBS9gaoFRRCurAb7Nch26W0i0fK1Au7gkTChTfO0Vu6DZpBltf DIMP8rzWpgDACPE16BjChMfegA5I526s1gXbgp1FFgCfm+Se0zCh9Gsu6P8AiqEs YHs+sRgdbZDM8/T9r3FcAZ1S9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhi+pwK y8xyEwcWjUiMIduML9eXMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3acjXfbbqsAtwBrXxnZJkeR7NhaT5HipZj8gkkLYWIEHfWug870YW xyQTgEYVDOJ1gMFnkeNH265DDWZh72G8PBgb7Owam2o5PXmrU0yzSTRzXu8wJLCw Pk6e98vooE8Q8TovLbucQkRYndAUUPez/g5sVxIlTw4MGtQ2BZNe+1ZFmIZBQT2N JErQ4+DQ6SO6bGLjeujS8hb+ai1V8DG9FDY5KP8HB6imWjYmuer+6sG9uwNKfyk2 3Q4W+rt1ojkoJHRHxEDQE94KgEJXD9g60Zw19ZrnDi9EYsBfHijgFg0VcqY7Xkt0 0iVgTruMGP6aq3StIRgMRBX6qZrRPMVM -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:26 2025 by rpki-client