$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft File: 3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft (raw, json) Hash identifier: UaOrfNsk5C9bk79DeRjiXX/nCC1RtwkkMy6vWWauoMY= Subject key identifier: F8:4E:D5:3D:32:37:D1:C8:DD:3F:99:42:87:DB:AE:44:9A:09:1B:89 Authority key identifier: DE:A2:D0:26:0C:17:09:51:67:E1:E3:BC:D6:59:89:FE:76:47:CB:6A Certificate issuer: /CN=A91AE6B9/serialNumber=DEA2D0260C17095167E1E3BCD65989FE7647CB6A Certificate serial: 0C35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft Manifest number: 0C2E Signing time: Tue 08 Apr 2025 18:22:21 +0000 Manifest this update: Tue 08 Apr 2025 18:22:21 +0000 Manifest next update: Tue 15 Apr 2025 18:22:21 +0000 Files and hashes: 1: 3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl (hash: ML8m5kAXX8PD4q5C6qaQYdRASdyhfAHlA6c0ujvpCGw=) 2: D91746DE044F11EA8C37D012C4F9AE02.roa (hash: alyiVZNnvo5j+FeNDvZT50h35M8ryhRQyKsBnyLFnkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 18:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE6B9 Validity Not Before: Apr 8 18:22:21 2025 GMT Not After : Apr 15 18:22:21 2025 GMT Subject: CN=67f5695d-3ba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5f:6e:47:26:95:fb:ce:5e:8a:41:5f:b5:9b: 14:de:5c:cb:1b:fc:37:95:02:d1:24:3e:bf:a0:8b: c8:86:0f:ee:07:c8:67:14:55:1b:2c:4f:ec:e7:33: cc:0a:54:01:f6:50:98:51:55:15:be:87:0c:b2:d1: 74:a3:9c:c1:ba:01:2d:18:ac:05:94:8a:f9:f8:8b: 22:b7:6c:21:60:ea:2f:03:cd:f0:ba:b9:20:ea:9c: e1:37:14:12:92:1a:7d:34:d4:b3:fd:7c:e4:31:08: 4e:9e:e8:cd:6d:9b:07:71:b9:71:d7:f3:f1:e9:fe: 36:44:69:51:37:7d:97:45:ca:49:57:44:e9:36:b9: 50:94:8a:bb:27:e2:9d:aa:3e:33:e9:2e:c3:c7:5b: 5d:d7:46:13:f3:23:88:1e:bf:3a:80:2e:81:2b:c3: 7c:ba:ee:c0:98:55:bb:8b:25:89:67:8f:67:1c:9a: 17:2d:1d:ff:64:ad:2b:86:f3:a8:2b:6d:a0:e8:34: 38:50:6a:10:d7:9b:ee:b2:62:c2:76:f1:95:bb:60: af:81:e5:ce:76:b6:a0:ad:a6:a0:51:25:32:31:37: 05:27:e2:89:ef:c6:fb:75:7d:f4:8f:19:36:7d:c5: 35:ce:57:33:3e:dc:85:a0:50:32:fb:43:45:b4:67: 5e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4E:D5:3D:32:37:D1:C8:DD:3F:99:42:87:DB:AE:44:9A:09:1B:89 X509v3 Authority Key Identifier: keyid:DE:A2:D0:26:0C:17:09:51:67:E1:E3:BC:D6:59:89:FE:76:47:CB:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:46:12:35:06:1b:ca:ac:b7:9f:0e:8f:ac:dd:2b:ee:99:c2: 74:c6:d5:2a:2a:14:56:6f:7c:eb:db:31:e1:b8:4b:a6:22:7d: 6d:b3:9f:1e:c3:d7:27:ff:95:cc:04:67:2b:5c:ee:02:1b:1d: e1:65:2a:89:63:48:d6:88:39:a6:63:b4:7f:ad:8b:8a:0a:8d: 49:63:37:da:37:a2:23:bc:dc:49:4e:ab:11:0a:eb:6e:39:2a: 07:e3:75:cf:d5:28:f5:0e:1f:25:07:81:4e:58:72:b9:51:7c: 95:8f:97:90:d0:05:f8:88:bd:78:75:31:ac:e6:f3:94:7c:7b: d8:8f:7e:b7:fd:30:94:9b:e6:ef:b6:1d:48:72:b0:15:b1:e5: af:be:22:d5:60:b6:c3:74:89:80:f0:a4:c5:c0:05:86:be:00: ac:e1:ee:65:74:65:18:19:0d:a9:82:ce:e8:3d:53:57:3c:2f: 99:dc:15:7b:3f:36:8e:2b:ba:9d:a1:fa:71:46:bf:57:9d:9f: 04:3a:bf:80:87:20:8b:2f:ed:66:38:dd:41:84:a5:2a:57:b4: a1:84:66:4b:05:63:9d:33:f2:e9:50:85:6b:ee:9d:0a:8a:2b: bf:2a:63:37:99:b3:c8:aa:98:26:02:14:33:b2:38:f5:e4:90: 1e:f5:a9:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2QjkxMTAvBgNVBAUTKERFQTJEMDI2MEMxNzA5NTE2N0UxRTNCQ0Q2NTk4OUZF NzY0N0NCNkEwHhcNMjUwNDA4MTgyMjIxWhcNMjUwNDE1MTgyMjIxWjAYMRYwFAYD VQQDEw02N2Y1Njk1ZC0zYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2l9uRyaV+85eikFftZsU3lzLG/w3lQLRJD6/oIvIhg/uB8hnFFUbLE/s5zPM ClQB9lCYUVUVvocMstF0o5zBugEtGKwFlIr5+Isit2whYOovA83wurkg6pzhNxQS khp9NNSz/XzkMQhOnujNbZsHcblx1/Px6f42RGlRN32XRcpJV0TpNrlQlIq7J+Kd qj4z6S7Dx1td10YT8yOIHr86gC6BK8N8uu7AmFW7iyWJZ49nHJoXLR3/ZK0rhvOo K22g6DQ4UGoQ15vusmLCdvGVu2CvgeXOdragraagUSUyMTcFJ+KJ78b7dX30jxk2 fcU1zlczPtyFoFAy+0NFtGdeaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhO1T0y N9HI3T+ZQofbrkSaCRuJMB8GA1UdIwQYMBaAFN6i0CYMFwlRZ+HjvNZZif52R8tq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTZCOS81MjZFMTZBNDA0 NEUxMUVBODQ0MkQ0MEZDNEY5QUUwMi8zcUxRSmd3WENWRm40ZU84MWxtSl9uWkh5 Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxTFFKZ3dYQ1ZGbjRlTzgxbG1KX25aSHkyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTZCOS81MjZFMTZBNDA0NEUxMUVBODQ0MkQ0MEZDNEY5QUUwMi8zcUxRSmd3WENW Rm40ZU84MWxtSl9uWkh5Mm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsRhI1BhvKrLefDo+s3SvumcJ0xtUqKhRWb3zr2zHhuEumIn1ts58e w9cn/5XMBGcrXO4CGx3hZSqJY0jWiDmmY7R/rYuKCo1JYzfaN6IjvNxJTqsRCutu OSoH43XP1Sj1Dh8lB4FOWHK5UXyVj5eQ0AX4iL14dTGs5vOUfHvYj363/TCUm+bv th1IcrAVseWvviLVYLbDdImA8KTFwAWGvgCs4e5ldGUYGQ2pgs7oPVNXPC+Z3BV7 PzaOK7qdofpxRr9XnZ8EOr+AhyCLL+1mON1BhKUqV7ShhGZLBWOdM/LpUIVr7p0K iiu/KmM3mbPIqpgmAhQzsjj15JAe9am+ -----END CERTIFICATE-----Generated at Wed Apr 9 03:28:50 2025 by rpki-client