$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft File: QOlsrrGdQeDa1lL0Na0I566Anvk.mft (raw, json) Hash identifier: 3bxlYDDnHIAytFialw11uBxORv4sx+76StOKBjX1aM4= Subject key identifier: 7A:77:B6:24:39:E0:59:30:00:B9:89:F3:AF:BD:9C:FE:5B:04:AC:28 Authority key identifier: 40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 Certificate issuer: /CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft Manifest number: 0BFE Signing time: Fri 04 Apr 2025 18:48:57 +0000 Manifest this update: Fri 04 Apr 2025 18:48:56 +0000 Manifest next update: Fri 11 Apr 2025 18:48:56 +0000 Files and hashes: 1: QOlsrrGdQeDa1lL0Na0I566Anvk.crl (hash: AWgA20btUid0C9XbmxiIaiEvfEax78Y8g0qvEJitMtc=) 2: A55C1282ACA311EFBA427354C4F9AE02.roa (hash: OPUUUSp5hb82PWfJ3qDCUj2m9VDIT8DwMp28XglHALE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD000 Validity Not Before: Apr 4 18:48:56 2025 GMT Not After : Apr 11 18:48:56 2025 GMT Subject: CN=67f02999-f429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:79:bb:23:a1:ef:0b:44:8f:9a:50:4e:be:f8: 76:d4:32:77:47:8f:3d:93:fd:0e:75:2c:43:81:6d: a2:33:18:9c:32:1d:59:12:12:f5:bc:e2:99:69:cd: da:b7:38:b4:07:74:cf:2e:09:e5:25:08:74:5f:b4: bb:ce:7f:38:e4:38:f7:99:df:07:e8:c3:8b:eb:ee: 08:57:42:5b:fa:ad:f6:04:64:8e:e1:96:6a:3e:f7: 35:05:a4:4a:4e:2e:dd:04:76:13:9c:9c:60:f3:c1: c5:2f:bb:54:89:9a:49:21:22:a5:b3:b3:b7:6a:c7: 16:43:13:1f:84:ba:d9:6c:1b:3b:b4:72:1b:c9:66: fd:05:6c:fe:61:6d:db:16:42:65:d3:a5:1f:6b:67: 19:62:92:cc:dc:8e:26:82:21:a4:6a:f1:c8:29:d2: 2c:90:d5:2b:21:3a:9c:0c:6f:ba:1d:6f:4b:11:77: e4:cf:5e:b7:4d:97:8a:fe:01:b2:24:93:2f:03:df: 34:79:ac:a4:c9:c4:5b:c5:7e:ed:11:7d:97:af:4f: b8:75:6c:5c:15:b9:d7:66:df:ed:90:f5:b2:e9:3f: d5:4c:f8:73:ec:87:87:44:d5:74:26:cb:ff:d2:75: e6:51:ec:3c:8d:9d:a1:90:c7:f5:ab:63:fd:64:32: c7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:77:B6:24:39:E0:59:30:00:B9:89:F3:AF:BD:9C:FE:5B:04:AC:28 X509v3 Authority Key Identifier: keyid:40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:23:a7:05:79:54:45:28:31:0d:2e:a4:dc:73:c2:83:45:bd: 7e:f7:04:97:c5:14:ec:1b:c3:29:4a:d6:32:60:f1:49:71:40: c4:ea:81:15:c7:f0:d7:58:b7:97:f5:a3:8e:48:67:50:a8:bc: 6c:59:b3:c1:64:9c:75:2c:4b:6d:57:81:5d:6b:fd:ed:7b:13: 1b:17:68:d9:de:73:77:f8:14:7c:0a:a3:29:4b:76:76:f7:4d: 5e:69:9f:56:42:4b:9f:62:2b:49:5e:11:d6:58:3e:97:c6:b8: 1b:29:f4:9a:cc:48:75:24:2c:1a:e1:a6:84:06:59:c7:07:01: be:f7:93:56:db:4a:01:7a:61:1f:a8:7a:cb:6e:96:7e:c5:93: 5d:40:35:91:76:50:7e:70:45:38:91:04:e3:7b:e1:58:0f:b6: 5f:96:12:a8:7f:fe:46:86:43:6b:a8:5b:59:b8:8a:b1:4a:84: 98:54:0e:d6:a3:c9:5e:ad:cd:bc:c7:a3:35:af:0a:d3:98:d5: a2:26:60:a1:6f:3b:39:1e:18:36:ab:55:a0:d5:c5:ff:db:98: c3:04:07:8f:b7:21:44:da:2d:15:62:dc:ff:e3:2e:76:9d:34: b5:f6:fe:aa:5d:c0:82:a0:15:01:ba:4d:4d:31:86:b2:9b:8b: a7:4a:a0:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQwMDAxMTAvBgNVBAUTKDQwRTk2Q0FFQjE5RDQxRTBEQUQ2NTJGNDM1QUQwOEU3 QUU4MDlFRjkwHhcNMjUwNDA0MTg0ODU2WhcNMjUwNDExMTg0ODU2WjAYMRYwFAYD VQQDEw02N2YwMjk5OS1mNDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznm7I6HvC0SPmlBOvvh21DJ3R489k/0OdSxDgW2iMxicMh1ZEhL1vOKZac3a tzi0B3TPLgnlJQh0X7S7zn845Dj3md8H6MOL6+4IV0Jb+q32BGSO4ZZqPvc1BaRK Ti7dBHYTnJxg88HFL7tUiZpJISKls7O3ascWQxMfhLrZbBs7tHIbyWb9BWz+YW3b FkJl06Ufa2cZYpLM3I4mgiGkavHIKdIskNUrITqcDG+6HW9LEXfkz163TZeK/gGy JJMvA980eaykycRbxX7tEX2Xr0+4dWxcFbnXZt/tkPWy6T/VTPhz7IeHRNV0Jsv/ 0nXmUew8jZ2hkMf1q2P9ZDLHtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHp3tiQ5 4FkwALmJ86+9nP5bBKwoMB8GA1UdIwQYMBaAFEDpbK6xnUHg2tZS9DWtCOeugJ75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDAwMC9FNjYwMkVEMjBE QjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFlRGExbEwwTmEwSTU2NkFu dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPbHNyckdkUWVEYTFsTDBOYTBJNTY2QW52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDAwMC9FNjYwMkVEMjBEQjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFl RGExbEwwTmEwSTU2NkFudmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcI6cFeVRFKDENLqTcc8KDRb1+9wSXxRTsG8MpStYyYPFJcUDE6oEV x/DXWLeX9aOOSGdQqLxsWbPBZJx1LEttV4Fda/3texMbF2jZ3nN3+BR8CqMpS3Z2 901eaZ9WQkufYitJXhHWWD6XxrgbKfSazEh1JCwa4aaEBlnHBwG+95NW20oBemEf qHrLbpZ+xZNdQDWRdlB+cEU4kQTje+FYD7ZflhKof/5GhkNrqFtZuIqxSoSYVA7W o8lerc28x6M1rwrTmNWiJmChbzs5Hhg2q1Wg1cX/25jDBAePtyFE2i0VYtz/4y52 nTS19v6qXcCCoBUBuk1NMYaym4unSqAE -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:41 2025 by rpki-client