$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: cZgN2Fh908GpUwF/If1Aw5CwO8hxz1CZoUXUTK0/7Dk= Subject key identifier: 26:81:B1:EE:EF:3F:A5:53:13:2E:B1:01:74:3E:B1:04:70:21:FE:C1 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 0400 Signing time: Sat 29 Mar 2025 00:45:15 +0000 Manifest this update: Sat 29 Mar 2025 00:45:15 +0000 Manifest next update: Sat 05 Apr 2025 00:45:15 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: Y/afm6UT3ekMc1at218O8k4cZJ6EtZEiR8QyqIY0yo8=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F Validity Not Before: Mar 29 00:45:15 2025 GMT Not After : Apr 5 00:45:15 2025 GMT Subject: CN=67e7429b-57b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:a9:85:42:12:8d:b0:f5:a9:65:f2:75:26: 9f:aa:d8:0c:ab:f8:b6:95:08:bf:0c:54:df:01:79: e6:94:32:59:31:ba:98:cb:3e:75:fd:f9:16:ed:c4: 6c:ea:c0:73:57:4a:73:3f:97:92:0d:48:15:d0:01: 86:b2:a4:7e:38:7c:1c:66:f6:6c:4c:f7:0c:42:3c: 81:11:5d:80:dc:f7:8d:5e:bc:6a:66:84:1b:ac:dd: 82:18:d9:4a:fc:16:6f:8e:66:38:0d:f1:7b:4e:53: 93:9b:b1:4e:77:87:4b:cb:77:eb:c5:d6:95:11:9e: c6:53:2b:15:a4:ed:91:27:86:7b:ed:b4:9f:a3:47: b6:7a:96:34:ed:65:f7:1d:b7:98:7d:71:0a:80:b6: e0:38:ce:8b:ef:fe:bb:19:30:29:fc:50:5a:ae:8d: 3a:7a:e8:9f:ed:a4:5c:a8:e4:a2:55:22:a1:09:8c: 1c:c3:76:de:33:83:40:b0:42:ae:d7:08:54:5e:19: 9d:38:1b:c4:4f:33:2e:78:0d:2a:45:93:84:7d:a9: ea:8c:4f:79:1a:39:8a:ee:cf:d7:3c:69:27:13:58: d2:85:80:42:87:58:da:92:9a:a6:1d:1d:ac:2f:a9: 91:d1:ac:32:ab:8f:12:50:59:21:ef:13:90:68:e1: f9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:81:B1:EE:EF:3F:A5:53:13:2E:B1:01:74:3E:B1:04:70:21:FE:C1 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:da:43:ac:d6:f0:81:53:3d:9b:63:02:f6:89:7f:bb:cf:30: 6a:5b:ac:09:32:f4:f8:22:0f:e2:b6:b0:52:ed:1a:23:43:82: 97:74:ff:4f:00:2c:92:02:4d:2c:c5:a9:d3:a8:58:0f:95:38: 5f:bb:11:bb:6d:c4:e4:f2:ae:b6:53:21:7a:fc:ee:7a:19:59: 44:28:1e:1d:c5:ae:1b:82:fe:78:1b:f8:d1:29:23:b5:91:8c: 41:23:0b:4c:61:08:22:c7:da:1a:d5:06:96:7f:1d:e3:c3:1f: 85:12:c6:d2:86:0c:7f:f8:6a:ce:24:d0:86:4b:1f:fe:2b:05: b1:90:ad:7c:14:75:b5:de:f1:61:39:7f:7d:64:8b:c4:ed:54: 61:1e:81:c1:d9:bb:8a:bf:a1:b9:8a:6b:c8:79:4d:4e:b9:06: 43:3e:eb:f7:8a:20:4f:0a:73:d8:51:f0:12:d3:9a:bb:2d:b0: fb:4c:9a:ba:90:1d:6f:a8:d8:69:10:ba:9f:64:45:07:a3:e9: 45:13:05:14:96:28:0b:cb:ac:7f:48:7e:bd:89:7f:17:14:a4: d2:15:21:67:a3:c5:ea:19:27:60:c4:b0:96:bb:d0:3a:aa:bb: 69:69:6e:7b:f3:1c:f9:ed:ff:c6:9c:a7:94:f5:8a:45:07:50: 6e:0a:a8:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUwMzI5MDA0NTE1WhcNMjUwNDA1MDA0NTE1WjAYMRYwFAYD VQQDEw02N2U3NDI5Yi01N2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCmphUISjbD1qWXydSafqtgMq/i2lQi/DFTfAXnmlDJZMbqYyz51/fkW7cRs 6sBzV0pzP5eSDUgV0AGGsqR+OHwcZvZsTPcMQjyBEV2A3PeNXrxqZoQbrN2CGNlK /BZvjmY4DfF7TlOTm7FOd4dLy3frxdaVEZ7GUysVpO2RJ4Z77bSfo0e2epY07WX3 HbeYfXEKgLbgOM6L7/67GTAp/FBaro06euif7aRcqOSiVSKhCYwcw3beM4NAsEKu 1whUXhmdOBvETzMueA0qRZOEfanqjE95GjmK7s/XPGknE1jShYBCh1jakpqmHR2s L6mR0awyq48SUFkh7xOQaOH5FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaBse7v P6VTEy6xAXQ+sQRwIf7BMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA02kOs1vCBUz2bYwL2iX+7zzBqW6wJMvT4Ig/itrBS7RojQ4KXdP9P ACySAk0sxanTqFgPlThfuxG7bcTk8q62UyF6/O56GVlEKB4dxa4bgv54G/jRKSO1 kYxBIwtMYQgix9oa1QaWfx3jwx+FEsbShgx/+GrOJNCGSx/+KwWxkK18FHW13vFh OX99ZIvE7VRhHoHB2buKv6G5imvIeU1OuQZDPuv3iiBPCnPYUfAS05q7LbD7TJq6 kB1vqNhpELqfZEUHo+lFEwUUligLy6x/SH69iX8XFKTSFSFno8XqGSdgxLCWu9A6 qrtpaW578xz57f/GnKeU9YpFB1BuCqjx -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:25 2025 by rpki-client