$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft File: Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft (raw, json) Hash identifier: kNQvTkvKpTAsCnnltT1JxagJMa1KFkpuV1POBUDvT6Q= Subject key identifier: 2D:FC:CE:BF:37:79:80:02:C2:FC:4E:04:37:6C:3D:96:B0:F3:D4:57 Authority key identifier: 43:E4:A8:1D:D5:94:67:30:51:E8:C7:E0:B1:AD:BD:31:C4:83:B6:53 Certificate issuer: /CN=A91DF1D9/serialNumber=43E4A81DD594673051E8C7E0B1ADBD31C483B653 Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-SoHdWUZzBR6Mfgsa29McSDtlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft Manifest number: 04A0 Signing time: Wed 02 Apr 2025 23:56:52 +0000 Manifest this update: Wed 02 Apr 2025 23:56:52 +0000 Manifest next update: Wed 09 Apr 2025 23:56:52 +0000 Files and hashes: 1: Q-SoHdWUZzBR6Mfgsa29McSDtlM.crl (hash: Vj+KYQK5bryuA0lo4hidEeVXfdcQ0DV+69bjKbr+9Vk=) 2: 083000C22A6F11EC9AD38840C4F9AE02.roa (hash: vTlreixIyByEZB7kEISmHGr1RyT4p8lVkdEoUi0bgqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.crl rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-SoHdWUZzBR6Mfgsa29McSDtlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF1D9 Validity Not Before: Apr 2 23:56:52 2025 GMT Not After : Apr 9 23:56:52 2025 GMT Subject: CN=67edcec4-af20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:37:35:49:6a:69:96:4d:79:c1:b3:b2:97:59: 8c:39:d3:48:cd:3b:39:ed:32:c5:91:9f:e9:a2:a7: 79:96:69:92:f2:9f:35:d0:cb:ea:bb:b8:03:4c:ae: 14:ce:f7:89:3c:7d:f0:d6:4d:76:10:3e:9d:01:b1: b7:e7:8d:cf:54:83:3f:1b:7c:e6:d4:f6:a7:20:1c: 59:dd:3e:8e:d7:3e:34:f9:d6:e1:0a:72:0a:5d:c9: af:4b:cc:4d:0c:d3:7e:c3:bf:c1:39:7e:c8:6b:f7: 12:f0:5b:2e:e1:2b:4b:19:17:15:88:69:0a:ef:8d: bc:cf:f1:1d:9c:2c:88:8a:ba:e0:4b:a9:ce:d1:af: 94:45:70:43:ca:e8:e8:a1:ea:c6:f4:13:73:e2:c0: 6b:ad:37:09:c6:45:76:21:04:50:ff:21:7f:7f:da: 8f:f5:4e:be:63:38:d1:ee:06:24:54:96:d4:1e:68: ba:77:7d:1c:2c:13:13:70:f9:c9:9a:7d:e9:b4:a1: 13:a1:ab:5c:96:42:39:b1:17:e1:5e:3e:88:21:ce: 1e:b1:13:16:96:92:45:89:29:98:cb:78:6e:41:95: 1c:58:cf:ca:87:5b:ec:c4:04:43:9e:f5:60:b2:aa: 1d:bc:e6:17:17:d4:56:6d:55:51:70:ff:de:f0:c8: e0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:FC:CE:BF:37:79:80:02:C2:FC:4E:04:37:6C:3D:96:B0:F3:D4:57 X509v3 Authority Key Identifier: keyid:43:E4:A8:1D:D5:94:67:30:51:E8:C7:E0:B1:AD:BD:31:C4:83:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-SoHdWUZzBR6Mfgsa29McSDtlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:57:d7:43:02:4e:c2:fc:45:02:38:66:bd:b7:14:41:b7:11: b2:14:81:17:57:de:f3:fb:7b:af:99:bf:f1:41:c2:7a:f6:6f: 04:3a:7f:7e:91:ec:7b:97:cd:db:88:5d:75:a8:2a:43:bf:cf: 6c:f1:31:05:cb:33:bd:5a:fd:f9:ce:5b:30:f4:9b:39:10:74: e8:2f:eb:b3:0e:d2:56:5c:f9:c7:d0:ad:ad:6b:04:c8:83:54: b6:14:96:1d:39:0b:cd:58:7a:74:7a:a8:30:fe:33:b4:35:91: e8:74:7d:b3:75:dd:ab:bd:d1:94:4d:da:16:80:b2:80:be:3a: 71:b2:92:59:76:41:08:90:ae:e3:83:fc:78:6a:76:56:fb:18: f1:46:4c:73:42:79:d9:77:62:bf:96:c2:87:83:68:9f:14:b8: 60:fd:02:b7:f1:9a:5d:fa:cc:68:c4:5a:86:69:12:b7:6b:9d: 88:9a:23:a7:61:65:84:bd:3a:f9:e3:26:70:6b:0b:09:75:ed: 1b:cf:25:3c:7b:67:b6:29:84:bc:8f:e7:61:9c:14:35:c1:9b: 8d:a4:91:6e:75:24:78:b4:4c:0e:d2:8d:46:25:53:0e:3d:a2: 0f:a1:19:59:21:34:c3:6e:0d:3f:86:14:db:16:a7:4d:d3:9e: 1f:69:45:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYxRDkxMTAvBgNVBAUTKDQzRTRBODFERDU5NDY3MzA1MUU4QzdFMEIxQURCRDMx QzQ4M0I2NTMwHhcNMjUwNDAyMjM1NjUyWhcNMjUwNDA5MjM1NjUyWjAYMRYwFAYD VQQDEw02N2VkY2VjNC1hZjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDc1SWpplk15wbOyl1mMOdNIzTs57TLFkZ/poqd5lmmS8p810Mvqu7gDTK4U zveJPH3w1k12ED6dAbG3543PVIM/G3zm1PanIBxZ3T6O1z40+dbhCnIKXcmvS8xN DNN+w7/BOX7Ia/cS8Fsu4StLGRcViGkK7428z/EdnCyIirrgS6nO0a+URXBDyujo oerG9BNz4sBrrTcJxkV2IQRQ/yF/f9qP9U6+YzjR7gYkVJbUHmi6d30cLBMTcPnJ mn3ptKEToatclkI5sRfhXj6IIc4esRMWlpJFiSmYy3huQZUcWM/Kh1vsxARDnvVg sqodvOYXF9RWbVVRcP/e8MjgUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC38zr83 eYACwvxOBDdsPZaw89RXMB8GA1UdIwQYMBaAFEPkqB3VlGcwUejH4LGtvTHEg7ZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjFEOS9FMzdGMTM4MjJB NkMxMUVDOTVFQjI2M0ZDNEY5QUUwMi9RLVNvSGRXVVp6QlI2TWZnc2EyOU1jU0R0 bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtU29IZFdVWnpCUjZNZmdzYTI5TWNTRHRsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjFEOS9FMzdGMTM4MjJBNkMxMUVDOTVFQjI2M0ZDNEY5QUUwMi9RLVNvSGRXVVp6 QlI2TWZnc2EyOU1jU0R0bE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtV9dDAk7C/EUCOGa9txRBtxGyFIEXV97z+3uvmb/xQcJ69m8EOn9+ kex7l83biF11qCpDv89s8TEFyzO9Wv35zlsw9Js5EHToL+uzDtJWXPnH0K2tawTI g1S2FJYdOQvNWHp0eqgw/jO0NZHodH2zdd2rvdGUTdoWgLKAvjpxspJZdkEIkK7j g/x4anZW+xjxRkxzQnnZd2K/lsKHg2ifFLhg/QK38Zpd+sxoxFqGaRK3a52ImiOn YWWEvTr54yZwawsJde0bzyU8e2e2KYS8j+dhnBQ1wZuNpJFudSR4tEwO0o1GJVMO PaIPoRlZITTDbg0/hhTbFqdN054faUWj -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:09 2025 by rpki-client