$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: mKX7+WxVheH+gwXgaBwO5iuIZntVy9vyn4iyaB2Gaz0= Subject key identifier: 76:37:F5:5F:28:9D:C9:23:F8:6D:DE:90:58:0E:D4:2C:3F:29:A4:D5 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 0135 Signing time: Sat 29 Mar 2025 03:54:13 +0000 Manifest this update: Sat 29 Mar 2025 03:54:13 +0000 Manifest next update: Sat 05 Apr 2025 03:54:13 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: vBb/5aXFL2pU8UJWFmrmllCbnrorlGdyQ8u+1P9jPCU=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: KN097sj8tp2qdOXl0WodsTPOwpV2GR7rS/3ve5t47xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9 Validity Not Before: Mar 29 03:54:13 2025 GMT Not After : Apr 5 03:54:13 2025 GMT Subject: CN=67e76ee5-e511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:f1:b0:b0:f3:53:8e:b7:93:06:c8:62:49: b7:53:7d:48:44:cd:da:41:39:5c:5c:1a:49:19:db: 8e:93:a8:8f:ef:6b:e8:3a:33:c3:a0:d4:26:94:e4: 70:c3:d6:7f:56:a7:54:17:f1:6d:10:78:06:13:f9: 9b:0c:76:99:3d:44:88:16:dc:85:d1:25:48:7b:84: 9f:fb:ba:4f:5f:54:2a:92:6b:96:0c:54:a9:9c:ef: ba:ab:c6:bd:23:39:af:79:3c:93:fb:95:ce:42:1d: f4:3b:d1:62:fd:89:3b:81:cb:2f:0e:c5:c5:59:48: 93:23:6b:d3:fc:85:7d:92:2c:8b:86:44:3d:09:1d: b6:fc:59:9e:43:5f:43:e9:d8:6d:de:da:a3:bd:b0: 26:0a:ea:f1:2d:49:c2:82:bf:fb:1b:24:a1:49:fa: 40:d6:d6:eb:a7:9d:f0:8c:1a:43:07:68:84:d1:b5: f6:eb:81:f9:5f:90:8f:fd:f2:a0:dd:49:0c:46:a7: 10:9f:b0:cb:19:58:13:7f:fe:5e:48:6b:00:52:a9: 80:ce:75:3b:d4:b0:f3:57:f2:01:a0:2e:bd:0b:e2: c0:20:10:bb:2a:48:f3:19:54:a3:e0:6d:c4:ed:43: 03:8e:14:b4:a9:db:62:d6:e0:de:88:4a:c7:09:1e: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:37:F5:5F:28:9D:C9:23:F8:6D:DE:90:58:0E:D4:2C:3F:29:A4:D5 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:c0:96:c6:2c:da:93:5c:79:b7:22:85:19:bf:98:00:29:27: 34:92:95:f5:8c:ce:3d:3b:e1:56:5c:bb:c7:df:e5:36:7e:78: 87:9e:c4:c6:b8:78:2f:ac:9d:10:78:e4:e3:be:7d:f5:fb:e8: 25:2e:52:33:9e:70:e8:57:55:ea:87:a6:bd:03:e1:c9:8b:7b: 85:29:67:9f:2a:50:28:e4:9f:58:5c:a4:1d:aa:78:02:ab:cc: 8e:a3:4c:53:0b:d4:05:d3:83:86:ae:42:60:29:71:da:46:cb: 81:1d:d0:39:00:47:2f:dd:8b:44:af:83:28:b9:0e:d7:04:9e: ec:b1:7f:2d:7f:9c:86:f8:2d:d1:ff:e9:34:81:78:5d:d0:a2: 7e:3c:47:cd:93:36:45:ef:19:fb:82:16:00:b7:e7:72:b6:23: ca:8d:45:2c:a0:2f:ad:b2:0a:80:35:d5:99:1a:c9:c9:ff:84: c5:f0:1b:11:0f:23:f4:90:e4:b9:09:25:71:cb:73:c6:9d:6c: 6c:b7:d0:1b:ac:51:db:a5:f0:c1:3b:86:e4:14:6f:39:2b:d7: ef:3f:c7:41:bc:36:1a:76:31:df:bf:14:59:7b:df:8e:c3:8e: c8:f9:70:1e:bb:3c:14:16:f7:98:1f:6b:15:9c:6f:96:f5:a4: 30:83:d8:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjUwMzI5MDM1NDEzWhcNMjUwNDA1MDM1NDEzWjAYMRYwFAYD VQQDEw02N2U3NmVlNS1lNTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzArxsLDzU463kwbIYkm3U31IRM3aQTlcXBpJGduOk6iP72voOjPDoNQmlORw w9Z/VqdUF/FtEHgGE/mbDHaZPUSIFtyF0SVIe4Sf+7pPX1QqkmuWDFSpnO+6q8a9 IzmveTyT+5XOQh30O9Fi/Yk7gcsvDsXFWUiTI2vT/IV9kiyLhkQ9CR22/FmeQ19D 6dht3tqjvbAmCurxLUnCgr/7GyShSfpA1tbrp53wjBpDB2iE0bX264H5X5CP/fKg 3UkMRqcQn7DLGVgTf/5eSGsAUqmAznU71LDzV/IBoC69C+LAIBC7KkjzGVSj4G3E 7UMDjhS0qdti1uDeiErHCR5ogwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHY39V8o nckj+G3ekFgO1Cw/KaTVMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcwJbGLNqTXHm3IoUZv5gAKSc0kpX1jM49O+FWXLvH3+U2fniHnsTG uHgvrJ0QeOTjvn31++glLlIznnDoV1Xqh6a9A+HJi3uFKWefKlAo5J9YXKQdqngC q8yOo0xTC9QF04OGrkJgKXHaRsuBHdA5AEcv3YtEr4MouQ7XBJ7ssX8tf5yG+C3R /+k0gXhd0KJ+PEfNkzZF7xn7ghYAt+dytiPKjUUsoC+tsgqANdWZGsnJ/4TF8BsR DyP0kOS5CSVxy3PGnWxst9AbrFHbpfDBO4bkFG85K9fvP8dBvDYadjHfvxRZe9+O w47I+XAeuzwUFveYH2sVnG+W9aQwg9jf -----END CERTIFICATE-----Generated at Fri Apr 4 21:51:56 2025 by rpki-client