$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft File: QRfXbD7AS2IRM0hQpc1uowVTUFw.mft (raw, json) Hash identifier: 8FUr5PalOsi3RhsO5E6he3B1+R0qXTbJFcX2fHOY08U= Subject key identifier: 29:33:6F:97:AE:3E:C9:AC:0B:19:E8:DC:DD:62:68:06:56:AC:76:88 Authority key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C Certificate issuer: /CN=A91ED6B5/serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft Manifest number: 0426 Signing time: Thu 03 Apr 2025 00:21:49 +0000 Manifest this update: Thu 03 Apr 2025 00:21:49 +0000 Manifest next update: Thu 10 Apr 2025 00:21:49 +0000 Files and hashes: 1: QRfXbD7AS2IRM0hQpc1uowVTUFw.crl (hash: 8la8T1/fapR1idyqxXM2AlA49OoIEbJ95KK7n8F+GSQ=) 2: 06A899FECCF311EC86719729C4F9AE02.roa (hash: aXuFAPx3sTT3XGxZkToSNXJ/vwo2rNiJs7Ikunvy7v4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED6B5 Validity Not Before: Apr 3 00:21:49 2025 GMT Not After : Apr 10 00:21:49 2025 GMT Subject: CN=67edd49d-50f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7b:49:71:b2:90:e5:97:13:4d:75:77:d0:6d: bc:3e:0a:a8:52:ae:37:f0:c2:18:0f:6a:55:b3:ea: 2e:de:88:98:02:86:47:c8:e8:61:31:aa:3a:b2:93: f8:9e:fe:2a:89:f0:04:5b:2d:2d:bd:30:c0:b9:7c: 2e:97:0c:35:55:84:90:1c:c3:49:91:39:7b:b7:4f: b8:04:94:7b:90:88:c3:2b:4e:c1:8e:10:6e:5f:9b: 07:50:52:54:ae:d3:e1:a1:5e:70:4f:c9:75:bf:f5: 6a:19:ea:74:96:0c:45:f8:79:fe:2b:61:d1:49:e7: 9b:2f:ec:af:f7:e7:3f:60:8e:34:c7:e0:fe:c2:f9: be:de:23:db:c2:f1:21:4a:6d:33:be:77:6d:cb:fb: ad:50:13:06:02:80:78:93:db:2b:10:a3:73:a9:a7: 7b:e2:9f:8f:b5:36:ef:f0:2e:5c:86:7f:ed:8c:17: 31:01:28:2e:bd:ad:be:8d:39:83:6a:b6:9f:50:e6: fb:0a:cb:4d:63:9f:4e:d8:17:e5:54:e7:0c:74:94: 18:a5:f6:96:ff:2c:db:e4:38:0b:6c:15:d8:5e:c7: f0:9a:d0:46:fe:75:24:35:d5:31:50:bd:de:4c:cc: 05:0a:59:59:78:30:97:10:2f:f4:4b:3d:32:7b:ee: fa:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:33:6F:97:AE:3E:C9:AC:0B:19:E8:DC:DD:62:68:06:56:AC:76:88 X509v3 Authority Key Identifier: keyid:41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b5:3a:fe:31:5b:44:89:df:6f:0c:16:da:af:67:8d:d8:6b: de:32:82:7e:1f:40:16:3e:88:2f:c3:22:bf:b7:3b:9e:ec:3f: 3d:9d:b1:fc:8d:93:b0:cf:e1:c9:cd:8e:aa:d6:0c:e8:b0:62: 69:61:51:8f:a4:9c:68:9a:b0:fe:b5:04:8d:e3:6c:3c:da:dc: 69:8c:20:0c:4c:20:b3:8e:3b:cc:97:a2:0c:0a:99:68:8a:a2: 55:96:ad:5e:6a:85:1b:99:33:af:34:6a:99:91:a9:9e:e6:93: 9e:14:0b:b4:b9:8a:16:57:5a:81:2b:1c:a4:1e:74:59:a2:06: fa:b6:a0:bd:38:9e:ef:62:5e:d4:eb:51:8b:08:de:d0:49:65: 02:f3:7f:55:b3:49:1b:e9:19:58:88:ee:e5:31:c7:83:2c:f9: 8b:14:0f:f9:19:aa:7d:63:5b:0c:d1:fa:08:d2:fc:9f:a1:6d: 45:10:94:3c:08:ed:c7:5f:33:30:0f:7c:8c:4d:32:79:5b:f0: ff:31:33:c0:5a:dd:5e:3e:ba:7d:c4:db:f3:55:d5:0a:67:72: 5f:3d:4b:28:13:e4:01:74:c1:81:aa:07:db:b7:48:f1:2e:26: 4e:0b:0d:7b:03:f0:ca:14:6a:d0:83:5d:22:ed:51:7d:35:72: 09:c3:36:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ2QjUxMTAvBgNVBAUTKDQxMTdENzZDM0VDMDRCNjIxMTMzNDg1MEE1Q0Q2RUEz MDU1MzUwNUMwHhcNMjUwNDAzMDAyMTQ5WhcNMjUwNDEwMDAyMTQ5WjAYMRYwFAYD VQQDEw02N2VkZDQ5ZC01MGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3tJcbKQ5ZcTTXV30G28PgqoUq438MIYD2pVs+ou3oiYAoZHyOhhMao6spP4 nv4qifAEWy0tvTDAuXwulww1VYSQHMNJkTl7t0+4BJR7kIjDK07BjhBuX5sHUFJU rtPhoV5wT8l1v/VqGep0lgxF+Hn+K2HRSeebL+yv9+c/YI40x+D+wvm+3iPbwvEh Sm0zvndty/utUBMGAoB4k9srEKNzqad74p+PtTbv8C5chn/tjBcxASguva2+jTmD arafUOb7CstNY59O2BflVOcMdJQYpfaW/yzb5DgLbBXYXsfwmtBG/nUkNdUxUL3e TMwFCllZeDCXEC/0Sz0ye+76JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkzb5eu PsmsCxno3N1iaAZWrHaIMB8GA1UdIwQYMBaAFEEX12w+wEtiETNIUKXNbqMFU1Bc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDZCNS9FRjQ2OUJGQzU5 NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMySVJNMGhRcGMxdW93VlRV RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSZlhiRDdBUzJJUk0waFFwYzF1b3dWVFVGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDZCNS9FRjQ2OUJGQzU5NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMy SVJNMGhRcGMxdW93VlRVRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8tTr+MVtEid9vDBbar2eN2GveMoJ+H0AWPogvwyK/tzue7D89nbH8 jZOwz+HJzY6q1gzosGJpYVGPpJxomrD+tQSN42w82txpjCAMTCCzjjvMl6IMCplo iqJVlq1eaoUbmTOvNGqZkame5pOeFAu0uYoWV1qBKxykHnRZogb6tqC9OJ7vYl7U 61GLCN7QSWUC839Vs0kb6RlYiO7lMceDLPmLFA/5Gap9Y1sM0foI0vyfoW1FEJQ8 CO3HXzMwD3yMTTJ5W/D/MTPAWt1ePrp9xNvzVdUKZ3JfPUsoE+QBdMGBqgfbt0jx LiZOCw17A/DKFGrQg10i7VF9NXIJwzZG -----END CERTIFICATE-----Generated at Fri Apr 4 21:52:02 2025 by rpki-client