$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: Xht9ui6hbo/0Tg/8AaKPj8jeI4fjrBF10ITSZyxzADg= Subject key identifier: E9:32:CD:88:34:9F:20:66:9A:20:8D:92:07:91:6C:F6:B1:FE:42:C0 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 10 Signing time: Wed 05 Feb 2025 06:28:13 +0000 Manifest this update: Wed 05 Feb 2025 06:28:12 +0000 Manifest next update: Wed 12 Feb 2025 06:28:12 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: G8HukWou0f5aeJ2aFexFG8/l+xXqcLfeuEwAYy/TXHQ=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F Validity Not Before: Feb 5 06:28:12 2025 GMT Not After : Feb 12 06:28:12 2025 GMT Subject: CN=67a304fd-8abd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f6:fe:d6:f3:57:4e:db:61:a7:a0:e0:dc:04: c7:2c:b0:5b:1e:79:14:f7:12:82:bd:c4:64:eb:79: 77:a5:4c:b7:68:af:ae:9f:ac:c0:32:1f:93:60:c5: db:70:3f:9b:64:70:f9:63:f2:3d:0b:35:87:b0:f0: 9a:36:ec:b1:a9:b1:1d:42:d4:86:61:40:15:cc:77: 36:40:4f:c8:c3:56:67:f1:e9:7b:ed:02:31:74:a3: ec:40:7a:b5:be:13:a7:f6:7d:de:c5:0c:a6:9a:ac: e4:fb:b8:ee:50:55:5b:56:a0:26:c6:db:de:16:c6: ed:6b:3f:74:a9:f9:3e:9c:14:37:b5:ea:fb:76:c0: c8:17:14:6c:ae:03:9c:c0:0c:a1:0f:dc:72:40:8a: 4c:ef:0a:e6:ab:f7:76:00:fc:6f:ab:f7:35:d7:f4: d4:a7:0d:ae:de:1f:44:47:0d:89:31:de:8c:c2:c1: e2:ef:98:45:ac:3e:18:cd:e7:4a:ca:30:ec:67:51: b0:59:78:da:6a:e1:bd:21:ff:45:3f:4e:be:87:a8: 11:88:d8:d0:85:07:c6:51:9b:75:97:26:c5:2b:27: d4:53:ba:03:27:7f:72:d3:d3:0c:82:31:7c:38:1d: cd:f4:45:27:82:3f:81:39:cf:46:e9:06:08:10:a3: 75:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:32:CD:88:34:9F:20:66:9A:20:8D:92:07:91:6C:F6:B1:FE:42:C0 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:52:b3:3a:fd:64:d4:60:90:5e:1e:83:97:48:67:1d:c0:2d: ea:83:2e:a3:8c:f5:b4:a3:25:19:88:e3:b5:6b:a2:0d:ef:22: 39:b4:d2:46:97:35:64:4d:88:9d:7f:72:e4:53:42:6e:dc:c7: 45:01:d3:db:c8:89:bb:fd:03:06:2f:59:63:a1:32:15:f3:8a: e1:68:87:47:dd:96:d3:c4:9e:c6:e9:00:1a:fe:93:d1:f4:be: 70:b5:6a:60:48:26:43:0a:ac:76:55:ae:6b:49:3d:86:8b:a1: db:81:af:99:47:b0:5e:dc:21:a3:ce:ae:00:43:d9:b4:31:06: 6b:5b:2e:a9:3f:33:3c:fd:93:ba:c3:8c:0b:24:a9:7b:10:73: 63:9a:00:4c:48:0a:ba:31:45:e7:5a:0e:fc:b7:f7:b8:c1:dc: a0:b1:f0:89:de:ef:63:e2:4d:3a:9e:c2:89:b8:9b:e0:a9:cd: e4:77:56:42:bf:6f:db:74:bb:82:a8:f9:9a:e6:d0:6b:4a:2c: 2d:91:23:61:43:45:61:73:88:4b:1c:68:97:a2:de:9d:0c:3d: e0:7e:38:4e:89:b0:76:31:0f:f9:98:df:06:d7:be:7f:9d:47: 75:e9:46:e6:76:df:68:ca:d9:6b:4c:83:72:b9:b9:13:85:90: 62:ca:58:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTAyMDUwNjI4MTJaFw0yNTAyMTIwNjI4MTJaMBgxFjAUBgNV BAMTDTY3YTMwNGZkLThhYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe9v7W81dO22GnoODcBMcssFseeRT3EoK9xGTreXelTLdor66frMAyH5Ngxdtw P5tkcPlj8j0LNYew8Jo27LGpsR1C1IZhQBXMdzZAT8jDVmfx6XvtAjF0o+xAerW+ E6f2fd7FDKaarOT7uO5QVVtWoCbG294Wxu1rP3Sp+T6cFDe16vt2wMgXFGyuA5zA DKEP3HJAikzvCuar93YA/G+r9zXX9NSnDa7eH0RHDYkx3ozCweLvmEWsPhjN50rK MOxnUbBZeNpq4b0h/0U/Tr6HqBGI2NCFB8ZRm3WXJsUrJ9RTugMnf3LT0wyCMXw4 Hc30RSeCP4E5z0bpBggQo3UlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6TLNiDSf IGaaII2SB5Fs9rH+QsAwHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE5Sszr9ZNRgkF4eg5dIZx3ALeqDLqOM9bSjJRmI47Vrog3vIjm00kaX NWRNiJ1/cuRTQm7cx0UB09vIibv9AwYvWWOhMhXziuFoh0fdltPEnsbpABr+k9H0 vnC1amBIJkMKrHZVrmtJPYaLoduBr5lHsF7cIaPOrgBD2bQxBmtbLqk/Mzz9k7rD jAskqXsQc2OaAExICroxRedaDvy397jB3KCx8Ine72PiTTqewom4m+CpzeR3VkK/ b9t0u4Ko+Zrm0GtKLC2RI2FDRWFziEscaJei3p0MPeB+OE6JsHYxD/mY3wbXvn+d R3XpRuZ232jK2WtMg3K5uROFkGLKWNo= -----END CERTIFICATE-----Generated at Wed Feb 5 20:07:22 2025 by rpki-client