$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: j2hR2XWvchMJ9F8RLwxUL6Dj+v1i26KYcs6k6SWN25Q= Subject key identifier: 1A:79:D8:21:C9:6B:1F:A3:DF:45:5A:C2:7A:BF:FA:65:7B:F7:48:5C Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0AD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0AC5 Signing time: Fri 30 May 2025 19:41:47 +0000 Manifest this update: Fri 30 May 2025 19:41:46 +0000 Manifest next update: Fri 06 Jun 2025 19:41:46 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: dDASfeNULgVq20KBz5/fIMiKGckRhv5f17qO5DSzeFs=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2771 (0xad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: May 30 19:41:46 2025 GMT Not After : Jun 6 19:41:46 2025 GMT Subject: CN=683a09fa-7b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:12:30:c3:7d:7d:64:79:70:a8:90:8a:cd:b7: 1e:01:bb:22:92:40:e3:0a:ae:d8:72:ab:fa:95:d1: ed:0b:35:59:b4:87:c6:79:c4:87:33:dc:50:04:ec: 69:da:3c:0e:88:5e:d5:1c:bd:24:d6:68:19:68:7b: 1a:0f:fb:ad:c1:da:d5:82:0a:84:88:50:df:46:9a: 53:dc:d1:30:24:c6:b7:c0:94:f5:91:52:6d:4b:7b: 21:81:c7:ae:92:81:25:aa:eb:34:e6:5e:df:72:78: 41:68:aa:ca:dc:e5:6c:da:56:2c:f3:f0:fd:65:49: b4:bc:1a:92:89:7f:33:ef:92:ef:31:a6:f1:03:c2: 43:2d:af:5a:76:ac:3c:df:91:27:8e:1f:ad:e6:c8: 55:c5:65:1c:a3:f1:79:57:bc:f4:12:19:3d:0e:fd: 60:af:21:81:19:55:4a:93:c8:d3:bc:10:d3:4d:03: 6e:8c:6a:22:b2:cf:78:0d:67:ae:99:04:f3:c7:3a: 92:01:50:c2:d8:61:65:4c:5a:77:fe:78:b2:f0:7b: 06:1c:95:3a:49:77:e0:56:a7:c2:dd:b3:aa:65:09: c8:47:66:66:56:21:c0:b1:11:9d:3c:84:12:71:69: 9d:5f:4b:bb:48:43:6d:11:02:e9:7e:60:5f:bb:de: 00:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:79:D8:21:C9:6B:1F:A3:DF:45:5A:C2:7A:BF:FA:65:7B:F7:48:5C X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:7d:b6:bf:8e:7e:ed:9b:82:61:a0:3e:3a:07:7c:a8:ff:f0: 3a:fa:64:05:f6:12:a3:89:4c:18:57:e6:d5:4b:3a:5a:d0:62: c8:e6:84:aa:52:59:02:6a:a1:2b:7b:d4:03:e0:ef:c7:81:76: f0:bc:d5:56:64:e7:d6:12:55:07:50:44:ca:d7:b1:38:ce:fb: 5b:d2:4b:3c:b3:ea:8b:a8:e3:a7:8b:cc:7f:d6:e6:a9:01:5b: 87:80:c5:17:6d:cb:67:b3:6e:14:93:58:ca:aa:cd:a7:a4:1d: c7:3a:93:7c:8e:3b:93:a9:b1:cb:3e:26:ab:fe:aa:e9:db:ea: 70:cb:63:bf:97:14:1d:00:ed:74:25:26:b0:70:0f:8a:ea:4e: 12:11:0d:79:c9:9c:2b:7b:51:fe:a3:c6:4c:31:3a:2a:b8:dd: 48:34:7f:ff:60:08:b8:5e:10:6c:ec:fc:a3:dc:56:68:88:91: 5c:e0:69:0c:2d:c4:78:e7:49:a1:3e:2f:37:cd:0a:21:26:fc: df:86:f4:87:3c:22:25:81:08:72:47:10:16:f9:37:71:4b:8c: 53:3b:fb:b3:98:cd:74:9b:73:0f:e0:21:8b:be:dc:62:d3:27: c2:7d:4e:12:e5:7a:cf:39:eb:39:db:3d:58:c6:47:55:25:2d: f7:00:d8:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUwNTMwMTk0MTQ2WhcNMjUwNjA2MTk0MTQ2WjAYMRYwFAYD VQQDEw02ODNhMDlmYS03YjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RIww319ZHlwqJCKzbceAbsikkDjCq7Ycqv6ldHtCzVZtIfGecSHM9xQBOxp 2jwOiF7VHL0k1mgZaHsaD/utwdrVggqEiFDfRppT3NEwJMa3wJT1kVJtS3shgceu koElqus05l7fcnhBaKrK3OVs2lYs8/D9ZUm0vBqSiX8z75LvMabxA8JDLa9adqw8 35Enjh+t5shVxWUco/F5V7z0Ehk9Dv1gryGBGVVKk8jTvBDTTQNujGoiss94DWeu mQTzxzqSAVDC2GFlTFp3/niy8HsGHJU6SXfgVqfC3bOqZQnIR2ZmViHAsRGdPIQS cWmdX0u7SENtEQLpfmBfu94AMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBp52CHJ ax+j30Vawnq/+mV790hcMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBfba/jn7tm4JhoD46B3yo//A6+mQF9hKjiUwYV+bVSzpa0GLI5oSq UlkCaqEre9QD4O/HgXbwvNVWZOfWElUHUETK17E4zvtb0ks8s+qLqOOni8x/1uap AVuHgMUXbctns24Uk1jKqs2npB3HOpN8jjuTqbHLPiar/qrp2+pwy2O/lxQdAO10 JSawcA+K6k4SEQ15yZwre1H+o8ZMMToquN1INH//YAi4XhBs7Pyj3FZoiJFc4GkM LcR450mhPi83zQohJvzfhvSHPCIlgQhyRxAW+TdxS4xTO/uzmM10m3MP4CGLvtxi 0yfCfU4S5XrPOes52z1YxkdVJS33ANhz -----END CERTIFICATE-----Generated at Sat May 31 17:08:50 2025 by rpki-client