$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: gm05tfFAO9tMdjMZzGyXNPGzAlddtXTCM8AsPHtAx20= Subject key identifier: 64:F5:BB:17:07:4C:F3:FB:7D:51:92:16:3B:74:82:22:84:9D:58:54 Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: 3E Signing time: Thu 13 Mar 2025 05:35:02 +0000 Manifest this update: Thu 13 Mar 2025 05:35:01 +0000 Manifest next update: Thu 20 Mar 2025 05:35:01 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: 09GDwfoNemVL0WeSjx68McmjsjDqIsKQPy6d5ps/E9M=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE Validity Not Before: Mar 13 05:35:01 2025 GMT Not After : Mar 20 05:35:01 2025 GMT Subject: CN=67d26e85-3ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a8:56:16:58:7a:1d:d4:c1:b6:8c:6b:17:f3: d2:1f:26:53:d8:ec:68:ea:f8:6e:89:09:e1:c0:44: 9b:2b:d0:c6:2c:dd:e7:1d:64:f1:c4:b2:0b:27:a5: a6:7e:61:62:23:fb:90:6a:b3:23:a8:8d:8a:73:e2: ed:95:b0:cc:79:06:3d:35:c7:36:d4:8e:85:29:c2: 13:c2:76:3d:c4:bf:6c:84:1d:89:5f:6a:77:d5:51: 2e:a5:fb:f5:8c:85:0e:30:96:90:b7:9a:3c:19:c3: 92:fc:d7:7f:14:3e:3f:45:f7:f8:ad:04:d9:cf:ba: e8:31:ed:b8:95:ca:14:68:41:f7:a7:92:3f:2a:36: d5:6c:69:4f:62:9f:0d:a3:5a:22:a2:d9:55:aa:dc: 71:24:43:03:b4:64:a2:92:07:71:9b:55:02:18:aa: d3:4e:26:ec:09:a9:53:92:07:c1:ce:ea:31:66:2f: 35:91:f1:d8:41:81:73:11:6a:6a:68:22:43:cc:69: 78:1b:21:6b:1b:7c:85:ea:9a:ef:cf:e1:78:28:ef: c6:b9:c4:cb:65:e5:e2:1f:f0:b2:64:3d:9e:48:e2: 66:d0:32:01:52:8e:f0:e9:eb:e7:e3:4c:29:1e:6a: ae:a6:a2:35:4f:78:38:ae:b3:f4:b0:4a:af:19:a5: f0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F5:BB:17:07:4C:F3:FB:7D:51:92:16:3B:74:82:22:84:9D:58:54 X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:1d:a8:2d:32:fa:67:5c:eb:f4:e1:d5:0d:9c:39:6b:53:fd: cc:76:75:18:16:a9:f2:c6:d1:08:aa:f2:6f:aa:de:70:0e:b0: 92:be:e1:93:b6:62:1d:e6:e5:90:fb:e4:de:66:05:3b:a3:11: 11:2b:70:f6:43:34:ee:68:ec:70:18:54:f0:92:a3:07:77:d8: 7a:09:f8:36:b0:91:aa:32:b2:9b:20:7f:10:44:16:53:51:32: 27:f6:f7:7d:99:ce:d1:f8:7c:41:36:2d:9b:f4:1f:07:88:c0: 97:26:08:ad:d6:bb:cd:cd:2e:7e:36:b1:62:8b:1f:87:a3:07: 33:1a:35:1d:41:7c:de:69:c4:4f:84:cb:bb:95:8c:c3:36:5c: b8:14:e2:16:67:fc:4d:47:b9:23:ee:45:af:72:41:3a:ae:38: 4d:78:95:a5:da:9a:99:33:05:da:a6:86:a5:65:a2:ce:05:d1: 5d:10:ff:da:5f:4f:62:a5:ae:f8:a0:e6:57:ce:fc:bb:1f:e2: 49:34:15:95:a3:54:ed:d6:54:08:00:35:93:b4:00:b9:6a:f5: 62:43:37:8b:c1:77:e2:6a:c3:55:17:22:61:c8:e0:7a:0d:4c: 89:fa:3c:60:fd:cc:0f:c9:83:fd:a2:b4:07:5e:f7:bd:0e:2a: 2e:78:7c:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REVGRTExMC8GA1UEBRMoQTgyOTJGNjIwNEM4MjEzRDc5MUZBNkNDQUFGNTc4NTE5 NEVGODFBMDAeFw0yNTAzMTMwNTM1MDFaFw0yNTAzMjAwNTM1MDFaMBgxFjAUBgNV BAMTDTY3ZDI2ZTg1LTNmZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJqFYWWHod1MG2jGsX89IfJlPY7Gjq+G6JCeHARJsr0MYs3ecdZPHEsgsnpaZ+ YWIj+5BqsyOojYpz4u2VsMx5Bj01xzbUjoUpwhPCdj3Ev2yEHYlfanfVUS6l+/WM hQ4wlpC3mjwZw5L8138UPj9F9/itBNnPuugx7biVyhRoQfenkj8qNtVsaU9inw2j WiKi2VWq3HEkQwO0ZKKSB3GbVQIYqtNOJuwJqVOSB8HO6jFmLzWR8dhBgXMRampo IkPMaXgbIWsbfIXqmu/P4Xgo78a5xMtl5eIf8LJkPZ5I4mbQMgFSjvDp6+fjTCke aq6mojVPeDius/SwSq8ZpfCdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZPW7FwdM 8/t9UZIWO3SCIoSdWFQwHwYDVR0jBBgwFoAUqCkvYgTIIT15H6bMqvV4UZTvgaAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERUZFLzExNjRDQUUwQTUx NjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdh QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUNrdllnVElJVDE1SDZiTXF2VjRVWlR2Z2FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RUZFLzExNjRDQUUwQTUxNjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQx NUg2Yk1xdlY0VVpUdmdhQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL4dqC0y+mdc6/Th1Q2cOWtT/cx2dRgWqfLG0Qiq8m+q3nAOsJK+4ZO2 Yh3m5ZD75N5mBTujERErcPZDNO5o7HAYVPCSowd32HoJ+DawkaoyspsgfxBEFlNR Mif2932ZztH4fEE2LZv0HweIwJcmCK3Wu83NLn42sWKLH4ejBzMaNR1BfN5pxE+E y7uVjMM2XLgU4hZn/E1HuSPuRa9yQTquOE14laXampkzBdqmhqVlos4F0V0Q/9pf T2Klrvig5lfO/Lsf4kk0FZWjVO3WVAgANZO0ALlq9WJDN4vBd+Jqw1UXImHI4HoN TIn6PGD9zA/Jg/2itAde970OKi54fDY= -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:55 2025 by rpki-client