$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft File: QoezMyF220hqLLxCVAL6nIa23Eg.mft (raw, json) Hash identifier: EIitblbsnyWevaCkIAEMwZvYGTyEyQBvufttViBZtUY= Subject key identifier: 9F:B4:EE:78:37:E7:FE:04:05:60:38:94:7D:69:1D:58:9E:DC:C5:FB Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1E1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft Manifest number: 328E Signing time: Thu 24 Apr 2025 15:41:57 +0000 Manifest this update: Thu 24 Apr 2025 15:41:56 +0000 Manifest next update: Thu 01 May 2025 15:41:56 +0000 Files and hashes: 1: QoezMyF220hqLLxCVAL6nIa23Eg.crl (hash: r0bYpl1zJc4ev8WshEnwiHEplFCJpdggrPCrOOE25K4=) 2: 4FA6792A8F6711E6A509C92DC4F9AE02.roa (hash: zBYE/5fRTCQSO3jWk1oOmSo/Ul1q1Praa4fc7ng9+AE=) 3: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (hash: X2qav5EFr+Ua635VH9BvI7EhV1owUod2CiDjBop2am4=) 4: 4BDAE70EB7A911EF9D4E880CC4F9AE02.roa (hash: LAARyCxmzy516MHC0uw5Kfkv56HjOBgenKPezXUQvg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7706 (0x1e1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD, serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: Apr 24 15:41:56 2025 GMT Not After : May 1 15:41:56 2025 GMT Subject: CN=680a5bc5-3a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:7e:ad:5c:62:26:97:f9:c7:85:22:ed:cd: b0:7e:22:28:89:b2:d9:73:b1:e2:db:db:b8:dd:f8: 85:b3:4b:1c:41:4e:05:3f:f3:de:9e:d7:7c:03:28: 3f:f2:4e:99:79:fd:4d:3a:df:d3:b9:a7:36:0d:4b: 0f:d1:2b:2c:40:ed:16:3a:bf:9d:83:ad:e1:ab:a7: ce:f6:0c:28:0b:59:71:c8:09:9b:ca:17:b7:df:2e: 88:56:76:8c:3a:f1:5c:f1:91:8c:2d:c0:2f:ac:2c: e2:58:52:7d:98:56:dc:c4:d6:7d:61:39:58:fd:49: 47:4c:ca:35:f6:7e:80:68:8b:ca:47:20:90:9f:3f: 9d:79:ab:b3:91:24:2c:8a:e1:3c:51:af:ed:92:20: 58:37:53:83:60:01:bc:1f:e0:6f:7d:50:a2:2a:09: d7:6c:1a:db:35:59:62:60:70:46:2d:46:31:4c:bb: e2:9a:6b:46:2c:6e:71:cf:29:02:66:b3:3c:2a:95: 7c:bd:5a:e6:64:2b:44:21:f8:82:df:3a:30:2f:0e: 11:a1:33:77:5b:c5:f2:fb:eb:68:4d:a4:b3:2d:4a: be:55:5c:6b:44:69:73:d0:eb:b9:a5:f7:2d:88:9f: ad:f1:14:7e:42:44:07:8e:9e:f2:0a:49:7e:f7:ba: d2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B4:EE:78:37:E7:FE:04:05:60:38:94:7D:69:1D:58:9E:DC:C5:FB X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ad:6a:75:24:65:b8:40:dd:3b:e0:5f:6a:99:2f:31:ee:f3: d4:6b:07:72:fb:0a:01:7b:44:ab:9b:33:b4:66:87:39:b3:ed: 56:29:86:af:0e:a9:af:2d:1f:c5:f0:5c:96:a6:75:46:03:ae: bd:08:a8:68:13:93:50:35:02:98:2e:fa:40:68:49:2f:5d:a0: b1:72:5f:97:0a:22:b6:30:2d:90:f4:97:4d:87:47:06:ce:fe: f7:23:78:88:dc:87:6e:1b:c9:68:06:5e:60:d6:4c:66:15:d3: b1:d8:9a:21:10:a6:5a:52:4b:6b:29:e2:a8:8b:84:fe:7d:7f: c4:49:da:17:c7:3b:91:de:4d:77:57:4b:05:54:0c:b5:8b:e2: af:c6:79:e2:27:16:87:26:b2:f9:f4:d5:40:cf:ba:c4:63:8b: b7:02:da:5d:e9:01:03:20:41:30:27:68:5d:09:09:4c:1d:5f: 65:78:f3:75:7e:b5:e2:78:10:28:79:8b:b4:ee:d5:65:38:f3: 8e:29:a3:a6:69:58:08:89:5e:34:2a:e6:f3:84:49:65:6f:ab: 5a:ae:56:02:10:f6:a2:2b:4f:0c:33:aa:2c:85:29:68:34:4b: 1d:11:98:25:8e:ac:62:09:de:72:95:2a:7b:dd:5f:a1:e8:61: 64:8b:13:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjUwNDI0MTU0MTU2WhcNMjUwNTAxMTU0MTU2WjAYMRYwFAYD VQQDEw02ODBhNWJjNS0zYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3t+rVxiJpf5x4Ui7c2wfiIoibLZc7Hi29u43fiFs0scQU4FP/Pentd8Ayg/ 8k6Zef1NOt/Tuac2DUsP0SssQO0WOr+dg63hq6fO9gwoC1lxyAmbyhe33y6IVnaM OvFc8ZGMLcAvrCziWFJ9mFbcxNZ9YTlY/UlHTMo19n6AaIvKRyCQnz+deauzkSQs iuE8Ua/tkiBYN1ODYAG8H+BvfVCiKgnXbBrbNVliYHBGLUYxTLvimmtGLG5xzykC ZrM8KpV8vVrmZCtEIfiC3zowLw4RoTN3W8Xy++toTaSzLUq+VVxrRGlz0Ou5pfct iJ+t8RR+QkQHjp7yCkl+97rS1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+07ng3 5/4EBWA4lH1pHVie3MX7MB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJERC8zQUUwMDRCNEQ3NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIw aHFMTHhDVkFMNm5JYTIzRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBarWp1JGW4QN074F9qmS8x7vPUawdy+woBe0SrmzO0Zoc5s+1WKYav DqmvLR/F8FyWpnVGA669CKhoE5NQNQKYLvpAaEkvXaCxcl+XCiK2MC2Q9JdNh0cG zv73I3iI3IduG8loBl5g1kxmFdOx2JohEKZaUktrKeKoi4T+fX/ESdoXxzuR3k13 V0sFVAy1i+KvxnniJxaHJrL59NVAz7rEY4u3Atpd6QEDIEEwJ2hdCQlMHV9lePN1 frXieBAoeYu07tVlOPOOKaOmaVgIiV40KubzhEllb6tarlYCEPaiK08MM6oshSlo NEsdEZgljqxiCd5ylSp73V+h6GFkixMj -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:04 2025 by rpki-client