$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: KmsGCn7of2vYhsHMkEtXmrIC1C4haaDqekSnWAcyY1k= Subject key identifier: 2A:A4:44:4A:A6:BF:C8:91:B8:FA:1E:B9:F2:C8:2B:7F:EE:31:CF:14 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 060D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 05F5 Signing time: Thu 24 Apr 2025 22:54:12 +0000 Manifest this update: Thu 24 Apr 2025 22:54:12 +0000 Manifest next update: Thu 01 May 2025 22:54:12 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: 9vA5/pT1E5MnWBq6qu7v/BOtf3XOv+GM8RlRNYpMVGI=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: 6YYJp70ovWJbV5hwBiIeegk/fbVe4hEWR6AUPM6tWHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1549 (0x60d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Apr 24 22:54:12 2025 GMT Not After : May 1 22:54:12 2025 GMT Subject: CN=680ac114-8fe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:53:dd:a8:a9:6c:95:7d:c8:34:6c:79:66: ee:2f:c2:2b:ae:8d:7c:7e:57:0d:e8:22:da:a2:f0: b1:4b:41:ad:00:74:72:e2:76:2c:06:05:d2:1f:e8: bf:dd:dc:cc:63:69:59:94:ba:f8:39:0d:0f:60:aa: 5d:f1:45:59:e3:97:a4:ce:bd:83:80:d1:4b:8e:95: 27:61:fc:58:03:07:cf:7b:98:d2:b5:fd:ee:d8:c9: 2e:28:fc:87:f1:76:5b:29:e3:81:22:9b:92:9c:a2: 58:fd:3a:b7:fe:29:cc:23:85:b6:8f:10:49:2c:c1: d6:5c:e4:dc:78:bd:f2:6d:9e:20:2b:1b:33:ff:56: e7:53:35:70:b2:b1:24:f3:8f:0d:6e:36:6b:ce:6e: 0a:2f:5f:38:75:2c:69:d4:ce:d5:0e:55:92:3f:23: 22:0f:b1:38:a9:72:6f:25:4a:dd:30:ea:32:97:ee: 3c:d2:1d:ba:ae:1a:d5:3e:34:c8:8e:4f:68:a3:b2: 5a:57:31:4c:22:8f:8d:04:63:54:f3:92:e4:58:31: 64:ba:53:ec:6a:18:b0:b9:74:cb:b3:d7:2d:29:c2: 5c:34:a0:ea:f0:3e:2c:bd:1d:42:55:8a:bf:b1:29: 3e:3a:f7:2b:25:fc:fd:dc:ed:9f:a2:0f:a5:e4:ee: 55:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A4:44:4A:A6:BF:C8:91:B8:FA:1E:B9:F2:C8:2B:7F:EE:31:CF:14 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:d5:6f:f1:d8:50:43:e7:c6:85:54:4b:6d:6d:eb:26:72:0c: 97:ec:21:ae:cc:4a:4d:db:8b:9a:87:90:fd:fc:70:5d:d4:c4: 15:4b:e6:19:91:ac:31:cf:f6:b4:f7:5c:fe:83:4c:2e:83:96: 77:47:5a:e2:b5:6b:84:8c:3a:6b:94:5d:d1:b9:60:54:17:b5: 5c:87:a3:e0:cc:d2:b0:d4:be:a5:81:c9:cc:ed:45:7e:62:cb: b0:d1:51:93:07:71:42:e3:1c:bf:68:14:02:1e:27:a4:9a:04: 8f:74:c4:1e:c2:d1:50:a4:30:0a:57:fb:e0:c7:23:ed:b7:fa: 17:67:60:21:31:ef:24:c9:28:7f:8e:47:fe:7f:0e:27:38:0f: 6d:de:f6:b4:05:fd:6e:f8:0e:f4:17:1f:54:aa:7d:95:ef:21: 24:c3:18:13:61:f9:76:b6:ee:4b:53:9f:d8:e9:d2:4a:61:66: 92:71:59:8a:7f:c6:c6:04:f9:b7:1a:9e:77:ca:06:a6:50:e8: 42:a3:ab:eb:26:f7:92:b8:c0:b7:6e:ea:81:fa:a4:04:e6:05: 59:13:e2:78:30:66:c4:8b:14:63:ac:16:83:8d:99:2b:5e:fc: d6:81:1d:81:e3:f6:a5:16:4a:18:0f:80:a5:af:be:2b:7f:7e: d5:48:11:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwNDI0MjI1NDEyWhcNMjUwNTAxMjI1NDEyWjAYMRYwFAYD VQQDEw02ODBhYzExNC04ZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZpT3aipbJV9yDRseWbuL8Irro18flcN6CLaovCxS0GtAHRy4nYsBgXSH+i/ 3dzMY2lZlLr4OQ0PYKpd8UVZ45ekzr2DgNFLjpUnYfxYAwfPe5jStf3u2MkuKPyH 8XZbKeOBIpuSnKJY/Tq3/inMI4W2jxBJLMHWXOTceL3ybZ4gKxsz/1bnUzVwsrEk 848NbjZrzm4KL184dSxp1M7VDlWSPyMiD7E4qXJvJUrdMOoyl+480h26rhrVPjTI jk9oo7JaVzFMIo+NBGNU85LkWDFkulPsahiwuXTLs9ctKcJcNKDq8D4svR1CVYq/ sSk+OvcrJfz93O2fog+l5O5VmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqkREqm v8iRuPoeufLIK3/uMc8UMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp1W/x2FBD58aFVEttbesmcgyX7CGuzEpN24uah5D9/HBd1MQVS+YZ kawxz/a091z+g0wug5Z3R1ritWuEjDprlF3RuWBUF7Vch6PgzNKw1L6lgcnM7UV+ Ysuw0VGTB3FC4xy/aBQCHiekmgSPdMQewtFQpDAKV/vgxyPtt/oXZ2AhMe8kySh/ jkf+fw4nOA9t3va0Bf1u+A70Fx9Uqn2V7yEkwxgTYfl2tu5LU5/Y6dJKYWaScVmK f8bGBPm3Gp53ygamUOhCo6vrJveSuMC3buqB+qQE5gVZE+J4MGbEixRjrBaDjZkr XvzWgR2B4/alFkoYD4Clr74rf37VSBGA -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:51 2025 by rpki-client