$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: T6fxsdpciwdz7XMugrns/g3YZDe1e+jRGrgUuY5sT94= Subject key identifier: DF:7B:B9:9E:C3:BB:88:6C:D2:D8:A3:1E:C7:2A:BE:EA:67:51:4D:6C Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 0636 Signing time: Thu 24 Apr 2025 22:25:19 +0000 Manifest this update: Thu 24 Apr 2025 22:25:19 +0000 Manifest next update: Thu 01 May 2025 22:25:18 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: XzhA4L4XOUlkjeyWSGiSJzkCKHukbYI88QKonpOrNyQ=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: 9fks3NvnHOVB0kb3Kc99MGLGUTLgUhxpBqtGNsXU3KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Apr 24 22:25:19 2025 GMT Not After : May 1 22:25:18 2025 GMT Subject: CN=680aba4f-8912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f3:8e:05:bd:09:b3:35:b8:a7:52:a9:12:72: 05:f6:98:49:f9:d9:25:b6:f9:cc:f1:ab:bd:80:f9: 15:18:da:be:3c:68:1e:6c:1c:6f:f0:f1:30:89:0e: 2f:e1:f1:32:f5:30:50:a5:9d:95:00:8e:74:4d:29: 8b:4e:76:64:a6:ae:97:85:1f:1d:62:fa:13:8f:94: 7d:78:2d:49:d1:79:11:96:fd:e2:aa:1d:c8:7c:c3: 6b:97:92:48:4d:61:95:2b:dd:b9:29:4f:95:63:4a: c4:1b:aa:81:84:f7:68:0e:bb:7e:b6:22:0c:2f:fe: 04:77:ee:a3:7d:c8:a7:6f:17:ce:0c:dd:fc:e4:b7: 28:b9:c1:8d:d6:a1:e7:36:96:69:11:6a:2d:19:e5: 83:35:a2:6b:c5:e9:6f:63:e4:ff:53:0e:0e:94:c7: c1:ab:20:c1:5a:64:3d:cf:09:16:9f:98:da:49:d2: 76:f7:e8:90:5d:a0:13:25:56:61:f2:5f:71:6e:29: ca:c0:64:e6:cc:90:40:1c:b2:49:ba:cc:73:6a:a4: ae:d3:13:6a:38:76:0a:aa:75:e6:6a:c8:43:d4:5c: 86:b2:8b:3f:1e:cc:fd:25:a9:04:66:d5:c3:a8:ad: 73:3e:7d:59:90:df:81:56:8c:f1:1e:7c:8e:2a:58: 8c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7B:B9:9E:C3:BB:88:6C:D2:D8:A3:1E:C7:2A:BE:EA:67:51:4D:6C X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:07:51:9e:65:3b:7e:c0:23:f7:61:8c:c4:fc:c1:bc:02:39: 83:9a:80:c5:00:ed:99:17:bd:60:6d:0f:f1:43:83:f6:b6:cb: ce:2f:12:7c:26:3d:cb:7d:57:fb:38:01:21:af:14:04:fa:da: bf:fe:a4:33:26:60:5f:30:56:e4:54:35:39:38:ce:ae:23:70: 17:83:5e:f5:85:0a:f4:86:0f:db:04:93:93:67:d5:7c:51:cf: bc:9a:7c:7d:c6:9c:04:2f:57:dc:2d:89:93:3c:ea:18:91:ce: 1b:fb:a3:70:27:d7:12:94:db:9a:59:3f:08:b4:e2:46:9e:50: e3:36:70:e6:b4:24:78:a8:c1:26:cc:a9:0f:be:50:62:38:87: dc:c0:fc:7b:24:92:d2:bf:99:94:e3:0f:3d:08:fd:97:5f:bd: 90:2e:67:05:15:6f:f5:b3:8a:dd:69:8d:e0:ab:35:7e:6f:0c: a2:2b:22:6e:3a:ff:4a:76:ee:d3:2f:53:b0:ba:e5:4d:ee:83: 37:36:b3:6a:08:76:ee:cc:59:f2:f3:53:b3:75:5f:b7:cb:44: 87:ee:1a:2f:35:31:30:6c:c5:1e:f7:b9:e4:3b:d8:8d:35:69: 99:9c:2f:f5:85:14:a3:7b:85:2c:d0:ea:66:3d:51:d9:cc:f7: 5b:0f:cf:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUwNDI0MjIyNTE5WhcNMjUwNTAxMjIyNTE4WjAYMRYwFAYD VQQDEw02ODBhYmE0Zi04OTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5POOBb0JszW4p1KpEnIF9phJ+dkltvnM8au9gPkVGNq+PGgebBxv8PEwiQ4v 4fEy9TBQpZ2VAI50TSmLTnZkpq6XhR8dYvoTj5R9eC1J0XkRlv3iqh3IfMNrl5JI TWGVK925KU+VY0rEG6qBhPdoDrt+tiIML/4Ed+6jfcinbxfODN385LcoucGN1qHn NpZpEWotGeWDNaJrxelvY+T/Uw4OlMfBqyDBWmQ9zwkWn5jaSdJ29+iQXaATJVZh 8l9xbinKwGTmzJBAHLJJusxzaqSu0xNqOHYKqnXmashD1FyGsos/Hsz9JakEZtXD qK1zPn1ZkN+BVozxHnyOKliMRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN97uZ7D u4hs0tijHscqvupnUU1sMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyB1GeZTt+wCP3YYzE/MG8AjmDmoDFAO2ZF71gbQ/xQ4P2tsvOLxJ8 Jj3LfVf7OAEhrxQE+tq//qQzJmBfMFbkVDU5OM6uI3AXg171hQr0hg/bBJOTZ9V8 Uc+8mnx9xpwEL1fcLYmTPOoYkc4b+6NwJ9cSlNuaWT8ItOJGnlDjNnDmtCR4qMEm zKkPvlBiOIfcwPx7JJLSv5mU4w89CP2XX72QLmcFFW/1s4rdaY3gqzV+bwyiKyJu Ov9Kdu7TL1OwuuVN7oM3NrNqCHbuzFny81OzdV+3y0SH7hovNTEwbMUe97nkO9iN NWmZnC/1hRSje4Us0OpmPVHZzPdbD89x -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:06 2025 by rpki-client