$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft File: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft (raw, json) Hash identifier: yjd7nXe/WWGwkCjErjSRWrvmvrXfef3U7Ss5D5n3SMU= Subject key identifier: 6A:85:76:27:EB:72:EF:6D:F6:12:06:1D:77:85:DD:04:8C:C5:DA:78 Authority key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 Certificate issuer: /CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft Manifest number: 070D Signing time: Thu 24 Apr 2025 19:32:00 +0000 Manifest this update: Thu 24 Apr 2025 19:32:00 +0000 Manifest next update: Thu 01 May 2025 19:32:00 +0000 Files and hashes: 1: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl (hash: E4IHQwtsnp4UnbvqgySqhxDpLPtXF3QHJbIHGFluh4M=) 2: 510308503E8211EBA910FF57C4F9AE02.roa (hash: PjHH406K/ka7XNZ7a0h9GqbdKh0e4+H0cJO6YTJYTgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Validity Not Before: Apr 24 19:32:00 2025 GMT Not After : May 1 19:32:00 2025 GMT Subject: CN=680a91b0-a05c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d9:04:c0:1d:ea:db:f5:84:e1:0f:a9:7d:4d: 2a:2c:87:c2:39:0c:5c:68:93:be:e4:b0:52:60:97: bf:3b:19:19:b5:a0:c6:9a:d0:e6:c2:27:fa:6f:64: 82:a2:5f:a5:d9:70:e8:01:f2:d6:44:49:13:b6:85: d1:5a:a9:8a:f2:15:c3:70:3f:68:ad:c1:f1:17:66: 34:74:73:2c:28:57:0a:2f:e9:bd:a3:81:ee:51:8f: 70:a8:8b:b5:2b:e6:7a:96:e0:1b:f9:cc:64:c7:b7: b9:70:1d:47:fb:34:78:80:8f:68:97:06:f4:16:47: 2f:f6:37:3e:48:dc:b1:dd:e2:16:ed:b3:25:10:9b: 7e:3e:78:3a:69:e3:5d:a0:59:84:82:41:0b:f6:2c: f6:a8:72:55:25:2e:b0:03:22:02:2e:98:6c:de:cf: 10:f7:a9:59:0a:3b:a6:fd:bd:07:78:16:6f:9c:0b: 5e:4a:c5:0b:3f:2b:a1:5c:1c:4c:cb:76:83:42:05: 49:7a:9a:fb:f4:69:60:ec:e3:d5:c3:b0:2c:fa:97: 3d:da:c6:ff:8a:d7:d9:e3:01:9f:14:61:e2:79:76: 3c:69:ad:d7:02:d7:25:f2:39:59:21:7d:26:0d:e3: eb:11:a7:e4:f8:15:36:1c:2e:8e:23:f6:36:4f:64: da:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:85:76:27:EB:72:EF:6D:F6:12:06:1D:77:85:DD:04:8C:C5:DA:78 X509v3 Authority Key Identifier: keyid:42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ba:42:e8:3b:97:45:72:ff:03:0a:ee:51:3f:f8:19:60:f2: fc:86:71:65:9f:5c:2a:d5:5c:5d:c5:b0:96:ac:df:6f:5c:6e: 94:ea:47:7f:86:1c:06:8e:e6:c0:6a:17:fa:82:23:59:6a:62: 86:9e:6a:c4:c6:17:f6:33:90:ab:6a:d4:20:0d:29:9d:aa:59: 83:c4:04:0e:f7:68:d5:5d:b8:0f:e7:90:fb:1d:2e:58:74:9c: e6:04:82:17:f7:ac:cb:67:51:14:44:53:4a:9b:59:6e:17:75: fa:a4:d1:76:f6:7b:e5:93:c7:da:a4:3b:e0:2c:93:bb:3f:e0: ae:03:46:b5:93:de:c1:97:8f:61:a4:5d:f9:e7:b4:bc:f9:1a: d4:4e:70:17:71:b4:0c:c7:4d:a1:32:f3:7b:20:73:ac:f7:15: 41:45:0a:80:40:3d:30:71:13:d3:c2:2d:39:63:90:4c:75:03: 3f:d1:b1:28:9f:70:d8:36:d2:69:5c:84:38:81:5e:e3:24:56: cc:ff:78:77:d1:ad:08:1f:27:e7:b6:e2:5e:b4:05:99:c8:cf: 95:c4:e7:c0:a3:79:20:bd:44:e3:eb:c1:f2:5f:6a:cb:83:89: 16:38:a0:50:1e:49:2c:af:b8:86:0a:4c:3c:48:db:be:0a:7f: d1:4b:23:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDQyNEUwQTM4NDNGM0ZBMUY0NEI2QUYyRUYzRUUxMTgx NUM0QjUyMDkwHhcNMjUwNDI0MTkzMjAwWhcNMjUwNTAxMTkzMjAwWjAYMRYwFAYD VQQDEw02ODBhOTFiMC1hMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NkEwB3q2/WE4Q+pfU0qLIfCOQxcaJO+5LBSYJe/OxkZtaDGmtDmwif6b2SC ol+l2XDoAfLWREkTtoXRWqmK8hXDcD9orcHxF2Y0dHMsKFcKL+m9o4HuUY9wqIu1 K+Z6luAb+cxkx7e5cB1H+zR4gI9olwb0Fkcv9jc+SNyx3eIW7bMlEJt+Png6aeNd oFmEgkEL9iz2qHJVJS6wAyICLphs3s8Q96lZCjum/b0HeBZvnAteSsULPyuhXBxM y3aDQgVJepr79Glg7OPVw7As+pc92sb/itfZ4wGfFGHieXY8aa3XAtcl8jlZIX0m DePrEafk+BU2HC6OI/Y2T2TawQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqFdifr cu9t9hIGHXeF3QSMxdp4MB8GA1UdIwQYMBaAFEJOCjhD8/ofRLavLvPuEYFcS1IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9FRTBBRUVDQTNF ODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1oOUV0cTh1OC00UmdWeExV Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FrNEtPRVB6LWg5RXRxOHU4LTRSZ1Z4TFVnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9FRTBBRUVDQTNFODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1o OUV0cTh1OC00UmdWeExVZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGukLoO5dFcv8DCu5RP/gZYPL8hnFln1wq1VxdxbCWrN9vXG6U6kd/ hhwGjubAahf6giNZamKGnmrExhf2M5CratQgDSmdqlmDxAQO92jVXbgP55D7HS5Y dJzmBIIX96zLZ1EURFNKm1luF3X6pNF29nvlk8fapDvgLJO7P+CuA0a1k97Bl49h pF3557S8+RrUTnAXcbQMx02hMvN7IHOs9xVBRQqAQD0wcRPTwi05Y5BMdQM/0bEo n3DYNtJpXIQ4gV7jJFbM/3h30a0IHyfntuJetAWZyM+VxOfAo3kgvUTj68HyX2rL g4kWOKBQHkksr7iGCkw8SNu+Cn/RSyOd -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:35 2025 by rpki-client