$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: G3OyarGzBaSJc2gPYk6iL3C9yp1vtnEtrljXOU0lDbg= Subject key identifier: 2D:0B:28:20:34:36:88:B1:0D:83:49:6E:11:EE:E9:52:23:EF:67:D4 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BB7 Signing time: Thu 24 Apr 2025 18:48:26 +0000 Manifest this update: Thu 24 Apr 2025 18:48:25 +0000 Manifest next update: Thu 01 May 2025 18:48:25 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: suLr3X7ZKVsEUC6+etmCALLT5Jza5lla0WIzmjUCitc=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3006 (0xbbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Apr 24 18:48:25 2025 GMT Not After : May 1 18:48:25 2025 GMT Subject: CN=680a877a-386d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d3:b9:f1:57:90:60:2e:6f:55:7e:b8:50:37: 7b:04:9a:89:7f:04:18:d4:ad:0d:5a:ab:c4:23:01: a0:c0:42:44:25:9a:2e:f5:ed:f6:77:46:78:d7:f9: 8b:c8:56:cd:60:f2:04:4a:d0:8a:a5:39:1d:7d:52: 00:8c:6e:4a:f3:bc:67:c8:7b:75:80:65:b4:f0:ea: 6d:80:71:13:fd:b8:43:82:b0:93:86:03:40:f1:61: 59:51:34:3d:92:22:27:d5:04:19:df:49:a1:e6:60: 9f:ff:a1:f6:97:ec:37:88:a3:a2:3e:04:9f:5a:f1: bb:f3:af:fc:e8:a3:51:c9:82:1d:49:f7:9c:bd:70: 26:62:24:2d:83:8c:22:11:23:7c:22:f6:ec:58:8a: 1e:84:db:ed:b0:e7:5e:ae:c7:e4:80:d1:03:d9:d4: da:af:91:b2:35:52:f4:32:e0:29:af:09:00:38:98: 2e:62:59:63:14:97:cd:76:83:9a:f7:9f:c6:5e:e0: 04:f1:2f:e1:c3:ce:98:48:c7:a6:ac:97:9c:90:44: d1:20:bc:1b:6f:fe:8e:bf:3d:b6:82:6b:fd:b5:da: 22:c7:fe:aa:60:42:b6:76:16:d7:14:63:64:0d:85: b5:f0:6b:45:bc:68:fb:bb:42:8e:07:1b:d7:c5:1a: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0B:28:20:34:36:88:B1:0D:83:49:6E:11:EE:E9:52:23:EF:67:D4 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:dc:73:66:02:cf:0b:69:1a:9c:1e:0f:a8:de:5d:b3:47:eb: e6:b7:5b:6e:b6:cd:8a:c4:ce:10:1f:0d:5d:03:88:a5:dc:57: 63:b3:e0:a2:74:ed:8b:69:49:b8:78:9a:48:99:6b:43:1d:15: bb:d4:56:cd:9d:9c:d2:45:0a:8d:81:17:d2:af:00:c2:d4:fd: eb:b9:8f:f2:e4:0e:4f:99:bc:99:3d:49:7c:7b:ec:4a:3c:89: 56:b9:b5:43:81:97:90:89:d5:30:07:87:49:87:38:e1:4e:4d: 4f:e5:68:23:ca:15:d9:30:6a:49:0f:89:37:9f:94:30:91:5f: f6:65:8c:87:85:69:f4:9a:58:37:c8:1c:c4:ac:96:1b:75:e0: 17:cd:c4:09:09:6e:fa:7f:11:98:52:91:28:e8:7a:a8:ef:e8: 5b:71:fa:1d:2f:9a:90:29:ad:54:03:87:d4:ad:02:fc:e9:c4: 33:f6:da:39:3a:78:bc:81:aa:1f:a2:87:f1:80:e2:8b:bd:8e: 7c:05:d6:b2:28:17:c3:b2:80:02:c4:2d:68:2c:46:0a:ac:2a: f2:c0:05:1a:d2:ae:e7:c5:88:06:eb:8d:78:63:e9:e2:8c:d3: 5a:04:fd:f3:df:99:62:19:08:ed:99:7d:b5:3d:c9:d6:6f:c4: d5:bc:ec:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwNDI0MTg0ODI1WhcNMjUwNTAxMTg0ODI1WjAYMRYwFAYD VQQDEw02ODBhODc3YS0zODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNO58VeQYC5vVX64UDd7BJqJfwQY1K0NWqvEIwGgwEJEJZou9e32d0Z41/mL yFbNYPIEStCKpTkdfVIAjG5K87xnyHt1gGW08OptgHET/bhDgrCThgNA8WFZUTQ9 kiIn1QQZ30mh5mCf/6H2l+w3iKOiPgSfWvG786/86KNRyYIdSfecvXAmYiQtg4wi ESN8IvbsWIoehNvtsOdersfkgNED2dTar5GyNVL0MuAprwkAOJguYlljFJfNdoOa 95/GXuAE8S/hw86YSMemrJeckETRILwbb/6Ovz22gmv9tdoix/6qYEK2dhbXFGNk DYW18GtFvGj7u0KOBxvXxRqnuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0LKCA0 NoixDYNJbhHu6VIj72fUMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+3HNmAs8LaRqcHg+o3l2zR+vmt1tuts2KxM4QHw1dA4il3Fdjs+Ci dO2LaUm4eJpImWtDHRW71FbNnZzSRQqNgRfSrwDC1P3ruY/y5A5PmbyZPUl8e+xK PIlWubVDgZeQidUwB4dJhzjhTk1P5WgjyhXZMGpJD4k3n5QwkV/2ZYyHhWn0mlg3 yBzErJYbdeAXzcQJCW76fxGYUpEo6Hqo7+hbcfodL5qQKa1UA4fUrQL86cQz9to5 Oni8gaofoofxgOKLvY58BdayKBfDsoACxC1oLEYKrCrywAUa0q7nxYgG6414Y+ni jNNaBP3z35liGQjtmX21PcnWb8TVvOwu -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:16 2025 by rpki-client