$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: MDwBjyu9NjVV6lnXfYGZ/WSHOqtMHo4szIAte+dI6Go= Subject key identifier: 52:F8:A4:D6:B3:EF:91:73:EF:44:F0:EE:47:AA:9E:B8:3B:D7:5A:45 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 38 Signing time: Fri 25 Apr 2025 06:32:54 +0000 Manifest this update: Fri 25 Apr 2025 06:32:54 +0000 Manifest next update: Fri 02 May 2025 06:32:54 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: 6Ey9MtcgzXu22sv4HxaVxJjZO1ozNgn9J2siX6mzlnw=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Apr 25 06:32:54 2025 GMT Not After : May 2 06:32:54 2025 GMT Subject: CN=680b2c96-2ee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e9:7b:df:ad:d5:62:38:d5:5a:5c:69:35:21: 0d:63:89:e5:9a:60:b8:a9:b9:b0:a3:d1:e4:13:06: a2:5b:46:39:23:d5:8c:20:05:96:2b:0e:07:b8:a2: 54:b7:41:2c:5d:a0:59:0a:71:6c:c5:7e:5f:51:59: 0e:52:2b:75:38:be:60:ff:34:b0:31:16:74:a0:a9: 5a:f1:ac:f7:b4:60:4a:90:72:29:77:8d:ab:05:13: d0:e4:72:8a:f8:9b:0f:e4:09:c1:83:d7:a8:8b:98: e3:e5:1a:da:f0:7c:36:3b:61:e6:ca:c7:b9:d3:15: 2e:85:27:90:ea:ec:cb:62:55:aa:14:53:73:02:f9: ae:48:90:f2:e3:7e:b0:39:b1:97:8b:c0:92:b2:45: d6:15:88:14:22:40:71:e7:f4:92:20:06:1b:06:99: 06:18:6c:59:4d:c1:0a:5f:e2:8c:58:d5:be:bb:bc: 89:5b:8c:bf:fd:64:9e:b8:93:f7:92:3c:27:22:5d: 24:c3:45:09:24:90:1c:3e:ed:51:f1:39:c8:3f:96: 5b:74:d3:6f:21:28:9d:e1:76:5c:a9:6b:72:39:a8: 99:8c:23:83:43:1a:04:94:e0:d2:7e:1c:4a:c9:ab: d1:f9:0c:9e:3a:6d:41:a7:51:6b:1c:41:5a:38:c0: 3a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F8:A4:D6:B3:EF:91:73:EF:44:F0:EE:47:AA:9E:B8:3B:D7:5A:45 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:7e:94:dd:be:37:2e:47:bc:ae:1d:de:9d:35:d0:ab:8f:85: 61:6b:d6:ad:48:39:4b:45:8d:b9:9c:75:5e:40:9a:7f:5d:16: 2e:30:d5:ac:b3:ad:a1:46:31:cc:de:05:c5:88:26:9c:36:c0: 55:d2:f3:d1:b8:1a:ab:cc:84:ed:23:a9:9a:9f:57:fb:89:bc: d6:b7:62:1b:53:3c:44:e2:60:3b:05:bf:da:b4:b4:2b:58:b5: d6:53:c5:e3:dd:59:1f:ce:d9:58:15:85:04:fe:19:41:72:46: 50:96:d5:39:32:5e:c9:ca:34:12:73:c5:a5:b9:61:4a:5a:e9: 30:d4:ce:10:8b:f5:46:39:3b:3f:ee:28:16:be:5a:53:6d:89: 79:c2:9d:6c:2e:08:5e:49:df:9e:c9:8b:e0:b1:9c:2e:e9:90: f6:3a:27:52:2b:3a:9b:6b:dc:08:63:d8:47:bf:a3:8b:39:5b: ef:2d:ea:f6:05:d3:d6:58:2a:b9:e2:de:40:9b:da:39:ee:3f: 32:53:1f:84:75:f7:2a:d1:b1:32:e9:05:c4:e0:1e:fd:f0:1b: e1:1c:33:4d:8c:c9:73:49:01:c8:cc:d6:dc:40:69:e5:c0:4f: 62:e7:7f:75:61:31:36:34:fb:ac:13:81:f1:17:4e:c8:b7:9a: 88:ff:0a:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTA0MjUwNjMyNTRaFw0yNTA1MDIwNjMyNTRaMBgxFjAUBgNV BAMTDTY4MGIyYzk2LTJlZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu6XvfrdViONVaXGk1IQ1jieWaYLipubCj0eQTBqJbRjkj1YwgBZYrDge4olS3 QSxdoFkKcWzFfl9RWQ5SK3U4vmD/NLAxFnSgqVrxrPe0YEqQcil3jasFE9Dkcor4 mw/kCcGD16iLmOPlGtrwfDY7YebKx7nTFS6FJ5Dq7MtiVaoUU3MC+a5IkPLjfrA5 sZeLwJKyRdYViBQiQHHn9JIgBhsGmQYYbFlNwQpf4oxY1b67vIlbjL/9ZJ64k/eS PCciXSTDRQkkkBw+7VHxOcg/llt0028hKJ3hdlypa3I5qJmMI4NDGgSU4NJ+HErJ q9H5DJ46bUGnUWscQVo4wDqBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUvik1rPv kXPvRPDuR6qeuDvXWkUwHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKp+lN2+Ny5HvK4d3p010KuPhWFr1q1IOUtFjbmcdV5Amn9dFi4w1ayz raFGMczeBcWIJpw2wFXS89G4GqvMhO0jqZqfV/uJvNa3YhtTPETiYDsFv9q0tCtY tdZTxePdWR/O2VgVhQT+GUFyRlCW1TkyXsnKNBJzxaW5YUpa6TDUzhCL9UY5Oz/u KBa+WlNtiXnCnWwuCF5J357Ji+CxnC7pkPY6J1IrOptr3Ahj2Ee/o4s5W+8t6vYF 09ZYKrni3kCb2jnuPzJTH4R19yrRsTLpBcTgHv3wG+EcM02MyXNJAcjM1txAaeXA T2Lnf3VhMTY0+6wTgfEXTsi3moj/Ct0= -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:54 2025 by rpki-client