$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: jMgmALTw4duEnSnolB2Ex6VYj5ObZuEQMzHpdz9OlcA= Subject key identifier: DF:CA:EC:7F:87:58:47:F2:65:CE:CA:6E:BB:5D:85:7C:CE:AE:25:E5 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 0288 Signing time: Fri 25 Apr 2025 01:22:04 +0000 Manifest this update: Fri 25 Apr 2025 01:22:04 +0000 Manifest next update: Fri 02 May 2025 01:22:04 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: cn8AyBd0DmcP7CJFo/cB2zewCT5xJ/kXiavHciqUZtc=) 2: 3522CF4E168811EF8040817EC4F9AE02.roa (hash: bEx+57BQwSmXNBcGQeSfgjX5vb+zZEaNP/mDVmKg8PE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Apr 25 01:22:04 2025 GMT Not After : May 2 01:22:04 2025 GMT Subject: CN=680ae3bc-2fd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8e:3b:8e:a9:42:ed:42:02:6b:62:3f:88:8c: 9b:b8:15:fc:71:04:61:b6:72:28:76:00:4c:3e:f0: 87:bb:57:b8:c3:41:59:fa:4a:1b:52:3e:8e:0a:d1: 7d:6c:bb:86:49:93:f1:fd:0b:8d:2d:75:7a:fc:3d: 32:8d:43:21:00:67:dd:8b:36:39:82:78:f8:bd:85: ce:7b:19:a4:31:ec:50:5a:5b:8a:ca:09:dd:80:63: d7:1c:d7:15:f2:ca:3e:09:84:09:80:79:7e:6d:c5: 8e:64:17:ee:fd:c2:eb:6f:58:81:62:5d:13:4a:1b: 22:6e:bf:fe:1e:ce:92:77:ba:09:9a:fa:b8:35:75: 8d:bf:ec:f8:70:a0:96:8b:5a:a5:de:c2:0f:ce:1c: 49:8b:14:43:86:f7:2c:ac:55:00:d1:92:4d:65:ee: 16:61:7a:af:5f:14:44:0b:b5:a1:48:1e:8e:10:c6: d2:3e:a1:eb:90:86:b4:97:aa:76:ee:76:09:72:02: 35:ae:04:60:6d:ee:ff:d8:b6:20:46:27:09:5b:7c: d8:6b:09:96:33:ae:51:e1:01:7b:95:0c:e5:6a:d6: f1:17:2a:df:c0:8c:cb:8e:23:15:44:bc:98:69:1a: 1a:4d:79:03:02:a3:06:07:a0:ed:ca:98:c4:33:0a: 15:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CA:EC:7F:87:58:47:F2:65:CE:CA:6E:BB:5D:85:7C:CE:AE:25:E5 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:67:19:6b:a9:71:fc:12:86:cd:b4:07:25:cd:bf:5d:44:c3: fc:3d:36:ac:f8:8f:0a:08:d6:ea:92:63:cd:40:fc:93:eb:92: 7b:09:39:9a:a9:c5:fb:60:34:8d:9e:97:88:9a:e3:6d:c6:e3: 3e:52:4f:f2:c2:3f:ad:4c:0f:4d:db:9e:fc:fd:9b:0f:14:ee: 57:1c:be:92:bb:88:fe:5e:f7:49:fc:9b:18:10:b6:1f:10:91: 6e:60:fb:68:83:be:9f:d7:9a:d6:73:53:95:63:b2:80:c1:f5: 34:eb:84:01:fb:a4:a5:05:d5:ea:b1:22:bb:9b:78:a5:65:e5: d3:da:0f:27:03:29:fa:a0:ac:b9:f1:5b:9b:23:a1:f3:21:28: a9:78:74:27:f8:30:06:36:f8:44:de:5c:99:b3:3e:71:5e:9d: c4:c2:ca:36:de:64:9c:d1:a7:4e:33:53:b8:a7:55:c1:b7:10: df:10:4a:c8:5a:1f:e4:68:33:47:70:5c:87:57:04:32:d3:b4: cb:f9:81:1c:99:82:aa:40:d9:07:6b:a4:58:c1:63:4a:a6:25: 2c:f9:3c:98:1d:95:f3:0d:44:08:04:b8:0f:83:24:dd:6d:29: b8:87:81:ed:7f:fc:54:8e:e7:95:4e:19:5c:07:a7:da:35:9a: 2f:cf:96:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUwNDI1MDEyMjA0WhcNMjUwNTAyMDEyMjA0WjAYMRYwFAYD VQQDEw02ODBhZTNiYy0yZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY47jqlC7UICa2I/iIybuBX8cQRhtnIodgBMPvCHu1e4w0FZ+kobUj6OCtF9 bLuGSZPx/QuNLXV6/D0yjUMhAGfdizY5gnj4vYXOexmkMexQWluKygndgGPXHNcV 8so+CYQJgHl+bcWOZBfu/cLrb1iBYl0TShsibr/+Hs6Sd7oJmvq4NXWNv+z4cKCW i1ql3sIPzhxJixRDhvcsrFUA0ZJNZe4WYXqvXxREC7WhSB6OEMbSPqHrkIa0l6p2 7nYJcgI1rgRgbe7/2LYgRicJW3zYawmWM65R4QF7lQzlatbxFyrfwIzLjiMVRLyY aRoaTXkDAqMGB6DtypjEMwoViwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/K7H+H WEfyZc7KbrtdhXzOriXlMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdZxlrqXH8EobNtAclzb9dRMP8PTas+I8KCNbqkmPNQPyT65J7CTma qcX7YDSNnpeImuNtxuM+Uk/ywj+tTA9N2578/ZsPFO5XHL6Su4j+XvdJ/JsYELYf EJFuYPtog76f15rWc1OVY7KAwfU064QB+6SlBdXqsSK7m3ilZeXT2g8nAyn6oKy5 8VubI6HzISipeHQn+DAGNvhE3lyZsz5xXp3Ewso23mSc0adOM1O4p1XBtxDfEErI Wh/kaDNHcFyHVwQy07TL+YEcmYKqQNkHa6RYwWNKpiUs+TyYHZXzDUQIBLgPgyTd bSm4h4Htf/xUjueVThlcB6faNZovz5aS -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:02 2025 by rpki-client