$ rpki-client -vvf rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft File: 1QTYGQKxg4soKun0XE3D-BeOJO4.mft (raw, json) Hash identifier: JEWz/EcUiAAIqVTsz0x6xf+g8kFEwHomFXtt+/xco8Q= Subject key identifier: 7A:3A:37:69:EE:CD:18:67:C0:E2:33:65:24:B7:A5:F8:CB:97:7F:85 Authority key identifier: D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE Certificate issuer: /CN=A913A74D/serialNumber=D504D81902B1838B282AE9F45C4DC3F8178E24EE Certificate serial: 0853 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft Manifest number: 084D Signing time: Thu 24 Apr 2025 20:36:17 +0000 Manifest this update: Thu 24 Apr 2025 20:36:17 +0000 Manifest next update: Thu 01 May 2025 20:36:17 +0000 Files and hashes: 1: 1QTYGQKxg4soKun0XE3D-BeOJO4.crl (hash: HbjYqr46+bd4tf+YSijO1t3U+nTaOiVMZSsB/mWNgy8=) 2: 833D8D9AC72711EA8890F311C4F9AE02.roa (hash: tIeSqHeCHUuOJ39Gd9YUOSN/PIr6jNAJWJM2EB0gZPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.crl rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A74D, serialNumber=D504D81902B1838B282AE9F45C4DC3F8178E24EE Validity Not Before: Apr 24 20:36:17 2025 GMT Not After : May 1 20:36:17 2025 GMT Subject: CN=680aa0c1-ab75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:67:68:68:ad:72:04:e0:05:f7:e3:84:c3:e0: a1:69:5a:4a:8c:02:5a:2e:61:15:ae:21:16:89:c4: 85:75:83:a1:90:45:24:ce:ea:9f:3d:c5:62:25:a5: 60:da:86:55:b8:75:2c:91:0b:9a:b4:c9:8c:15:ff: a8:92:64:5c:94:2a:12:9e:f5:8d:e4:41:34:5c:33: a7:9d:42:6a:c2:65:c3:14:86:16:6f:49:ae:63:ff: a5:9c:bc:d7:1c:b9:c9:9b:98:96:b4:80:d7:48:e6: 9a:fc:5c:a8:9f:71:0c:a7:4e:21:86:59:db:05:d4: a9:b9:6b:b4:a0:22:57:dc:ea:51:26:56:c6:d8:65: 93:18:f7:59:f4:90:08:25:c2:ce:f1:8b:50:54:e6: 9a:7c:36:11:24:43:78:35:28:fb:53:cc:7b:fe:17: f6:28:b8:99:b3:7f:08:ea:ad:b3:7e:45:13:32:06: 00:45:5e:25:22:f9:c9:85:2e:77:8c:65:e6:22:ed: 78:60:5b:6d:53:f2:03:50:8a:70:84:59:e5:6b:e0: 59:ea:2a:cd:cb:0d:73:0f:72:20:81:9a:e3:07:f0: d0:56:28:2a:49:df:b6:41:d1:b1:07:81:84:93:e1: 28:6d:a6:84:03:b6:55:87:24:a0:41:86:ba:f6:fc: 18:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3A:37:69:EE:CD:18:67:C0:E2:33:65:24:B7:A5:F8:CB:97:7F:85 X509v3 Authority Key Identifier: keyid:D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:26:c2:01:fe:07:fd:dd:61:e2:8c:0e:9a:dc:ee:f1:98:56: 51:b8:c0:62:41:4a:03:d0:c2:3d:9a:27:a0:48:cc:8b:5e:e9: 01:5c:dd:03:36:7f:9c:cf:c8:1f:2c:fc:ea:27:f1:c8:65:2a: 4b:4b:cc:e3:d2:46:63:9f:69:b4:5f:8b:c7:29:bd:f3:9a:fe: c1:ed:5f:bd:ba:d4:12:20:d5:5d:81:f9:79:06:f0:4d:af:4a: 17:79:cf:e1:24:6a:27:8f:2f:c7:1e:78:66:35:a8:61:76:90: 3c:c0:0a:0c:be:7e:10:3e:e4:ff:36:5e:e4:e7:00:30:1b:7a: ac:58:cb:86:ab:d1:5a:18:3b:24:2e:1e:e7:a0:b7:b0:ab:d2: af:ad:4f:76:b3:e1:76:59:9b:32:6b:30:8a:86:c3:39:26:59: 89:43:52:fe:56:ea:40:4b:8f:a7:c7:dd:53:d3:8d:e0:b7:70: d5:b4:dd:9e:b2:48:eb:0e:e5:6d:7e:04:c7:8b:d3:c5:c4:15: 63:ec:5f:cf:33:42:5b:ac:05:ab:7a:83:1f:3b:ba:7c:5c:9c: 48:c7:35:0a:75:39:27:c8:bf:e3:81:33:7a:b4:5c:fa:35:74: ba:f1:00:a1:a0:6c:5c:27:93:db:9d:67:c2:5d:a2:24:fd:8f: 9d:6d:5d:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3NEQxMTAvBgNVBAUTKEQ1MDREODE5MDJCMTgzOEIyODJBRTlGNDVDNERDM0Y4 MTc4RTI0RUUwHhcNMjUwNDI0MjAzNjE3WhcNMjUwNTAxMjAzNjE3WjAYMRYwFAYD VQQDEw02ODBhYTBjMS1hYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2doaK1yBOAF9+OEw+ChaVpKjAJaLmEVriEWicSFdYOhkEUkzuqfPcViJaVg 2oZVuHUskQuatMmMFf+okmRclCoSnvWN5EE0XDOnnUJqwmXDFIYWb0muY/+lnLzX HLnJm5iWtIDXSOaa/Fyon3EMp04hhlnbBdSpuWu0oCJX3OpRJlbG2GWTGPdZ9JAI JcLO8YtQVOaafDYRJEN4NSj7U8x7/hf2KLiZs38I6q2zfkUTMgYARV4lIvnJhS53 jGXmIu14YFttU/IDUIpwhFnla+BZ6irNyw1zD3IggZrjB/DQVigqSd+2QdGxB4GE k+EobaaEA7ZVhySgQYa69vwYIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHo6N2nu zRhnwOIzZSS3pfjLl3+FMB8GA1UdIwQYMBaAFNUE2BkCsYOLKCrp9FxNw/gXjiTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTc0RC82OEExRDU1QUM3 MjYxMUVBOTk1NUU0MTBDNEY5QUUwMi8xUVRZR1FLeGc0c29LdW4wWEUzRC1CZU9K TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRVFlHUUt4ZzRzb0t1bjBYRTNELUJlT0pPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0RC82OEExRDU1QUM3MjYxMUVBOTk1NUU0MTBDNEY5QUUwMi8xUVRZR1FLeGc0 c29LdW4wWEUzRC1CZU9KTzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfJsIB/gf93WHijA6a3O7xmFZRuMBiQUoD0MI9miegSMyLXukBXN0D Nn+cz8gfLPzqJ/HIZSpLS8zj0kZjn2m0X4vHKb3zmv7B7V+9utQSINVdgfl5BvBN r0oXec/hJGonjy/HHnhmNahhdpA8wAoMvn4QPuT/Nl7k5wAwG3qsWMuGq9FaGDsk Lh7noLewq9KvrU92s+F2WZsyazCKhsM5JlmJQ1L+VupAS4+nx91T043gt3DVtN2e skjrDuVtfgTHi9PFxBVj7F/PM0JbrAWreoMfO7p8XJxIxzUKdTknyL/jgTN6tFz6 NXS68QChoGxcJ5PbnWfCXaIk/Y+dbV1J -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:33 2025 by rpki-client