$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft File: QVO6SZpE5-wQQcYO9_NprGI1eqg.mft (raw, json) Hash identifier: CmgmuejuPZqwFyQg8SJD9IwFifRAY1veM9R+yisocrg= Subject key identifier: 71:E7:D0:D5:C9:FF:D3:CB:54:74:FF:FD:EA:C7:AA:68:86:C4:8B:1F Authority key identifier: 41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 Certificate issuer: /CN=A91423C1/serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft Manifest number: 0119 Signing time: Fri 25 Apr 2025 04:03:43 +0000 Manifest this update: Fri 25 Apr 2025 04:03:43 +0000 Manifest next update: Fri 02 May 2025 04:03:43 +0000 Files and hashes: 1: QVO6SZpE5-wQQcYO9_NprGI1eqg.crl (hash: cQgeJahuiU+zGqezg+J5fTt3EZuX3cQfR9+73DqZGxU=) 2: 3B83B2F4E30611EFA4B67C52C4F9AE02.roa (hash: FYt2RufvdZwSZ5zQDPicr3Fxe0XZIP7npmhW3SH2a8Y=) 3: 5A5E75E2E30611EFAD52D552C4F9AE02.roa (hash: nu5dbwOLlZ13YTkUDnySdOEtRFAsDLmzMv0XGB5W4wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:03:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Validity Not Before: Apr 25 04:03:43 2025 GMT Not After : May 2 04:03:43 2025 GMT Subject: CN=680b099f-24c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a5:64:69:78:a3:07:74:06:23:85:e3:2a:54: d6:9e:37:71:1e:d1:5e:3b:df:19:43:14:24:1d:0f: 60:db:21:af:3d:2f:34:d0:25:ba:f9:ec:dd:da:87: 8f:d7:96:d1:da:b6:7c:eb:11:2f:e0:46:f1:7e:17: 61:e2:29:93:c0:bd:72:96:68:8d:26:29:d3:89:2e: 78:fd:0e:fd:2e:28:b7:99:7e:b9:a2:e6:e9:23:1c: 27:25:9f:b5:6f:53:84:d2:1c:63:ea:e1:88:a6:43: ba:f2:e7:23:6d:b5:ea:63:74:46:92:e3:0a:7f:bf: 50:2a:47:6d:cd:c7:d4:84:42:10:10:a8:5d:a1:4c: 7a:a6:98:e0:b8:af:8c:e7:73:9e:24:d4:b0:6a:8e: 63:d3:47:38:bf:d9:8d:22:4e:22:47:53:fe:d7:0f: ba:6b:e1:18:0a:7c:1a:8a:09:c1:16:18:14:4e:cc: 4d:f1:24:da:f2:f1:20:18:97:f5:b2:53:c7:e9:2f: e6:89:1e:ce:a5:b4:89:64:c8:25:b8:6b:a4:bf:56: 26:30:e3:08:27:df:45:01:d2:01:67:48:c6:c9:0f: d4:4d:91:85:ab:47:0b:c7:1c:e1:74:23:bd:70:28: 1b:2c:5b:5f:68:71:27:91:f5:08:69:8c:e4:95:28: 96:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E7:D0:D5:C9:FF:D3:CB:54:74:FF:FD:EA:C7:AA:68:86:C4:8B:1F X509v3 Authority Key Identifier: keyid:41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:be:d2:56:98:15:62:ee:d2:c4:ff:8b:f7:c3:8a:d6:5b:01: 70:90:4a:bc:a1:4a:9c:dc:b7:96:5f:d9:36:2f:af:1b:f9:e7: 29:ca:43:d1:b7:d2:fb:be:65:d1:23:00:3a:87:be:b6:f1:58: 73:72:fe:6b:a9:de:ac:41:f6:0c:c4:a3:6e:a4:fd:d8:da:df: 96:a4:1a:25:25:00:e1:9e:15:52:f8:1a:ce:5c:64:6a:ce:aa: 4a:37:bc:e9:8e:d4:c3:98:a2:47:a7:ca:4f:8a:61:be:85:c7: 08:2d:38:80:7d:e7:43:36:81:f9:6b:64:25:0e:75:ca:2e:76: c5:aa:e7:56:fb:74:90:1e:3a:f8:cb:4b:62:6d:c6:ea:73:b3: bb:85:6f:69:bf:d4:5e:e5:3e:b7:ba:f2:41:74:bb:52:51:90: 25:b4:ff:43:ff:95:e3:5d:db:b6:6b:13:a8:f0:94:83:eb:cb: e8:0a:6d:3e:31:78:2a:e5:16:f6:18:cd:e6:a0:79:ce:a1:8f: a6:78:db:86:61:9c:ab:7c:60:08:35:39:d9:b8:6f:92:44:d4: 60:8e:d7:3f:c8:ec:d7:2b:e5:e5:b5:ff:25:e7:83:88:3e:e9: 4a:ec:47:86:31:fc:6b:38:2c:ce:12:ec:c0:8f:53:26:0a:d1: e9:f4:eb:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDQxNTNCQTQ5OUE0NEU3RUMxMDQxQzYwRUY3RjM2OUFD NjIzNTdBQTgwHhcNMjUwNDI1MDQwMzQzWhcNMjUwNTAyMDQwMzQzWjAYMRYwFAYD VQQDEw02ODBiMDk5Zi0yNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qVkaXijB3QGI4XjKlTWnjdxHtFeO98ZQxQkHQ9g2yGvPS800CW6+ezd2oeP 15bR2rZ86xEv4Ebxfhdh4imTwL1ylmiNJinTiS54/Q79Lii3mX65oubpIxwnJZ+1 b1OE0hxj6uGIpkO68ucjbbXqY3RGkuMKf79QKkdtzcfUhEIQEKhdoUx6ppjguK+M 53OeJNSwao5j00c4v9mNIk4iR1P+1w+6a+EYCnwaignBFhgUTsxN8STa8vEgGJf1 slPH6S/miR7OpbSJZMgluGukv1YmMOMIJ99FAdIBZ0jGyQ/UTZGFq0cLxxzhdCO9 cCgbLFtfaHEnkfUIaYzklSiWiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHn0NXJ /9PLVHT//erHqmiGxIsfMB8GA1UdIwQYMBaAFEFTukmaROfsEEHGDvfzaaxiNXqo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS8wRTBERkE5ODhD Q0YxMUVFOTZGNEU2NUFDNEY5QUUwMi9RVk82U1pwRTUtd1FRY1lPOV9OcHJHSTFl cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWTzZTWnBFNS13UVFjWU85X05wckdJMWVxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS8wRTBERkE5ODhDQ0YxMUVFOTZGNEU2NUFDNEY5QUUwMi9RVk82U1pwRTUt d1FRY1lPOV9OcHJHSTFlcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpvtJWmBVi7tLE/4v3w4rWWwFwkEq8oUqc3LeWX9k2L68b+ecpykPR t9L7vmXRIwA6h7628Vhzcv5rqd6sQfYMxKNupP3Y2t+WpBolJQDhnhVS+BrOXGRq zqpKN7zpjtTDmKJHp8pPimG+hccILTiAfedDNoH5a2QlDnXKLnbFqudW+3SQHjr4 y0tibcbqc7O7hW9pv9Re5T63uvJBdLtSUZAltP9D/5XjXdu2axOo8JSD68voCm0+ MXgq5Rb2GM3moHnOoY+meNuGYZyrfGAINTnZuG+SRNRgjtc/yOzXK+Xltf8l54OI PulK7EeGMfxrOCzOEuzAj1MmCtHp9OsL -----END CERTIFICATE-----Generated at Sun Apr 27 05:31:10 2025 by rpki-client