$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft File: qXEsy37uAkrriHZ7di4Qk7FA_24.mft (raw, json) Hash identifier: m+FmBkcU4h2Wk2m3OoBnsOmRpwvc2BnbRJ6eXGH/leo= Subject key identifier: E5:5A:4D:1F:E8:9C:12:46:30:0E:EC:17:5A:47:C9:D4:4C:42:53:E0 Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 0FF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft Manifest number: 0FE5 Signing time: Thu 24 Apr 2025 17:28:08 +0000 Manifest this update: Thu 24 Apr 2025 17:28:07 +0000 Manifest next update: Thu 01 May 2025 17:28:07 +0000 Files and hashes: 1: qXEsy37uAkrriHZ7di4Qk7FA_24.crl (hash: wUWL/E+m/9IJwp5bUyavwUxDF346iwPEB+yFaivAQbM=) 2: 07FF4ABC5A1011EAA8B1B456C4F9AE02.roa (hash: /71nbSiWt0RVe5ogZCQfFYyxEZ4Mr3Z7iCfhqhLbM+k=) 3: 1BCA5982656311ECA4E81323C4F9AE02.roa (hash: JhAWbCAMrXKEKj1b3MlbXCTMtcBsS+XKDtYcGnLBqlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4087 (0xff7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A, serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Validity Not Before: Apr 24 17:28:07 2025 GMT Not After : May 1 17:28:07 2025 GMT Subject: CN=680a74a7-2f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:89:90:9f:14:63:bd:9a:68:c1:dc:55:66:3c: b8:bd:e0:c6:53:b3:14:d7:e9:da:5c:10:40:1e:55: 08:61:d4:85:2f:86:fe:80:21:4f:62:e3:fa:0e:33: ac:80:69:ca:55:ff:96:4c:e2:56:8b:c6:a2:9e:8f: 69:0f:5c:b0:78:c6:c4:6f:38:a3:ef:11:41:5b:07: 41:a8:71:6f:8a:08:97:c9:cb:ce:a7:dc:ef:69:3a: 64:6e:f3:a0:a4:26:16:1f:00:d3:47:e8:a0:c5:48: ec:77:87:90:48:2f:6a:0f:97:50:a2:cf:3d:9f:ac: 6f:8e:8b:72:8f:52:7d:ff:23:32:a6:44:cb:b3:e2: 64:7b:cb:0b:73:42:73:7b:63:30:be:e5:03:8f:11: 8d:ed:9e:18:33:ac:71:0e:4a:3e:0d:38:ba:0d:36: ea:12:09:f2:81:26:b5:92:71:23:85:a7:25:d0:2f: e6:dd:3f:70:ef:db:fb:f9:9b:96:12:f8:a0:e3:07: 43:cb:3b:a4:21:f9:23:57:96:23:86:45:fb:0c:3e: 1d:67:17:4b:9e:b2:db:1a:1a:0c:80:f5:0f:3f:18: 08:32:a0:f8:b9:5f:76:f4:04:c1:5f:be:79:39:ec: 3a:98:f7:77:d6:b5:87:79:87:87:28:37:5d:a2:48: 9c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5A:4D:1F:E8:9C:12:46:30:0E:EC:17:5A:47:C9:D4:4C:42:53:E0 X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:3d:96:10:27:44:2a:cf:c1:8c:72:52:8f:93:0c:17:80:cb: 81:e5:fe:47:e4:e0:24:23:03:23:c4:52:83:3b:4d:2f:60:00: 7c:58:fc:d5:68:5f:5d:d9:7f:a2:96:db:24:b4:f5:fa:da:75: b1:67:e4:80:75:c6:f7:90:25:66:6a:3b:ee:11:f1:62:4b:4d: c9:45:65:36:e5:2c:1c:8b:58:1d:11:40:8d:67:db:3e:c4:50: f7:aa:6a:a7:d9:e9:e9:53:03:7c:30:21:ea:dd:0f:31:8d:26: 0b:14:13:44:d8:00:1a:8e:0f:79:4e:40:89:5a:80:2c:29:11: 87:fa:c1:c9:c9:e3:4d:b3:94:1e:59:f8:51:9d:5e:42:92:1a: 0c:30:8f:26:f4:41:3d:cd:36:59:44:30:70:4a:bf:43:ba:3b: f7:d1:60:78:6e:ec:20:6c:a2:98:c9:db:16:63:a4:8c:6e:25: 81:ca:5d:8f:46:ce:e1:3c:ad:82:3c:e0:38:50:a3:d6:27:fd: cf:21:2a:06:d1:f8:fa:78:d9:23:35:0c:6f:6f:0b:91:71:81: 62:61:03:81:0a:5a:6c:58:ff:71:db:2d:4a:30:92:ed:7c:9f: 92:2e:90:45:7a:39:51:1f:ca:4c:fe:91:51:3b:a0:03:36:bd: 0d:3e:51:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjUwNDI0MTcyODA3WhcNMjUwNTAxMTcyODA3WjAYMRYwFAYD VQQDEw02ODBhNzRhNy0yZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzImQnxRjvZpowdxVZjy4veDGU7MU1+naXBBAHlUIYdSFL4b+gCFPYuP6DjOs gGnKVf+WTOJWi8aino9pD1yweMbEbzij7xFBWwdBqHFvigiXycvOp9zvaTpkbvOg pCYWHwDTR+igxUjsd4eQSC9qD5dQos89n6xvjotyj1J9/yMypkTLs+Jke8sLc0Jz e2MwvuUDjxGN7Z4YM6xxDko+DTi6DTbqEgnygSa1knEjhacl0C/m3T9w79v7+ZuW Evig4wdDyzukIfkjV5YjhkX7DD4dZxdLnrLbGhoMgPUPPxgIMqD4uV929ATBX755 Oew6mPd31rWHeYeHKDddokicrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVaTR/o nBJGMA7sF1pHydRMQlPgMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI2QS8wODc1RjQ5NjRDNzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFr cnJpSFo3ZGk0UWs3RkFfMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOPZYQJ0Qqz8GMclKPkwwXgMuB5f5H5OAkIwMjxFKDO00vYAB8WPzV aF9d2X+iltsktPX62nWxZ+SAdcb3kCVmajvuEfFiS03JRWU25Swci1gdEUCNZ9s+ xFD3qmqn2enpUwN8MCHq3Q8xjSYLFBNE2AAajg95TkCJWoAsKRGH+sHJyeNNs5Qe WfhRnV5CkhoMMI8m9EE9zTZZRDBwSr9Dujv30WB4buwgbKKYydsWY6SMbiWByl2P Rs7hPK2CPOA4UKPWJ/3PISoG0fj6eNkjNQxvbwuRcYFiYQOBClpsWP9x2y1KMJLt fJ+SLpBFejlRH8pM/pFRO6ADNr0NPlEa -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:48 2025 by rpki-client