$ rpki-client -vvf rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft File: q0w-Na78VbW6NYykBu2WJqQiD9A.mft (raw, json) Hash identifier: 4nu/PM5V4lHtvU6gN7yTFsTTfOzLxF5mOhk3PKQuZOI= Subject key identifier: EE:C4:69:45:EF:D8:73:20:8D:07:27:5B:93:48:98:88:CD:2E:6C:48 Authority key identifier: AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 Certificate issuer: /CN=A914A553/serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Certificate serial: 0AA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft Manifest number: 0A97 Signing time: Thu 24 Apr 2025 19:28:28 +0000 Manifest this update: Thu 24 Apr 2025 19:28:27 +0000 Manifest next update: Thu 01 May 2025 19:28:27 +0000 Files and hashes: 1: q0w-Na78VbW6NYykBu2WJqQiD9A.crl (hash: sLleyYvnYZnsHpgwF5Vr9xPVX4MEuqaJkJCpmIvrAhA=) 2: 7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa (hash: kRz4OHfhPxe5EPvefvMi3Xao6izuUxMq6U5mJJMpf2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2725 (0xaa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A553, serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Validity Not Before: Apr 24 19:28:27 2025 GMT Not After : May 1 19:28:27 2025 GMT Subject: CN=680a90dc-5f43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:de:94:f5:74:90:88:51:ba:65:40:c9:67:66: 42:23:b6:7d:f4:74:07:eb:d9:da:ec:fc:49:be:35: f9:67:fe:8a:97:14:1c:d5:f3:17:f7:6c:c7:c3:17: 0a:88:03:1d:aa:66:71:f9:7f:9a:71:48:c8:c1:cd: 21:96:cc:eb:8e:20:d5:3f:09:75:f1:0c:85:04:b1: 90:08:e3:1d:69:6c:c6:4d:c8:84:10:2d:d8:05:5b: 5b:47:3a:ee:55:d4:53:52:fb:b0:65:70:44:fc:a4: 68:e4:83:b8:49:c6:d7:71:84:0e:72:8c:f4:3f:dc: 0e:83:13:38:77:d3:7a:e8:94:7f:61:ef:47:71:c1: f2:c0:29:b4:0c:7d:ae:4f:53:86:ac:2f:26:f3:16: 6f:30:83:0e:fa:2b:be:82:a4:ba:d6:51:77:a2:48: d7:fb:c4:ab:a1:b6:e6:f9:53:4a:aa:4b:fb:fd:f9: 65:d0:06:89:27:a7:1e:39:fe:dd:6e:31:e1:d9:e3: 40:d2:4e:01:0a:48:45:af:6f:16:08:b1:c9:a5:62: 8b:45:34:ee:9a:a6:6e:91:ff:48:2a:d8:3f:1a:8a: ad:46:7a:9a:0c:78:54:f4:17:4a:9b:0a:a4:b3:09: ee:f4:05:09:92:a4:c2:9c:be:7f:a1:59:8a:41:fe: 91:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C4:69:45:EF:D8:73:20:8D:07:27:5B:93:48:98:88:CD:2E:6C:48 X509v3 Authority Key Identifier: keyid:AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:2b:ed:c3:c4:0f:f9:e9:0e:2e:02:d5:f2:56:e9:f0:63:ee: 3b:48:98:64:b5:b7:4f:e3:6a:21:05:0a:9a:0b:62:4a:da:d9: 81:67:0c:39:56:82:c4:f2:ed:eb:d9:d1:1d:72:20:36:3e:93: f6:a6:89:f2:1d:50:f1:99:da:42:79:3a:10:e7:17:83:67:29: ba:66:4b:d0:78:5d:e2:c7:7b:5b:d9:ec:86:a7:72:82:e0:63: 33:7f:b6:ee:87:b7:4e:21:5f:28:85:55:5d:bf:46:8c:26:e4: b0:86:93:62:4e:6b:74:28:5c:24:38:6b:2f:fa:33:98:bb:d7: dd:88:a7:50:3f:2e:92:1f:d3:82:00:01:09:39:f9:8c:7a:dd: 8f:c1:39:c0:5f:62:c9:67:6d:21:57:47:1f:80:49:ff:da:96: 04:b1:47:95:33:f5:3c:32:ef:92:4b:3e:98:d8:cc:6c:fe:02: 99:ad:c5:50:a3:ac:33:80:ce:a2:d8:fb:c2:3b:d6:16:1c:ed: e1:85:80:31:33:80:19:33:e3:7f:aa:90:72:43:e0:c3:d4:5b: 2d:b9:5b:13:07:c4:c4:a1:a5:42:b0:ec:06:b2:58:13:df:e3: b6:97:0c:6f:f5:5f:d4:04:d4:70:9e:c3:e6:2a:03:01:27:b2: 4f:78:ae:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1NTMxMTAvBgNVBAUTKEFCNEMzRTM1QUVGQzU1QjVCQTM1OENBNDA2RUQ5NjI2 QTQyMjBGRDAwHhcNMjUwNDI0MTkyODI3WhcNMjUwNTAxMTkyODI3WjAYMRYwFAYD VQQDEw02ODBhOTBkYy01ZjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx96U9XSQiFG6ZUDJZ2ZCI7Z99HQH69na7PxJvjX5Z/6KlxQc1fMX92zHwxcK iAMdqmZx+X+acUjIwc0hlszrjiDVPwl18QyFBLGQCOMdaWzGTciEEC3YBVtbRzru VdRTUvuwZXBE/KRo5IO4ScbXcYQOcoz0P9wOgxM4d9N66JR/Ye9HccHywCm0DH2u T1OGrC8m8xZvMIMO+iu+gqS61lF3okjX+8Srobbm+VNKqkv7/fll0AaJJ6ceOf7d bjHh2eNA0k4BCkhFr28WCLHJpWKLRTTumqZukf9IKtg/GoqtRnqaDHhU9BdKmwqk swnu9AUJkqTCnL5/oVmKQf6RDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7EaUXv 2HMgjQcnW5NImIjNLmxIMB8GA1UdIwQYMBaAFKtMPjWu/FW1ujWMpAbtliakIg/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU1My85NUM4QTNFNDU3 QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZiVzZOWXlrQnUyV0pxUWlE OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Ewdy1OYTc4VmJXNk5ZeWtCdTJXSnFRaUQ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTU1My85NUM4QTNFNDU3QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZi VzZOWXlrQnUyV0pxUWlEOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWK+3DxA/56Q4uAtXyVunwY+47SJhktbdP42ohBQqaC2JK2tmBZww5 VoLE8u3r2dEdciA2PpP2ponyHVDxmdpCeToQ5xeDZym6ZkvQeF3ix3tb2eyGp3KC 4GMzf7buh7dOIV8ohVVdv0aMJuSwhpNiTmt0KFwkOGsv+jOYu9fdiKdQPy6SH9OC AAEJOfmMet2PwTnAX2LJZ20hV0cfgEn/2pYEsUeVM/U8Mu+SSz6Y2Mxs/gKZrcVQ o6wzgM6i2PvCO9YWHO3hhYAxM4AZM+N/qpByQ+DD1FstuVsTB8TEoaVCsOwGslgT 3+O2lwxv9V/UBNRwnsPmKgMBJ7JPeK7W -----END CERTIFICATE-----Generated at Sat Apr 26 17:07:11 2025 by rpki-client