$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: YQV+MOCrPcqc6WxEOVJPtnZORJs9UUGjHymkrVJTm4U= Subject key identifier: C9:71:62:36:C1:AD:07:EA:19:0F:07:91:C5:B1:26:98:95:30:16:60 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0ABD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0AB7 Signing time: Thu 24 Apr 2025 19:22:18 +0000 Manifest this update: Thu 24 Apr 2025 19:22:18 +0000 Manifest next update: Thu 01 May 2025 19:22:17 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: Gw6x4RZRwHtoZIl+ra6qDw5TN0HrczREgt2fpnADywg=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2749 (0xabd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Apr 24 19:22:18 2025 GMT Not After : May 1 19:22:17 2025 GMT Subject: CN=680a8f6a-25df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f1:bf:03:d5:80:02:0b:5e:9a:c4:f8:9a:6a: 9e:92:34:3c:20:fe:d7:28:dd:5a:88:4f:e1:51:3d: fd:80:28:15:a1:86:1a:23:d9:14:4a:cf:60:6f:a5: 79:c3:8f:e7:c1:07:51:b4:37:59:1e:7b:42:73:36: ff:c0:da:cb:9f:02:7f:bd:19:97:20:89:e7:1d:d2: 07:a8:59:44:d7:d5:c2:60:58:f5:4b:73:a9:2c:6b: d8:28:56:0a:4f:5d:c5:56:b8:93:24:6d:6d:14:78: 5f:a3:dc:01:be:8f:7f:c3:ba:4a:36:59:3a:29:9c: c4:af:23:43:90:23:ac:c0:95:60:e9:e9:a8:08:e5: ce:b3:ba:bd:fe:08:83:b2:2b:a3:d6:ba:a9:81:84: 21:40:4e:26:c2:63:d2:c4:c8:94:8c:65:0b:95:15: 3a:07:5c:86:9a:55:6b:e0:ad:39:de:f4:76:80:48: 53:cd:a6:2d:17:03:b4:09:1b:46:c1:06:2b:0c:89: ee:7d:29:9a:f5:1a:e8:92:f3:75:3b:7f:7e:8b:bc: bf:80:1a:1f:98:cf:6a:e5:de:41:9b:44:91:c2:a1: ff:d6:53:0b:f3:db:49:7c:4e:dd:9d:f0:37:af:57: 50:c9:17:7e:5e:85:b4:34:c9:fe:1c:35:1c:74:8d: 93:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:71:62:36:C1:AD:07:EA:19:0F:07:91:C5:B1:26:98:95:30:16:60 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:0e:03:52:55:7d:2e:f7:ec:d0:7b:83:71:48:f9:bf:b6:0f: a7:ab:9c:fa:e6:50:40:cf:90:f0:ab:22:f9:76:7f:fe:23:32: 0a:3d:44:1f:08:29:7e:08:fa:4d:c4:5e:ef:f6:6a:63:b8:ed: 5d:b0:11:ad:2a:cc:6d:60:37:59:ea:2a:85:ec:0f:e0:73:bb: 99:0a:b2:94:f4:30:d8:08:3b:4c:79:13:17:44:f8:f4:4e:1d: 8c:49:13:a5:a2:79:87:9b:98:b9:06:94:37:4d:fa:9a:67:b0: 8f:43:73:68:3d:2b:1c:f1:42:59:4f:cb:6a:31:c1:d7:b7:99: e8:9c:68:9d:a6:a4:c9:03:61:41:16:bb:cc:44:83:23:07:4a: 5b:73:47:35:42:aa:e6:2b:08:e7:41:8b:63:ec:fd:41:53:2d: f8:cd:71:dc:51:4a:fe:ea:94:e1:5d:dc:1e:66:8b:ec:66:43: d2:09:e7:00:cc:58:19:cf:67:d7:37:0d:78:84:17:e1:12:9c: c6:42:f9:1c:d3:ab:29:f8:b7:c8:f2:c8:f6:1b:dc:a6:3e:f0: 49:a8:69:ec:7a:ca:d1:2b:bc:93:91:6d:c9:2d:2f:af:78:49: ec:ac:d0:69:8b:d4:1f:40:a2:f5:f9:37:1f:f6:af:16:a6:9d: fa:2d:00:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwNDI0MTkyMjE4WhcNMjUwNTAxMTkyMjE3WjAYMRYwFAYD VQQDEw02ODBhOGY2YS0yNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/G/A9WAAgtemsT4mmqekjQ8IP7XKN1aiE/hUT39gCgVoYYaI9kUSs9gb6V5 w4/nwQdRtDdZHntCczb/wNrLnwJ/vRmXIInnHdIHqFlE19XCYFj1S3OpLGvYKFYK T13FVriTJG1tFHhfo9wBvo9/w7pKNlk6KZzEryNDkCOswJVg6emoCOXOs7q9/giD siuj1rqpgYQhQE4mwmPSxMiUjGULlRU6B1yGmlVr4K053vR2gEhTzaYtFwO0CRtG wQYrDInufSma9RrokvN1O39+i7y/gBofmM9q5d5Bm0SRwqH/1lML89tJfE7dnfA3 r1dQyRd+XoW0NMn+HDUcdI2TtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlxYjbB rQfqGQ8HkcWxJpiVMBZgMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGDgNSVX0u9+zQe4NxSPm/tg+nq5z65lBAz5DwqyL5dn/+IzIKPUQf CCl+CPpNxF7v9mpjuO1dsBGtKsxtYDdZ6iqF7A/gc7uZCrKU9DDYCDtMeRMXRPj0 Th2MSROlonmHm5i5BpQ3TfqaZ7CPQ3NoPSsc8UJZT8tqMcHXt5nonGidpqTJA2FB FrvMRIMjB0pbc0c1QqrmKwjnQYtj7P1BUy34zXHcUUr+6pThXdweZovsZkPSCecA zFgZz2fXNw14hBfhEpzGQvkc06sp+LfI8sj2G9ymPvBJqGnsesrRK7yTkW3JLS+v eEnsrNBpi9QfQKL1+Tcf9q8Wpp36LQC4 -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:06 2025 by rpki-client