$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft File: Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft (raw, json) Hash identifier: tuzdjAfKDzqNfuWkAh72bCZY4wz2BCD1PWY9OTiGaCo= Subject key identifier: 91:18:7D:81:DB:D0:41:1E:26:4E:25:ED:D9:48:B8:CA:8F:42:11:4B Authority key identifier: 42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 Certificate issuer: /CN=A914EAE4/serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Certificate serial: 1AFD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft Manifest number: 1AF9 Signing time: Thu 24 Apr 2025 16:19:36 +0000 Manifest this update: Thu 24 Apr 2025 16:19:35 +0000 Manifest next update: Thu 01 May 2025 16:19:35 +0000 Files and hashes: 1: Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl (hash: LmeKLp1XHYWfhxE7HTkKI3+IFWrOcXHMuxd0+gUE350=) 2: 7E1ADD74E00E11EDA7E1B640C4F9AE02.roa (hash: l8rbVcrxpBL4K1nr5JzCpQg12eUyxOnsIOK36gYUlKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6909 (0x1afd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Validity Not Before: Apr 24 16:19:35 2025 GMT Not After : May 1 16:19:35 2025 GMT Subject: CN=680a6497-75c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4d:a4:ad:83:3d:5c:8a:4a:ee:a3:07:9c:e2: 11:e8:5c:f3:a7:bd:6c:0c:22:5e:47:78:82:2b:77: ec:84:c3:32:79:05:a3:b8:a9:d9:80:8f:ad:85:15: 88:77:29:98:ea:55:8e:8f:93:a2:e5:8d:67:eb:5d: ec:4d:3f:75:05:f7:24:4a:a6:dc:7e:00:8a:c2:c8: 19:20:1d:fa:4f:64:19:e9:8a:99:11:17:f6:a8:b2: 5f:e7:25:94:5a:f6:ab:f3:43:4d:9b:96:bc:7e:30: ab:92:2f:e4:91:97:14:87:26:d2:b1:9d:8d:9d:17: 9f:cb:ed:49:45:63:23:6c:0f:48:10:2c:9b:0c:09: 92:ea:ca:17:08:58:ef:3e:bf:8f:ca:40:e3:6a:c6: cd:1d:38:df:08:9a:5e:4d:97:1c:f1:70:e0:95:20: 21:f9:6b:a6:4b:bb:cf:99:ac:fc:90:ef:43:3e:51: d1:13:db:60:a1:19:a2:03:db:4c:36:a0:f9:47:1c: 0b:72:63:1b:48:1a:a5:76:dc:e9:4e:47:1b:7f:23: 9d:19:93:cf:01:27:6e:e4:f3:eb:61:55:8c:15:51: f1:1f:4c:03:da:30:53:57:37:e8:fc:55:8f:5c:72: 4b:c8:36:49:c5:d7:91:bd:d4:11:d1:27:91:9f:b9: 3e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:18:7D:81:DB:D0:41:1E:26:4E:25:ED:D9:48:B8:CA:8F:42:11:4B X509v3 Authority Key Identifier: keyid:42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:75:c2:a1:49:4f:69:c2:78:39:42:31:99:8c:15:42:4a:da: 0b:79:fb:da:8b:95:9e:b5:8c:5f:4f:df:e6:ef:af:3a:89:f1: 9a:f3:31:2a:82:fd:11:15:d9:3f:8a:37:8c:7d:bb:9a:56:a9: 35:4a:dd:f6:22:cc:fb:82:40:87:4a:a2:1d:b1:2a:e1:2c:17: d5:54:71:47:f7:19:88:a9:c2:2b:d4:41:7d:4a:e9:59:da:2f: f4:39:af:ce:2e:19:b3:4c:14:a1:76:ff:2d:80:c3:42:cc:3d: a4:f3:2c:93:5a:85:0e:7c:9a:eb:0b:0c:43:09:6a:19:a6:31: 95:fc:dd:3d:14:be:31:9a:2e:d0:77:5e:b5:9e:c0:14:15:65: cf:04:2b:b1:cb:ea:a3:94:3d:5d:18:83:50:ce:bb:51:53:27: a1:98:77:63:5e:6e:56:b0:7a:0c:fc:8a:6a:03:ec:df:63:1d: 17:23:6b:ce:5e:23:81:ee:80:77:60:5e:11:9f:20:a4:62:ae: 3a:3f:f1:34:41:82:f6:5e:1f:0c:c1:f2:3d:a6:00:05:31:44: 8a:ae:da:84:14:57:59:96:64:cd:c4:cf:6c:e8:07:15:d8:f3: aa:6e:1f:4d:d4:4f:50:7b:43:cc:68:0c:33:7d:2f:41:ae:c0: cd:91:25:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKDQyOUVDRTE5MzhDQzg5MjRCMTExMDk2NUM5Q0Y0Rjk2 NDg2MDIwMTgwHhcNMjUwNDI0MTYxOTM1WhcNMjUwNTAxMTYxOTM1WjAYMRYwFAYD VQQDEw02ODBhNjQ5Ny03NWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA202krYM9XIpK7qMHnOIR6Fzzp71sDCJeR3iCK3fshMMyeQWjuKnZgI+thRWI dymY6lWOj5Oi5Y1n613sTT91BfckSqbcfgCKwsgZIB36T2QZ6YqZERf2qLJf5yWU Wvar80NNm5a8fjCrki/kkZcUhybSsZ2NnRefy+1JRWMjbA9IECybDAmS6soXCFjv Pr+PykDjasbNHTjfCJpeTZcc8XDglSAh+WumS7vPmaz8kO9DPlHRE9tgoRmiA9tM NqD5RxwLcmMbSBqldtzpTkcbfyOdGZPPASdu5PPrYVWMFVHxH0wD2jBTVzfo/FWP XHJLyDZJxdeRvdQR0SeRn7k+2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEYfYHb 0EEeJk4l7dlIuMqPQhFLMB8GA1UdIwQYMBaAFEKezhk4zIkksREJZcnPT5ZIYCAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC81RUNDMTVBQTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlTU3hFUWxseWM5UGxraGdJ QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FwN09HVGpNaVNTeEVRbGx5YzlQbGtoZ0lCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUFFNC81RUNDMTVBQTI1NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlT U3hFUWxseWM5UGxraGdJQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFdcKhSU9pwng5QjGZjBVCStoLefvai5WetYxfT9/m7686ifGa8zEq gv0RFdk/ijeMfbuaVqk1St32Isz7gkCHSqIdsSrhLBfVVHFH9xmIqcIr1EF9SulZ 2i/0Oa/OLhmzTBShdv8tgMNCzD2k8yyTWoUOfJrrCwxDCWoZpjGV/N09FL4xmi7Q d161nsAUFWXPBCuxy+qjlD1dGINQzrtRUyehmHdjXm5WsHoM/IpqA+zfYx0XI2vO XiOB7oB3YF4RnyCkYq46P/E0QYL2Xh8MwfI9pgAFMUSKrtqEFFdZlmTNxM9s6AcV 2POqbh9N1E9Qe0PMaAwzfS9BrsDNkSU8 -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:20 2025 by rpki-client