$ rpki-client -vvf rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft File: qWaisn_hSTe-NtJ9tfTXaICEfdc.mft (raw, json) Hash identifier: hFt71GDGDiUhuwgOqtoiwfn+tbrwarGEg0DIPwTvF0s= Subject key identifier: 66:E9:FB:86:05:E8:C1:8A:4D:A8:F6:90:70:C5:ED:CD:67:6F:4A:A9 Authority key identifier: A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 Certificate issuer: /CN=A91536E1/serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Certificate serial: 077B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft Manifest number: 0775 Signing time: Thu 24 Apr 2025 21:16:25 +0000 Manifest this update: Thu 24 Apr 2025 21:16:25 +0000 Manifest next update: Thu 01 May 2025 21:16:25 +0000 Files and hashes: 1: qWaisn_hSTe-NtJ9tfTXaICEfdc.crl (hash: FhuUa2Du1Qdk9WEjJWmxAxG4AxQXesG7qD1w0easeZ4=) 2: 41C97D600EA811EB8E9A770CC4F9AE02.roa (hash: o8ES5sVXjZZWJ8HjjyGv8mKYMdzoHknglpOG5+B569s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536E1, serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Validity Not Before: Apr 24 21:16:25 2025 GMT Not After : May 1 21:16:25 2025 GMT Subject: CN=680aaa29-61f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:dd:97:5d:74:c5:e8:e6:ce:57:f2:69:09: 5c:fa:a4:77:47:81:fa:b1:d5:c2:39:be:c0:68:43: 81:05:74:d6:08:a7:c0:05:6c:c6:ef:52:36:8d:0d: a9:7c:0d:b7:8a:79:7c:c9:32:7a:53:57:47:bf:75: 65:98:ea:c5:83:6e:d8:e3:3f:04:d6:3b:d1:b8:55: 45:f0:5d:09:b4:c9:7b:b9:cc:a9:8d:02:06:50:3c: 0a:ad:eb:5b:53:0a:53:03:bf:2a:6e:43:35:02:01: 77:6d:c7:7f:98:58:b2:7e:2d:82:5f:33:c0:40:b1: f1:7f:43:64:e1:a8:50:30:6d:81:9c:aa:eb:56:12: 90:46:e7:58:f8:8d:fa:50:a3:db:dc:3a:68:e1:f2: 24:67:b5:51:21:e7:d8:cf:e5:f1:4b:16:d6:0b:41: 72:5f:2e:29:fd:91:76:d7:c9:9d:5e:74:c8:45:f5: a5:f3:c4:b8:3e:33:50:b2:81:83:6e:e2:ef:8b:9b: 6f:0e:b1:0d:1b:83:50:f6:01:26:66:b9:2d:0c:da: c1:9a:80:ff:96:f5:60:c3:26:f5:7e:b0:08:c8:5f: dc:5f:11:f8:08:37:b1:fd:2e:28:33:c3:fa:9f:62: 6e:62:ab:4d:3a:61:08:7c:22:4f:87:0c:e1:8e:cb: 51:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E9:FB:86:05:E8:C1:8A:4D:A8:F6:90:70:C5:ED:CD:67:6F:4A:A9 X509v3 Authority Key Identifier: keyid:A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:62:f0:3a:dc:d4:a3:7c:8e:43:c3:b9:46:7b:72:4c:de:5f: 85:dc:4f:f4:44:d0:c5:4f:db:66:32:16:a7:7c:e6:b4:23:10: f4:37:98:5d:b5:e0:e0:fc:93:ea:cc:ad:2b:93:88:76:9e:38: a3:dd:15:60:3b:52:f0:67:1f:61:9e:ca:c7:38:f7:b3:21:f1: b6:31:d5:37:54:37:cf:3e:2a:2d:c4:7d:7f:e7:f4:49:33:16: 9f:db:28:f5:4e:da:f3:5c:8e:6f:05:66:54:11:fd:f4:7a:8f: cf:2b:bc:b9:00:2a:1a:7f:50:1c:6a:72:90:37:d9:0a:a8:28: 9f:14:b9:a9:c9:88:47:e9:b6:77:70:64:20:49:bb:c9:97:e0: 55:bd:00:d1:dd:51:9a:e5:9b:fa:bf:1c:82:02:7e:3a:e6:ee: b4:a1:ff:71:4c:9e:78:92:14:60:ab:43:73:b5:3d:0c:21:92: a9:d4:fb:ca:54:f9:2d:a2:d3:02:bd:36:01:d3:b4:d3:55:5b: 5d:e8:ba:6f:b0:0f:5e:e4:40:06:a5:ee:9f:85:73:92:ef:c7: 05:39:75:37:80:76:cf:ce:ca:fb:c1:33:26:35:f7:ae:f6:4b: 49:fc:ab:79:12:d6:b9:56:bc:a9:d9:25:a6:b3:e0:9a:fd:c0: 2d:b6:3b:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2RTExMTAvBgNVBAUTKEE5NjZBMkIyN0ZFMTQ5MzdCRTM2RDI3REI1RjRENzY4 ODA4NDdERDcwHhcNMjUwNDI0MjExNjI1WhcNMjUwNTAxMjExNjI1WjAYMRYwFAYD VQQDEw02ODBhYWEyOS02MWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2urdl110xejmzlfyaQlc+qR3R4H6sdXCOb7AaEOBBXTWCKfABWzG71I2jQ2p fA23inl8yTJ6U1dHv3VlmOrFg27Y4z8E1jvRuFVF8F0JtMl7ucypjQIGUDwKretb UwpTA78qbkM1AgF3bcd/mFiyfi2CXzPAQLHxf0Nk4ahQMG2BnKrrVhKQRudY+I36 UKPb3Dpo4fIkZ7VRIefYz+XxSxbWC0FyXy4p/ZF218mdXnTIRfWl88S4PjNQsoGD buLvi5tvDrENG4NQ9gEmZrktDNrBmoD/lvVgwyb1frAIyF/cXxH4CDex/S4oM8P6 n2JuYqtNOmEIfCJPhwzhjstRdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbp+4YF 6MGKTaj2kHDF7c1nb0qpMB8GA1UdIwQYMBaAFKlmorJ/4Uk3vjbSfbX012iAhH3X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZFMS85ODlGM0EwQTBF QTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNUZS1OdEo5dGZUWGFJQ0Vm ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FXYWlzbl9oU1RlLU50Sjl0ZlRYYUlDRWZkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZFMS85ODlGM0EwQTBFQTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNU ZS1OdEo5dGZUWGFJQ0VmZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyYvA63NSjfI5Dw7lGe3JM3l+F3E/0RNDFT9tmMhanfOa0IxD0N5hd teDg/JPqzK0rk4h2njij3RVgO1LwZx9hnsrHOPezIfG2MdU3VDfPPiotxH1/5/RJ Mxaf2yj1TtrzXI5vBWZUEf30eo/PK7y5ACoaf1AcanKQN9kKqCifFLmpyYhH6bZ3 cGQgSbvJl+BVvQDR3VGa5Zv6vxyCAn465u60of9xTJ54khRgq0NztT0MIZKp1PvK VPktotMCvTYB07TTVVtd6LpvsA9e5EAGpe6fhXOS78cFOXU3gHbPzsr7wTMmNfeu 9ktJ/Kt5Eta5Vryp2SWms+Ca/cAttjv5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:56 2025 by rpki-client