$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft File: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft (raw, json) Hash identifier: oYTLrfkNlSNy61QaJL5vfWpO0RdysuYNss8odKYE7/w= Subject key identifier: 27:5E:7F:49:E7:70:ED:2E:15:77:27:E3:0B:67:8F:12:CC:BD:29:78 Authority key identifier: A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D Certificate issuer: /CN=A9164164/serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft Manifest number: 55 Signing time: Fri 25 Apr 2025 06:10:44 +0000 Manifest this update: Fri 25 Apr 2025 06:10:43 +0000 Manifest next update: Fri 02 May 2025 06:10:43 +0000 Files and hashes: 1: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl (hash: OxMbg58x0zZSfHWvbLrl6+DUOlIUWtqaPIDafiuKJK8=) 2: F1487C2AA18211EFA2B7E923C4F9AE02.roa (hash: ow0JlSSKtHwrzhAKotnC4Hb7SPL+BmK/kbudjjYhQGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164, serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Validity Not Before: Apr 25 06:10:43 2025 GMT Not After : May 2 06:10:43 2025 GMT Subject: CN=680b2764-8c9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7a:b2:b6:f3:31:df:66:82:af:46:9f:f6:72: a7:97:fe:c9:b5:09:1c:a5:7f:4e:7c:d6:13:d9:ff: be:c1:ec:b1:22:9a:b9:e0:26:58:4f:ad:55:62:f6: fb:4b:e2:2b:2d:2e:42:1a:6a:dc:8a:55:31:0c:f4: bd:a2:ce:2b:7e:00:58:a5:7a:30:4f:95:50:1c:80: 4a:15:ae:c5:ee:ef:e1:89:9c:ff:de:c3:ad:0d:25: 9d:e3:b0:93:59:4d:7a:2e:e1:63:29:82:72:02:69: 24:38:ec:39:cd:25:e0:ca:78:74:23:7e:ce:e7:79: 93:8e:dc:0a:83:73:76:bd:e5:3d:4d:8f:89:16:e2: 3e:2c:e2:ad:f2:60:b4:12:34:16:fb:fb:7b:8b:90: 69:8c:63:51:bd:bd:b4:d3:75:3a:b4:2f:97:4e:29: 9f:82:79:20:13:48:60:b0:24:a6:c8:49:fb:3a:c7: 7d:86:d6:14:95:18:fe:2c:d6:b7:80:b9:96:eb:59: e4:57:59:60:3c:47:9b:a7:12:a8:c5:8d:1a:6e:a9: ec:bc:c9:8c:16:df:df:a9:cd:e4:69:55:4d:25:75: 59:c3:e6:5d:4b:15:8d:26:05:5d:8f:cf:b0:c7:3a: cd:31:6e:e2:b8:2d:22:bf:d2:b3:0e:e8:3d:d5:3d: e2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5E:7F:49:E7:70:ED:2E:15:77:27:E3:0B:67:8F:12:CC:BD:29:78 X509v3 Authority Key Identifier: keyid:A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:08:70:61:fc:e3:61:2c:47:13:0f:ea:15:7e:93:21:ed:ea: fc:f7:6e:81:56:dc:54:8f:96:5c:31:09:b1:2b:fc:7d:c8:3e: 91:0e:3f:cf:91:fb:60:c0:b3:b8:6a:d8:ea:3f:9c:84:9f:c3: b1:d1:18:de:45:6c:7a:f2:41:d2:e7:ac:16:d6:3c:a3:77:de: 09:7c:9a:d4:7e:36:8c:cf:db:8c:e6:25:43:be:2d:b6:07:fc: 34:19:e6:74:46:9b:24:76:25:62:85:e3:ed:71:c2:72:a6:e7: ee:f9:24:80:41:8c:71:35:9e:bf:2b:06:eb:d6:62:32:93:16: 98:3d:3d:b2:69:6d:45:5f:2f:e9:e0:37:c6:87:38:7f:08:44: 6d:41:97:22:2c:82:80:d0:02:64:07:aa:33:3a:ef:aa:60:45: 0c:41:21:a9:f9:82:ce:3b:b3:96:f1:ee:73:36:00:a6:62:75: f0:bc:45:ae:ae:25:51:e0:0a:af:04:0f:fc:98:2a:35:4b:9f: 9e:92:a2:da:d9:b3:c3:ea:06:a5:6b:29:99:4b:3b:55:7e:ce: 56:66:51:a5:c2:df:5b:25:ab:b5:d8:96:10:83:e4:9d:9f:16: dc:ec:60:ce:3b:6d:80:14:c4:06:f8:e4:02:57:c4:38:08:63: 9c:b6:75:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDE2NDExMC8GA1UEBRMoQTg3MzcyMDFGQTRDNjRGQTAwNTY0MDIyREIwNkY2MEU3 RUUyQ0QwRDAeFw0yNTA0MjUwNjEwNDNaFw0yNTA1MDIwNjEwNDNaMBgxFjAUBgNV BAMTDTY4MGIyNzY0LThjOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDherK28zHfZoKvRp/2cqeX/sm1CRylf0581hPZ/77B7LEimrngJlhPrVVi9vtL 4istLkIaatyKVTEM9L2izit+AFilejBPlVAcgEoVrsXu7+GJnP/ew60NJZ3jsJNZ TXou4WMpgnICaSQ47DnNJeDKeHQjfs7neZOO3AqDc3a95T1Nj4kW4j4s4q3yYLQS NBb7+3uLkGmMY1G9vbTTdTq0L5dOKZ+CeSATSGCwJKbISfs6x32G1hSVGP4s1reA uZbrWeRXWWA8R5unEqjFjRpuqey8yYwW39+pzeRpVU0ldVnD5l1LFY0mBV2Pz7DH Os0xbuK4LSK/0rMO6D3VPeIHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ15/Sedw 7S4VdyfjC2ePEsy9KXgwHwYDVR0jBBgwFoAUqHNyAfpMZPoAVkAi2wb2Dn7izQ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0MTY0L0E2OEUyNjRFQTE4 MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBvQVZrQWkyd2IyRG43aXpR MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUhOeUFmcE1aUG9BVmtBaTJ3YjJEbjdpelEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 MTY0L0E2OEUyNjRFQTE4MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBv QVZrQWkyd2IyRG43aXpRMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKYIcGH842EsRxMP6hV+kyHt6vz3boFW3FSPllwxCbEr/H3IPpEOP8+R +2DAs7hq2Oo/nISfw7HRGN5FbHryQdLnrBbWPKN33gl8mtR+NozP24zmJUO+LbYH /DQZ5nRGmyR2JWKF4+1xwnKm5+75JIBBjHE1nr8rBuvWYjKTFpg9PbJpbUVfL+ng N8aHOH8IRG1BlyIsgoDQAmQHqjM676pgRQxBIan5gs47s5bx7nM2AKZidfC8Ra6u JVHgCq8ED/yYKjVLn56SotrZs8PqBqVrKZlLO1V+zlZmUaXC31slq7XYlhCD5J2f FtzsYM47bYAUxAb45AJXxDgIY5y2dWM= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:47 2025 by rpki-client