$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: 1Qn3rqHIUaziIAPH9uiNbno12+LVxJO/Wzhai3FM6qQ= Subject key identifier: 1E:B1:73:C7:A1:86:67:FB:D3:B1:E7:58:E7:BD:52:99:EA:74:F4:69 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 2474 Signing time: Thu 24 Apr 2025 15:48:29 +0000 Manifest this update: Thu 24 Apr 2025 15:48:28 +0000 Manifest next update: Thu 01 May 2025 15:48:28 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: favlkuF4fxeZh8eA46zFfv/kK1MGWaAilNzdXo0eloA=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mECvLTKiNtfSmorR6F/JjM52Np+0S4zr3je4uTIkUj8=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: dltD8ogNsgEp1LNwu/hSjpxIyXjpYdO8Yd4ZGWGZBuI=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: tv9RdWOPyxWE44FO50AuecGDdKWojTS5Z904qdTlAMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9364 (0x2494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Apr 24 15:48:28 2025 GMT Not After : May 1 15:48:28 2025 GMT Subject: CN=680a5d4d-42f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:46:40:06:c4:05:a9:35:59:a2:91:02:79:8f: 4b:0e:57:a8:bb:73:b3:3a:46:4c:e5:01:78:74:af: 1e:24:e6:04:01:57:ab:2b:a0:b2:35:5b:19:d0:6b: ea:83:98:07:4d:16:45:63:21:4e:bb:c5:97:91:ae: 44:64:75:a3:1b:64:13:52:00:66:0c:10:62:e1:15: 8a:c6:c9:31:08:cd:0b:ab:63:b3:f8:a3:4a:f8:e6: 31:ae:44:6a:c5:9c:b1:ac:26:70:56:54:00:c3:2d: 41:2c:67:66:94:fb:34:a9:c0:d2:1e:f4:20:49:7b: c6:f2:e3:24:49:a3:2f:76:04:07:24:53:63:8c:a6: da:43:e0:ce:78:89:cb:a4:76:8e:56:0f:9b:ad:88: 3f:d5:43:80:31:b4:68:2e:6d:ac:9c:97:22:9a:7e: ff:88:e3:b2:6a:92:80:a6:17:0a:96:25:21:32:4b: 3b:26:be:e5:60:73:ab:41:40:ff:c6:93:db:66:13: 19:af:62:59:74:32:5b:54:08:b9:9c:db:6c:c1:9c: d3:e1:56:71:b9:52:c2:13:d7:bd:4d:9c:cf:2a:c7: 91:a0:05:e2:1b:ea:3e:c7:ee:25:27:35:48:c6:39: 97:c2:20:b7:06:14:a0:39:11:48:3b:8d:46:66:6b: c1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B1:73:C7:A1:86:67:FB:D3:B1:E7:58:E7:BD:52:99:EA:74:F4:69 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:19:23:1b:8a:3c:e8:22:d8:f8:9c:8d:18:67:7a:8e:7a:9a: bd:2d:ae:93:33:6f:0d:e3:b0:18:24:de:28:45:28:a1:fb:0f: 21:2e:ed:c5:37:8d:ab:03:71:62:56:e0:a0:6a:5d:4b:d8:20: 33:4c:1c:2a:3c:94:b5:f6:ba:d6:9e:70:8e:cb:b2:68:81:0b: 9d:20:d5:41:a6:3b:0f:db:61:e7:00:3c:09:a4:4f:43:64:1e: c7:5b:43:c4:46:5b:2e:46:38:b8:e4:2d:64:e8:9c:87:3e:59: 1f:0d:69:68:2a:ad:97:0b:a7:49:43:fd:46:2b:3f:8a:6d:53: 5b:ef:cc:48:b1:29:37:a8:15:fa:3e:a9:d9:59:a1:73:e1:e9: ad:06:3e:05:2b:15:44:05:0b:a0:0b:0d:90:07:e1:8f:b1:eb: 9f:d6:8c:0b:62:27:96:d9:fd:ce:68:f2:18:58:23:b9:d5:8d: 2c:a2:01:b9:a0:21:fc:85:69:14:3a:2b:17:3e:40:09:c5:ba: 71:49:07:cf:1f:44:d4:56:7d:e5:b6:c0:27:5b:53:ca:95:97: 22:bc:69:0c:09:d4:83:7f:f7:f7:fb:70:97:5c:5b:7c:26:89: a5:9a:97:95:08:7c:35:d2:81:7a:85:01:8e:0e:dc:8b:84:5d: 97:0b:eb:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUwNDI0MTU0ODI4WhcNMjUwNTAxMTU0ODI4WjAYMRYwFAYD VQQDEw02ODBhNWQ0ZC00MmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEZABsQFqTVZopECeY9LDleou3OzOkZM5QF4dK8eJOYEAVerK6CyNVsZ0Gvq g5gHTRZFYyFOu8WXka5EZHWjG2QTUgBmDBBi4RWKxskxCM0Lq2Oz+KNK+OYxrkRq xZyxrCZwVlQAwy1BLGdmlPs0qcDSHvQgSXvG8uMkSaMvdgQHJFNjjKbaQ+DOeInL pHaOVg+brYg/1UOAMbRoLm2snJcimn7/iOOyapKAphcKliUhMks7Jr7lYHOrQUD/ xpPbZhMZr2JZdDJbVAi5nNtswZzT4VZxuVLCE9e9TZzPKseRoAXiG+o+x+4lJzVI xjmXwiC3BhSgORFIO41GZmvBnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6xc8eh hmf707HnWOe9UpnqdPRpMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/GSMbijzoItj4nI0YZ3qOepq9La6TM28N47AYJN4oRSih+w8hLu3F N42rA3FiVuCgal1L2CAzTBwqPJS19rrWnnCOy7JogQudINVBpjsP22HnADwJpE9D ZB7HW0PERlsuRji45C1k6JyHPlkfDWloKq2XC6dJQ/1GKz+KbVNb78xIsSk3qBX6 PqnZWaFz4emtBj4FKxVEBQugCw2QB+GPseuf1owLYieW2f3OaPIYWCO51Y0sogG5 oCH8hWkUOisXPkAJxbpxSQfPH0TUVn3ltsAnW1PKlZcivGkMCdSDf/f3+3CXXFt8 JomlmpeVCHw10oF6hQGODtyLhF2XC+te -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:03 2025 by rpki-client