$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: +7kFFfrN4mkx6S6F6GrpG2OKyhUxm73KQrJaW4OaFws= Subject key identifier: 87:7D:40:B0:AC:C6:4E:4E:8E:6A:C2:1D:DD:FB:19:FB:37:ED:75:46 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0C55 Signing time: Thu 24 Apr 2025 18:16:13 +0000 Manifest this update: Thu 24 Apr 2025 18:16:13 +0000 Manifest next update: Thu 01 May 2025 18:16:13 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: UVwOnBnt3IzlhAaIEDPlLwlNY2tP/OoXqu4ALmxdWkY=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: NrdZbVMd1dHy2FEEAMNxWeknBO6BNRI5lNG3a+z4IPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Apr 24 18:16:13 2025 GMT Not After : May 1 18:16:13 2025 GMT Subject: CN=680a7fed-598c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ad:74:78:45:b5:56:74:36:de:1e:c4:4d:f1: 3e:ff:d6:be:ac:94:67:a0:de:63:63:1b:a5:99:b4: 18:46:01:b5:b6:4e:21:32:45:99:57:5d:ae:79:a5: 1a:fa:e9:38:9b:21:2e:72:e8:30:47:57:b1:8b:ea: 40:39:02:9c:28:7f:13:c8:5b:4d:6b:34:39:66:09: 3f:15:4a:9f:f0:3e:a3:8a:cc:84:a6:52:82:ac:05: 82:8e:25:37:c3:e8:a0:87:6d:3a:9d:12:c0:7b:ec: 6c:4b:9e:35:64:82:c5:70:e2:5d:0c:04:af:34:b6: 5f:3b:7c:de:bb:0f:d6:fa:40:81:c3:19:cf:e7:2f: 9f:a2:c5:01:95:88:d8:79:c4:07:50:71:dd:66:a7: 19:1d:a1:c9:d2:95:bb:cb:3b:8f:9a:66:d3:72:ec: b7:22:04:63:95:b9:6d:07:20:50:21:03:72:d7:37: 91:fa:c7:55:40:9d:ac:9e:63:3f:bc:e3:27:cf:45: 5b:40:e2:e8:01:ec:63:8d:34:6a:85:05:d8:75:b3: e5:67:bf:11:48:89:bb:82:a0:b3:01:1c:9e:f5:0c: 09:ed:7f:a1:b5:85:54:8a:26:3b:4f:94:0f:bb:4f: 3d:1c:0e:58:49:9d:89:c0:f0:f5:6d:b5:f9:52:04: 3a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7D:40:B0:AC:C6:4E:4E:8E:6A:C2:1D:DD:FB:19:FB:37:ED:75:46 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a1:29:67:93:8b:aa:c0:7f:34:99:76:0e:b4:59:ae:c4:5a: c6:0f:0d:4d:41:54:77:7f:86:44:01:cf:f0:b9:ad:c4:40:01: 80:d4:e0:da:43:5d:6c:0b:1d:b8:86:dc:f6:b4:25:be:10:39: bf:ce:aa:00:22:da:30:84:e6:33:5b:c5:47:75:01:42:68:ae: a5:6e:46:85:69:23:54:15:35:b5:3e:a7:60:3d:73:60:6b:87: fb:6f:2e:05:ce:98:28:e3:81:c1:b6:29:13:85:e8:4a:56:0a: 39:14:4b:f4:56:86:af:91:e8:73:0e:78:92:bc:74:07:32:d3: 8d:30:42:60:5f:b4:3c:7a:fa:7b:e0:ec:25:be:0b:c7:d4:de: 65:b3:80:01:55:99:2e:f4:74:22:72:60:7e:93:80:68:7d:b3: de:17:34:56:fa:b2:a0:1d:8d:47:09:1e:da:e1:93:52:68:1c: 34:7c:6e:be:04:27:0f:64:87:99:3e:3a:d3:d1:61:85:19:c7: b1:45:b3:36:4e:e5:74:19:dc:95:06:c6:df:8e:56:01:9d:05: b3:09:8b:18:83:a1:ef:89:02:38:c4:55:5e:81:6a:29:f1:7e: bc:9c:b5:82:dc:c8:3a:89:c8:1e:8f:e6:d1:a5:b6:98:61:04: 1b:2a:6d:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwNDI0MTgxNjEzWhcNMjUwNTAxMTgxNjEzWjAYMRYwFAYD VQQDEw02ODBhN2ZlZC01OThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4q10eEW1VnQ23h7ETfE+/9a+rJRnoN5jYxulmbQYRgG1tk4hMkWZV12ueaUa +uk4myEucugwR1exi+pAOQKcKH8TyFtNazQ5Zgk/FUqf8D6jisyEplKCrAWCjiU3 w+igh206nRLAe+xsS541ZILFcOJdDASvNLZfO3zeuw/W+kCBwxnP5y+fosUBlYjY ecQHUHHdZqcZHaHJ0pW7yzuPmmbTcuy3IgRjlbltByBQIQNy1zeR+sdVQJ2snmM/ vOMnz0VbQOLoAexjjTRqhQXYdbPlZ78RSIm7gqCzARye9QwJ7X+htYVUiiY7T5QP u089HA5YSZ2JwPD1bbX5UgQ6zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFId9QLCs xk5OjmrCHd37Gfs37XVGMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAloSlnk4uqwH80mXYOtFmuxFrGDw1NQVR3f4ZEAc/wua3EQAGA1ODa Q11sCx24htz2tCW+EDm/zqoAItowhOYzW8VHdQFCaK6lbkaFaSNUFTW1PqdgPXNg a4f7by4Fzpgo44HBtikThehKVgo5FEv0VoavkehzDniSvHQHMtONMEJgX7Q8evp7 4OwlvgvH1N5ls4ABVZku9HQicmB+k4BofbPeFzRW+rKgHY1HCR7a4ZNSaBw0fG6+ BCcPZIeZPjrT0WGFGcexRbM2TuV0GdyVBsbfjlYBnQWzCYsYg6HviQI4xFVegWop 8X68nLWC3Mg6icgej+bRpbaYYQQbKm00 -----END CERTIFICATE-----Generated at Sat Apr 26 03:56:37 2025 by rpki-client