$ rpki-client -vvf rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft File: Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft (raw, json) Hash identifier: 02VKpsl5erMmeJNaz0pEwVB6yRFUhaiWYLRI6DfgX5A= Subject key identifier: 2D:F4:30:A2:8D:C3:B9:84:92:33:A6:EA:BF:F0:CB:1C:5B:93:A0:89 Authority key identifier: 43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D Certificate issuer: /CN=A916E501/serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Certificate serial: 0727 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft Manifest number: 0722 Signing time: Thu 24 Apr 2025 21:37:48 +0000 Manifest this update: Thu 24 Apr 2025 21:37:47 +0000 Manifest next update: Thu 01 May 2025 21:37:47 +0000 Files and hashes: 1: Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl (hash: fvqK4+/kpTVh8bzV8Lg6dnbJSA8GISJycJ6u3ANzsiw=) 2: 765EF4EC2FB411EB9720723EC4F9AE02.roa (hash: oa3l32ZpDHfSSJrhkDdT2fWfIq3w4o01a+Ike5oehX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1831 (0x727) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E501, serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Validity Not Before: Apr 24 21:37:47 2025 GMT Not After : May 1 21:37:47 2025 GMT Subject: CN=680aaf2c-7690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3b:f3:0b:bc:6b:10:07:be:94:51:be:37:96: 23:67:0b:1d:bc:78:42:51:80:7f:16:6d:2f:e3:03: bd:12:fb:f8:d2:24:9f:3b:ad:ad:57:a4:f6:df:d6: 47:fb:9e:94:1d:bc:74:5c:c7:92:6d:92:a4:fb:c4: 11:5b:12:13:89:7e:f1:c1:1e:64:99:ac:1b:be:aa: fe:d9:31:fb:fc:af:90:24:5f:f4:8c:24:a6:99:6f: 5f:22:eb:cd:13:65:1e:65:f9:0d:fe:e5:1b:82:8b: 51:8c:6d:3e:12:b7:04:03:10:85:cf:7c:6a:ef:f6: 39:de:4d:49:47:b2:ac:3c:b3:89:fd:c0:db:5e:b1: ec:d3:0c:0a:83:68:32:bd:62:20:b7:3e:15:50:06: 39:d7:70:a9:c5:ab:c5:f4:55:80:b7:e5:ea:eb:8e: 9e:16:10:24:d9:79:47:ca:f2:d6:9b:c6:7b:5b:c4: 97:1f:85:4f:8e:74:4c:cc:b9:94:1e:84:c4:12:f6: 46:61:bb:29:fb:88:45:bc:63:d7:40:85:34:40:95: 04:10:b0:a9:d0:73:f5:cf:6d:dc:55:c5:7a:63:60: f9:29:17:72:b3:4d:10:ea:2d:c4:ab:20:b7:a2:87: fa:95:84:ed:88:42:a3:3e:97:b1:0a:60:aa:8f:d0: 0f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F4:30:A2:8D:C3:B9:84:92:33:A6:EA:BF:F0:CB:1C:5B:93:A0:89 X509v3 Authority Key Identifier: keyid:43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:1a:d5:72:35:50:3a:3e:69:22:97:48:47:b9:c3:bc:ac:e6: 31:93:37:a3:24:19:18:12:b5:5e:a3:58:b1:5d:48:f0:e2:9f: 81:b3:83:23:2a:dc:ec:07:cf:a7:f4:e4:83:a9:fd:7b:47:35: 07:cc:b8:e3:05:15:8a:32:5a:8a:c8:ab:1c:d3:04:36:9b:aa: 13:72:60:e9:90:a0:bd:1b:8b:be:16:5a:2a:4f:31:ce:98:93: 2b:63:38:d9:3f:be:5c:09:bd:fb:69:3e:de:40:79:42:9c:2f: 24:b9:96:5e:84:c9:6a:d4:0e:e1:d8:b2:74:d3:32:f1:e2:ed: fd:f2:d9:7c:d3:0c:67:ed:ea:ba:2c:92:05:a4:a3:0c:d5:1c: 9b:b4:00:40:37:a2:aa:48:d3:13:f9:22:21:2a:bd:17:bf:0a: 87:e1:3b:62:17:dd:f4:41:15:0e:d4:91:b3:ad:a3:f4:be:9b: 64:a6:f9:32:cb:18:f5:de:43:43:8c:18:be:59:05:15:8e:f7: f0:e8:9f:18:df:18:7e:9e:71:b7:82:d9:b2:f5:87:12:81:02: 28:ed:f4:38:1e:cd:81:eb:84:2e:de:c3:b4:57:04:c7:65:b7: 6d:42:14:3c:12:67:15:77:e7:33:8c:23:ce:30:76:0e:31:80: 6d:50:a0:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1MDExMTAvBgNVBAUTKDQzQjM5QzhGQTMzNDZENjMxOUVBNDlCQzVBMDY3RUVG RTBEMzQ0NkQwHhcNMjUwNDI0MjEzNzQ3WhcNMjUwNTAxMjEzNzQ3WjAYMRYwFAYD VQQDEw02ODBhYWYyYy03NjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjvzC7xrEAe+lFG+N5YjZwsdvHhCUYB/Fm0v4wO9Evv40iSfO62tV6T239ZH +56UHbx0XMeSbZKk+8QRWxITiX7xwR5kmawbvqr+2TH7/K+QJF/0jCSmmW9fIuvN E2UeZfkN/uUbgotRjG0+ErcEAxCFz3xq7/Y53k1JR7KsPLOJ/cDbXrHs0wwKg2gy vWIgtz4VUAY513CpxavF9FWAt+Xq646eFhAk2XlHyvLWm8Z7W8SXH4VPjnRMzLmU HoTEEvZGYbsp+4hFvGPXQIU0QJUEELCp0HP1z23cVcV6Y2D5KRdys00Q6i3EqyC3 oof6lYTtiEKjPpexCmCqj9APAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC30MKKN w7mEkjOm6r/wyxxbk6CJMB8GA1UdIwQYMBaAFEOznI+jNG1jGepJvFoGfu/g00Rt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTUwMS8yQjJEODgwNDJG QjMxMUVCQjU4QTQ2M0RDNEY5QUUwMi9RN09jajZNMGJXTVo2a204V2daLTctRFRS RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E3T2NqNk0wYldNWjZrbThXZ1otNy1EVFJHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTUwMS8yQjJEODgwNDJGQjMxMUVCQjU4QTQ2M0RDNEY5QUUwMi9RN09jajZNMGJX TVo2a204V2daLTctRFRSRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoGtVyNVA6Pmkil0hHucO8rOYxkzejJBkYErVeo1ixXUjw4p+Bs4Mj KtzsB8+n9OSDqf17RzUHzLjjBRWKMlqKyKsc0wQ2m6oTcmDpkKC9G4u+FloqTzHO mJMrYzjZP75cCb37aT7eQHlCnC8kuZZehMlq1A7h2LJ00zLx4u398tl80wxn7eq6 LJIFpKMM1RybtABAN6KqSNMT+SIhKr0XvwqH4TtiF930QRUO1JGzraP0vptkpvky yxj13kNDjBi+WQUVjvfw6J8Y3xh+nnG3gtmy9YcSgQIo7fQ4Hs2B64Qu3sO0VwTH ZbdtQhQ8EmcVd+czjCPOMHYOMYBtUKC8 -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:48 2025 by rpki-client