$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: L402GUhMIAKvstHHoiyg3rxrR8H1hd8QpaUVRzjxn/4= Subject key identifier: 13:C0:F1:F9:2A:6F:9F:DB:9A:E2:09:E3:8C:EC:55:6F:A7:C4:EB:A1 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 0FB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 25C3 Signing time: Thu 24 Apr 2025 16:44:30 +0000 Manifest this update: Thu 24 Apr 2025 16:44:29 +0000 Manifest next update: Thu 01 May 2025 16:44:29 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: rW3YIxTAM22jgxE3Lkglz8cp7P1h0IVUEB9RdqtVa6s=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: gR4VIke3wzcLlwcHX1MfRQDB5DCCZYAeVJopuxrfT0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4025 (0xfb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Apr 24 16:44:29 2025 GMT Not After : May 1 16:44:29 2025 GMT Subject: CN=680a6a6e-0005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e3:70:ca:d8:71:02:e0:4e:97:22:76:30:70: fd:78:db:79:41:a0:79:c7:05:a2:4a:9a:a7:91:92: 24:68:a2:82:14:52:45:2e:c0:83:53:30:c5:79:ec: 48:cf:a6:65:00:39:8f:5e:10:e9:c4:0f:bd:f0:ce: 64:cb:52:a7:37:fd:ce:ed:81:8c:2c:37:68:2f:64: 2b:0a:0e:a9:2c:cd:8d:1d:2f:21:d8:f9:b2:ba:21: cf:1d:6f:57:3a:ec:e2:46:4e:e0:50:a3:6f:66:7c: ff:be:51:cb:1d:92:b7:5a:33:dc:29:97:fb:4b:96: 1a:63:1c:b2:78:21:d6:40:1d:da:79:70:ed:7c:ea: ae:33:aa:bb:db:bf:fc:5b:65:26:94:d1:35:1a:c0: 2d:20:f2:0f:f5:1c:8a:4a:fa:c5:44:a9:df:4e:c8: d7:bf:6f:fa:f3:9a:84:14:51:f7:f6:cc:7d:ed:ba: b5:d1:b7:5a:57:70:40:56:bd:5c:ec:10:91:f6:96: d3:7b:89:df:cd:21:73:a0:48:cf:6a:89:54:2c:5b: 1d:8d:f4:11:61:1f:cb:b0:f8:e3:ac:97:c6:a6:4e: 76:1a:e4:7c:af:f4:90:85:96:76:75:7b:91:6a:ad: ca:ec:d3:b5:57:b5:a5:81:d6:79:1c:d3:7d:c5:25: 67:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C0:F1:F9:2A:6F:9F:DB:9A:E2:09:E3:8C:EC:55:6F:A7:C4:EB:A1 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:10:04:8d:7c:1f:f1:fa:7f:17:4b:70:0f:bf:06:8a:ba:47: 58:4c:03:de:1d:26:46:40:8f:31:73:37:ef:8e:8e:74:54:22: 90:73:8e:bc:c3:f0:ff:f3:5b:9a:62:e5:bf:0e:7e:eb:6b:79: d1:c3:53:fa:00:fe:9e:30:69:81:03:94:47:95:90:79:b3:24: 4d:08:fa:1e:05:de:ea:a9:95:d2:07:21:88:1e:6d:1f:87:50: cb:c0:cd:49:5f:91:54:53:8c:e9:73:3f:32:d2:f3:98:d8:8b: 07:2d:2d:79:5a:fb:7f:82:14:b3:09:ab:28:5e:56:06:3b:72: c0:cf:f4:9c:cd:1e:a0:23:3d:d5:aa:71:87:19:e2:e6:3b:40: 2c:8c:b4:66:8b:35:fc:b8:aa:25:0b:bc:04:67:1b:4f:04:9b: de:d1:b6:99:7b:37:9a:55:a7:ef:99:f3:aa:58:e0:05:fb:21: a8:e3:9f:8f:a4:2d:90:64:1d:93:81:59:14:c5:74:42:b4:cd: 38:ed:16:3e:fc:e7:87:c2:8f:ac:a2:70:82:15:a0:06:91:f2: b7:7c:72:c8:8a:af:65:c9:6b:c4:c3:ed:23:21:f9:23:7c:67: 01:8a:7c:c2:d1:e5:9f:99:64:48:90:b1:c6:5f:69:bc:0f:91: d6:b6:9d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUwNDI0MTY0NDI5WhcNMjUwNTAxMTY0NDI5WjAYMRYwFAYD VQQDEw02ODBhNmE2ZS0wMDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+NwythxAuBOlyJ2MHD9eNt5QaB5xwWiSpqnkZIkaKKCFFJFLsCDUzDFeexI z6ZlADmPXhDpxA+98M5ky1KnN/3O7YGMLDdoL2QrCg6pLM2NHS8h2PmyuiHPHW9X OuziRk7gUKNvZnz/vlHLHZK3WjPcKZf7S5YaYxyyeCHWQB3aeXDtfOquM6q727/8 W2UmlNE1GsAtIPIP9RyKSvrFRKnfTsjXv2/685qEFFH39sx97bq10bdaV3BAVr1c 7BCR9pbTe4nfzSFzoEjPaolULFsdjfQRYR/LsPjjrJfGpk52GuR8r/SQhZZ2dXuR aq3K7NO1V7WlgdZ5HNN9xSVnSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPA8fkq b5/bmuIJ44zsVW+nxOuhMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUEASNfB/x+n8XS3APvwaKukdYTAPeHSZGQI8xczfvjo50VCKQc468 w/D/81uaYuW/Dn7ra3nRw1P6AP6eMGmBA5RHlZB5syRNCPoeBd7qqZXSByGIHm0f h1DLwM1JX5FUU4zpcz8y0vOY2IsHLS15Wvt/ghSzCasoXlYGO3LAz/SczR6gIz3V qnGHGeLmO0AsjLRmizX8uKolC7wEZxtPBJve0baZezeaVafvmfOqWOAF+yGo45+P pC2QZB2TgVkUxXRCtM047RY+/OeHwo+sonCCFaAGkfK3fHLIiq9lyWvEw+0jIfkj fGcBinzC0eWfmWRIkLHGX2m8D5HWtp0V -----END CERTIFICATE-----Generated at Sat Apr 26 05:18:47 2025 by rpki-client