$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft File: QSE7L18kKfwyjsP06V1YhkAv62k.mft (raw, json) Hash identifier: 9kyJwjLmSb/5vIhcwjYOHu0bOlF1moQx+tfQHj36loc= Subject key identifier: FF:ED:04:85:88:E7:2C:DD:0C:2C:08:D6:C9:F1:C7:89:2A:A9:2A:CC Authority key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 Certificate issuer: /CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft Manifest number: CD Signing time: Fri 25 Apr 2025 04:49:34 +0000 Manifest this update: Fri 25 Apr 2025 04:49:34 +0000 Manifest next update: Fri 02 May 2025 04:49:34 +0000 Files and hashes: 1: QSE7L18kKfwyjsP06V1YhkAv62k.crl (hash: kWFgCXPsCehDN1vZYkjYqNoCh3Vyj6kH1AupoUJz2uc=) 2: 47142068221311EFB680F113C4F9AE02.roa (hash: Wz7+GyEz4KEH5axb8P5kr/PKoJv9dBdTnqoEdl36Fic=) 3: EE01A248F2FB11EE9AA9E24CC4F9AE02.roa (hash: u90GvXDC2nj38gPxwI7H6zVq1FrynP/V/Ah+aJjG8F8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB, serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Validity Not Before: Apr 25 04:49:34 2025 GMT Not After : May 2 04:49:34 2025 GMT Subject: CN=680b145e-e23c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:78:77:c4:a3:b3:04:17:08:f7:85:32:aa:9d: f9:90:67:a4:cb:9c:7b:d8:44:25:94:a9:78:09:fc: f5:83:cc:76:72:9c:d3:4f:10:64:ae:0b:b5:86:d8: a7:f6:98:ef:16:a1:00:14:c6:86:34:36:9d:a4:71: c0:39:36:3c:3f:75:e0:d7:c3:c0:59:1d:57:ab:4a: 17:09:b1:b4:72:5d:7f:3a:18:14:77:1f:50:60:6f: 9d:b3:81:f7:eb:7d:9d:bc:0e:24:6e:9f:79:1b:17: 46:5a:cc:42:f4:07:bc:c0:ab:57:83:fa:bd:85:36: 8a:8d:30:e2:31:f8:ef:fd:ae:ce:f7:1d:d4:5a:f8: d1:95:83:76:25:23:99:f3:a5:7e:9a:61:c1:38:84: 07:80:80:6f:fb:f4:b2:0f:07:8b:43:d8:d4:d1:f1: d9:3b:2c:3a:6a:11:bf:31:83:37:17:36:c4:41:54: bf:9c:41:64:1c:5b:82:38:c1:c1:85:54:e4:84:57: 11:6c:95:95:30:fd:a6:78:a8:b7:a9:75:6d:43:a4: 4e:0a:3d:a3:5e:b3:d2:fb:fc:38:f9:3c:40:96:6f: 63:ee:9f:4c:82:06:d0:4b:09:ee:35:b4:af:23:6d: c4:13:05:e7:59:28:9b:a1:b2:70:72:25:58:a1:5d: d3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:ED:04:85:88:E7:2C:DD:0C:2C:08:D6:C9:F1:C7:89:2A:A9:2A:CC X509v3 Authority Key Identifier: keyid:41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f3:4c:1b:0d:00:67:7a:13:58:45:a6:73:8b:9f:22:33:ca: da:f2:ad:67:82:4c:d0:20:28:4f:c9:7a:d1:b8:7d:d8:5d:56: 45:39:3a:90:d6:79:7f:7c:35:59:2a:59:40:be:bd:69:8e:52: 2b:26:4c:a2:85:3b:af:5c:85:76:5d:98:be:24:8f:6f:d3:77: 9a:38:3f:8a:08:c1:e7:55:1c:35:39:6e:48:50:2b:89:72:b9: af:83:fd:65:31:cd:94:a0:a4:95:74:fc:d5:df:7a:fe:c5:78: 30:14:5e:19:2d:56:e1:0c:f5:86:00:d0:5c:6c:05:bc:1b:ec: ca:ab:7c:e5:ff:2f:f9:21:69:f0:67:0b:77:f7:55:e1:66:76: fa:15:33:bb:96:0c:6c:ef:42:e4:63:d5:ae:67:59:de:93:4e: 38:ce:86:13:4d:9f:d0:49:34:3f:af:67:e1:bb:45:07:ee:67: f3:fa:e1:d5:81:2c:16:d2:ea:3e:43:70:3a:34:2c:8e:2f:fe: 3a:b6:c3:9c:13:19:99:c6:8b:e5:b3:a3:41:dd:15:a7:36:d4: 4f:62:99:1a:26:bc:f8:51:c0:d8:c8:4b:2f:0f:b1:dc:f7:82: 5d:8a:25:48:5d:fc:3f:ba:9f:27:00:7e:83:db:87:c4:9b:a3: 66:6a:f1:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3Q0IxMTAvBgNVBAUTKDQxMjEzQjJGNUYyNDI5RkMzMjhFQzNGNEU5NUQ1ODg2 NDAyRkVCNjkwHhcNMjUwNDI1MDQ0OTM0WhcNMjUwNTAyMDQ0OTM0WjAYMRYwFAYD VQQDEw02ODBiMTQ1ZS1lMjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHh3xKOzBBcI94Uyqp35kGeky5x72EQllKl4Cfz1g8x2cpzTTxBkrgu1htin 9pjvFqEAFMaGNDadpHHAOTY8P3Xg18PAWR1Xq0oXCbG0cl1/OhgUdx9QYG+ds4H3 632dvA4kbp95GxdGWsxC9Ae8wKtXg/q9hTaKjTDiMfjv/a7O9x3UWvjRlYN2JSOZ 86V+mmHBOIQHgIBv+/SyDweLQ9jU0fHZOyw6ahG/MYM3FzbEQVS/nEFkHFuCOMHB hVTkhFcRbJWVMP2meKi3qXVtQ6ROCj2jXrPS+/w4+TxAlm9j7p9MggbQSwnuNbSv I23EEwXnWSibobJwciVYoV3T2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/tBIWI 5yzdDCwI1snxx4kqqSrMMB8GA1UdIwQYMBaAFEEhOy9fJCn8Mo7D9OldWIZAL+tp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTdDQi80NTlCMEM2NEYy RjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9RU0U3TDE4a0tmd3lqc1AwNlYxWWhrQXY2 MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FTRTdMMThrS2Z3eWpzUDA2VjFZaGtBdjYyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTdDQi80NTlCMEM2NEYyRjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9RU0U3TDE4a0tm d3lqc1AwNlYxWWhrQXY2MmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD80wbDQBnehNYRaZzi58iM8ra8q1ngkzQIChPyXrRuH3YXVZFOTqQ 1nl/fDVZKllAvr1pjlIrJkyihTuvXIV2XZi+JI9v03eaOD+KCMHnVRw1OW5IUCuJ crmvg/1lMc2UoKSVdPzV33r+xXgwFF4ZLVbhDPWGANBcbAW8G+zKq3zl/y/5IWnw Zwt391XhZnb6FTO7lgxs70LkY9WuZ1nek044zoYTTZ/QSTQ/r2fhu0UH7mfz+uHV gSwW0uo+Q3A6NCyOL/46tsOcExmZxovls6NB3RWnNtRPYpkaJrz4UcDYyEsvD7Hc 94JdiiVIXfw/up8nAH6D24fEm6NmavHv -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:26 2025 by rpki-client