$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: UI0BUMoXzbeNzR69Emu1zq9b7CEsqSxm2JL+hdCoa9Q= Subject key identifier: 06:B4:B3:D2:B8:44:2D:3E:F4:DC:99:DD:A5:25:A0:F3:67:DC:51:18 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0AC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0AB4 Signing time: Thu 24 Apr 2025 19:25:29 +0000 Manifest this update: Thu 24 Apr 2025 19:25:28 +0000 Manifest next update: Thu 01 May 2025 19:25:28 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: wYZHYgO1NQ8ctO793fyXBaXs1B3i5FTiluCHP+1AVYY=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2754 (0xac2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Apr 24 19:25:28 2025 GMT Not After : May 1 19:25:28 2025 GMT Subject: CN=680a9028-dc66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:5f:4c:8a:81:f4:f2:8d:a4:8f:61:a8:2d: f4:0d:f8:98:b3:64:33:92:0e:de:a8:37:ea:fe:53: 0a:e8:b7:68:b4:20:aa:99:71:65:6f:4d:ef:20:ff: c5:a6:15:66:36:56:f5:f6:03:52:bd:3d:2b:4e:8d: 88:60:ac:c1:8b:ae:a5:67:09:e7:80:c5:93:87:94: eb:44:e8:5b:49:cb:cb:e2:1a:8c:0e:5e:a8:bb:91: 4d:df:d7:65:98:01:4a:e1:30:f4:e1:75:36:62:d0: 65:78:5b:25:24:7a:a3:b1:5c:14:fb:1f:ba:29:43: d4:ba:74:44:c0:d4:b2:8f:1b:11:8b:87:51:ce:39: 9a:cc:89:b1:ac:ed:38:e0:57:64:cd:08:7e:9a:08: 1d:dc:10:58:67:ee:01:19:4a:fa:a0:d7:14:7d:2b: 41:a3:f4:0f:db:9b:f4:90:7a:e1:05:91:dd:3f:07: 7b:32:e0:0a:62:15:d6:61:be:de:3e:57:5f:b0:42: a4:40:59:3f:52:21:97:38:05:43:68:37:0e:76:a7: c5:23:70:18:81:09:39:b2:35:19:4c:34:a5:e7:91: 4a:1c:28:f4:74:70:6a:83:a3:c8:1d:81:62:99:eb: a8:2d:48:a9:cd:c4:a4:62:2e:1d:44:c9:66:9f:a3: f8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B4:B3:D2:B8:44:2D:3E:F4:DC:99:DD:A5:25:A0:F3:67:DC:51:18 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b9:3b:62:e1:81:33:3d:9d:8d:f0:8d:91:6b:65:0f:28:3e: a0:2e:72:4c:e1:e0:18:ec:e6:bd:0c:d2:19:57:53:90:85:5c: 40:3d:bc:95:28:dc:03:d1:86:67:50:27:3f:77:5c:f0:92:89: 6c:0d:fd:60:16:6e:4f:0b:a0:ff:37:ce:3b:a9:7a:7e:46:3e: 35:2c:31:69:5f:bb:1b:f0:29:a8:a2:d6:3b:30:74:48:87:2b: c7:86:df:78:93:39:67:d7:8c:fa:17:35:29:bb:a1:62:ca:ef: 7b:c9:5e:f2:85:2a:3e:5f:42:8c:0f:fe:93:49:03:2c:82:f3: 3e:f0:4b:fa:0a:75:0a:94:51:b9:b1:82:58:53:76:a6:5c:8a: ce:06:00:7a:4f:69:af:dc:a1:35:4b:ff:9f:3c:82:37:5a:0b: 65:0d:75:2e:a1:c2:56:66:8e:a6:be:11:e0:30:60:e1:1d:9f: 02:85:f9:fd:ac:b7:91:32:99:3b:55:c1:d2:83:8e:4b:0f:a2: b7:cd:b5:55:84:41:ac:81:45:86:60:b2:4c:a5:d5:34:fe:d7: c7:48:74:66:fe:cb:4e:b4:4a:7e:6e:d1:1d:03:50:aa:6a:8c: cd:e5:54:44:cc:e3:bd:99:05:85:31:aa:3f:bc:c2:0c:65:80: f0:49:9c:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUwNDI0MTkyNTI4WhcNMjUwNTAxMTkyNTI4WjAYMRYwFAYD VQQDEw02ODBhOTAyOC1kYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUxfTIqB9PKNpI9hqC30DfiYs2Qzkg7eqDfq/lMK6LdotCCqmXFlb03vIP/F phVmNlb19gNSvT0rTo2IYKzBi66lZwnngMWTh5TrROhbScvL4hqMDl6ou5FN39dl mAFK4TD04XU2YtBleFslJHqjsVwU+x+6KUPUunREwNSyjxsRi4dRzjmazImxrO04 4FdkzQh+mggd3BBYZ+4BGUr6oNcUfStBo/QP25v0kHrhBZHdPwd7MuAKYhXWYb7e PldfsEKkQFk/UiGXOAVDaDcOdqfFI3AYgQk5sjUZTDSl55FKHCj0dHBqg6PIHYFi meuoLUipzcSkYi4dRMlmn6P4WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAa0s9K4 RC0+9NyZ3aUloPNn3FEYMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCluTti4YEzPZ2N8I2Ra2UPKD6gLnJM4eAY7Oa9DNIZV1OQhVxAPbyV KNwD0YZnUCc/d1zwkolsDf1gFm5PC6D/N847qXp+Rj41LDFpX7sb8CmootY7MHRI hyvHht94kzln14z6FzUpu6Fiyu97yV7yhSo+X0KMD/6TSQMsgvM+8Ev6CnUKlFG5 sYJYU3amXIrOBgB6T2mv3KE1S/+fPII3WgtlDXUuocJWZo6mvhHgMGDhHZ8Chfn9 rLeRMpk7VcHSg45LD6K3zbVVhEGsgUWGYLJMpdU0/tfHSHRm/stOtEp+btEdA1Cq aozN5VREzOO9mQWFMao/vMIMZYDwSZxo -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:54 2025 by rpki-client