$ rpki-client -vvf rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft File: sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft (raw, json) Hash identifier: ph2rroOPTIwB7HPaLLJuGUol3n1VARQvqkMa/zicfWA= Subject key identifier: F7:E0:81:06:AB:52:83:A2:EA:8C:0A:97:D2:82:C3:51:70:D6:9E:6A Authority key identifier: B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 Certificate issuer: /CN=A917E7C7/serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft Manifest number: B2 Signing time: Fri 25 Apr 2025 05:02:58 +0000 Manifest this update: Fri 25 Apr 2025 05:02:57 +0000 Manifest next update: Fri 02 May 2025 05:02:57 +0000 Files and hashes: 1: sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl (hash: 3tsJEFxJ4uMDJ2P53z4PS2xapWkIKr5MLHbCUIz4T5k=) 2: 55291FA016B511EFA244974BC4F9AE02.roa (hash: 4G05qDBih2f7QXu4EvcFu/Hi3cjZoiJAPBz1/2wvj2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E7C7, serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Validity Not Before: Apr 25 05:02:57 2025 GMT Not After : May 2 05:02:57 2025 GMT Subject: CN=680b1782-9341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:18:f5:31:b5:b6:ef:a4:77:64:d1:92:01:3a: 9c:8c:73:50:1b:ca:e0:df:38:5b:bd:10:62:10:85: be:73:30:03:29:bb:35:2e:64:f2:ea:af:6d:63:df: 2e:0a:2a:2d:97:28:79:a1:ca:d3:84:14:e5:43:5e: ca:b1:a4:59:e1:74:36:0a:b0:8a:5e:42:f2:d9:2b: a1:29:63:cf:63:56:a6:e0:30:ec:6b:0d:ae:18:64: 48:6a:7d:97:b0:69:d8:be:d0:ee:93:79:14:a0:80: e5:24:e2:3e:fb:62:fa:bc:94:a3:8e:74:3a:66:ff: 5a:e2:72:29:47:67:b4:68:c0:d6:15:13:c8:e4:84: c6:81:37:8f:11:85:77:fd:eb:a7:8f:d8:67:a8:61: 22:e2:00:16:85:f5:ed:7f:e8:d6:b0:b3:fe:a4:a8: f9:2a:27:4a:fb:f7:b3:59:00:e7:41:0e:f8:62:72: 14:b7:1d:f3:83:e8:ce:75:28:af:e7:4d:3a:ec:26: e1:f8:86:90:3c:aa:86:4a:6f:d0:ab:22:df:2a:7c: a2:56:0c:72:ba:0d:b8:22:82:94:2d:f1:da:45:6b: 1e:7d:36:ea:08:b1:52:2c:9b:e5:00:67:6e:96:be: a8:7b:32:4c:1e:41:8f:2e:fc:17:e2:74:e4:57:94: 95:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E0:81:06:AB:52:83:A2:EA:8C:0A:97:D2:82:C3:51:70:D6:9E:6A X509v3 Authority Key Identifier: keyid:B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:69:fd:ab:83:50:a2:eb:20:48:1a:9c:67:f0:a9:6f:4f:51: 10:31:76:fa:4e:6f:c1:32:7c:df:e0:42:a7:2c:92:f3:ec:1f: 50:04:ca:d3:dc:0d:b9:7b:0b:f3:75:7c:20:c7:5f:c0:c7:8f: b0:12:8d:ce:3e:58:f6:a5:ed:29:bd:8b:5a:5d:4a:67:86:52: 0d:cf:ec:35:c3:52:ae:86:f4:c3:77:aa:77:36:29:79:5e:3e: 82:82:e8:fd:53:8b:30:fe:ed:47:8d:18:f8:62:fc:96:34:8b: 23:d6:5c:91:53:03:57:e3:08:81:dc:3f:b1:74:08:2d:36:eb: 77:4e:75:5c:98:26:e0:90:1d:fd:0d:fa:a9:8b:63:30:be:30: 6f:ae:38:a1:e3:67:b4:5b:f7:13:e1:e5:d8:36:d5:27:8d:5c: 7b:45:87:cc:8d:f7:80:66:34:ee:f8:3b:85:a1:01:89:25:24: 28:26:34:e6:d3:f9:b9:22:64:f5:63:01:b1:92:cb:63:b7:02: d5:88:cd:95:20:7f:ac:12:75:e0:22:4b:d8:ce:89:5a:05:df: 58:a4:b3:60:a2:56:59:98:7a:ba:6a:fd:bf:59:4a:d3:dd:94: 58:09:0e:68:8f:da:1f:f0:d4:eb:7b:6b:ef:69:9c:bd:ce:92: 5a:50:59:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3QzcxMTAvBgNVBAUTKEIyQUQ1MEYzNTcxQkRBMUVFQzA3Q0M0OERBMDFEM0Yz NzU0NThEMjQwHhcNMjUwNDI1MDUwMjU3WhcNMjUwNTAyMDUwMjU3WjAYMRYwFAYD VQQDEw02ODBiMTc4Mi05MzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBj1MbW276R3ZNGSATqcjHNQG8rg3zhbvRBiEIW+czADKbs1LmTy6q9tY98u Ciotlyh5ocrThBTlQ17KsaRZ4XQ2CrCKXkLy2SuhKWPPY1am4DDsaw2uGGRIan2X sGnYvtDuk3kUoIDlJOI++2L6vJSjjnQ6Zv9a4nIpR2e0aMDWFRPI5ITGgTePEYV3 /eunj9hnqGEi4gAWhfXtf+jWsLP+pKj5KidK+/ezWQDnQQ74YnIUtx3zg+jOdSiv 50067Cbh+IaQPKqGSm/QqyLfKnyiVgxyug24IoKULfHaRWsefTbqCLFSLJvlAGdu lr6oezJMHkGPLvwX4nTkV5SV6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfggQar UoOi6owKl9KCw1Fw1p5qMB8GA1UdIwQYMBaAFLKtUPNXG9oe7AfMSNoB0/N1RY0k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTdDNy8xQTU5Rjc4RTE2 QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJoN3NCOHhJMmdIVDgzVkZq U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxMVE4MWNiMmg3c0I4eEkyZ0hUODNWRmpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTdDNy8xQTU5Rjc4RTE2QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJo N3NCOHhJMmdIVDgzVkZqU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3af2rg1Ci6yBIGpxn8KlvT1EQMXb6Tm/BMnzf4EKnLJLz7B9QBMrT 3A25ewvzdXwgx1/Ax4+wEo3OPlj2pe0pvYtaXUpnhlINz+w1w1KuhvTDd6p3Nil5 Xj6Cguj9U4sw/u1HjRj4YvyWNIsj1lyRUwNX4wiB3D+xdAgtNut3TnVcmCbgkB39 Dfqpi2MwvjBvrjih42e0W/cT4eXYNtUnjVx7RYfMjfeAZjTu+DuFoQGJJSQoJjTm 0/m5ImT1YwGxkstjtwLViM2VIH+sEnXgIkvYzolaBd9YpLNgolZZmHq6av2/WUrT 3ZRYCQ5oj9of8NTre2vvaZy9zpJaUFl+ -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:16 2025 by rpki-client