$ rpki-client -vvf rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft File: mqU9J74bthSVPDedOeC7xfHBJKc.mft (raw, json) Hash identifier: DQoAPw6cq8EhVtHHUUEvNOEsycoLXExIR3fCXvXYrVQ= Subject key identifier: E7:1B:D4:15:9A:10:29:9B:A9:56:60:9B:30:F0:AA:94:37:42:04:63 Authority key identifier: 9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7 Certificate issuer: /CN=A91814CB/serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7 Certificate serial: 0BCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft Manifest number: 0BC1 Signing time: Thu 24 Apr 2025 18:49:56 +0000 Manifest this update: Thu 24 Apr 2025 18:49:55 +0000 Manifest next update: Thu 01 May 2025 18:49:55 +0000 Files and hashes: 1: mqU9J74bthSVPDedOeC7xfHBJKc.crl (hash: FlThb1lSZeJ47cqbgMDHlEtqHWntiuCCqXXN/Q/RGpw=) 2: F4F827D6BB6C11EF80151572C4F9AE02.roa (hash: 25pluhiPmnAm9YwUWup9o5G24MQf1uEQRknQIFNX3KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3021 (0xbcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91814CB, serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7 Validity Not Before: Apr 24 18:49:55 2025 GMT Not After : May 1 18:49:55 2025 GMT Subject: CN=680a87d3-3b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:98:68:83:d5:42:b7:d0:e3:9d:1f:ea:02:a3: 03:c6:72:04:41:99:98:7d:6a:4a:f6:a1:a1:e9:18: fc:1f:e7:71:c4:4f:7c:99:b8:f2:b8:75:a9:f9:46: 29:c5:0b:f7:c4:5e:11:26:9b:56:f9:7d:aa:50:61: 6e:50:0f:49:ff:05:aa:65:8e:34:5c:09:ff:81:5f: 78:81:b7:c8:94:70:fb:d9:74:b0:5d:19:6c:66:6a: 26:28:11:84:6b:49:39:51:65:f9:85:7b:57:94:85: 72:8b:a3:1a:ba:70:b5:52:94:22:65:99:6a:51:a5: 73:85:10:53:35:47:dd:a9:ed:cc:3a:7b:71:78:68: 66:0c:e7:63:5b:51:d2:be:6a:d9:d6:5a:41:0b:a1: aa:cf:dd:27:77:47:25:d8:5f:5e:0e:fc:b9:65:39: f1:af:3c:32:6e:05:05:50:63:a4:3b:a1:3d:0d:ea: 32:cb:00:32:63:d7:1c:27:16:cb:a8:22:97:32:54: 34:e9:e7:d2:80:55:ca:14:b8:22:cb:8b:e5:92:7a: 5a:ce:1f:b3:ad:21:c7:fe:67:41:5c:c9:41:7c:bf: e7:19:9d:6d:24:92:fd:f8:cc:ef:bf:83:78:87:76: 1f:07:47:20:02:6c:1e:d9:36:d2:ef:f0:4c:2a:6d: 58:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1B:D4:15:9A:10:29:9B:A9:56:60:9B:30:F0:AA:94:37:42:04:63 X509v3 Authority Key Identifier: keyid:9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c3:40:9f:a0:1f:80:51:84:36:23:07:d5:14:b2:2f:b7:b2: b5:65:16:46:8c:0f:bc:01:8c:92:fe:6b:2d:59:61:4a:01:84: b3:91:a4:f8:05:34:87:a5:4f:6a:5e:88:7a:0c:80:42:04:e9: 2a:56:38:ba:0a:08:7d:da:d1:f5:72:a8:a3:3f:ee:3d:0a:1f: b3:ab:af:ce:4b:6f:25:19:62:71:a9:e5:70:bf:46:12:63:9c: 40:e5:f9:d2:33:be:39:37:7c:96:18:15:37:50:03:30:68:06: 47:20:68:f2:27:b5:62:13:4f:15:11:dd:11:cc:be:df:92:de: 9c:76:14:b3:d6:3d:49:c4:cb:28:a7:4a:c8:46:06:74:79:55: 71:0d:86:44:29:7e:f2:09:75:ff:3a:c3:67:9f:1c:da:97:ed: bc:53:5f:07:3f:de:07:34:84:2a:39:a4:f9:be:a6:31:a0:66: 69:30:72:3e:e7:fe:c2:11:41:5f:2d:24:17:85:c2:ea:48:24: 24:43:50:cb:84:d4:ec:55:bb:0d:95:95:8c:c3:f2:c5:4f:a7: 79:c9:59:4f:cf:25:50:f4:da:90:d8:75:bd:ec:18:40:b7:61: a7:e0:ce:61:75:9c:70:0e:fb:6f:39:b3:05:f6:64:4c:e8:63: 35:a7:de:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0Q0IxMTAvBgNVBAUTKDlBQTUzRDI3QkUxQkI2MTQ5NTNDMzc5RDM5RTBCQkM1 RjFDMTI0QTcwHhcNMjUwNDI0MTg0OTU1WhcNMjUwNTAxMTg0OTU1WjAYMRYwFAYD VQQDEw02ODBhODdkMy0zYjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7phog9VCt9DjnR/qAqMDxnIEQZmYfWpK9qGh6Rj8H+dxxE98mbjyuHWp+UYp xQv3xF4RJptW+X2qUGFuUA9J/wWqZY40XAn/gV94gbfIlHD72XSwXRlsZmomKBGE a0k5UWX5hXtXlIVyi6MaunC1UpQiZZlqUaVzhRBTNUfdqe3MOntxeGhmDOdjW1HS vmrZ1lpBC6Gqz90nd0cl2F9eDvy5ZTnxrzwybgUFUGOkO6E9DeoyywAyY9ccJxbL qCKXMlQ06efSgFXKFLgiy4vlknpazh+zrSHH/mdBXMlBfL/nGZ1tJJL9+Mzvv4N4 h3YfB0cgAmwe2TbS7/BMKm1Y6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcb1BWa ECmbqVZgmzDwqpQ3QgRjMB8GA1UdIwQYMBaAFJqlPSe+G7YUlTw3nTngu8XxwSSn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTRDQi9BREVDNTQzQTFE NzgxMUVBOEQzMDE3NDRDNEY5QUUwMi9tcVU5Sjc0YnRoU1ZQRGVkT2VDN3hmSEJK S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xVTlKNzRidGhTVlBEZWRPZUM3eGZIQkpLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTRDQi9BREVDNTQzQTFENzgxMUVBOEQzMDE3NDRDNEY5QUUwMi9tcVU5Sjc0YnRo U1ZQRGVkT2VDN3hmSEJKS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9w0CfoB+AUYQ2IwfVFLIvt7K1ZRZGjA+8AYyS/mstWWFKAYSzkaT4 BTSHpU9qXoh6DIBCBOkqVji6Cgh92tH1cqijP+49Ch+zq6/OS28lGWJxqeVwv0YS Y5xA5fnSM745N3yWGBU3UAMwaAZHIGjyJ7ViE08VEd0RzL7fkt6cdhSz1j1JxMso p0rIRgZ0eVVxDYZEKX7yCXX/OsNnnxzal+28U18HP94HNIQqOaT5vqYxoGZpMHI+ 5/7CEUFfLSQXhcLqSCQkQ1DLhNTsVbsNlZWMw/LFT6d5yVlPzyVQ9NqQ2HW97BhA t2Gn4M5hdZxwDvtvObMF9mRM6GM1p96v -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:31 2025 by rpki-client