$ rpki-client -vvf rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft File: qI7iP_jXCCjO28cB54yAdH_8Eco.mft (raw, json) Hash identifier: LnCynFmZmwEOaiM21QILmPp0eSx+kqBhp/MZa3bYri0= Subject key identifier: 5F:95:FA:95:54:18:C6:D9:3D:6E:7F:47:FE:FC:FC:16:A9:9F:7A:B8 Authority key identifier: A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA Certificate issuer: /CN=A9188A46/serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft Manifest number: 31 Signing time: Fri 25 Apr 2025 06:39:37 +0000 Manifest this update: Fri 25 Apr 2025 06:39:37 +0000 Manifest next update: Fri 02 May 2025 06:39:37 +0000 Files and hashes: 1: qI7iP_jXCCjO28cB54yAdH_8Eco.crl (hash: +z2+2V8LKjrC/tiSf/P80JA8CzH+nmxviB7xQiZ3Rvk=) 2: F3964710DC9611EF9965F120C4F9AE02.roa (hash: m1p9gDbyX7TV/W36Rz61piz8WXiRToAGwtHk1Dx3J+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188A46, serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Validity Not Before: Apr 25 06:39:37 2025 GMT Not After : May 2 06:39:37 2025 GMT Subject: CN=680b2e29-3301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f9:01:f8:7f:a8:b9:2b:3a:2e:d3:43:b1:5d: ad:49:ba:09:3e:cd:ab:99:e3:30:75:0e:0a:54:ad: d5:d0:de:d3:75:43:f1:66:e9:f3:e5:08:5b:1f:7e: a6:fa:82:b6:1d:40:07:21:a4:0f:fd:e0:5e:9b:79: 5c:34:d8:69:08:e7:06:8d:75:69:08:eb:34:7c:58: 99:f6:ec:45:51:e5:7d:68:89:88:b0:95:20:70:b9: 04:5b:0a:22:11:94:39:d4:3c:f2:a3:b6:4a:86:b6: 35:c4:9d:31:af:25:7e:11:3f:f5:02:18:ec:b5:fb: 89:e1:d1:41:dc:f4:eb:83:40:50:5d:1d:94:79:63: 7a:07:98:62:af:50:6a:e0:7e:fb:62:fe:98:b0:57: 82:cd:fd:e2:ab:72:7a:c8:5e:70:31:dd:8a:34:5c: 0e:27:fb:b8:a0:41:c5:99:39:6c:3d:cb:a7:a6:4c: 46:0a:dc:ee:77:38:22:5d:d6:1c:4c:07:dc:ce:4c: 93:6d:72:c9:26:0c:b0:bf:48:49:da:00:16:eb:8d: c0:77:ce:a0:28:4c:8a:1d:4c:43:23:d4:c3:81:b3: cb:ef:58:1e:69:a5:a9:57:69:a0:63:39:55:b3:bf: 6e:95:7a:ed:38:21:be:ae:86:3a:62:f4:91:20:24: 5c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:95:FA:95:54:18:C6:D9:3D:6E:7F:47:FE:FC:FC:16:A9:9F:7A:B8 X509v3 Authority Key Identifier: keyid:A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:94:d8:1d:84:3f:10:d8:c1:59:2d:27:2d:14:2f:60:3f:9d: d8:28:a2:4e:66:a6:ba:dd:af:3e:9d:d8:01:9b:78:a0:13:f9: fd:ee:0d:f4:c5:67:73:95:63:84:79:2b:7a:d6:2f:27:d7:70: 3b:8d:4f:88:c6:af:88:f3:83:16:72:69:07:cf:ec:c7:15:20: 4d:49:03:9a:06:04:a7:78:00:28:20:69:b7:b6:02:72:a4:25: cb:85:bd:8f:91:fe:42:50:ed:68:6f:f0:2b:cc:fa:57:33:61: 60:79:0e:fb:d9:0e:a0:54:5f:de:bc:b4:72:55:d5:5a:56:3c: f7:4c:4d:e7:5b:6a:7a:20:ce:fa:cd:9c:1e:b7:66:36:cc:f8: 9b:90:fb:29:4b:54:9a:8d:52:d9:56:75:d4:da:1b:72:f1:64: 16:4e:e5:c0:64:9d:cb:b1:be:2e:89:4e:7e:d3:2f:0e:c5:6f: b1:7a:0d:02:c6:96:7d:f0:bf:ed:79:39:f1:14:6d:9f:32:95: 00:0a:8b:93:ba:d4:a1:43:a4:a1:6d:86:16:27:38:92:94:ff: 06:9e:b4:53:80:af:c6:8d:7e:c3:49:d1:db:a4:68:17:57:ed: bb:a9:fd:ea:2b:97:27:ac:54:2b:73:c9:4d:89:7f:5f:48:86: 6a:7a:f0:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OEE0NjExMC8GA1UEBRMoQTg4RUUyM0ZGOEQ3MDgyOENFREJDNzAxRTc4QzgwNzQ3 RkZDMTFDQTAeFw0yNTA0MjUwNjM5MzdaFw0yNTA1MDIwNjM5MzdaMBgxFjAUBgNV BAMTDTY4MGIyZTI5LTMzMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm+QH4f6i5Kzou00OxXa1Jugk+zauZ4zB1DgpUrdXQ3tN1Q/Fm6fPlCFsffqb6 grYdQAchpA/94F6beVw02GkI5waNdWkI6zR8WJn27EVR5X1oiYiwlSBwuQRbCiIR lDnUPPKjtkqGtjXEnTGvJX4RP/UCGOy1+4nh0UHc9OuDQFBdHZR5Y3oHmGKvUGrg fvti/piwV4LN/eKrcnrIXnAx3Yo0XA4n+7igQcWZOWw9y6emTEYK3O53OCJd1hxM B9zOTJNtcskmDLC/SEnaABbrjcB3zqAoTIodTEMj1MOBs8vvWB5ppalXaaBjOVWz v26Veu04Ib6uhjpi9JEgJFwPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUX5X6lVQY xtk9bn9H/vz8FqmfergwHwYDVR0jBBgwFoAUqI7iP/jXCCjO28cB54yAdH/8Ecow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4QTQ2L0Q2NEU1QTdFREM4 NDExRUZCOTA4NTAzQkM0RjlBRTAyL3FJN2lQX2pYQ0NqTzI4Y0I1NHlBZEhfOEVj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUk3aVBfalhDQ2pPMjhjQjU0eUFkSF84RWNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4 QTQ2L0Q2NEU1QTdFREM4NDExRUZCOTA4NTAzQkM0RjlBRTAyL3FJN2lQX2pYQ0Nq TzI4Y0I1NHlBZEhfOEVjby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFGU2B2EPxDYwVktJy0UL2A/ndgook5mprrdrz6d2AGbeKAT+f3uDfTF Z3OVY4R5K3rWLyfXcDuNT4jGr4jzgxZyaQfP7McVIE1JA5oGBKd4ACggabe2AnKk JcuFvY+R/kJQ7Whv8CvM+lczYWB5DvvZDqBUX968tHJV1VpWPPdMTedbanogzvrN nB63ZjbM+JuQ+ylLVJqNUtlWddTaG3LxZBZO5cBkncuxvi6JTn7TLw7Fb7F6DQLG ln3wv+15OfEUbZ8ylQAKi5O61KFDpKFthhYnOJKU/waetFOAr8aNfsNJ0dukaBdX 7bup/eorlyesVCtzyU2Jf19Ihmp68JQ= -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:30 2025 by rpki-client