$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft File: QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json) Hash identifier: d8hF2iD/LTesqThNNZfpDIPImCS6C5XwRZ+Jtc14/70= Subject key identifier: 16:A8:C1:09:27:5D:FD:F0:F5:E5:FA:89:BB:D6:94:71:26:3A:AE:D3 Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft Manifest number: 56 Signing time: Fri 25 Apr 2025 06:14:13 +0000 Manifest this update: Fri 25 Apr 2025 06:14:13 +0000 Manifest next update: Fri 02 May 2025 06:14:13 +0000 Files and hashes: 1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: cQopzb589f2vSwe3udool3VjVT7gaHrdZWP6Q9VcBvs=) 2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: Apr 25 06:14:13 2025 GMT Not After : May 2 06:14:13 2025 GMT Subject: CN=680b2835-5aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:ff:88:8a:fc:23:41:a9:c0:a3:86:5f:45: 09:63:c6:f5:4e:62:16:b5:44:a2:b8:b7:2a:e3:00: e4:e9:42:ba:05:04:36:57:33:93:d1:70:b3:6f:ad: 81:59:04:47:2c:21:85:2d:c7:5f:1f:a2:a4:ff:58: 43:bb:77:dc:dd:da:31:0c:30:ac:8f:a1:99:cd:52: be:9a:76:5c:3c:ac:e4:10:4e:8b:da:63:82:52:f3: 36:02:0c:b1:96:79:0f:1f:2a:f0:b4:4f:81:8e:73: 55:ee:85:69:44:ab:e5:ee:f1:cd:dc:20:f8:f0:8a: ad:60:f0:44:74:0a:4b:db:24:c7:6d:47:63:49:a7: 9d:9a:92:26:1d:e8:90:59:2f:df:a8:b9:1c:44:94: fe:50:22:62:bf:d5:78:5f:eb:33:13:fa:a1:fe:49: 91:90:c0:51:ac:ba:6c:64:e6:21:7a:99:4c:46:de: a8:f0:45:3f:90:14:59:e7:c9:40:b2:e1:90:ee:52: 2b:99:7c:01:31:75:c4:5a:66:d9:0f:95:f9:42:c5: ce:7b:b1:ca:de:9c:ea:12:d8:90:cc:42:7b:36:e3: 5d:a2:11:cc:10:a0:12:d1:72:55:ab:5c:1d:21:a8: f8:87:36:75:6a:2f:90:0c:48:cd:85:86:c4:e4:c6: 95:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A8:C1:09:27:5D:FD:F0:F5:E5:FA:89:BB:D6:94:71:26:3A:AE:D3 X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:47:b2:25:25:76:96:f7:f1:f1:41:ee:bc:d1:e4:cf:7f:7c: 54:e5:89:9f:62:7a:8f:4a:19:2d:c4:70:54:63:fe:31:93:8d: b7:ac:2f:0f:19:b3:aa:c3:64:85:17:f0:e9:90:1f:a6:95:9a: a6:26:94:d9:ee:11:24:52:ab:8a:68:1d:bb:38:fb:65:fc:4d: e3:bd:87:08:3b:38:af:77:75:d7:07:26:48:08:64:bb:38:37: 6a:c3:f7:a8:15:a3:12:bc:6d:3a:32:03:fb:dd:82:da:46:af: e0:a7:b8:5e:4f:21:7c:20:6e:5b:1c:1d:48:49:b2:2c:a7:27: c0:21:80:d7:99:ce:92:d4:37:48:15:2e:e8:3a:79:f6:80:cc: 07:67:17:77:33:fa:a2:93:d6:cb:32:49:bd:40:2c:4c:01:1c: d4:13:41:f5:0d:f1:95:22:8f:cb:da:f6:87:71:2c:97:b7:81: 4b:b1:a7:99:e1:1a:b9:b1:2a:b1:e2:cd:8f:d6:b5:b0:c7:eb: eb:0a:15:83:00:c8:8c:3b:6d:d9:2e:58:2a:64:6d:da:fc:ef: 1d:83:93:0d:20:d9:60:1e:6e:75:8c:74:d6:ac:d3:02:95:99: 89:38:79:fb:36:8a:e3:7f:c2:cf:fe:4d:20:6c:62:2a:d6:fb: 1e:a5:5c:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzMxQzExMC8GA1UEBRMoNDBGQUE3MEY4QTIzQTAzRDE2QTExMDg2REJFNTAyRTg2 MjE2NDk2NzAeFw0yNTA0MjUwNjE0MTNaFw0yNTA1MDIwNjE0MTNaMBgxFjAUBgNV BAMTDTY4MGIyODM1LTVhYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCp/+IivwjQanAo4ZfRQljxvVOYha1RKK4tyrjAOTpQroFBDZXM5PRcLNvrYFZ BEcsIYUtx18foqT/WEO7d9zd2jEMMKyPoZnNUr6adlw8rOQQTovaY4JS8zYCDLGW eQ8fKvC0T4GOc1XuhWlEq+Xu8c3cIPjwiq1g8ER0CkvbJMdtR2NJp52akiYd6JBZ L9+ouRxElP5QImK/1Xhf6zMT+qH+SZGQwFGsumxk5iF6mUxG3qjwRT+QFFnnyUCy 4ZDuUiuZfAExdcRaZtkPlflCxc57screnOoS2JDMQns2412iEcwQoBLRclWrXB0h qPiHNnVqL5AMSM2FhsTkxpW9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFqjBCSdd /fD15fqJu9aUcSY6rtMwHwYDVR0jBBgwFoAUQPqnD4ojoD0WoRCG2+UC6GIWSWcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMzFDL0YxMDdEQTEwQTZD RjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NX Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVBxbkQ0b2pvRDBXb1JDRzItVUM2R0lXU1djLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD MzFDL0YxMDdEQTEwQTZDRjExRUZCMkZCQjU3REM0RjlBRTAyL1FQcW5ENG9qb0Qw V29SQ0cyLVVDNkdJV1NXYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF1HsiUldpb38fFB7rzR5M9/fFTliZ9ieo9KGS3EcFRj/jGTjbesLw8Z s6rDZIUX8OmQH6aVmqYmlNnuESRSq4poHbs4+2X8TeO9hwg7OK93ddcHJkgIZLs4 N2rD96gVoxK8bToyA/vdgtpGr+CnuF5PIXwgblscHUhJsiynJ8AhgNeZzpLUN0gV Lug6efaAzAdnF3cz+qKT1ssySb1ALEwBHNQTQfUN8ZUij8va9odxLJe3gUuxp5nh GrmxKrHizY/WtbDH6+sKFYMAyIw7bdkuWCpkbdr87x2Dkw0g2WAebnWMdNas0wKV mYk4efs2iuN/ws/+TSBsYirW+x6lXBU= -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:17 2025 by rpki-client