$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft File: qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json) Hash identifier: 3JR7x+zxZUWGnvofyHKbEmzCCjHvSBDD4mFw2bSMsWc= Subject key identifier: 25:6B:29:F5:17:0D:7D:F4:40:0C:87:0C:D4:B4:BD:9D:CE:45:A8:D3 Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B Certificate issuer: /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Certificate serial: 041E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft Manifest number: 0417 Signing time: Fri 25 Apr 2025 00:13:00 +0000 Manifest this update: Fri 25 Apr 2025 00:12:59 +0000 Manifest next update: Fri 02 May 2025 00:12:59 +0000 Files and hashes: 1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: l6OWLZvy2+QfuEufUIzmQH1FDK6MFLvJaBJsF9JOs8g=) 2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: jsVFzS1V8/4nPs0LiSJz70mLYAraQYwRrwx0A1zMdZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F49, serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Validity Not Before: Apr 25 00:12:59 2025 GMT Not After : May 2 00:12:59 2025 GMT Subject: CN=680ad38b-b6ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b9:79:e5:0e:1f:e2:d8:58:a1:af:be:53:8a: c2:27:65:cd:f5:2a:13:17:4b:0a:b1:16:68:b8:6c: 67:73:fd:c6:61:d9:36:24:53:7c:97:bf:5f:57:6e: d8:7f:1a:a4:c8:6a:34:a0:fd:50:2a:13:9a:b9:0b: 28:13:a7:e7:55:87:ab:e0:10:85:b4:ff:ba:20:a4: cd:93:ab:43:cd:44:1b:cd:a3:68:83:dd:e4:db:25: b6:2c:8c:4d:23:e6:9d:49:92:f6:f2:a9:80:74:2d: 20:e8:10:6c:2e:1d:be:bd:00:18:36:af:b5:08:86: 75:44:2f:c4:70:57:1c:39:5e:16:ee:36:5a:e5:a2: e8:69:34:09:94:9f:7c:ff:d1:04:ca:89:c9:ff:99: d3:5a:3e:36:a6:4a:c4:a3:39:03:49:51:69:d3:08: af:79:f7:65:0f:10:ee:67:1e:2b:ad:73:18:a2:3b: 02:f9:f7:dd:f2:7c:70:05:82:d7:fb:99:cf:35:c0: 22:03:77:9b:ed:1c:c9:06:11:48:10:fb:c6:bf:c9: a8:eb:5a:c4:08:a1:d9:d1:05:f4:31:35:c7:51:3e: 25:9e:43:5e:84:4f:ca:0d:3e:b5:af:e9:80:25:bc: d3:cb:5a:a9:6e:6d:a5:85:6d:a3:a1:20:ae:16:94: 81:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:6B:29:F5:17:0D:7D:F4:40:0C:87:0C:D4:B4:BD:9D:CE:45:A8:D3 X509v3 Authority Key Identifier: keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b2:21:e3:02:83:1a:e1:0a:14:88:93:44:33:6b:eb:c8:45: c6:7a:1e:68:90:a6:a2:95:b2:d1:d5:b3:b9:84:cb:69:59:5c: b8:5f:2a:46:c2:5a:85:09:a6:b0:01:3b:f6:f3:f4:76:11:79: 62:ac:12:65:c2:08:d3:5a:97:ca:32:30:13:30:ad:34:45:98: 96:01:cf:7a:92:7d:65:74:90:1c:94:61:b1:52:65:0f:36:df: 6d:ac:c8:ac:21:6c:59:37:d6:bf:69:8f:c6:d0:0d:c9:4a:cc: fe:82:81:6c:9a:bf:de:86:38:1b:bd:39:a6:39:c8:43:49:33: 29:3b:c6:68:9d:d2:7b:1b:86:47:71:75:c2:5e:2a:44:8b:a4: cf:fd:dc:a5:de:18:fd:6f:e7:d9:b6:76:08:99:41:57:68:10: 7e:eb:e5:e9:c2:cf:d6:17:09:3a:32:6c:a8:7d:48:f9:47:12: 05:a0:fd:67:e9:cf:a7:a2:c0:d7:05:39:4c:ca:7b:fa:5d:c5: 6a:13:cd:44:bc:62:6b:ed:e4:92:af:17:91:f6:cc:66:92:6f: 01:82:be:16:15:b0:71:5c:54:60:f5:0d:7e:a7:59:b6:f6:92: e1:7e:e1:81:34:4d:82:91:77:d4:a1:1c:d7:2a:69:5d:64:36: b1:fe:aa:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGNDkxMTAvBgNVBAUTKEE4NzFGNEU2QzM3MkRCMTBCNjRERjM5OTVGQTE1MUVG QjM5Rjk5OEIwHhcNMjUwNDI1MDAxMjU5WhcNMjUwNTAyMDAxMjU5WjAYMRYwFAYD VQQDEw02ODBhZDM4Yi1iNmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rl55Q4f4thYoa++U4rCJ2XN9SoTF0sKsRZouGxnc/3GYdk2JFN8l79fV27Y fxqkyGo0oP1QKhOauQsoE6fnVYer4BCFtP+6IKTNk6tDzUQbzaNog93k2yW2LIxN I+adSZL28qmAdC0g6BBsLh2+vQAYNq+1CIZ1RC/EcFccOV4W7jZa5aLoaTQJlJ98 /9EEyonJ/5nTWj42pkrEozkDSVFp0wivefdlDxDuZx4rrXMYojsC+ffd8nxwBYLX +5nPNcAiA3eb7RzJBhFIEPvGv8mo61rECKHZ0QX0MTXHUT4lnkNehE/KDT61r+mA JbzTy1qpbm2lhW2joSCuFpSBZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVrKfUX DX30QAyHDNS0vZ3ORajTMB8GA1UdIwQYMBaAFKhx9ObDctsQtk3zmV+hUe+zn5mL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY0OS85RDNDNzQ5MjY2 QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4QzJUZk9aWDZGUjc3T2Zt WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISDA1c055MnhDMlRmT1pYNkZSNzdPZm1Zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY0OS85RDNDNzQ5MjY2QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4 QzJUZk9aWDZGUjc3T2ZtWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtsiHjAoMa4QoUiJNEM2vryEXGeh5okKailbLR1bO5hMtpWVy4XypG wlqFCaawATv28/R2EXlirBJlwgjTWpfKMjATMK00RZiWAc96kn1ldJAclGGxUmUP Nt9trMisIWxZN9a/aY/G0A3JSsz+goFsmr/ehjgbvTmmOchDSTMpO8ZondJ7G4ZH cXXCXipEi6TP/dyl3hj9b+fZtnYImUFXaBB+6+Xpws/WFwk6MmyofUj5RxIFoP1n 6c+nosDXBTlMynv6XcVqE81EvGJr7eSSrxeR9sxmkm8Bgr4WFbBxXFRg9Q1+p1m2 9pLhfuGBNE2CkXfUoRzXKmldZDax/qoE -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:54 2025 by rpki-client