$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: urZZ+E3BadS4n2OOBYTzkfBw5FFXr14vUglBd/5s2m0= Subject key identifier: 62:8D:D3:BE:43:12:98:05:47:20:3E:8D:6B:2D:8A:AB:65:BA:04:FE Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0DC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0D9F Signing time: Thu 24 Apr 2025 17:54:45 +0000 Manifest this update: Thu 24 Apr 2025 17:54:44 +0000 Manifest next update: Thu 01 May 2025 17:54:44 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: kCJGJ2sj6+L28ETbM/VbZgHOjl1FSFubxhiG/m0vKTg=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: fGrUYT1O2dItK4fIwYgIfLvCsJmlCIF/jYJCGwsc26A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:54:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3520 (0xdc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9, serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Apr 24 17:54:44 2025 GMT Not After : May 1 17:54:44 2025 GMT Subject: CN=680a7ae5-baec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b8:6e:7f:c6:54:88:44:e8:d4:e8:bd:f4:d2: 38:9b:43:4d:fc:7e:48:cb:56:32:8d:18:44:31:e8: a5:6d:82:59:e4:a0:d1:ef:b8:ea:03:ef:47:b7:19: 70:a2:45:da:bd:48:c1:7d:48:f4:ca:c8:7e:bd:98: 50:f3:2a:25:80:d7:d9:ea:d4:48:c6:6a:1c:d4:f8: f9:e6:a1:9e:7f:40:e7:7d:45:15:47:bf:ba:28:56: 34:aa:05:05:86:22:03:02:b2:0d:1a:1b:db:31:65: 68:ad:2e:67:af:c4:f9:d8:29:06:a0:5a:cb:a1:c3: 00:a1:e1:b9:c1:65:bd:ed:4c:d2:01:48:a1:7f:01: 13:ad:7d:93:6e:e9:a2:46:e6:d6:9b:e3:96:bd:65: e7:b2:fc:e6:34:fe:aa:c1:e7:bd:95:a8:0e:6b:64: f9:ff:02:89:a9:96:4e:c1:bd:36:19:dc:8b:4f:fe: a9:70:b6:fb:19:18:b4:70:40:dc:08:c1:31:24:f4: 5c:6e:f1:fd:60:ca:87:fe:67:1e:06:35:c1:d4:6e: fc:9f:00:dd:19:d8:bd:6e:51:e3:89:09:dd:ae:95: 70:da:ac:24:3d:1c:75:bf:8b:b6:a1:2a:65:10:99: 77:8d:ef:6d:5d:d9:cb:48:92:c9:1e:9d:c5:72:d3: 52:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8D:D3:BE:43:12:98:05:47:20:3E:8D:6B:2D:8A:AB:65:BA:04:FE X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:16:15:78:bb:36:d9:20:30:13:5d:a7:6f:9d:ea:38:e2:32: 2f:c6:47:69:83:48:8d:9a:e4:a0:e2:ea:c7:b7:7d:46:9b:dc: 43:f3:61:d0:5b:d0:8f:ad:44:ce:77:c0:34:0b:e1:01:cc:78: a6:94:38:aa:8c:5e:8b:2b:7b:09:b4:b2:f1:bc:9d:b9:e8:1d: d8:f2:a0:d9:3d:24:b3:1d:c4:a3:17:bf:e9:60:d1:77:35:a7: e6:ef:75:80:fa:f6:35:10:b5:d3:85:1d:2d:36:cf:95:cc:cd: f6:5b:be:e6:dd:05:ab:4c:fb:10:3e:bf:a1:a8:b8:78:8e:93: 66:fd:43:89:c1:7d:57:e9:fc:cc:54:ba:05:f8:27:e2:0f:5d: 5a:41:c8:33:14:ea:09:17:f0:10:62:f0:36:fa:a1:65:d1:22: d7:00:fd:b2:5e:cd:6a:51:10:82:39:76:af:65:96:6e:05:ff: 13:6f:59:05:16:32:4c:ea:20:f5:cd:84:1f:14:b9:fa:1c:b9: a9:13:3f:47:2f:a7:72:f8:ab:81:eb:4c:c5:05:08:a6:ca:1f: 78:2e:c3:cc:37:3e:81:ee:f6:f2:4b:19:33:f3:2e:cd:2d:bd: 2e:11:76:bb:f3:8c:5d:f4:74:6c:b2:ba:c3:6a:81:f1:ad:fc: b6:8e:d9:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjUwNDI0MTc1NDQ0WhcNMjUwNTAxMTc1NDQ0WjAYMRYwFAYD VQQDEw02ODBhN2FlNS1iYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7huf8ZUiETo1Oi99NI4m0NN/H5Iy1YyjRhEMeilbYJZ5KDR77jqA+9Htxlw okXavUjBfUj0ysh+vZhQ8yolgNfZ6tRIxmoc1Pj55qGef0DnfUUVR7+6KFY0qgUF hiIDArINGhvbMWVorS5nr8T52CkGoFrLocMAoeG5wWW97UzSAUihfwETrX2Tbumi RubWm+OWvWXnsvzmNP6qwee9lagOa2T5/wKJqZZOwb02GdyLT/6pcLb7GRi0cEDc CMExJPRcbvH9YMqH/mceBjXB1G78nwDdGdi9blHjiQndrpVw2qwkPRx1v4u2oSpl EJl3je9tXdnLSJLJHp3FctNS4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKN075D EpgFRyA+jWstiqtlugT+MB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwFhV4uzbZIDATXadvneo44jIvxkdpg0iNmuSg4urHt31Gm9xD82HQ W9CPrUTOd8A0C+EBzHimlDiqjF6LK3sJtLLxvJ256B3Y8qDZPSSzHcSjF7/pYNF3 Nafm73WA+vY1ELXThR0tNs+VzM32W77m3QWrTPsQPr+hqLh4jpNm/UOJwX1X6fzM VLoF+CfiD11aQcgzFOoJF/AQYvA2+qFl0SLXAP2yXs1qURCCOXavZZZuBf8Tb1kF FjJM6iD1zYQfFLn6HLmpEz9HL6dy+KuB60zFBQimyh94LsPMNz6B7vbySxkz8y7N Lb0uEXa784xd9HRssrrDaoHxrfy2jtkt -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:36 2025 by rpki-client