$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft File: qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft (raw, json) Hash identifier: i77KZr5ut3u0COS2UBUS9sO0ZX31ZKWJ00n0V+uRrtQ= Subject key identifier: 06:58:F6:0E:69:AA:3C:1E:8E:4C:09:79:97:23:3C:A7:80:FF:04:34 Authority key identifier: A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A Certificate issuer: /CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft Manifest number: 018D Signing time: Fri 25 Apr 2025 02:41:27 +0000 Manifest this update: Fri 25 Apr 2025 02:41:27 +0000 Manifest next update: Fri 02 May 2025 02:41:27 +0000 Files and hashes: 1: qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl (hash: QvEloO2LgDHYEoEHeWUcpmG7AjAFI2HvcCswOKmZb2s=) 2: A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa (hash: qTpurh8+bWpZzwTVZxTLGeJXujwiEOMw1H0kXdqpaC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C52, serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Validity Not Before: Apr 25 02:41:27 2025 GMT Not After : May 2 02:41:27 2025 GMT Subject: CN=680af657-477a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:ee:34:23:c5:8b:20:f3:c0:27:50:ad:f0: 54:d8:3f:2a:b9:19:9c:3a:50:e7:1e:e3:c9:b1:b7: a8:cc:62:c4:5a:69:4d:4e:d5:e0:f1:85:55:eb:be: 5d:9b:d5:ed:c5:29:31:81:7b:18:1e:3b:28:6d:20: c6:a8:09:41:ec:6f:9c:35:a9:1f:9c:e6:23:55:d9: f6:c5:46:f0:02:59:c3:e3:31:9d:e5:67:a8:a6:cb: ab:c2:35:30:ec:1f:6c:66:a3:ae:e3:1b:ef:83:23: 88:e1:29:fa:fd:f0:35:00:5c:ec:93:86:36:19:86: b8:00:3a:21:41:bf:0b:f7:c4:b0:75:e3:7a:72:48: 78:1b:50:2b:c0:b4:70:fb:e7:03:d4:df:62:c0:5e: b8:bb:e4:46:48:6f:cd:ed:68:01:e3:6a:2c:18:36: 45:d8:66:73:12:11:5e:6c:66:93:ec:e5:9a:16:62: c1:cd:2f:85:b0:47:76:ae:da:0c:e1:af:9d:d1:be: 92:81:d2:cf:4c:8a:de:08:d5:e7:8e:f0:14:d6:4b: 6e:3f:af:2f:9f:97:5f:a0:22:a7:87:ae:3b:97:0f: 64:38:54:77:84:02:02:2b:b4:e4:5f:4b:20:82:c0: 24:64:d1:60:a2:5f:51:87:46:6b:00:68:ff:48:9d: 09:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:58:F6:0E:69:AA:3C:1E:8E:4C:09:79:97:23:3C:A7:80:FF:04:34 X509v3 Authority Key Identifier: keyid:A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:32:a7:6c:79:31:4a:57:f2:9e:b1:dd:8a:aa:88:ea:bc:19: 25:b2:f5:f9:42:71:d6:ad:19:de:85:aa:98:cb:3d:e5:d9:fa: 01:3c:df:d0:7e:39:f7:bc:2d:14:4a:2d:c6:a6:69:50:0d:b8: 3c:77:a4:b1:cf:fa:d1:49:a2:37:b6:1b:13:5a:f4:90:3f:ff: a6:00:2c:26:43:6e:2a:b2:97:99:72:91:31:32:5f:ac:11:33: d1:a8:6a:4b:8e:90:9f:55:96:da:af:76:84:ee:0f:2d:a4:ea: 78:f4:f0:25:08:a6:7d:72:03:8d:fe:ff:df:a8:91:90:1d:32: f8:f1:7e:b4:e9:91:cb:29:7d:49:e8:b0:86:4b:9b:a7:11:26: a7:41:9a:be:d0:dc:88:db:14:f6:24:24:cd:eb:be:10:ce:76: b1:c1:63:07:90:6b:b2:90:9d:24:d7:77:a4:d5:ad:3f:52:f9: 47:ed:8c:92:ba:62:fd:be:0b:89:50:e7:8f:a5:a6:17:bc:f9: 5e:b0:91:96:27:75:1d:3a:9c:4c:c3:2f:20:75:d3:66:80:d3: e2:70:84:c2:9e:8e:11:08:1a:e9:f7:83:84:43:e4:1f:2f:a7: b4:2c:99:8c:77:95:40:b9:75:2c:b2:13:40:ac:4c:50:df:58: 96:45:0c:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDNTIxMTAvBgNVBAUTKEE5OTBEQTI1Q0Y0RTAxQkNFQjdFQzc1QzE3ODYwRkI5 NDdCRTA5MkEwHhcNMjUwNDI1MDI0MTI3WhcNMjUwNTAyMDI0MTI3WjAYMRYwFAYD VQQDEw02ODBhZjY1Ny00NzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB7uNCPFiyDzwCdQrfBU2D8quRmcOlDnHuPJsbeozGLEWmlNTtXg8YVV675d m9XtxSkxgXsYHjsobSDGqAlB7G+cNakfnOYjVdn2xUbwAlnD4zGd5WeopsurwjUw 7B9sZqOu4xvvgyOI4Sn6/fA1AFzsk4Y2GYa4ADohQb8L98SwdeN6ckh4G1ArwLRw ++cD1N9iwF64u+RGSG/N7WgB42osGDZF2GZzEhFebGaT7OWaFmLBzS+FsEd2rtoM 4a+d0b6SgdLPTIreCNXnjvAU1ktuP68vn5dfoCKnh647lw9kOFR3hAICK7TkX0sg gsAkZNFgol9Rh0ZrAGj/SJ0JbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZY9g5p qjwejkwJeZcjPKeA/wQ0MB8GA1UdIwQYMBaAFKmQ2iXPTgG8637HXBeGD7lHvgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUM1Mi8wRTVEQkZCNEM0 QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0FienJmc2RjRjRZUHVVZS1D U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaRGFKYzlPQWJ6cmZzZGNGNFlQdVVlLUNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUM1Mi8wRTVEQkZCNEM0QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0Fi enJmc2RjRjRZUHVVZS1DU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBMqdseTFKV/Kesd2KqojqvBklsvX5QnHWrRnehaqYyz3l2foBPN/Q fjn3vC0USi3GpmlQDbg8d6Sxz/rRSaI3thsTWvSQP/+mACwmQ24qspeZcpExMl+s ETPRqGpLjpCfVZbar3aE7g8tpOp49PAlCKZ9cgON/v/fqJGQHTL48X606ZHLKX1J 6LCGS5unESanQZq+0NyI2xT2JCTN674QznaxwWMHkGuykJ0k13ek1a0/UvlH7YyS umL9vguJUOePpaYXvPlesJGWJ3UdOpxMwy8gddNmgNPicITCno4RCBrp94OEQ+Qf L6e0LJmMd5VAuXUsshNArExQ31iWRQy9 -----END CERTIFICATE-----Generated at Sat Apr 26 17:51:29 2025 by rpki-client