$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: iC7p0NFAT36RXJWIPLmKy3p3KZYR98hfUNkv3SrjMDA= Subject key identifier: 0B:54:2D:49:E0:50:CB:DE:7A:08:50:4C:20:48:BC:20:A3:B1:01:59 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0136 Signing time: Fri 25 Apr 2025 03:33:39 +0000 Manifest this update: Fri 25 Apr 2025 03:33:38 +0000 Manifest next update: Fri 02 May 2025 03:33:38 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: 6chROliWYI6GDFRQuDigcl5+rFbyZm+wGiGJPPqczEI=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Apr 25 03:33:38 2025 GMT Not After : May 2 03:33:38 2025 GMT Subject: CN=680b0292-1106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:84:53:5d:f0:db:45:48:12:db:98:a3:ad:29: d7:86:b6:0d:1d:b9:d4:01:b6:da:20:15:ed:53:a4: 8e:fa:db:bf:97:e0:70:7e:db:55:2e:a7:c1:5d:8c: c2:45:b5:05:85:3a:43:3d:13:84:35:3d:88:f0:03: 26:65:d6:9d:08:9f:b2:ac:4e:20:1c:74:b3:64:49: 46:83:24:d8:01:2c:65:06:0b:94:e0:3b:36:6f:ae: c8:42:93:bc:e6:ef:1c:b2:21:9d:94:05:39:16:19: 42:52:e5:f0:3f:62:58:89:16:87:40:5b:ba:58:e6: 54:1c:c9:26:c0:27:b4:0e:71:52:da:06:a8:37:0f: 5b:fc:f0:be:ba:67:45:eb:c9:68:c4:3b:d6:d1:10: 2a:0d:d2:13:5e:33:a5:25:29:c6:59:db:29:09:ed: 29:30:83:d1:1e:81:0a:ab:b0:74:5d:9a:2e:6b:0c: ed:90:3e:c0:ee:d8:a6:11:ab:37:07:16:8e:a2:ca: d6:61:af:fe:2b:b4:aa:d6:5c:ca:8c:b2:96:80:ee: 37:8b:3f:fc:ba:68:b2:a1:f8:bb:c2:51:8e:5b:8c: cb:16:43:45:8e:29:f8:99:13:22:e0:b2:6d:8b:00: 1c:e0:24:d4:11:49:1b:04:51:ea:67:88:af:f0:6e: 7b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:54:2D:49:E0:50:CB:DE:7A:08:50:4C:20:48:BC:20:A3:B1:01:59 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c7:79:29:29:15:66:e4:5d:73:4c:9a:d1:b6:5e:28:3d:a0: dc:39:7b:b3:e0:ca:27:cf:2a:c5:d7:dd:75:01:f1:69:cf:b2: c3:a9:80:d6:91:29:93:0a:7f:ab:6b:8f:e8:49:c3:20:26:8a: f7:35:0d:a5:bd:fe:59:dd:e3:0c:ad:ca:44:fb:02:08:23:89: 9b:21:04:18:47:d8:0c:67:d5:2e:fa:de:f5:48:dc:a0:13:9a: fd:8a:00:ec:32:3f:83:4e:8e:fb:f5:a5:4e:95:63:0d:6c:be: cc:78:0f:ac:a7:0f:66:de:a8:62:bc:d9:c7:3e:ac:69:d5:e8: df:11:cb:cf:86:2d:c7:aa:60:ea:8f:a1:a5:f4:86:4a:fd:af: 35:73:7a:70:ba:2d:88:8c:e8:65:da:1d:97:90:57:15:cb:a8: f9:20:ee:40:d0:d2:e7:0a:77:fe:3e:73:ab:ef:58:b0:e9:3d: 26:5e:db:3c:4d:2d:0d:fe:d3:0e:82:3a:de:26:b7:a9:2c:de: eb:64:3c:fc:47:91:d1:77:9d:0d:5a:97:cf:0a:4d:d3:ce:71: 2a:95:7c:c6:b4:2f:b8:12:0f:e6:71:8b:11:d3:c0:75:57:ef: ce:23:29:1d:76:c8:78:29:91:31:06:c1:86:a8:d2:f0:24:a6: 56:75:64:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwNDI1MDMzMzM4WhcNMjUwNTAyMDMzMzM4WjAYMRYwFAYD VQQDEw02ODBiMDI5Mi0xMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoRTXfDbRUgS25ijrSnXhrYNHbnUAbbaIBXtU6SO+tu/l+BwfttVLqfBXYzC RbUFhTpDPROENT2I8AMmZdadCJ+yrE4gHHSzZElGgyTYASxlBguU4Ds2b67IQpO8 5u8csiGdlAU5FhlCUuXwP2JYiRaHQFu6WOZUHMkmwCe0DnFS2gaoNw9b/PC+umdF 68loxDvW0RAqDdITXjOlJSnGWdspCe0pMIPRHoEKq7B0XZouawztkD7A7timEas3 BxaOosrWYa/+K7Sq1lzKjLKWgO43iz/8umiyofi7wlGOW4zLFkNFjin4mRMi4LJt iwAc4CTUEUkbBFHqZ4iv8G57gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtULUng UMveeghQTCBIvCCjsQFZMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0x3kpKRVm5F1zTJrRtl4oPaDcOXuz4MonzyrF1911AfFpz7LDqYDW kSmTCn+ra4/oScMgJor3NQ2lvf5Z3eMMrcpE+wIII4mbIQQYR9gMZ9Uu+t71SNyg E5r9igDsMj+DTo779aVOlWMNbL7MeA+spw9m3qhivNnHPqxp1ejfEcvPhi3HqmDq j6Gl9IZK/a81c3pwui2IjOhl2h2XkFcVy6j5IO5A0NLnCnf+PnOr71iw6T0mXts8 TS0N/tMOgjreJrepLN7rZDz8R5HRd50NWpfPCk3TznEqlXzGtC+4Eg/mcYsR08B1 V+/OIykddsh4KZExBsGGqNLwJKZWdWRi -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:27 2025 by rpki-client