$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft File: rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft (raw, json) Hash identifier: R/edhCfIsjJvcHK94XRkXHr20vTMDym7dpk/FNF1AEU= Subject key identifier: 96:F8:01:3B:E2:AF:39:6D:70:3F:B4:FC:66:29:CC:2E:87:4A:05:B0 Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft Manifest number: 0212 Signing time: Sun 27 Apr 2025 01:37:22 +0000 Manifest this update: Sun 27 Apr 2025 01:37:22 +0000 Manifest next update: Sun 04 May 2025 01:37:22 +0000 Files and hashes: 1: rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl (hash: p9gUfaVsmauORRxxbK9t3wT0gDe3DVrcYR9bsQv8XQA=) 2: 28BD1EFC3B4311EDAB5E6382C4F9AE02.roa (hash: iDeeY7cczGJlVpoNqxYKwzcP0iNYTGCgB6+Xi39HWPg=) 3: C31A6BFA717D11EE90B95137C4F9AE02.roa (hash: MlSWr+baoX0iIeudBnt/7RnQIgEalzKtR7VxANOwdB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97D0, serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Validity Not Before: Apr 27 01:37:22 2025 GMT Not After : May 4 01:37:22 2025 GMT Subject: CN=680d8a52-ec45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:96:73:30:0f:04:eb:9e:f5:c1:e6:f7:a0:6b: 7b:d9:b2:6f:a9:6f:ee:97:a7:5a:75:69:66:b0:d2: c3:d6:f5:63:57:07:0c:fb:43:0a:d9:62:6c:56:c8: c4:89:8a:c6:bb:d2:ca:ec:bf:00:30:31:45:e5:ea: a7:44:27:92:a9:83:31:e9:26:41:0f:82:73:b6:04: 49:33:2f:5b:97:24:6b:55:97:99:1a:1f:84:ab:9d: d2:ae:9e:4f:68:98:b6:70:0e:00:b4:cf:d7:9b:a8: 83:cb:33:3a:e1:b2:a7:1d:82:d4:bb:6b:c3:96:73: b4:b7:23:9c:53:66:0f:0f:4b:4c:83:f6:c4:26:85: f7:0b:36:e0:af:2d:72:6b:8c:a7:48:fe:20:24:f2: ce:e1:86:fd:96:69:0a:87:9f:73:6c:01:3d:d3:4b: 32:1e:e2:0a:de:2c:04:22:4f:d6:9b:ab:4b:df:27: db:14:72:7e:c5:b1:14:ab:7e:08:a7:4f:04:b2:13: fa:ab:c3:98:2c:2b:5b:c5:cf:6d:a3:d9:de:3a:98: 21:fa:87:df:ea:b5:91:38:ee:da:48:77:f3:44:aa: 80:cc:60:cc:2e:bc:50:0e:22:3f:4b:f6:07:f0:3e: 07:38:11:b9:45:1d:df:61:81:f0:42:e6:90:88:9f: 2d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F8:01:3B:E2:AF:39:6D:70:3F:B4:FC:66:29:CC:2E:87:4A:05:B0 X509v3 Authority Key Identifier: keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:81:1e:f3:82:f1:b6:07:68:a1:a3:5f:91:c1:ff:b4:cf:b2: 0b:9b:08:0d:50:22:14:28:fa:2c:23:5f:79:54:06:f0:c1:42: c1:85:b6:06:bb:49:5d:69:a8:2e:66:3d:24:ff:ab:96:a5:b2: c8:24:af:7e:bb:e1:e6:c1:92:0d:ca:37:c0:d3:66:31:52:51: a7:8b:7d:0e:47:33:70:c6:98:6b:e0:cd:ce:b0:85:77:aa:47: 76:d7:7a:de:70:6b:79:4f:2b:14:32:65:99:f4:5d:32:d8:9a: 3f:ec:e3:12:2f:4e:bc:e1:f2:fd:cb:a5:26:20:07:ad:6c:85: a3:a9:f5:15:be:f3:a5:e4:92:69:99:0d:d4:34:3f:6b:e0:ba: 34:7a:d3:04:67:f3:3b:f7:3b:71:8d:14:49:f0:70:ea:79:29: 9b:2e:d9:96:c1:05:5b:25:e1:14:c3:5e:82:83:64:93:4d:5d: 15:40:4b:ea:b0:54:ff:53:39:23:de:8a:85:21:bf:c6:4b:23: a3:e1:e9:53:0c:d9:4c:a4:9d:b2:c9:e5:2a:0d:09:06:6e:e7: f1:ce:4c:ae:12:de:2a:d4:02:8d:d4:0c:5a:fb:90:0e:f8:a7: 21:96:d0:d9:53:29:77:8a:ff:27:52:60:4a:bf:3c:a6:19:ef: 6f:78:4e:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RDAxMTAvBgNVBAUTKEFFQTZERkIzNjRBMkIzQjU5MjdGMDA3QTRFODI0RjMy QzQwOEU1QzgwHhcNMjUwNDI3MDEzNzIyWhcNMjUwNTA0MDEzNzIyWjAYMRYwFAYD VQQDEw02ODBkOGE1Mi1lYzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJZzMA8E6571web3oGt72bJvqW/ul6dadWlmsNLD1vVjVwcM+0MK2WJsVsjE iYrGu9LK7L8AMDFF5eqnRCeSqYMx6SZBD4JztgRJMy9blyRrVZeZGh+Eq53Srp5P aJi2cA4AtM/Xm6iDyzM64bKnHYLUu2vDlnO0tyOcU2YPD0tMg/bEJoX3Czbgry1y a4ynSP4gJPLO4Yb9lmkKh59zbAE900syHuIK3iwEIk/Wm6tL3yfbFHJ+xbEUq34I p08EshP6q8OYLCtbxc9to9neOpgh+off6rWROO7aSHfzRKqAzGDMLrxQDiI/S/YH 8D4HOBG5RR3fYYHwQuaQiJ8tpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJb4ATvi rzltcD+0/GYpzC6HSgWwMB8GA1UdIwQYMBaAFK6m37NkorO1kn8Aek6CTzLECOXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdEMC9CODlGQTNDNjMw MzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3V1Nmd0I2VG9KUE1zUUk1 Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JxYmZzMlNpczdXU2Z3QjZUb0pQTXNRSTVjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdEMC9CODlGQTNDNjMwMzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3 V1Nmd0I2VG9KUE1zUUk1Y2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRgR7zgvG2B2iho1+Rwf+0z7ILmwgNUCIUKPosI195VAbwwULBhbYG u0ldaaguZj0k/6uWpbLIJK9+u+HmwZINyjfA02YxUlGni30ORzNwxphr4M3OsIV3 qkd213recGt5TysUMmWZ9F0y2Jo/7OMSL0684fL9y6UmIAetbIWjqfUVvvOl5JJp mQ3UND9r4Lo0etMEZ/M79ztxjRRJ8HDqeSmbLtmWwQVbJeEUw16Cg2STTV0VQEvq sFT/Uzkj3oqFIb/GSyOj4elTDNlMpJ2yyeUqDQkGbufxzkyuEt4q1AKN1Axa+5AO +KchltDZUyl3iv8nUmBKvzymGe9veE6g -----END CERTIFICATE-----Generated at Mon Apr 28 09:10:37 2025 by rpki-client