$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft File: rQWVkiI-gWrFPEM7llhG950wUjQ.mft (raw, json) Hash identifier: 07n0h4+DmNnB2kkU4dZRWrb62FyL7Aj+n21TrWA6nuA= Subject key identifier: 95:83:75:84:01:F9:F0:5E:0A:C5:77:62:C1:54:6A:B1:39:15:7B:61 Authority key identifier: AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 Certificate issuer: /CN=A91BAEDC/serialNumber=AD059592223E816AC53C433B965846F79D305234 Certificate serial: 1B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft Manifest number: 1B6C Signing time: Thu 24 Apr 2025 16:17:02 +0000 Manifest this update: Thu 24 Apr 2025 16:17:00 +0000 Manifest next update: Thu 01 May 2025 16:17:00 +0000 Files and hashes: 1: rQWVkiI-gWrFPEM7llhG950wUjQ.crl (hash: L7mci5ORHFK903RaIbPbkHD0/+1qCqq5+N/GIkm9pyo=) 2: C85D0F7E477711EBB4044E31C4F9AE02.roa (hash: d9C+rmMNQQZELmuy5aIPVlKeATtzTC5JJ8WoYiMXlHI=) 3: C98708BE477711EBB4044E31C4F9AE02.roa (hash: V0J+K3DJnN+osBZ9dwTDUPh/HvfjgBzZSWLUoCMaCuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7043 (0x1b83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAEDC, serialNumber=AD059592223E816AC53C433B965846F79D305234 Validity Not Before: Apr 24 16:17:00 2025 GMT Not After : May 1 16:17:00 2025 GMT Subject: CN=680a63fd-ffe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:62:41:1e:6f:b5:94:72:f1:1a:1b:99:50:c9: 10:e9:6c:c2:1f:2c:b4:8f:e9:0d:4c:5f:d7:f0:a4: 5f:c0:1a:c7:13:91:c3:77:e2:7b:6c:15:7e:54:6b: 02:a9:fd:fa:76:ca:3a:78:7b:08:b0:fc:29:2f:5d: ad:bd:19:89:f1:aa:19:6e:4c:42:90:23:e9:16:ce: 86:7c:ba:f5:1d:4f:4e:4d:a3:f6:9a:26:d6:57:de: b5:1f:5c:be:1f:a3:f7:73:9b:d6:8e:68:ad:27:d7: ad:be:31:6e:b9:14:1c:65:cb:63:2a:88:ec:d6:a2: 9e:12:4c:87:43:82:ec:6a:e5:e0:2d:21:12:e2:e1: 97:26:73:34:e8:60:8c:8c:a5:d3:ab:2b:23:f6:fa: b7:25:13:dc:4a:d5:5f:28:92:82:f6:89:0c:94:15: c8:a2:e2:67:0c:69:b1:1f:9c:e3:8c:f5:77:6f:f5: 1e:7b:85:8f:6b:1e:3b:53:be:89:09:a7:a0:5a:d0: bb:c7:47:3a:45:f2:56:87:dc:d3:0b:0f:e9:29:bd: 82:5e:3d:ef:ab:04:a0:17:56:f1:19:45:5f:ba:76: d1:ac:80:7d:f1:e8:b4:2e:f7:12:c4:dd:3f:67:d7: 00:2a:8b:58:f5:c3:f6:b5:61:3e:f1:32:9c:d3:7b: 9a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:83:75:84:01:F9:F0:5E:0A:C5:77:62:C1:54:6A:B1:39:15:7B:61 X509v3 Authority Key Identifier: keyid:AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:ff:64:b0:d2:67:69:b6:32:25:53:d7:b8:2a:93:51:69:03: 03:94:3f:33:78:8d:ad:36:ad:87:b4:bb:40:1f:3d:45:e6:99: ed:d7:0a:89:31:01:fa:1a:8d:64:ed:4c:b4:9c:39:c7:ce:26: 76:8e:10:0b:fe:b7:86:f1:92:99:86:b6:08:6b:7b:cf:cb:40: 49:60:17:27:9c:2c:79:1e:72:06:1d:15:74:ea:5b:9f:3b:a1: 6d:f6:21:60:9f:91:5d:c1:46:c1:e8:b2:61:1b:cd:f3:9b:bb: 0f:bf:07:ed:14:d6:71:97:df:ad:50:a2:52:d8:f6:43:6c:68: 04:bb:49:69:a5:cd:ab:2a:1f:97:0c:c6:c6:e7:6b:0b:a9:9d: 44:51:17:9d:44:9f:b8:08:55:06:60:6d:b8:7c:5b:cc:fc:d3: e4:37:4b:f9:e4:e9:cc:a9:69:5e:7e:74:f0:d8:a6:c3:df:c3: 00:5f:62:f4:4f:0c:03:81:d8:bc:77:63:10:50:6f:79:fd:4b: f1:ea:75:31:c6:d8:95:f8:cf:a3:2d:06:05:0f:d7:a2:77:e5: bb:bd:24:d8:4a:80:42:83:bd:f6:8c:d0:df:78:67:63:4d:4b: c6:1f:83:ae:fc:90:d0:4e:06:c4:00:94:a5:c3:56:71:34:45: bd:57:7d:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFREMxMTAvBgNVBAUTKEFEMDU5NTkyMjIzRTgxNkFDNTNDNDMzQjk2NTg0NkY3 OUQzMDUyMzQwHhcNMjUwNDI0MTYxNzAwWhcNMjUwNTAxMTYxNzAwWjAYMRYwFAYD VQQDEw02ODBhNjNmZC1mZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmJBHm+1lHLxGhuZUMkQ6WzCHyy0j+kNTF/X8KRfwBrHE5HDd+J7bBV+VGsC qf36dso6eHsIsPwpL12tvRmJ8aoZbkxCkCPpFs6GfLr1HU9OTaP2mibWV961H1y+ H6P3c5vWjmitJ9etvjFuuRQcZctjKojs1qKeEkyHQ4LsauXgLSES4uGXJnM06GCM jKXTqysj9vq3JRPcStVfKJKC9okMlBXIouJnDGmxH5zjjPV3b/Uee4WPax47U76J CaegWtC7x0c6RfJWh9zTCw/pKb2CXj3vqwSgF1bxGUVfunbRrIB98ei0LvcSxN0/ Z9cAKotY9cP2tWE+8TKc03ua0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWDdYQB +fBeCsV3YsFUarE5FXthMB8GA1UdIwQYMBaAFK0FlZIiPoFqxTxDO5ZYRvedMFI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUVEQy8yREMxQkFGMjA5 ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdXckZQRU03bGxoRzk1MHdV alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRV1ZraUktZ1dyRlBFTTdsbGhHOTUwd1VqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUVEQy8yREMxQkFGMjA5ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdX ckZQRU03bGxoRzk1MHdValEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX/2Sw0mdptjIlU9e4KpNRaQMDlD8zeI2tNq2HtLtAHz1F5pnt1wqJ MQH6Go1k7Uy0nDnHziZ2jhAL/reG8ZKZhrYIa3vPy0BJYBcnnCx5HnIGHRV06luf O6Ft9iFgn5FdwUbB6LJhG83zm7sPvwftFNZxl9+tUKJS2PZDbGgEu0lppc2rKh+X DMbG52sLqZ1EURedRJ+4CFUGYG24fFvM/NPkN0v55OnMqWlefnTw2KbD38MAX2L0 TwwDgdi8d2MQUG95/Uvx6nUxxtiV+M+jLQYFD9eid+W7vSTYSoBCg732jNDfeGdj TUvGH4Ou/JDQTgbEAJSlw1ZxNEW9V32w -----END CERTIFICATE-----Generated at Sat Apr 26 04:56:19 2025 by rpki-client