$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: jm0hxPry761BjhlGY4tL5CB9Wpgb2CN0/AMGFXKh1Pc= Subject key identifier: D7:D8:97:70:F7:6A:D0:0B:13:D4:A1:5B:8E:F8:8F:EE:D6:F0:1E:E3 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 05E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 05DF Signing time: Thu 24 Apr 2025 22:46:07 +0000 Manifest this update: Thu 24 Apr 2025 22:46:07 +0000 Manifest next update: Thu 01 May 2025 22:46:07 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: n3Ff/ap1/ke+XeevHToM4K0F6pb7bLRAdhkjdYJwMSY=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: gGaPSZTXBZeyhBvTnRDrA4x3lhLiqzg2ne+ktqQeFQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Apr 24 22:46:07 2025 GMT Not After : May 1 22:46:07 2025 GMT Subject: CN=680abf2f-3f44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:72:01:4f:cd:0d:3c:c4:bd:63:bc:2e:e7:4e: 0f:52:17:82:ce:ec:db:8b:3d:e9:03:5a:8f:61:99: 2f:e1:78:1a:8c:86:44:29:53:39:64:8b:98:28:c7: 4f:08:90:28:a7:cc:56:ae:cc:6d:63:7b:ff:45:3d: 31:90:d4:fa:f9:d6:37:33:2b:1c:6d:59:7b:ab:f5: b5:ce:6c:5c:f0:0f:6b:9d:a1:ff:19:b4:05:05:95: 88:d7:08:a5:41:d9:ca:a5:79:a4:8c:24:1d:6f:f4: 53:14:d9:03:b0:8f:b7:45:95:34:76:00:7b:8f:be: 82:73:19:05:41:ef:ca:6e:6f:6e:be:c4:f9:79:65: 73:00:ca:b3:4b:0f:0c:c8:c9:b9:6a:e6:fb:7a:8a: 20:0c:29:14:b6:91:47:67:43:7f:73:3d:4e:cd:95: 2c:28:1b:5e:00:7a:27:bb:88:38:7f:7f:41:37:15: 56:c3:15:d2:d2:66:57:b8:41:96:a0:41:02:5c:3b: 72:ee:84:0c:65:f3:f9:b3:b4:d2:80:b9:01:a1:da: 72:4c:51:de:be:0d:a5:eb:26:51:a6:50:de:62:5a: 14:d2:b9:11:f6:bc:c3:6f:65:40:ed:be:76:b8:69: f2:05:02:02:80:cf:4d:68:42:c8:e4:35:d2:b3:05: 98:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D8:97:70:F7:6A:D0:0B:13:D4:A1:5B:8E:F8:8F:EE:D6:F0:1E:E3 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:64:c1:6f:df:39:25:a5:99:b0:d2:9a:dd:40:77:d0:fc:21: 96:2b:ca:be:2f:01:ab:36:fa:30:49:c6:10:62:fa:9a:0a:0d: f7:20:51:9e:15:0d:be:48:4f:78:a2:54:61:c8:60:5e:6c:cf: 34:37:61:d2:0f:78:0b:77:d1:9e:f9:f6:c6:b5:4d:f9:68:ab: e6:f2:06:f6:9a:40:83:9c:6f:fa:a0:0e:df:76:e3:33:15:ed: 09:85:7f:54:49:51:e6:86:b0:63:d7:54:6c:f4:54:29:17:17: 7a:38:44:28:c4:fe:18:24:b4:1d:5a:d8:9a:2a:16:e6:3c:fb: ab:cb:30:6a:7b:b1:08:ba:25:f7:21:48:cf:5c:0f:77:7a:41: 62:30:90:e5:6e:0f:11:a6:d2:e3:b6:66:b4:76:46:dd:a2:94: af:6e:79:d1:97:db:e3:ca:92:ff:6b:74:84:1a:f4:5a:2e:5a: 80:a0:21:4f:3d:cb:3a:b3:18:94:1e:a1:9c:36:33:90:95:16: 7f:cb:54:56:df:92:62:78:52:0a:f1:ad:e4:b4:e5:a9:2e:82: 55:33:e1:f7:e0:79:93:4c:61:14:7b:dd:71:21:ad:d5:4d:50: 84:66:99:09:a4:dc:72:cd:72:e7:52:06:e6:f6:e0:bc:36:12: 1d:14:92:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUwNDI0MjI0NjA3WhcNMjUwNTAxMjI0NjA3WjAYMRYwFAYD VQQDEw02ODBhYmYyZi0zZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXIBT80NPMS9Y7wu504PUheCzuzbiz3pA1qPYZkv4XgajIZEKVM5ZIuYKMdP CJAop8xWrsxtY3v/RT0xkNT6+dY3MyscbVl7q/W1zmxc8A9rnaH/GbQFBZWI1wil QdnKpXmkjCQdb/RTFNkDsI+3RZU0dgB7j76CcxkFQe/Kbm9uvsT5eWVzAMqzSw8M yMm5aub7eoogDCkUtpFHZ0N/cz1OzZUsKBteAHonu4g4f39BNxVWwxXS0mZXuEGW oEECXDty7oQMZfP5s7TSgLkBodpyTFHevg2l6yZRplDeYloU0rkR9rzDb2VA7b52 uGnyBQICgM9NaELI5DXSswWYxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfYl3D3 atALE9ShW474j+7W8B7jMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2ZMFv3zklpZmw0prdQHfQ/CGWK8q+LwGrNvowScYQYvqaCg33IFGe FQ2+SE94olRhyGBebM80N2HSD3gLd9Ge+fbGtU35aKvm8gb2mkCDnG/6oA7fduMz Fe0JhX9USVHmhrBj11Rs9FQpFxd6OEQoxP4YJLQdWtiaKhbmPPuryzBqe7EIuiX3 IUjPXA93ekFiMJDlbg8RptLjtma0dkbdopSvbnnRl9vjypL/a3SEGvRaLlqAoCFP Pcs6sxiUHqGcNjOQlRZ/y1RW35JieFIK8a3ktOWpLoJVM+H34HmTTGEUe91xIa3V TVCEZpkJpNxyzXLnUgbm9uC8NhIdFJLc -----END CERTIFICATE-----Generated at Sat Apr 26 05:09:15 2025 by rpki-client