$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: Y9oJcOfCScYZ221n1xNcoMWvlEHekJm+ej+FIbcXSi4= Subject key identifier: E3:20:8F:1A:4E:83:24:7E:B1:C7:90:5E:8F:6B:15:09:B9:58:64:3F Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 040E Signing time: Fri 25 Apr 2025 00:13:36 +0000 Manifest this update: Fri 25 Apr 2025 00:13:35 +0000 Manifest next update: Fri 02 May 2025 00:13:35 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: zX3+pID4dVhRZQch/XJblorruNEAj9KHixQ49ybTTUw=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Apr 25 00:13:35 2025 GMT Not After : May 2 00:13:35 2025 GMT Subject: CN=680ad3af-1e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c0:23:4d:e2:7c:81:bd:25:6c:62:a8:8c:0c: 38:71:46:2e:0a:4e:b9:60:e8:06:89:95:de:5f:90: 23:b6:89:3b:d1:3a:8e:03:54:71:85:79:27:11:91: 16:2d:c3:ae:00:d8:49:c3:87:72:d4:fa:c2:a0:73: cb:40:20:01:fb:bd:ce:d0:b6:0b:29:49:e6:d3:b6: e1:ff:84:34:85:61:a4:63:1f:c7:64:6b:b1:eb:0f: be:cd:f7:f8:05:4d:32:31:80:55:5c:6a:89:0e:de: 0c:1b:d0:f7:1b:af:70:63:46:14:38:7b:f8:f7:74: b6:93:87:01:df:a9:5c:6b:b5:c3:91:ec:0d:4c:7f: b5:ee:e0:90:62:92:ae:cb:09:64:1a:a8:9b:8f:84: 97:44:9b:c7:e2:2c:ef:cb:43:9e:eb:d3:4e:d7:81: 19:4c:f2:23:9f:ac:d3:a2:1d:5f:75:fe:b0:ca:6a: 9d:b6:0e:8b:79:7f:c3:0d:7d:c3:93:1d:36:13:a3: be:9c:16:61:38:c1:a7:78:6f:aa:2e:e7:7f:02:e9: 8b:39:b9:26:b8:42:1d:38:03:7a:6f:fe:58:0a:21: 12:cd:1e:aa:5f:bc:1e:ed:eb:bf:0c:fd:07:08:6e: c7:66:54:dc:43:6e:f4:49:86:0e:c6:22:c9:de:9c: be:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:20:8F:1A:4E:83:24:7E:B1:C7:90:5E:8F:6B:15:09:B9:58:64:3F X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:73:b9:2b:ea:7c:47:b2:54:3a:52:89:f0:d3:29:dc:7e:7a: bf:3f:70:fc:90:24:98:74:50:df:67:13:c8:8e:23:63:2d:0a: c0:ab:37:68:78:33:2d:cf:7a:7f:72:10:60:17:40:a2:86:32: 5a:d1:99:32:fc:fb:7e:5c:78:d4:6e:68:9c:c3:09:87:4f:4e: 67:6f:4b:5c:b7:74:26:d1:65:98:7c:5e:b5:43:b9:21:48:80: 71:86:18:12:58:49:8c:0f:b1:ef:4b:b4:ee:47:77:d8:86:da: 8c:b7:c6:e3:2f:6f:c6:45:6a:41:dd:c8:3b:e4:5c:ea:9c:e7: ab:08:56:7f:67:fe:2a:e0:f2:e6:07:82:61:c3:b0:2a:5a:c0: c6:1b:4e:bc:e2:de:e8:7f:52:dc:3a:af:13:c2:07:f3:31:0a: a3:9b:86:cc:30:c9:17:49:3f:6b:1a:51:98:2c:95:f6:d2:d5: 03:f8:b8:e5:1c:e7:53:c3:0d:9c:3f:63:47:ba:ba:f2:0d:45: 8c:4d:06:df:b4:20:7e:2f:ba:5d:8a:9b:d3:37:28:56:e8:01: e1:f3:a6:9f:7f:62:63:93:81:a7:af:fb:10:e2:2e:ca:b2:36: 18:d1:b1:73:ff:48:a0:73:da:a2:4c:c3:80:ac:e4:6e:3c:2c: 5b:48:41:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUwNDI1MDAxMzM1WhcNMjUwNTAyMDAxMzM1WjAYMRYwFAYD VQQDEw02ODBhZDNhZi0xZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMAjTeJ8gb0lbGKojAw4cUYuCk65YOgGiZXeX5Ajtok70TqOA1RxhXknEZEW LcOuANhJw4dy1PrCoHPLQCAB+73O0LYLKUnm07bh/4Q0hWGkYx/HZGux6w++zff4 BU0yMYBVXGqJDt4MG9D3G69wY0YUOHv493S2k4cB36lca7XDkewNTH+17uCQYpKu ywlkGqibj4SXRJvH4izvy0Oe69NO14EZTPIjn6zToh1fdf6wymqdtg6LeX/DDX3D kx02E6O+nBZhOMGneG+qLud/AumLObkmuEIdOAN6b/5YCiESzR6qX7we7eu/DP0H CG7HZlTcQ270SYYOxiLJ3py+nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMgjxpO gyR+sceQXo9rFQm5WGQ/MB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjc7kr6nxHslQ6Uonw0yncfnq/P3D8kCSYdFDfZxPIjiNjLQrAqzdo eDMtz3p/chBgF0CihjJa0Zky/Pt+XHjUbmicwwmHT05nb0tct3Qm0WWYfF61Q7kh SIBxhhgSWEmMD7HvS7TuR3fYhtqMt8bjL2/GRWpB3cg75FzqnOerCFZ/Z/4q4PLm B4Jhw7AqWsDGG0684t7of1LcOq8TwgfzMQqjm4bMMMkXST9rGlGYLJX20tUD+Ljl HOdTww2cP2NHurryDUWMTQbftCB+L7pdipvTNyhW6AHh86aff2Jjk4Gnr/sQ4i7K sjYY0bFz/0igc9qiTMOArORuPCxbSEEM -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:48 2025 by rpki-client