$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft File: q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft (raw, json) Hash identifier: keHLzKJEfoEvFbUK8OUoQ1DXk/m8T04sGAFg8YUl5vU= Subject key identifier: 0A:92:9B:FD:B5:A1:B5:FF:7B:D1:2F:6E:BF:D0:F2:B4:F8:BD:FD:3D Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 02E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft Manifest number: 0AD3 Signing time: Thu 24 Apr 2025 20:43:44 +0000 Manifest this update: Thu 24 Apr 2025 20:43:44 +0000 Manifest next update: Thu 01 May 2025 20:43:44 +0000 Files and hashes: 1: q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl (hash: 91qvPYmrW62lHJZiI5QKyoTGCgyRbZ0Hd+19e6SxoFk=) 2: 743B3188E57211ECBC81A87EC4F9AE02.roa (hash: ukecD2pxHGlgKyIFMtJzbdcdaqfvaNOkIkVTe1ei8KE=) 3: FC358296CFA011EDA4AC5B18C4F9AE02.roa (hash: Kfs6t0RkTXatIBLPnXrK64Ffg/DQYtGVawG99/fXQls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Apr 24 20:43:44 2025 GMT Not After : May 1 20:43:44 2025 GMT Subject: CN=680aa280-1fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7e:ff:4f:5e:56:f7:90:4b:97:73:1a:a7:1c: e7:20:33:5a:bb:9a:95:9c:5f:a9:19:00:84:c1:2a: 8f:81:dd:19:10:11:19:3b:0b:89:83:a6:0e:92:83: 2d:31:62:df:d4:d5:6f:52:54:45:e9:62:ff:c9:c7: dc:a6:95:93:61:22:57:2c:c8:7b:92:ac:f9:77:9c: 27:43:ab:b1:1a:49:5f:b2:0f:2b:49:de:31:4e:c5: b3:4b:46:99:c6:12:6a:a3:ab:38:02:de:8d:3a:5f: 18:5b:20:0e:8b:4c:71:7a:f3:72:5a:50:19:1d:46: 93:61:b0:25:7c:19:2f:bb:82:37:12:c1:b6:c7:00: b7:d4:64:b1:97:79:87:bd:05:8a:ab:07:b5:1a:e4: b6:00:23:6c:ff:64:b9:fc:95:f1:10:69:d4:bf:3f: b6:c6:70:b9:e2:a4:bd:b5:43:6b:92:fe:79:02:7a: 8e:7c:f2:40:2d:8e:ed:b4:d9:56:52:eb:16:0c:f8: 61:b2:79:8b:6a:1e:28:d9:10:82:4b:71:31:0c:46: 45:91:f8:bf:b4:7b:44:1e:29:8c:fc:80:0f:e5:30: 8d:db:18:02:a4:d8:6b:d6:c2:d9:62:73:ea:95:d7: ef:be:66:7e:37:b8:e4:20:03:cc:fc:02:9a:6f:24: e1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:92:9B:FD:B5:A1:B5:FF:7B:D1:2F:6E:BF:D0:F2:B4:F8:BD:FD:3D X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:24:75:56:04:d0:82:4a:ce:82:ad:c7:e3:3d:02:6d:44:5d: a0:30:ec:8e:1a:b6:72:15:22:22:d1:52:9e:32:25:a4:63:92: eb:e5:46:97:5c:b9:6d:e2:ae:43:e9:2b:20:27:83:89:6d:ef: 6f:d0:da:0c:b2:d9:e3:be:52:f1:90:26:33:90:3d:1d:cd:33: 7e:c7:7c:5a:3b:69:c1:72:0e:39:a3:9e:d9:30:6d:f4:66:be: 8a:32:6c:fd:b8:78:83:12:fe:1b:0f:31:af:58:c1:ac:d2:05: b8:2f:03:71:20:02:35:5d:96:48:64:4d:c3:60:02:51:48:82: c1:6f:9d:d5:88:d0:b1:de:78:96:17:43:ba:14:bd:4e:ba:1e: cf:77:5d:eb:ab:e1:ef:86:4d:c0:a4:86:b2:64:07:2b:d6:b4: 0c:d1:d9:cc:6d:f3:66:5a:78:f2:40:49:9f:4e:3c:a7:2d:55: eb:0b:e2:d5:e5:f0:5f:d4:c8:80:57:48:9d:8c:38:fd:e5:19: ce:36:3f:62:4a:f3:31:74:30:e9:c2:42:04:78:67:c4:bd:03: b2:78:56:52:13:8a:e8:b8:21:b0:a5:b9:c3:14:6f:52:22:09: 1f:7a:fd:8d:92:44:9b:ad:37:27:b9:81:e5:d7:ab:aa:eb:fb: 10:2a:1c:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjUwNDI0MjA0MzQ0WhcNMjUwNTAxMjA0MzQ0WjAYMRYwFAYD VQQDEw02ODBhYTI4MC0xZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvn7/T15W95BLl3MapxznIDNau5qVnF+pGQCEwSqPgd0ZEBEZOwuJg6YOkoMt MWLf1NVvUlRF6WL/ycfcppWTYSJXLMh7kqz5d5wnQ6uxGklfsg8rSd4xTsWzS0aZ xhJqo6s4At6NOl8YWyAOi0xxevNyWlAZHUaTYbAlfBkvu4I3EsG2xwC31GSxl3mH vQWKqwe1GuS2ACNs/2S5/JXxEGnUvz+2xnC54qS9tUNrkv55AnqOfPJALY7ttNlW UusWDPhhsnmLah4o2RCCS3ExDEZFkfi/tHtEHimM/IAP5TCN2xgCpNhr1sLZYnPq ldfvvmZ+N7jkIAPM/AKabyThJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqSm/21 obX/e9Evbr/Q8rT4vf09MB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUU0Qy83REFEQTU2Q0Q5NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJL Z3F6X2pjTmtYTmNXRUJQM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKJHVWBNCCSs6CrcfjPQJtRF2gMOyOGrZyFSIi0VKeMiWkY5Lr5UaX XLlt4q5D6SsgJ4OJbe9v0NoMstnjvlLxkCYzkD0dzTN+x3xaO2nBcg45o57ZMG30 Zr6KMmz9uHiDEv4bDzGvWMGs0gW4LwNxIAI1XZZIZE3DYAJRSILBb53ViNCx3niW F0O6FL1Ouh7Pd13rq+Hvhk3ApIayZAcr1rQM0dnMbfNmWnjyQEmfTjynLVXrC+LV 5fBf1MiAV0idjDj95RnONj9iSvMxdDDpwkIEeGfEvQOyeFZSE4rouCGwpbnDFG9S Igkfev2NkkSbrTcnuYHl16uq6/sQKhyG -----END CERTIFICATE-----Generated at Sat Apr 26 15:15:26 2025 by rpki-client