$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft File: qK6pspMKYU1coxq59-hDeTYaL0M.mft (raw, json) Hash identifier: Ckb/F71um6yMLTvitAwEWSnvDIuHPX7EIAsCH9PVXCU= Subject key identifier: FD:2A:4B:32:6A:8C:58:D8:5D:E1:61:BE:49:65:E9:6D:98:A2:6F:AF Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 0999 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft Manifest number: 098B Signing time: Thu 24 Apr 2025 20:00:44 +0000 Manifest this update: Thu 24 Apr 2025 20:00:43 +0000 Manifest next update: Thu 01 May 2025 20:00:43 +0000 Files and hashes: 1: qK6pspMKYU1coxq59-hDeTYaL0M.crl (hash: MOT2zTxgh2SuVD17dqEQ/LcC5N16U/uvu/GUwe5ZZSA=) 2: A292E3529E9711EEB6899B1CC4F9AE02.roa (hash: tLBsV4g2bMzhVFiX/6V4C27n2kArFIEOkUcBuZutWVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2457 (0x999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D, serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: Apr 24 20:00:43 2025 GMT Not After : May 1 20:00:43 2025 GMT Subject: CN=680a986c-3b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1c:db:c0:6c:b4:8f:8d:e8:27:fc:71:ce:ec: d5:aa:7f:c8:d5:20:12:98:1b:5a:60:3c:e2:34:3a: 8a:65:c4:3f:05:c2:76:d6:c9:7f:dc:b2:c8:38:b0: 88:61:f3:75:03:cd:da:4b:23:2a:bc:d5:bd:52:35: 99:a5:ca:5d:e3:18:4b:e9:ba:30:e7:3f:20:a5:d7: 47:61:be:a2:da:71:19:7c:a2:90:3f:c6:f8:b3:a4: 51:06:3d:57:63:05:31:21:97:d0:0c:db:ac:47:f2: b7:ea:3d:47:9f:8f:21:6a:e9:24:a5:be:d9:73:48: a0:6a:d3:c0:9f:f5:1f:d3:d3:13:96:f8:27:db:78: a0:5e:e1:92:05:68:05:90:7e:d3:7c:a7:a1:66:80: cf:d8:d7:47:f7:8d:5f:93:87:05:e1:1d:e6:bb:29: 71:a4:d8:39:ac:5b:2d:ed:7a:d4:f3:94:4b:9e:f7: 29:60:10:5d:24:a3:ee:0d:39:f4:8c:b1:77:5d:b3: 56:e7:bc:54:f7:95:21:72:f1:3b:a8:22:ff:d5:94: 0e:44:8f:56:f1:f5:50:21:5c:3d:39:c5:53:2c:9c: 85:91:13:a0:bf:0e:d5:3e:f4:6d:da:6b:60:01:78: 3f:c4:dd:08:8d:95:4e:03:f9:6a:a0:2a:c3:9d:15: 0d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2A:4B:32:6A:8C:58:D8:5D:E1:61:BE:49:65:E9:6D:98:A2:6F:AF X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c3:b9:bf:fd:3d:16:11:43:70:fe:d3:b7:3c:03:99:57:7c: a7:1d:e1:1c:b5:62:82:04:cb:7a:7b:12:fe:00:a1:9f:72:14: e9:b4:88:f7:39:d6:49:01:f8:3b:bf:69:53:47:6e:0a:73:12: 4b:3b:33:d2:60:1a:3b:4b:3c:20:57:8c:b4:18:b7:c1:79:ab: fc:b0:bb:bf:e0:96:0a:1e:38:b8:49:51:78:fe:d0:bc:5a:06: 88:c3:3a:28:6b:63:b4:dc:64:cc:9a:52:87:7d:32:8d:d2:8d: 24:8b:2f:61:51:da:96:fe:ac:32:a5:59:c3:56:42:09:fe:4f: dc:ef:a7:03:8a:01:83:37:ef:7d:0e:37:04:0d:e0:26:e2:55: 98:01:28:59:d2:51:0a:b3:94:5c:b4:8d:0a:55:16:bc:18:96: d6:69:80:89:3b:63:98:4b:15:ca:f6:ca:41:2e:2a:8b:c9:4c: 0f:52:9d:d0:d9:78:89:fa:57:5b:e6:a7:66:27:0f:dd:cc:c6: 5e:05:82:d7:74:29:48:37:6a:cf:13:e2:96:a4:eb:fd:ef:24: 59:fc:68:41:cb:36:db:dc:82:c7:eb:fc:51:a3:f5:ba:3d:34: 24:4b:44:93:18:3b:64:81:ab:06:42:fa:92:1e:9a:85:19:03: 78:20:49:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjUwNDI0MjAwMDQzWhcNMjUwNTAxMjAwMDQzWjAYMRYwFAYD VQQDEw02ODBhOTg2Yy0zYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6BzbwGy0j43oJ/xxzuzVqn/I1SASmBtaYDziNDqKZcQ/BcJ21sl/3LLIOLCI YfN1A83aSyMqvNW9UjWZpcpd4xhL6bow5z8gpddHYb6i2nEZfKKQP8b4s6RRBj1X YwUxIZfQDNusR/K36j1Hn48haukkpb7Zc0igatPAn/Uf09MTlvgn23igXuGSBWgF kH7TfKehZoDP2NdH941fk4cF4R3muylxpNg5rFst7XrU85RLnvcpYBBdJKPuDTn0 jLF3XbNW57xU95UhcvE7qCL/1ZQORI9W8fVQIVw9OcVTLJyFkROgvw7VPvRt2mtg AXg/xN0IjZVOA/lqoCrDnRUNQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0qSzJq jFjYXeFhvkll6W2Yom+vMB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0MxRC9BODA3MEFGMjhBRjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lV MWNveHE1OS1oRGVUWWFMME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfw7m//T0WEUNw/tO3PAOZV3ynHeEctWKCBMt6exL+AKGfchTptIj3 OdZJAfg7v2lTR24KcxJLOzPSYBo7SzwgV4y0GLfBeav8sLu/4JYKHji4SVF4/tC8 WgaIwzooa2O03GTMmlKHfTKN0o0kiy9hUdqW/qwypVnDVkIJ/k/c76cDigGDN+99 DjcEDeAm4lWYAShZ0lEKs5RctI0KVRa8GJbWaYCJO2OYSxXK9spBLiqLyUwPUp3Q 2XiJ+ldb5qdmJw/dzMZeBYLXdClIN2rPE+KWpOv97yRZ/GhByzbb3ILH6/xRo/W6 PTQkS0STGDtkgasGQvqSHpqFGQN4IElI -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:49 2025 by rpki-client