$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: iOMbvCd+DPfqqP/0ULQ3RAGW4QxlEOswifR6BjA8lRQ= Subject key identifier: AE:2D:8E:CB:62:75:94:67:A7:08:98:06:BF:FA:64:12:FC:1D:8E:49 Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 01DB Signing time: Fri 25 Apr 2025 01:54:17 +0000 Manifest this update: Fri 25 Apr 2025 01:54:17 +0000 Manifest next update: Fri 02 May 2025 01:54:17 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: BoNxxd3UMAc7yS0rKagPLuSWwAUUHDLmsQDS/lipnvY=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Apr 25 01:54:17 2025 GMT Not After : May 2 01:54:17 2025 GMT Subject: CN=680aeb49-cebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:75:64:06:d1:97:06:72:52:9e:10:10:04:c6: 17:9e:11:87:fa:68:cd:78:e0:cc:4d:19:4c:fb:13: 69:00:5a:c2:1e:6f:39:4d:ba:fd:dd:71:3d:d1:23: ec:2d:08:12:65:fd:7c:43:72:f7:6d:aa:3c:6f:04: 2c:06:f4:d6:b1:94:c7:f0:a1:1f:fe:2d:dc:35:b3: 47:8a:6c:f5:d3:c0:68:e7:9e:13:72:c8:fa:27:be: ed:3f:26:94:76:ea:4e:bd:73:25:8d:54:c3:f4:7a: cf:83:52:f7:a3:0c:92:6c:1d:04:72:2a:11:c4:ab: f3:ed:6b:d6:80:55:51:6a:d0:0a:08:93:59:87:66: 33:b5:16:fd:46:b1:c5:eb:1c:a4:99:8c:7e:ec:da: 55:64:ed:73:37:32:e9:23:6c:cf:93:01:29:22:ef: 1f:02:ad:be:df:54:ff:13:e9:fa:fd:07:d7:aa:81: 2f:4a:31:eb:03:61:e2:a1:d9:92:5d:40:3c:70:99: d6:60:6e:15:d0:bd:cb:cf:0b:1b:90:71:d2:2f:87: 27:7c:3b:b0:a3:4a:05:0c:f2:f2:84:a5:c8:8c:c6: d4:f1:ac:98:54:94:6c:ae:d6:d8:e4:fa:46:ff:94: 4c:38:90:3a:dc:4c:e0:0f:58:71:01:93:f6:69:7b: 1e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:2D:8E:CB:62:75:94:67:A7:08:98:06:BF:FA:64:12:FC:1D:8E:49 X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:26:28:22:8d:28:1a:46:ea:9e:0a:b1:67:72:4c:bb:a4:5e: fc:1c:d9:1e:5d:53:1d:a2:8b:31:5a:08:9c:78:5b:76:28:ae: ab:d1:8a:5e:c2:4b:1c:0c:73:17:b7:7e:c4:cd:c8:9b:93:2d: bd:ed:60:93:68:7e:4f:e6:16:0d:d8:92:9f:62:6c:94:9c:22: c1:bf:ba:3e:80:39:ab:d1:d7:bc:d6:1c:6c:d9:36:0a:b5:ff: ab:91:f4:c9:7b:54:e6:25:ea:64:ba:aa:fd:b9:01:91:10:dd: fa:1d:45:c0:04:db:78:d3:f0:60:14:f1:b2:5e:32:2f:83:e0: fd:83:81:c0:8a:e5:aa:04:66:ca:4b:fc:7b:5c:7d:4f:7c:a3: 9c:49:d8:82:26:37:47:2b:e8:92:43:40:a2:f9:1a:26:97:8a: 1c:57:08:6d:84:69:89:24:d1:c6:0a:96:b9:c4:9f:0a:4c:e1: 0b:e3:98:5a:eb:97:17:9d:3a:1f:f4:00:ea:8b:7f:56:c2:8e: a0:2f:43:4f:27:13:71:56:88:1a:92:f7:95:6a:bf:7f:92:b1: 7b:8f:6f:15:cf:1c:b1:20:60:0f:91:93:cd:e6:78:4e:ae:bd: ef:ce:56:b1:84:ba:64:11:5f:c0:89:36:86:4e:e4:8d:2f:77: a5:66:f6:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUwNDI1MDE1NDE3WhcNMjUwNTAyMDE1NDE3WjAYMRYwFAYD VQQDEw02ODBhZWI0OS1jZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3VkBtGXBnJSnhAQBMYXnhGH+mjNeODMTRlM+xNpAFrCHm85Tbr93XE90SPs LQgSZf18Q3L3bao8bwQsBvTWsZTH8KEf/i3cNbNHimz108Bo554Tcsj6J77tPyaU dupOvXMljVTD9HrPg1L3owySbB0EcioRxKvz7WvWgFVRatAKCJNZh2YztRb9RrHF 6xykmYx+7NpVZO1zNzLpI2zPkwEpIu8fAq2+31T/E+n6/QfXqoEvSjHrA2HiodmS XUA8cJnWYG4V0L3LzwsbkHHSL4cnfDuwo0oFDPLyhKXIjMbU8ayYVJRsrtbY5PpG /5RMOJA63EzgD1hxAZP2aXselQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4tjsti dZRnpwiYBr/6ZBL8HY5JMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPJigijSgaRuqeCrFncky7pF78HNkeXVMdoosxWgiceFt2KK6r0Ype wkscDHMXt37Ezcibky297WCTaH5P5hYN2JKfYmyUnCLBv7o+gDmr0de81hxs2TYK tf+rkfTJe1TmJepkuqr9uQGREN36HUXABNt40/BgFPGyXjIvg+D9g4HAiuWqBGbK S/x7XH1PfKOcSdiCJjdHK+iSQ0Ci+Roml4ocVwhthGmJJNHGCpa5xJ8KTOEL45ha 65cXnTof9ADqi39Wwo6gL0NPJxNxVogakveVar9/krF7j28VzxyxIGAPkZPN5nhO rr3vzlaxhLpkEV/AiTaGTuSNL3elZvaU -----END CERTIFICATE-----Generated at Sat Apr 26 16:44:50 2025 by rpki-client